projects / xen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a4d4c54) | patch
tools/libxl: report trusted backend status to frontends
authorRoger Pau Monne <roger.pau@citrix.com>
Fri, 8 Apr 2022 08:21:11 +0000 (10:21 +0200)
committerJan Beulich <jbeulich@suse.com>
Tue, 5 Jul 2022 12:16:26 +0000 (14:16 +0200)
commit54d8f27d0477937e1f99a414fc1ffd93d184b38a
tree5fc679503f4a6545ff14fd808ff37229be899382tree | snapshot
parenta4d4c541f58b378bc9d499dcb554eb9fe22312c8commit | diff
tools/libxl: report trusted backend status to frontends

Allow administrators to notify a frontend driver that it's backend
counterpart is not to be trusted, so the frontend can deploy whatever
mitigations required in order to secure itself.

Allow such option for disk and network frontends only, as those are
the only hardened ones currently supported.

This is part of XSA-403

Signed-off-by: Roger Pau Monné <roger.pau@citrix.com>
Reviewed-by: Anthony PERARD <anthony.perard@citrix.com>
12 files changed:
docs/man/xl-disk-configuration.5.pod.in diff | blob | history
docs/man/xl-network-configuration.5.pod.in diff | blob | history
tools/include/libxl.h diff | blob | history
tools/libs/light/libxl_disk.c diff | blob | history
tools/libs/light/libxl_nic.c diff | blob | history
tools/libs/light/libxl_types.idl diff | blob | history
tools/libs/util/libxlu_disk_l.l diff | blob | history
tools/xl/check-xl-disk-parse diff | blob | history
tools/xl/check-xl-vif-parse diff | blob | history
tools/xl/xl_parse.c diff | blob | history
xen/include/public/io/blkif.h diff | blob | history
xen/include/public/io/netif.h diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.