[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

On 23.01.2020 15:52, Julien Grall wrote:
> Therefore, they will have to accept whatever string is reported by 
> HVMLoader (or Xen). As you already allow Xen to configure it, why would 
> that be a problem to change the one in Kconfig? Why do you need to fix 
> it up in hvmloader as well?

Because, as stated before, hvmloader is actually the presentation
layer from the guest firmware pov. Hence what is sensibly coming
back as "<denied>" or "<hidden>" from the hypercall should not
propagate into the firmware tables the guest gets to see. Other
users of the hypercall may very well leave these strings
unfiltered, such that to consumers it's clear what has happened
(and from other context it would then typically also be clear
what exact piece of information it is which has got hidden).

Jan

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxxx
https://lists.xenproject.org/mailman/listinfo/xen-devel

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.