* [PATCH] xen/kexec: return error code for unknown hypercalls
@ 2026-02-06 18:31 Roger Pau Monne
2026-02-06 18:35 ` Andrew Cooper
0 siblings, 1 reply; 3+ messages in thread
From: Roger Pau Monne @ 2026-02-06 18:31 UTC (permalink / raw)
To: xen-devel; +Cc: Roger Pau Monne, Andrew Cooper, Daniel P. Smith
Currently do_kexec_op_internal() will return 0 for unknown hypercalls. Fix
this by returning -EOPNOTSUPP instead.
Fixes: d046f361dc93 ("Xen Security Modules: XSM")
Reported-by: Andrew Cooper <andrew.cooper3@citrix.com>
Signed-off-by: Roger Pau Monné <roger.pau@citrix.com>
---
Arguably the error code for unsupported kexec hypercalls was already wonky
before the XSM addiiton, as it would return -EINVAL. It's however way
worse after the XSM addition, as it returns 0.
---
xen/common/kexec.c | 7 +++++--
1 file changed, 5 insertions(+), 2 deletions(-)
diff --git a/xen/common/kexec.c b/xen/common/kexec.c
index 84fe8c35976e..8f52c5506d4a 100644
--- a/xen/common/kexec.c
+++ b/xen/common/kexec.c
@@ -1217,9 +1217,8 @@ static int do_kexec_op_internal(unsigned long op,
XEN_GUEST_HANDLE_PARAM(void) uarg,
bool compat)
{
- int ret = -EINVAL;
+ int ret = xsm_kexec(XSM_PRIV);
- ret = xsm_kexec(XSM_PRIV);
if ( ret )
return ret;
@@ -1258,6 +1257,10 @@ static int do_kexec_op_internal(unsigned long op,
case KEXEC_CMD_kexec_status:
ret = kexec_status(uarg);
break;
+
+ default:
+ ret = -EOPNOTSUPP;
+ break;
}
clear_bit(KEXEC_FLAG_IN_HYPERCALL, &kexec_flags);
--
2.51.0
^ permalink raw reply related [flat|nested] 3+ messages in thread
* Re: [PATCH] xen/kexec: return error code for unknown hypercalls
2026-02-06 18:31 [PATCH] xen/kexec: return error code for unknown hypercalls Roger Pau Monne
@ 2026-02-06 18:35 ` Andrew Cooper
2026-02-06 18:39 ` Roger Pau Monné
0 siblings, 1 reply; 3+ messages in thread
From: Andrew Cooper @ 2026-02-06 18:35 UTC (permalink / raw)
To: Roger Pau Monne, xen-devel; +Cc: Andrew Cooper, Daniel P. Smith
On 06/02/2026 6:31 pm, Roger Pau Monne wrote:
> Currently do_kexec_op_internal() will return 0 for unknown hypercalls. Fix
> this by returning -EOPNOTSUPP instead.
>
> Fixes: d046f361dc93 ("Xen Security Modules: XSM")
> Reported-by: Andrew Cooper <andrew.cooper3@citrix.com>
> Signed-off-by: Roger Pau Monné <roger.pau@citrix.com>
Reviewed-by: Andrew Cooper <andrew.cooper3@citrix.com>
> ---
> Arguably the error code for unsupported kexec hypercalls was already wonky
> before the XSM addiiton, as it would return -EINVAL. It's however way
> worse after the XSM addition, as it returns 0.
> ---
> xen/common/kexec.c | 7 +++++--
> 1 file changed, 5 insertions(+), 2 deletions(-)
>
> diff --git a/xen/common/kexec.c b/xen/common/kexec.c
> index 84fe8c35976e..8f52c5506d4a 100644
> --- a/xen/common/kexec.c
> +++ b/xen/common/kexec.c
> @@ -1217,9 +1217,8 @@ static int do_kexec_op_internal(unsigned long op,
> XEN_GUEST_HANDLE_PARAM(void) uarg,
> bool compat)
> {
> - int ret = -EINVAL;
> + int ret = xsm_kexec(XSM_PRIV);
>
> - ret = xsm_kexec(XSM_PRIV);
> if ( ret )
> return ret;
Personally, I'd just have `int ret;` and leave the xsm_kexec() call as
it was. That leaves the slightly more normal pattern intact.
>
> @@ -1258,6 +1257,10 @@ static int do_kexec_op_internal(unsigned long op,
> case KEXEC_CMD_kexec_status:
> ret = kexec_status(uarg);
> break;
> +
> + default:
> + ret = -EOPNOTSUPP;
> + break;
> }
>
> clear_bit(KEXEC_FLAG_IN_HYPERCALL, &kexec_flags);
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [PATCH] xen/kexec: return error code for unknown hypercalls
2026-02-06 18:35 ` Andrew Cooper
@ 2026-02-06 18:39 ` Roger Pau Monné
0 siblings, 0 replies; 3+ messages in thread
From: Roger Pau Monné @ 2026-02-06 18:39 UTC (permalink / raw)
To: Andrew Cooper; +Cc: xen-devel, Daniel P. Smith
On Fri, Feb 06, 2026 at 06:35:32PM +0000, Andrew Cooper wrote:
> On 06/02/2026 6:31 pm, Roger Pau Monne wrote:
> > Currently do_kexec_op_internal() will return 0 for unknown hypercalls. Fix
> > this by returning -EOPNOTSUPP instead.
> >
> > Fixes: d046f361dc93 ("Xen Security Modules: XSM")
> > Reported-by: Andrew Cooper <andrew.cooper3@citrix.com>
> > Signed-off-by: Roger Pau Monné <roger.pau@citrix.com>
>
> Reviewed-by: Andrew Cooper <andrew.cooper3@citrix.com>
>
> > ---
> > Arguably the error code for unsupported kexec hypercalls was already wonky
> > before the XSM addiiton, as it would return -EINVAL. It's however way
> > worse after the XSM addition, as it returns 0.
> > ---
> > xen/common/kexec.c | 7 +++++--
> > 1 file changed, 5 insertions(+), 2 deletions(-)
> >
> > diff --git a/xen/common/kexec.c b/xen/common/kexec.c
> > index 84fe8c35976e..8f52c5506d4a 100644
> > --- a/xen/common/kexec.c
> > +++ b/xen/common/kexec.c
> > @@ -1217,9 +1217,8 @@ static int do_kexec_op_internal(unsigned long op,
> > XEN_GUEST_HANDLE_PARAM(void) uarg,
> > bool compat)
> > {
> > - int ret = -EINVAL;
> > + int ret = xsm_kexec(XSM_PRIV);
> >
> > - ret = xsm_kexec(XSM_PRIV);
> > if ( ret )
> > return ret;
>
> Personally, I'd just have `int ret;` and leave the xsm_kexec() call as
> it was. That leaves the slightly more normal pattern intact.
I'm fine with that as it also drops the dead -EINVAL initialization.
Thanks, Roger.
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2026-02-06 18:40 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2026-02-06 18:31 [PATCH] xen/kexec: return error code for unknown hypercalls Roger Pau Monne
2026-02-06 18:35 ` Andrew Cooper
2026-02-06 18:39 ` Roger Pau Monné
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.