From: Andrew Cooper <andrew.cooper3@citrix.com>
To: Xen-devel <xen-devel@lists.xenproject.org>
Cc: "Andrew Cooper" <andrew.cooper3@citrix.com>,
"George Dunlap" <George.Dunlap@eu.citrix.com>,
"Ian Jackson" <iwj@xenproject.org>,
"Jan Beulich" <JBeulich@suse.com>,
"Stefano Stabellini" <sstabellini@kernel.org>,
"Wei Liu" <wl@xen.org>, "Julien Grall" <julien@xen.org>,
"Paul Durrant" <paul@xen.org>,
"Michał Leszczyński" <michal.leszczynski@cert.pl>,
"Hubert Jasudowicz" <hubert.jasudowicz@cert.pl>,
"Tamas K Lengyel" <tamas@tklengyel.com>,
"Juergen Gross" <jgross@suse.com>
Subject: [PATCH v3 0/7] Multiple fixes to XENMEM_acquire_resource
Date: Tue, 12 Jan 2021 19:48:34 +0000 [thread overview]
Message-ID: <20210112194841.1537-1-andrew.cooper3@citrix.com> (raw)
I thought this was going to be a very simple small bugfix for Michał's
Processor Trace series. Serves me right for expecting it not to be full of
bear traps...
The sole implementation of acquire_resource never asks for size, so its little
surprise that Xen is broken for compat callers, and returns incorrect
information for regular callers.
v2 was delayed substantially due to the discovery of XSA-334, but is complete
now, permitting the mapping of arbitrary sized resouces, along with fixes to
the compat XLAT logic.
v3 was delayed substanitally due to other security work. The major change
from v2 is how the size request works from userspace, which now depends on:
https://lore.kernel.org/xen-devel/20210112115358.23346-1-roger.pau@citrix.com/T/#u
to fix the IOCTL in Linux without breaking ioctl-restrict usecases.
A branch can be obtained from:
https://xenbits.xen.org/gitweb/?p=people/andrewcoop/xen.git;a=shortlog;h=refs/heads/xen-acquire-resource
Andrew Cooper (7):
xen/gnttab: Rework resource acquisition
xen/memory: Fix acquire_resource size semantics
tools/foreignmem: Support querying the size of a resource
xen/memory: Clarify the XENMEM_acquire_resource ABI description
xen/memory: Improve compat XENMEM_acquire_resource handling
xen/memory: Indent part of acquire_resource()
xen/memory: Fix mapping grant tables with XENMEM_acquire_resource
tools/include/xenforeignmemory.h | 15 ++
tools/libs/foreignmemory/Makefile | 2 +-
tools/libs/foreignmemory/core.c | 18 ++
tools/libs/foreignmemory/freebsd.c | 18 +-
tools/libs/foreignmemory/libxenforeignmemory.map | 4 +
tools/libs/foreignmemory/linux.c | 18 +-
xen/arch/x86/mm.c | 24 ++-
xen/common/compat/memory.c | 147 ++++++++++++----
xen/common/grant_table.c | 106 +++++++++---
xen/common/memory.c | 210 ++++++++++++++---------
xen/include/asm-x86/mm.h | 3 +
xen/include/public/memory.h | 23 ++-
xen/include/xen/grant_table.h | 21 ++-
xen/include/xen/mm.h | 6 +
14 files changed, 445 insertions(+), 170 deletions(-)
--
2.11.0
next reply other threads:[~2021-01-12 19:49 UTC|newest]
Thread overview: 29+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-01-12 19:48 Andrew Cooper [this message]
2021-01-12 19:48 ` [PATCH v3 1/7] xen/gnttab: Rework resource acquisition Andrew Cooper
2021-01-15 11:43 ` Jan Beulich
2021-01-15 16:03 ` Andrew Cooper
2021-01-15 16:26 ` Jan Beulich
2021-01-15 16:27 ` Jan Beulich
2021-01-15 11:56 ` Jan Beulich
2021-01-15 16:57 ` Andrew Cooper
2021-01-18 8:23 ` Jan Beulich
2021-01-28 22:56 ` Andrew Cooper
2021-01-29 9:33 ` Jan Beulich
2021-01-29 17:44 ` Ian Jackson
2021-01-12 19:48 ` [PATCH v3 2/7] xen/memory: Fix acquire_resource size semantics Andrew Cooper
2021-01-12 20:15 ` Julien Grall
2021-01-12 20:57 ` Andrew Cooper
2021-01-12 21:05 ` Tamas K Lengyel
2021-01-12 19:48 ` [PATCH v3 3/7] tools/foreignmem: Support querying the size of a resource Andrew Cooper
2021-01-12 19:48 ` [PATCH v3 4/7] xen/memory: Clarify the XENMEM_acquire_resource ABI description Andrew Cooper
2021-01-12 19:48 ` [PATCH v3 5/7] xen/memory: Improve compat XENMEM_acquire_resource handling Andrew Cooper
2021-01-15 15:37 ` Jan Beulich
2021-01-28 23:32 ` Andrew Cooper
2021-02-01 14:12 ` Jan Beulich
2021-01-12 19:48 ` [PATCH v3 6/7] xen/memory: Indent part of acquire_resource() Andrew Cooper
2021-01-12 19:48 ` [PATCH v3 7/7] xen/memory: Fix mapping grant tables with XENMEM_acquire_resource Andrew Cooper
2021-01-15 16:12 ` Jan Beulich
2021-01-28 23:44 ` Andrew Cooper
2021-01-29 9:46 ` Jan Beulich
2021-01-29 18:18 ` Andrew Cooper
2021-02-01 12:56 ` Jan Beulich
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20210112194841.1537-1-andrew.cooper3@citrix.com \
--to=andrew.cooper3@citrix.com \
--cc=George.Dunlap@eu.citrix.com \
--cc=JBeulich@suse.com \
--cc=hubert.jasudowicz@cert.pl \
--cc=iwj@xenproject.org \
--cc=jgross@suse.com \
--cc=julien@xen.org \
--cc=michal.leszczynski@cert.pl \
--cc=paul@xen.org \
--cc=sstabellini@kernel.org \
--cc=tamas@tklengyel.com \
--cc=wl@xen.org \
--cc=xen-devel@lists.xenproject.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.