← Advisory Index « MOKSHA-2026-0075 MOKSHA-2026-0077 »

MOKSHA-2026-0076: Network Offload Disablement via PIF.other_config ethtool Keys

Advisory ID	MOKSHA-2026-0076
Semantic ID	POC-4
Published	2026-04-24
CVSS 3.1	4.9 Medium
CVSS 3.1 Vector	`AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H`
CVSS 4.0	5.1 Medium
CVSS 4.0 Vector	`AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N`
XAPI Object	`PIF`
XAPI Field	`other_config:ethtool-*`
Entry Role	pool-operator
Researcher	Jakob Wolffhechel, Moksha

Affected Products

Vendor	Product	Versions
Citrix / Cloud Software Group	XenServer / Citrix Hypervisor	all versions (shared XAPI codebase)
Vates	XCP-ng	8.3.0

Summary

A pool-operator in XAPI-based hypervisors (XenServer, XCP-ng) can disable NIC hardware offload features on any physical network interface by writing ethtool-gro=off, ethtool-tso=off, ethtool-gso=off, ethtool-lro=off, or other ethtool-* keys to PIF.other_config. These keys are consumed by nm.ml:45-110 (determine_ethtool_settings) and passed to xcp-networkd for application via ethtool -K. Disabling offloads forces the host CPU to perform network segmentation and reassembly in software, causing performance degradation that affects all VMs and management traffic on the affected PIF. The ethtool-gro key has an additional impact: it overrides the PIF.properties:gro first-class field through a backward compatibility path documented in pif-properties.md:35. The PIF.other_config field has zero map_keys_roles entries.

Vulnerability Description

PIF.other_config is a Map(String, String) field defined at datamodel.ml:2784-2788 with no ~writer_roles override and no ~map_keys_roles. It inherits _R_POOL_OP from the PIF class default.

The ethtool settings extraction at nm.ml:45-110:

determine_ethtool_settings:
  reads ethtool-speed, ethtool-duplex, ethtool-autoneg, ethtool-advertise
  reads ethtool-rx, ethtool-tx, ethtool-sg, ethtool-tso, ethtool-ufo,
        ethtool-gso, ethtool-gro, ethtool-lro

The extracted settings are passed to xcp-networkd via bridge/interface configuration. xcp-networkd applies them using ethtool -K <interface> <feature> <on|off> through execve (no shell injection possible).

PIF.other_config has the highest merge precedence in the other_config merge chain at nm.ml:112-120. PIF values override both Network.other_config and Pool.other_config. This means a PIF-level ethtool setting cannot be overridden by pool-level or network-level configuration.

The performance impact of disabling offloads:

TSO (TCP Segmentation Offload): Host CPU performs TCP segmentation for all outbound traffic. On 10GbE+ interfaces with high throughput, this can consume significant CPU.
GRO (Generic Receive Offload): Host CPU processes individual packets instead of coalesced frames. Increases interrupt rate and CPU utilization.
LRO (Large Receive Offload): Similar to GRO but at the NIC driver level.
Combined disablement: Turning off all offloads on a management/storage PIF causes host-level performance degradation visible to all VMs.

Root Causes

Missing RBAC protection. PIF.other_config has zero map_keys_roles entries. All ethtool-* keys are writable by any pool-operator.
No impact assessment at write time. XAPI does not evaluate whether disabling offloads on a management or storage PIF would degrade critical infrastructure performance.
Backward compatibility override. The ethtool-gro key in other_config overrides the PIF.properties:gro first-class field, bypassing the RBAC and validation of the dedicated property.
set_other_config RBAC bypass. The set_other_config method replaces the entire map atomically and bypasses map_keys_roles per-key checks.

Affected Systems

Directly Affected

XenServer / Citrix Hypervisor - all versions (shared XAPI + xcp-networkd codebase)
XCP-ng - all versions (confirmed via source trace)

Indirectly Affected

All VMs on affected PIFs - network performance degradation
Storage I/O - if iSCSI or NFS traffic traverses the affected PIF, storage performance degrades
Live migration - migration throughput reduced when offloads are disabled on migration network

Exploitation Scenarios

Scenario	Impact	Pre-conditions	Status
Management PIF performance degradation	Host CPU saturation from software segmentation on management traffic	pool-operator, disable TSO/GRO on management PIF	Source-traced
Storage PIF throughput reduction	iSCSI/NFS throughput drops due to software packet processing	pool-operator, disable offloads on storage PIF	Source-traced
GRO backward compat bypass	Disable GRO via other_config, overriding PIF.properties:gro	pool-operator	Source-traced
BOC-1 chain	vm-admin disables offloads across all PIFs via RBAC collapse	vm-admin, BOC-1	Source-traced

Chaining Analysis

POC-4 + POC-3 (MOKSHA-2026-0046): Disabling offloads (POC-4) combined with MTU manipulation (POC-3) on a storage PIF creates a compound network degradation condition. Software segmentation plus MTU mismatch causes severe storage throughput loss.
POC-4 + PLOC-2 (MOKSHA-2026-0018): Offload disablement on heartbeat network PIFs increases latency. Combined with aggressive HA timeout (PLOC-2), this can trigger false fencing events.
BOC-1 + POC-4: BOC-1 collapses the pool-operator barrier. A vm-admin disables offloads on all PIFs, causing pool-wide performance degradation.

Detection

Monitor PIF.other_config for ethtool-* key changes
Alert on offload disablement (=off) on management or storage PIFs
Monitor host CPU utilization for network processing anomalies
See rule P-04 in disclosure/vendor-detection-guidance.md

Remediation

Short-Term Mitigations

Audit all PIF.other_config entries for unexpected ethtool-* settings
Monitor NIC offload state via ethtool -k <interface> across all hosts
Restrict XAPI API access to trusted networks

Long-Term Fix

Add map_keys_roles protection. Restrict ethtool-* keys to _R_POOL_ADMIN in datamodel.ml. NIC offload configuration is a host infrastructure operation.

Remove backward compatibility override. Deprecate the ethtool-gro other_config key in favor of the PIF.properties:gro first-class field with proper RBAC.

Upstream patches exist. They are held privately pending coordinated disclosure.

Disclosure

Disclosure:

Public release: 2026-04-24 08:00 CEST
CERT/CC notified: 2026-04-23
MITRE CVE reservation filed: 2026-04-09 (no response as of publication)
EU CVE registers notified: 2026-04-18 (GCVE/CIRCL, ENISA, DIVD - no response)
Vendor (Cloud Software Group / Citrix): not contacted pre-publication
Downstream maintainer (Vates/XCP-ng): contacted 2026-04-23 with conditional patch offer

References

Related MOKSHA IDs: MOKSHA-2026-0027 (POC-2), MOKSHA-2026-0045 (POC-1), MOKSHA-2026-0046 (POC-3), MOKSHA-2026-0047 (POC-5)
XAPI source: datamodel.ml:2784-2788 (PIF.other_config field definition, zero map_keys_roles), nm.ml:45-110 (determine_ethtool_settings), nm.ml:112-120 (PIF has highest merge precedence), pif-properties.md:35 (GRO backward compatibility override)
Thematic advisory: disclosure/advisories/poc-security-advisory.md (POC-4)
Investigation: research/investigations/pif-other-config.md

Credits

Discovered and reported by Jakob Wolffhechel, Moksha.

Machine-readable: MOKSHA-2026-0076.json (CVE JSON 5.1 schema)

← Advisory Index « MOKSHA-2026-0075 MOKSHA-2026-0077 »

Jakob Wolffhechel · Moksha · Copenhagen
jakob@wolffhechel.dk · +45 3170 7337
Published 2026-04-24 08:00 CEST · cna.moksha.dk · shittrix.moksha.dk