Xen project Mailing List

[XEN PATCH] tools/libxl: env variable to trusted default

From: Anthony PERARD <anthony.perard@xxxxxxxxxx>

Date: Fri, 29 Jul 2022 14:26:41 +0100

Authentication-results: esa2.hc3370-68.iphmx.com; dkim=none (message not signed) header.i=none

Cc: Juergen Gross <jgross@xxxxxxxx>, Wei Liu <wl@xxxxxxx>, Jan Beulich <jbeulich@xxxxxxxx>, Andrew Cooper <Andrew.Cooper3@xxxxxxxxxx>, "Anthony PERARD" <anthony.perard@xxxxxxxxxx>

Delivery-date: Fri, 29 Jul 2022 13:26:56 +0000

Ironport-data: A9a23:duOXbKpqIvPf0XvGanazvq+K2C9eBgzWbkUzOEj9NTP0s+dABD8hgsdSaEH9hFxiBwbI0vBa6i2HxjTGFjKJ11DbHMsG61v308FQIZD4FsuOBg5xy3WHeMGe+KXVIU3yRh1DHPk1d2DiRw6Rwqqiji+aBeVlw5Q36PXD4JWT/P+DHIC6akoTAGvZ2VQNXiyc3IptqscBMYdDI92KATdqmfIi2Rn1981nIVpQQ8u0zXnVxMBzpgFnE2ze4U/bWa7arZaDOLHd5U5PUn9xUHRjDU0FCInXZDnLeYv94tTd5V9dXMRAqaTnuBaAuf8J/P7+LZBLtcwB0/6tU0SkutNh/8m+8CeKPEjQ5ikG4JqrrcYrKvpKXOunM7riGglcZPYtRTbWDxYTCtKEq3qbOVLhTitcwD6HPNN1sXq+NsXCxdsyDPVbXd8zKGYFqiSPFW7pJXVnvgjF68JW8Da/Ps3HPAZ8gxV6Wo/k3Z0Z1SeAI2CKlILuEsbMyXJY1cor08YgHGaQtj0GzCPuzAniUqKO2KdIuBXlg7BTcQ8NISH/l1/WhFbTS14tfdMFle4S5nU0EtN0s/GtPBv8aBa1Cquw9lXnHs0a7cpFzY2Svsxij/PMAO4/S15te9qkrPb01oPBeft4e2Sf4QiAPSiFqpoKEiOpOB8UB9Ug+vRuzEGpfX2X0Pv6zQOB1rIU76qQJFVmoaXFU7h5rQrM59ddw7iwCDop5Jrp+OMeGYKj7uSuN8n3lEeNkVN6+5JVnjMoM6B3v3xHY+LS3k1SXb881bgmKp1VLQE5AehUk9t+CQce/1LvAjhrEf+DR/RBIEP+OxlegzPlCbECh2AnuaMBErCyHA6ssT6uoEYz2mI6FKdlqgl+Kb1PN1KDTZkS4U6bHkndd5lL9MfrORCWuRLYHivcVno28rivlxB9qDPeK04KNt3O9sxe9m9Y00lILT5JJMvee2E/2KAbMrNgmhs1KbrwiuzLLk6s9m6E5t0TuuHOT9PcX6TvUkq6zC5x8aRlAGdNQTLU6EHww4FtplNn9pSfAhw5DCU1cqcnjxBuf89/p+yxfeKZNzoZuXscZS4s+d4Xv4aGZDX2JrGFLD9kv14vKZVVUA1X0SfnoR3PNBbeVSpCZU2yQ89VUP/+b+Dt/pcLM8veMXwSNOHUJ22z8Jkk+gVdZjmGXze8legC+dRltoiAfm7P8sNB39ruro4+J93mZVul61iNQkeXW9w+cOK5wVQF1qnD9Ko7otINYrvZn4uz5aM4taOs1jeJbpumBS0D41X0BBOE14uhIEuQX0fXfyRS7cUZbrNkLZx71nNsdysxMdPPfqSC+OB1EBKYkl4kvYeRXwnAmrKn/h2C5fhKS1WV3SihmYZHgYJz6Br8t14hGXir/DCM2VJow3jDku8T0NZ4W398M3Tj5znzcVK1R5vTNusxbip2lUPgeGI6mov7sokdNsNOiOlD9Xs8CC+jS29x3nVAC+Tid/Zq9Odz4uWdE8uyCEFxEogSLTNFSZ75y/iRE9bByi9I9GXs0MHLQE7IyMccHJUpwJolJaPegLfuQR11ZAixUxuNRKiCWdAMRoGJCbLl+zIGvR2YkcO8XiVwix1kGhG3pcQptnFXJfYY90Msn2IuaWMRniVKF8F1b/dWKf86pPEA4ntOR8VpFTN67p6ph6jAqVctYi0VFJusOq8PWiAM0g84GI6qIE2YaeecpokvRjG10cqbo0SQR/BK8JVul81wvyPmlIyrYR5WeC01ZArZ+v9swmL5a8iNouwJTZ9ZZHtoL1M8f2F/mNdN4VauLH7n92QsHWP5cWpdGZgTKHZ1+ArS9UB9mzInilWs6Py+NsWvCotRJADDqpXWQkLkL7Umq3OKH2iL8dqDvGpvo8FhV2uvtoWaTv08+43kd7+rog9+qRHng1jSjj0M6GMYv0CgiFL4yJbbeoSHsQsd9vxDijMOA1uIxTZMusyb0yTTfvlmciqPWaxBAIqicHrQnFEfoxzfOO3dMeuNcLu7FGxSM7pch8FD/j8D7HAxZf0CzWM4VWIQ76cWeIgf1utSp2pXI3qXQKkBvRIR4VHRwkvckjj9e27YDEGBgQzJoUUmqHNuEarsc3bOTiJMiRQ78PDxxBt05kdv9hmkyIei9q0zvznI4wklDnzf+8uChaE2oIRcBOLmrcZQ40IKaLvdZV6ISIg4g9R8z+RVu1qFFVcQWLGGQBs8BgT4Z50mUFLqgpaBEnVo/TOm1jNrdBaSnwHjKdEBWo8Pg4dQu8lBPmGplOtSSk2TkG0AOWnBN9oQxXtp43IFDhtrAr3HU/+taDs30AYcN8ROruB2cvX8A7Sb3u6ZubgIwqTSEFCkmCEvifXH/frUJuXZPes82vv94Jd0wOr/EkFiBBAeOWUmU6JSKrbKInGiu6dgfE5GYf1hPZCVvwCnAdCacQL7ssRK2B9H7+2U2GTAhwhrV3g8JrhCoDqqOmp6hquzroHPB9SvKICxVxCa/MpW7bPdYeDt9nqLFjLa5iRC0IoHZV5pfCLi0Iz3cRCkqP9WDFlzAzxR6oFKVzV4esD/fXQHWMOF9TiNF9229u4rnnJwvcA46UUKACTRjwsrNzJvFtg8nvdfq1XXKwagjYnT6zNK7JgYuKTv1VjGGzTwBlIXCGf1xYztzsyUamL3Xb9py8K74ctLigPl5467pYDJX3KrsYUXfyjZmEMd6zO+vKX2DAFDNnlk6Dcik9wVdAhbWPwh6NCYi9GRCjUWZnkryGJNK/jwDZb93C1L7NIq4Tpa4xwqg22KIzJK9IGaOyP5yw==

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

This is a forward port of "tools/libxl: env variable to signal whether disk/nic backend is trusted", to allow the environment variable to still work when upgrading from 4.16 or earlier. Introduce support in libxl for fetching the default backend trusted option for disk and nic devices. This is part of XSA-403. Signed-off-by: Anthony PERARD <anthony.perard@xxxxxxxxxx> --- docs/man/xl.1.pod.in | 24 ++++++++++++++++++++++++ tools/libs/light/libxl_disk.c | 6 +++++- tools/libs/light/libxl_nic.c | 5 ++++- 3 files changed, 33 insertions(+), 2 deletions(-) diff --git a/docs/man/xl.1.pod.in b/docs/man/xl.1.pod.in index 101e14241d..a5a2af5df9 100644 --- a/docs/man/xl.1.pod.in +++ b/docs/man/xl.1.pod.in @@ -1945,6 +1945,30 @@ shows the decimal value. For non-linear mode, it shows hexadecimal value. =back +=head1 ENVIRONMENT + +=over 4 + +=item B<LIBXL_DISK_BACKEND_UNTRUSTED> + +Use B<trusted> or B<untrusted> from L<xl-disk-configuration(5)> instead for a +more fine grain setting. + +This environment variable allows to changed the default value of B<trusted>; +if it is set to "1", the default will be B<untrusted>; if the variable is +absent or set to "0", the default will be B<trusted>. + +=item B<LIBXL_NIC_BACKEND_UNTRUSTED> + +Use B<trusted> / B<untrusted> from L<xl-network-configuration(5)> instead for a +more fine grain setting. + +This environment variable allows to changed the default value of B<trusted>; +if it is set to "1", the default will be B<untrusted>; if the variable is +absent or set to "0", the default will be B<trusted>. + +=back + =head1 IGNORED FOR COMPATIBILITY WITH XM xl is mostly command-line compatible with the old xm utility used with diff --git a/tools/libs/light/libxl_disk.c b/tools/libs/light/libxl_disk.c index 9da2b2ed27..7564a12868 100644 --- a/tools/libs/light/libxl_disk.c +++ b/tools/libs/light/libxl_disk.c @@ -155,11 +155,15 @@ static int libxl__device_disk_setdefault(libxl__gc *gc, uint32_t domid, libxl_device_disk *disk, bool hotplug) { int rc; + const char *envvar; libxl_defbool_setdefault(&disk->discard_enable, !!disk->readwrite); libxl_defbool_setdefault(&disk->colo_enable, false); libxl_defbool_setdefault(&disk->colo_restore_enable, false); - libxl_defbool_setdefault(&disk->trusted, true); + + envvar = getenv("LIBXL_DISK_BACKEND_UNTRUSTED"); + /* Default to trusted if envvar missing or is "0". */ + libxl_defbool_setdefault(&disk->trusted, !envvar || !strcmp("0", envvar)); rc = libxl__resolve_domid(gc, disk->backend_domname, &disk->backend_domid); if (rc < 0) return rc; diff --git a/tools/libs/light/libxl_nic.c b/tools/libs/light/libxl_nic.c index d6bf06fc34..ff3aede6ea 100644 --- a/tools/libs/light/libxl_nic.c +++ b/tools/libs/light/libxl_nic.c @@ -59,6 +59,7 @@ static int libxl__device_nic_setdefault(libxl__gc *gc, uint32_t domid, libxl_device_nic *nic, bool hotplug) { int rc; + const char *envvar; if (!nic->mtu) nic->mtu = LIBXL_DEVICE_NIC_MTU_DEFAULT; @@ -116,7 +117,9 @@ static int libxl__device_nic_setdefault(libxl__gc *gc, uint32_t domid, abort(); } - libxl_defbool_setdefault(&nic->trusted, true); + envvar = getenv("LIBXL_NIC_BACKEND_UNTRUSTED"); + /* Default to trusted if envvar missing or is "0". */ + libxl_defbool_setdefault(&nic->trusted, !envvar || !strcmp("0", envvar)); return rc; } -- Anthony PERARD

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.