subject:"\[Xen\-devel\] \[PATCH v3 2\/2\] xsm\: hide detailed Xen version from unprivileged guests"

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

2020-01-23 Thread Jan Beulich

On 23.01.2020 15:52, Julien Grall wrote: > Therefore, they will have to accept whatever string is reported by > HVMLoader (or Xen). As you already allow Xen to configure it, why would > that be a problem to change the one in Kconfig? Why do you need to fix > it up in hvmloader as well?

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

2020-01-23 Thread George Dunlap

On 1/23/20 2:52 PM, Julien Grall wrote: > Hi, > > On 23/01/2020 14:45, George Dunlap wrote: >> On 1/23/20 2:42 PM, Julien Grall wrote: >>> Hi, >>> >>> On 23/01/2020 11:32, Sergey Dyasli wrote: On 22/01/2020 11:25, Julien Grall wrote: > > > On 22/01/2020 11:19, Sergey Dyasli

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

2020-01-23 Thread Julien Grall

Hi, On 23/01/2020 14:45, George Dunlap wrote: On 1/23/20 2:42 PM, Julien Grall wrote: Hi, On 23/01/2020 11:32, Sergey Dyasli wrote: On 22/01/2020 11:25, Julien Grall wrote: On 22/01/2020 11:19, Sergey Dyasli wrote: On 22/01/2020 10:14, Julien Grall wrote: On 22/01/2020 10:01, Sergey

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

2020-01-23 Thread George Dunlap

On 1/23/20 2:42 PM, Julien Grall wrote: > Hi, > > On 23/01/2020 11:32, Sergey Dyasli wrote: >> On 22/01/2020 11:25, Julien Grall wrote: >>> >>> >>> On 22/01/2020 11:19, Sergey Dyasli wrote: On 22/01/2020 10:14, Julien Grall wrote: > > > On 22/01/2020 10:01, Sergey Dyasli wrote:

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

2020-01-23 Thread Julien Grall

Hi, On 23/01/2020 11:32, Sergey Dyasli wrote: On 22/01/2020 11:25, Julien Grall wrote: On 22/01/2020 11:19, Sergey Dyasli wrote: On 22/01/2020 10:14, Julien Grall wrote: On 22/01/2020 10:01, Sergey Dyasli wrote: On 20/01/2020 10:01, Jan Beulich wrote: On 17.01.2020 17:44, Sergey Dyasli

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

2020-01-23 Thread George Dunlap

On 1/22/20 11:44 AM, Sergey Dyasli wrote: > On 22/01/2020 10:57, George Dunlap wrote: >> On 1/22/20 10:14 AM, Julien Grall wrote: >>> >>> >>> On 22/01/2020 10:01, Sergey Dyasli wrote: On 20/01/2020 10:01, Jan Beulich wrote: > On 17.01.2020 17:44, Sergey Dyasli wrote: >> v2 --> v3:

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

2020-01-23 Thread Sergey Dyasli

On 22/01/2020 11:25, Julien Grall wrote: > > > On 22/01/2020 11:19, Sergey Dyasli wrote: >> On 22/01/2020 10:14, Julien Grall wrote: >>> >>> >>> On 22/01/2020 10:01, Sergey Dyasli wrote: On 20/01/2020 10:01, Jan Beulich wrote: > On 17.01.2020 17:44, Sergey Dyasli wrote: >> v2 --> v3:

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

2020-01-22 Thread Julien Grall

On 22/01/2020 12:32, Jan Beulich wrote: On 22.01.2020 13:05, Julien Grall wrote: Hi George, On 22/01/2020 10:57, George Dunlap wrote: On 1/22/20 10:14 AM, Julien Grall wrote: On 22/01/2020 10:01, Sergey Dyasli wrote: On 20/01/2020 10:01, Jan Beulich wrote: On 17.01.2020 17:44, Sergey

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

2020-01-22 Thread Jan Beulich

On 22.01.2020 13:05, Julien Grall wrote: > Hi George, > > On 22/01/2020 10:57, George Dunlap wrote: >> On 1/22/20 10:14 AM, Julien Grall wrote: >>> >>> >>> On 22/01/2020 10:01, Sergey Dyasli wrote: On 20/01/2020 10:01, Jan Beulich wrote: > On 17.01.2020 17:44, Sergey Dyasli wrote: >>

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

2020-01-22 Thread Julien Grall

Hi George, On 22/01/2020 10:57, George Dunlap wrote: On 1/22/20 10:14 AM, Julien Grall wrote: On 22/01/2020 10:01, Sergey Dyasli wrote: On 20/01/2020 10:01, Jan Beulich wrote: On 17.01.2020 17:44, Sergey Dyasli wrote: v2 --> v3: - Remove hvmloader filtering Why? Seeing the prior

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

2020-01-22 Thread Sergey Dyasli

On 22/01/2020 10:57, George Dunlap wrote: > On 1/22/20 10:14 AM, Julien Grall wrote: >> >> >> On 22/01/2020 10:01, Sergey Dyasli wrote: >>> On 20/01/2020 10:01, Jan Beulich wrote: On 17.01.2020 17:44, Sergey Dyasli wrote: > v2 --> v3: > - Remove hvmloader filtering Why?

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

2020-01-22 Thread Julien Grall

On 22/01/2020 11:19, Sergey Dyasli wrote: On 22/01/2020 10:14, Julien Grall wrote: On 22/01/2020 10:01, Sergey Dyasli wrote: On 20/01/2020 10:01, Jan Beulich wrote: On 17.01.2020 17:44, Sergey Dyasli wrote: v2 --> v3: - Remove hvmloader filtering Why? Seeing the prior discussion, how

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

2020-01-22 Thread Sergey Dyasli

On 22/01/2020 10:14, Julien Grall wrote: > > > On 22/01/2020 10:01, Sergey Dyasli wrote: >> On 20/01/2020 10:01, Jan Beulich wrote: >>> On 17.01.2020 17:44, Sergey Dyasli wrote: v2 --> v3: - Remove hvmloader filtering >>> >>> Why? Seeing the prior discussion, how about adding

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

2020-01-22 Thread George Dunlap

On 1/22/20 10:14 AM, Julien Grall wrote: > > > On 22/01/2020 10:01, Sergey Dyasli wrote: >> On 20/01/2020 10:01, Jan Beulich wrote: >>> On 17.01.2020 17:44, Sergey Dyasli wrote: v2 --> v3: - Remove hvmloader filtering >>> >>> Why? Seeing the prior discussion, how about adding

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

2020-01-22 Thread Julien Grall

On 22/01/2020 10:01, Sergey Dyasli wrote: On 20/01/2020 10:01, Jan Beulich wrote: On 17.01.2020 17:44, Sergey Dyasli wrote: v2 --> v3: - Remove hvmloader filtering Why? Seeing the prior discussion, how about adding XENVER_denied to return the "denied" string, allowing components which want

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

2020-01-22 Thread Jan Beulich

On 22.01.2020 11:01, Sergey Dyasli wrote: > On 20/01/2020 10:01, Jan Beulich wrote: >> On 17.01.2020 17:44, Sergey Dyasli wrote: >>> v2 --> v3: >>> - Remove hvmloader filtering >> >> Why? Seeing the prior discussion, how about adding XENVER_denied to >> return the "denied" string, allowing

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

2020-01-22 Thread Sergey Dyasli

On 20/01/2020 10:01, Jan Beulich wrote: > On 17.01.2020 17:44, Sergey Dyasli wrote: >> v2 --> v3: >> - Remove hvmloader filtering > > Why? Seeing the prior discussion, how about adding XENVER_denied to > return the "denied" string, allowing components which want to filter > to know exactly what to

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

2020-01-20 Thread Jan Beulich

On 17.01.2020 17:44, Sergey Dyasli wrote: > v2 --> v3: > - Remove hvmloader filtering Why? Seeing the prior discussion, how about adding XENVER_denied to return the "denied" string, allowing components which want to filter to know exactly what to look for? And then re-add the filtering you had?

[Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

2020-01-17 Thread Sergey Dyasli

Hide the following information that can help identify the running Xen binary version: XENVER_extraversion, XENVER_compile_info, XENVER_changeset. This makes harder for malicious guests to fingerprint Xen to identify exploitable systems. Add explicit cases for XENVER_commandline and

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

[Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

19 matches

Site Navigation

Mail list logo

Footer information