From: "Yang, Xiaowei" <xiaowei.yang@intel.com>
To: "Santos, Jose Renato G" <joserenato.santos@hp.com>
Cc: "xen-devel@lists.xensource.com" <xen-devel@lists.xensource.com>
Subject: Re: [PATCH] Protect Xen against accessing NULL-pointer triggered by Xenoprof Hypercall in dom0
Date: Thu, 22 Jan 2009 08:50:25 +0800 [thread overview]
Message-ID: <4977C2D1.2030005@intel.com> (raw)
In-Reply-To: <EF547E542C520A4D858CFEF5B404D0533DC37A7C0A@GVW0673EXC.americas.hpqcorp.net>
Santos, Jose Renato G wrote:
> Xiaowei,
>
> Could you please clarify what is the NULL pointer problem that you want to prevent with this patch?
> Thanks
>
Oh, let me put more details. For late coming CPUs that Xenoprof doesn't
support yet, pointers cpu_type and model could be unassigned at init
time and remains as NULL. However almost all Xenoprof internal functions
doesn't check it before using. If the hyercall handler doesn't take care
of it, dom0 could exploit it (e.g. XENOPROF_reserve_counters) to trigger
Xen NULL-pointer access.
Thanks,
Xiaowei
> Renato
>
>> -----Original Message-----
>> From: xen-devel-bounces@lists.xensource.com
>> [mailto:xen-devel-bounces@lists.xensource.com] On Behalf Of
>> Yang, Xiaowei
>> Sent: Tuesday, January 20, 2009 8:28 PM
>> To: xen-devel@lists.xensource.com
>> Subject: [Xen-devel] [PATCH] Protect Xen against accessing
>> NULL-pointer triggered by Xenoprof Hypercall in dom0
>>
>> Xenoprof Hypercall in dom0 could trigger Xen accessing
>> NULL-pointer and results in fatal page fault. The patch prevents it.
>>
>> Signed-off-by: Xiaowei Yang <xiaowei.yang@intel.com>
>>
>> Thanks,
>> Xiaowei
>>
>>
next prev parent reply other threads:[~2009-01-22 0:50 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2009-01-21 4:27 [PATCH] Protect Xen against accessing NULL-pointer triggered by Xenoprof Hypercall in dom0 Yang, Xiaowei
2009-01-21 16:33 ` Santos, Jose Renato G
2009-01-22 0:50 ` Yang, Xiaowei [this message]
2009-01-22 18:22 ` Santos, Jose Renato G
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=4977C2D1.2030005@intel.com \
--to=xiaowei.yang@intel.com \
--cc=joserenato.santos@hp.com \
--cc=xen-devel@lists.xensource.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.