From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <linux-kernel-owner@vger.kernel.org>
Subject: Re: [PATCH v2] x86/xen: allow userspace access during hypercalls
To: =?UTF-8?Q?Marek_Marczykowski-G=c3=b3recki?=
        <marmarek@invisiblethingslab.com>, xen-devel@lists.xenproject.org
Cc: Boris Ostrovsky <boris.ostrovsky@oracle.com>,
        Andrew Cooper <andrew.cooper3@citrix.com>, x86@kernel.org,
        linux-kernel@vger.kernel.org, stable@vger.kernel.org
References: <20170626124505.GV1268@mail-itl>
 <1498481386-8704-1-git-send-email-marmarek@invisiblethingslab.com>
From: =?UTF-8?Q?Juergen_Gro=c3=9f?= <jgross@suse.com>
Message-ID: <664ecd67-8bd5-3efd-4b59-eef79640ef4c@suse.com>
Date: Mon, 26 Jun 2017 14:54:07 +0200
MIME-Version: 1.0
In-Reply-To: <1498481386-8704-1-git-send-email-marmarek@invisiblethingslab.com>
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Language: en-US
Content-Transfer-Encoding: 8bit
Sender: linux-kernel-owner@vger.kernel.org
List-ID: <stable.vger.kernel.org>

On 06/26/2017 02:49 PM, Marek Marczykowski-Górecki wrote:
> Userspace application can do a hypercall through /dev/xen/privcmd, and
> some for some hypercalls argument is a pointers to user-provided
> structure. When SMAP is supported and enabled, hypervisor can't access.
> So, lets allow it.
> 
> The same applies to HYPERVISOR_dm_op, where additionally privcmd driver
> carefully verify buffer addresses.
> 
> Cc: stable@vger.kernel.org
> Signed-off-by: Marek Marczykowski-Górecki <marmarek@invisiblethingslab.com>

Reviewed-by: Juergen Gross <jgross@suse.com>


Thanks,

Juergen