From: Boris Ostrovsky <boris.ostrovsky@oracle.com>
To: Andrew Cooper <andrew.cooper3@citrix.com>,
Borislav Petkov <bp@alien8.de>
Cc: "security@kernel.org" <security@kernel.org>,
Jan Beulich <jbeulich@suse.com>,
Peter Zijlstra <peterz@infradead.org>, X86 ML <x86@kernel.org>,
linux-kernel@vger.kernel.org,
Steven Rostedt <rostedt@goodmis.org>,
xen-devel <xen-devel@lists.xen.org>,
Andy Lutomirski <luto@kernel.org>,
Sasha Levin <sasha.levin@oracle.com>
Subject: Re: [Xen-devel] [PATCH v5 0/4] x86: modify_ldt improvement, test, and config option
Date: Thu, 30 Jul 2015 13:18:20 -0400 [thread overview]
Message-ID: <55BA5C5C.2050904@oracle.com> (raw)
In-Reply-To: <55BA59B1.5000600@citrix.com>
On 07/30/2015 01:06 PM, Andrew Cooper wrote:
> On 30/07/15 17:31, Boris Ostrovsky wrote:
>> On 07/30/2015 12:12 PM, Andrew Cooper wrote:
>>> On 30/07/15 17:05, Borislav Petkov wrote:
>>>> On Thu, Jul 30, 2015 at 11:53:34AM -0400, Boris Ostrovsky wrote:
>>>>> As far as Xen guests are concerned,
>>>>>
>>>>> Tested-by: Boris Ostrovsky <boris.ostrovsky@oracle.com>
>>>> Does that mean, this patch 1/4 fixes the 32bit issue you guys are still
>>>> debugging on the v4 thread? Or does that need more fixing?
>>>>
>>> I was going to say... This v5 pre-dates figuring out what was wrong with
>>> 32bit Xen. v5 1/4 is still susceptible.
>>>
>>> Boris: does your Tested-by cover v5 + proposed fix?
>>>
>> Only V5, no extra changes.
> Including running the ldt_gdt test?
Yes, except that 32-on-64 doesn't work, but that's not Xen-specific.
Still, user-visible behavior changes.
>
>> And perhaps dropping aliases in xen_alloc_ldt() may be sufficient
>> since with that done we will only have one mapping so a subsequent
>> fault will have "correct" cr2 provided by the hypervisor (from your
>> earlier email it sounded that hypervisor may have been providing
>> incorrect cr2 if alias exists)
> They are sufficient to fix the first of the two bugs, but the free side
> still has no protection against a missing l2, unless I am missing
> something in the rest of the series?
Without aliases a subsequent fault *will* fill correct l2, won't it?
-boris
next prev parent reply other threads:[~2015-07-30 17:20 UTC|newest]
Thread overview: 50+ messages / expand[flat|nested] mbox.gz Atom feed top
2015-07-28 5:29 [PATCH v5 0/4] x86: modify_ldt improvement, test, and config option Andy Lutomirski
2015-07-28 5:29 ` Andy Lutomirski
2015-07-28 5:29 ` [PATCH v5 1/4] x86/xen: Unmap aliases in xen_alloc_ldt and xen_free_ldt Andy Lutomirski
2015-07-28 5:29 ` Andy Lutomirski
2015-07-28 5:29 ` [PATCH v5 2/4] x86/ldt: Make modify_ldt synchronous Andy Lutomirski
2015-07-28 5:29 ` Andy Lutomirski
2015-07-30 7:49 ` Borislav Petkov
2015-07-30 7:49 ` Borislav Petkov
2015-07-30 17:56 ` Boris Ostrovsky
2015-07-30 18:14 ` Andy Lutomirski
2015-07-30 18:35 ` Boris Ostrovsky
2015-07-30 19:25 ` Andy Lutomirski
2015-07-30 19:25 ` Andy Lutomirski
2015-07-31 16:51 ` Boris Ostrovsky
2015-07-31 16:51 ` Boris Ostrovsky
2015-07-30 18:35 ` Boris Ostrovsky
2015-07-30 18:14 ` Andy Lutomirski
2015-07-30 17:56 ` Boris Ostrovsky
2015-08-13 21:05 ` H. Peter Anvin
2015-08-13 21:05 ` H. Peter Anvin
2015-07-28 5:29 ` [PATCH v5 3/4] selftests/x86, x86/ldt: Add a selftest for modify_ldt Andy Lutomirski
2015-07-28 5:29 ` Andy Lutomirski
2015-07-28 16:53 ` Kees Cook
2015-07-28 16:53 ` Kees Cook
2015-07-28 5:29 ` [PATCH v5 4/4] x86/ldt: Make modify_ldt optional Andy Lutomirski
2015-07-28 16:56 ` Kees Cook
2015-07-28 16:56 ` Kees Cook
2015-07-28 20:03 ` Willy Tarreau
2015-07-28 20:42 ` Kees Cook
2015-07-28 20:51 ` Willy Tarreau
2015-07-28 20:51 ` Willy Tarreau
2015-07-28 20:42 ` Kees Cook
2015-07-28 20:03 ` Willy Tarreau
2015-07-28 5:29 ` Andy Lutomirski
2015-07-30 15:53 ` [PATCH v5 0/4] x86: modify_ldt improvement, test, and config option Boris Ostrovsky
2015-07-30 15:53 ` Boris Ostrovsky
2015-07-30 16:05 ` Borislav Petkov
2015-07-30 16:05 ` Borislav Petkov
2015-07-30 16:12 ` [Xen-devel] " Andrew Cooper
2015-07-30 16:12 ` Andrew Cooper
2015-07-30 16:31 ` Boris Ostrovsky
2015-07-30 16:31 ` [Xen-devel] " Boris Ostrovsky
2015-07-30 17:06 ` Andrew Cooper
2015-07-30 17:18 ` Boris Ostrovsky
2015-07-30 17:18 ` Boris Ostrovsky [this message]
2015-07-31 8:43 ` Borislav Petkov
2015-07-31 8:43 ` [Xen-devel] " Borislav Petkov
2015-07-31 13:42 ` Boris Ostrovsky
2015-07-31 13:42 ` [Xen-devel] " Boris Ostrovsky
2015-07-30 17:06 ` Andrew Cooper
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=55BA5C5C.2050904@oracle.com \
--to=boris.ostrovsky@oracle.com \
--cc=andrew.cooper3@citrix.com \
--cc=bp@alien8.de \
--cc=jbeulich@suse.com \
--cc=linux-kernel@vger.kernel.org \
--cc=luto@kernel.org \
--cc=peterz@infradead.org \
--cc=rostedt@goodmis.org \
--cc=sasha.levin@oracle.com \
--cc=security@kernel.org \
--cc=x86@kernel.org \
--cc=xen-devel@lists.xen.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.