projects / xen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7c48709) | patch
xen: arm: check permissions when copying to/from guest virtual addresses
authorIan Campbell <ian.campbell@citrix.com>
Wed, 4 Jun 2014 13:58:36 +0000 (14:58 +0100)
committerIan Campbell <ian.campbell@citrix.com>
Wed, 4 Jun 2014 13:58:36 +0000 (14:58 +0100)
commit0fbaa84f60af1c27dcc78a6154d64227381e72e9
tree4c4e4598894e602674d6e6e55cc719d1910cbcc7tree | snapshot
parent7c4870915c2d50acbc66347a532e33b452f64f17commit | diff
xen: arm: check permissions when copying to/from guest virtual addresses

In particular we need to make sure the guest has write permissions to buffers
which it passes as output buffers for hypercalls, otherwise the guest can
overwrite memory which it shouldn't be able to write (like r/o grant table
mappings).

This is XSA-98.

Signed-off-by: Ian Campbell <ian.campbell@citrix.com>
Reviewed-by: Julien Grall <julien.grall@linaro.org>
xen/arch/arm/domain_build.c diff | blob | history
xen/arch/arm/guestcopy.c diff | blob | history
xen/arch/arm/kernel.c diff | blob | history
xen/arch/arm/traps.c diff | blob | history
xen/include/asm-arm/arm32/page.h diff | blob | history
xen/include/asm-arm/arm64/page.h diff | blob | history
xen/include/asm-arm/mm.h diff | blob | history
xen/include/asm-arm/page.h diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.