projects / xen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 11faafd) | patch
xen/arm: Don't expose implementation defined registers (Cp15 c15) to the guest
authorJulien Grall <julien.grall@linaro.org>
Tue, 15 Apr 2014 11:45:28 +0000 (12:45 +0100)
committerIan Campbell <ian.campbell@citrix.com>
Wed, 23 Apr 2014 09:31:07 +0000 (10:31 +0100)
commita0453db0c6ead85e0e2143c133268bcc5a017f73
tree137182b78fc4341cd5fcd7761227c4defe3dcb4atree | snapshot
parent11faafd9d9739a47d5fa360a43669f52672ef40ecommit | diff
xen/arm: Don't expose implementation defined registers (Cp15 c15) to the guest

On Cortex-A15, CP15 c15 contains registers to retrieve data from L1/L2 RAM.

Exposing this registers to guest may result to leak data from Xen and/or
another guest.

By default trap every registers and inject an undefined instruction.

This is CVE-2014-2915 / XSA-93.

Signed-off-by: Julien Grall <julien.grall@linaro.org>
Acked-by: Ian Campbell <ian.campbell@citrix.com>
xen/arch/arm/traps.c diff | blob | history
xen/include/asm-arm/cpregs.h diff | blob | history
xen/include/asm-arm/processor.h diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.