[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[PATCH v2 06/17] xen/xsm: Expand XSM_XS_PRIV for untargetable domains

  • To: <xen-devel@xxxxxxxxxxxxxxxxxxxx>
  • From: Jason Andryuk <jason.andryuk@xxxxxxx>
  • Date: Wed, 16 Jul 2025 17:14:53 -0400
  • Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass (sender ip is 165.204.84.17) smtp.rcpttodomain=lists.xenproject.org smtp.mailfrom=amd.com; dmarc=pass (p=quarantine sp=quarantine pct=100) action=none header.from=amd.com; dkim=none (message not signed); arc=none (0)
  • Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=RC/j65QIU+fP7oEUp28jilWRcpySatiEoKnXk/jfLvM=; b=VU3esb5b787D39sx/sbCUuCCs3wcjdRy8YCRuDoJKjOrO9HmkqKY4HH6CIFNy+vxZPv2IbhpZKDBtw86F2bm5ePjIxtYvI8mdhJLoJqSy9KOqNcXM9fiOfiWbr0MEqjoxZkUqjFCNs1ZJHir/0+pel8XwbvDkSQqqkV9updmUNbe1Hack52YXBB9E4uqtfvwW5BsBAggxBH/VJc87jySDLdWSaJwEXymgTHU+8Nrv/oBhGVWolN2We1d9HP1nxzME6+UxU7oeM8KH98tBlf0qYRrk+1pTlQqK3AYjQRyOsrh0TffZi7YIh6V7e2aLw8sSJC1VNYUpmbA5MpkzRkdeg==
  • Arc-seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=gXoWBJ2hjuqp+s+DBQGhj8e0OUHcc+dFINaaC6zreT10nbbO5z/8Ke4ZWbP3CBhx4szQOsKqkKp3uvqUMeQcOIM4CitrEXFk6eZ/1QBbTiYydp28JtIiB340BsL5N3Daowjb0k4f+5ahkstZYallIApcye5q2nOw/D30SyvcKFBFPkVZda3CBIJtK8lia1rZO+UUrZEu3N8dZjcssCIpPwBZ3Mag3FNVrqkf5Vk7y4NPWx+j4ui+MWUzDUVU0c5MZSuDcbts1glF/gPCfiatbsPaIG0f85+bGZ1mPGneQ2Ip1qtWyeI2fhro0nEDx4xqwKm2mNAeXkB+f+L8pzmbPQ==
  • Cc: Jason Andryuk <jason.andryuk@xxxxxxx>, "Daniel P. Smith" <dpsmith@xxxxxxxxxxxxxxxxxxxx>
  • Delivery-date: Wed, 16 Jul 2025 21:22:33 +0000
  • List-id: Xen developer discussion <xen-devel.lists.xenproject.org>
Untargetable domains are currently hidden from the control domain -
e.g. xl list will not show them.  getdomaininfo fails on the
!is_hypercall_target() check in XSM_TARGET.  Add control domain to the
XSM_XS_PRIV check so it can pass.

Signed-off-by: Jason Andryuk <jason.andryuk@xxxxxxx>
---
 xen/include/xsm/dummy.h | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/xen/include/xsm/dummy.h b/xen/include/xsm/dummy.h
index f2205575ed..4d7b1d61eb 100644
--- a/xen/include/xsm/dummy.h
+++ b/xen/include/xsm/dummy.h
@@ -87,7 +87,8 @@ static always_inline int xsm_default_action(
         fallthrough;
     case XSM_XS_PRIV:
         if ( action == XSM_XS_PRIV &&
-             evaluate_nospec(is_xenstore_domain(src)) )
+             (evaluate_nospec(is_xenstore_domain(src)) ||
+              is_control_domain(src)) )
             return 0;
         fallthrough;
     case XSM_DM_PRIV:
-- 
2.50.0

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.