From nobody Tue Feb 10 16:27:04 2026 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of lists.xenproject.org designates 192.237.175.120 as permitted sender) client-ip=192.237.175.120; envelope-from=xen-devel-bounces@lists.xenproject.org; helo=lists.xenproject.org; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of lists.xenproject.org designates 192.237.175.120 as permitted sender) smtp.mailfrom=xen-devel-bounces@lists.xenproject.org; dmarc=pass(p=reject dis=none) header.from=citrix.com ARC-Seal: i=1; a=rsa-sha256; t=1714785408; cv=none; d=zohomail.com; s=zohoarc; b=OsQkkbylEGkOly1HPE9Oyq2w6/zcHV2LJY6rX/lHO5k6fLCax8R/2egdXQTKtpEpXzBgr06SfF3YchqD/p64nuFItwoRj2xOc+SXQ1NOSF6MnyoY6iejSRU6Kp52LW1cj+gU17NjmIcuGRW3GgTlYtZc7DvxjN/Y8LsmwiJB0Y4= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1714785408; h=Content-Type:Content-Transfer-Encoding:Cc:Cc:Date:Date:From:From:List-Subscribe:List-Post:List-Id:List-Help:List-Unsubscribe:MIME-Version:Message-ID:Sender:Subject:Subject:To:To:Message-Id:Reply-To; bh=AmgLG2/r7crf4VeZKFy4V6sV4ajE44kBgHnEhpJVc4s=; b=JIQ1pXRLdDHKnU5ASLb4aruXkLofkGOitFnd7LzuwP6/DAt9mgbNqQxjo4g6kOsGqfJMpQWEhF3jdqRdQ6lXKAeUUCJ+taJxaRIr/cjsIVkmXbFFYIidDi2y7hRwi7Bnge3YLUhQUD01Dc57DQMGxn4x7mGuY8Tewe/RnafF3v8= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of lists.xenproject.org designates 192.237.175.120 as permitted sender) smtp.mailfrom=xen-devel-bounces@lists.xenproject.org; dmarc=pass header.from= (p=reject dis=none) Return-Path: Received: from lists.xenproject.org (lists.xenproject.org [192.237.175.120]) by mx.zohomail.com with SMTPS id 1714785408443620.9706909057353; Fri, 3 May 2024 18:16:48 -0700 (PDT) Received: from list by lists.xenproject.org with outflank-mailman.716761.1118989 (Exim 4.92) (envelope-from ) id 1s340i-0006MN-QW; Sat, 04 May 2024 01:16:20 +0000 Received: by outflank-mailman (output) from mailman id 716761.1118989; Sat, 04 May 2024 01:16:20 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.92) (envelope-from ) id 1s340i-0006MG-My; Sat, 04 May 2024 01:16:20 +0000 Received: by outflank-mailman (input) for mailman id 716761; Sat, 04 May 2024 01:16:18 +0000 Received: from se1-gles-sth1-in.inumbo.com ([159.253.27.254] helo=se1-gles-sth1.inumbo.com) by lists.xenproject.org with esmtp (Exim 4.92) (envelope-from ) id 1s340g-0006MA-Tc for xen-devel@lists.xenproject.org; Sat, 04 May 2024 01:16:18 +0000 Received: from mail-lf1-x132.google.com (mail-lf1-x132.google.com [2a00:1450:4864:20::132]) by se1-gles-sth1.inumbo.com (Halon) with ESMTPS id e869971c-09b3-11ef-909c-e314d9c70b13; Sat, 04 May 2024 03:16:17 +0200 (CEST) Received: by mail-lf1-x132.google.com with SMTP id 2adb3069b0e04-51f17ac14daso279508e87.1 for ; Fri, 03 May 2024 18:16:17 -0700 (PDT) Received: from andrewcoop.citrite.net (default-46-102-197-194.interdsl.co.uk. [46.102.197.194]) by smtp.gmail.com with ESMTPSA id r7-20020a170906350700b00a57e2d39d56sm2352639eja.223.2024.05.03.18.16.16 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 03 May 2024 18:16:16 -0700 (PDT) X-Outflank-Mailman: Message body and most headers restored to incoming version X-BeenThere: xen-devel@lists.xenproject.org List-Id: Xen developer discussion List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Errors-To: xen-devel-bounces@lists.xenproject.org Precedence: list Sender: "Xen-devel" X-Inumbo-ID: e869971c-09b3-11ef-909c-e314d9c70b13 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=citrix.com; s=google; t=1714785377; x=1715390177; darn=lists.xenproject.org; h=content-transfer-encoding:mime-version:message-id:date:subject:cc :to:from:from:to:cc:subject:date:message-id:reply-to; bh=AmgLG2/r7crf4VeZKFy4V6sV4ajE44kBgHnEhpJVc4s=; b=UoDnbu04hRFPUIlZ49zs/K/NR7vMhHdbtT7+KlqW9KTnmChWPycI4c6fLiuc6QvVQQ Qja4VG1kp1ytH5y77/ENolCxd9mK3ZHA4LVEjEXN7oQ8UM0wTzI5IV8KBbxwV6ORe8op nPJ/65Nx9nRK2LR/Z4u1MzEu9HwNKNZnVaUKk= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1714785377; x=1715390177; h=content-transfer-encoding:mime-version:message-id:date:subject:cc :to:from:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=AmgLG2/r7crf4VeZKFy4V6sV4ajE44kBgHnEhpJVc4s=; b=wWpOeTBBfe4I3cXy75jWZX0ug4mInDykJtRQH+mI96E/egy2Fmj4BluTPpfJyHGsrM yuBaDjm4lapqKbb43EWBwCMd88aGOozEggnxyUN/dUov7wQwJzbYIGbgo0XRYc49wmXs Qkf3v9yOKf4m14BD18QE2HTsvfzwq8DOIKzFY55xF36+LhRcxMUV5Zml+DsFgFQ4bXHT HZ+E9l7D4iJOiKdBPnOpo973Dv8hYM5L98WAy8/vp20IRslcgkeF1uIuVqI/m4FwBTmX CINfs1OB0OQF+nlSYEDpyLhN6vQ/wKwKUWcsmxzk/CrpdeNxDK5KL+fjuFHpJratto97 vHbA== X-Gm-Message-State: AOJu0Yy5mmJjUqkrt5e8z1h5BMVuUvAZWW8BTo8KaVJVDcMGUrQ5Stoh 5d5cBkkgNxmaMNVIBgbiXwwGrHPFkRH9bsQMSIR23uz7zH9NKjhaHDlGa0CROnDJ3OaGoWzhwxw i X-Google-Smtp-Source: AGHT+IHqI0krkuqGwRYB+NnZPz4XCKxWW9sv2ZAYTyzVfM13n0PbKNPYSKmS1DOhIMjCipdqFX/H4A== X-Received: by 2002:a05:6512:3108:b0:51d:4260:4bf8 with SMTP id n8-20020a056512310800b0051d42604bf8mr2815739lfb.35.1714785376732; Fri, 03 May 2024 18:16:16 -0700 (PDT) From: Andrew Cooper To: Xen-devel Cc: Andrew Cooper , Demi Marie Obenour , Anthony PERARD , Juergen Gross , =?UTF-8?q?Marek=20Marczykowski-G=C3=B3recki?= Subject: [PATCH] tools/libxs: Open /dev/xen/xenbus fds as O_CLOEXEC Date: Sat, 4 May 2024 02:16:14 +0100 Message-Id: <20240504011614.1645851-1-andrew.cooper3@citrix.com> X-Mailer: git-send-email 2.30.2 MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable X-ZohoMail-DKIM: pass (identity @citrix.com) X-ZM-MESSAGEID: 1714785409710100001 The header description for xs_open() goes as far as to suggest that the fd = is O_CLOEXEC, but it isn't actually. `xl devd` has been observed leaking /dev/xen/xenbus into children. Link: https://github.com/QubesOS/qubes-issues/issues/8292 Reported-by: Demi Marie Obenour Signed-off-by: Andrew Cooper Reviewed-by: Juergen Gross --- CC: Anthony PERARD CC: Juergen Gross CC: Demi Marie Obenour CC: Marek Marczykowski-G=C3=B3recki Entirely speculative patch based on a Matrix report --- tools/libs/store/xs.c | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/tools/libs/store/xs.c b/tools/libs/store/xs.c index 140b9a28395e..1f74fb3c44a2 100644 --- a/tools/libs/store/xs.c +++ b/tools/libs/store/xs.c @@ -54,6 +54,10 @@ struct xs_stored_msg { #include #endif =20 +#ifndef O_CLOEXEC +#define O_CLOEXEC 0 +#endif + struct xs_handle { /* Communications channel to xenstore daemon. */ int fd; @@ -227,7 +231,7 @@ static int get_socket(const char *connect_to) static int get_dev(const char *connect_to) { /* We cannot open read-only because requests are writes */ - return open(connect_to, O_RDWR); + return open(connect_to, O_RDWR|O_CLOEXEC); } =20 static int all_restrict_cb(Xentoolcore__Active_Handle *ah, domid_t domid) { base-commit: feb9158a620040846d76981acbe8ea9e2255a07b --=20 2.30.2