[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH 2/2] x86/hvm: honor guest's option when updating secondary system time for guest

To: "Andrew Cooper" <andrew.cooper3@xxxxxxxxxx>
From: "Jan Beulich" <JBeulich@xxxxxxxx>
Date: Fri, 25 Jul 2014 10:17:28 +0100
Cc: "linux@xxxxxxxxxxxxxx" <linux@xxxxxxxxxxxxxx>, "tim@xxxxxxx" <tim@xxxxxxx>, "keir@xxxxxxx" <keir@xxxxxxx>, Feng Wu <feng.wu@xxxxxxxxx>, "xen-devel@xxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxx>
Delivery-date: Fri, 25 Jul 2014 09:17:37 +0000
List-id: Xen developer discussion <xen-devel.lists.xen.org>

>>> On 25.07.14 at 10:52, <andrew.cooper3@xxxxxxxxxx> wrote:
> Thinking about this some more, how can we possibly know whether writing
> to the nominated page is even safe?  At the point of update, there is no
> knowledge about the current cr3 in use.

That's a problem the kernel has to be bothered by, but not the
hypervisor.

> As far as I can see, the only safe actions Xen can take is refuse to
> ever write to user mappings, and insist that any OS using this feature
> provide a supervisor mapping to Xen (and guarantee it will never swap
> the target of that mapping) and give user mappings of the same gpa to
> any of its own userspace which wants access.  This then avoids any
> concerns wrt SMAP.

No, user mappings can validly (and do) appear in the non-user
mode parts of the page tables.

Jan


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel

References:
- [Xen-devel] [PATCH 0/2] x86/HVM: Properly handle SMAP check in certain cases
  - From: Feng Wu
- [Xen-devel] [PATCH 2/2] x86/hvm: honor guest's option when updating secondary system time for guest
  - From: Feng Wu
- Re: [Xen-devel] [PATCH 2/2] x86/hvm: honor guest's option when updating secondary system time for guest
  - From: Jan Beulich
- Re: [Xen-devel] [PATCH 2/2] x86/hvm: honor guest's option when updating secondary system time for guest
  - From: Wu, Feng
- Re: [Xen-devel] [PATCH 2/2] x86/hvm: honor guest's option when updating secondary system time for guest
  - From: Jan Beulich
- Re: [Xen-devel] [PATCH 2/2] x86/hvm: honor guest's option when updating secondary system time for guest
  - From: Wu, Feng
- Re: [Xen-devel] [PATCH 2/2] x86/hvm: honor guest's option when updating secondary system time for guest
  - From: Jan Beulich
- Re: [Xen-devel] [PATCH 2/2] x86/hvm: honor guest's option when updating secondary system time for guest
  - From: Wu, Feng
- Re: [Xen-devel] [PATCH 2/2] x86/hvm: honor guest's option when updating secondary system time for guest
  - From: Jan Beulich
- Re: [Xen-devel] [PATCH 2/2] x86/hvm: honor guest's option when updating secondary system time for guest
  - From: Andrew Cooper

Prev by Date: Re: [Xen-devel] [v3][PATCH 1/1] xen:vtd: missing RMRR mapping while share EPT
Next by Date: [Xen-devel] [PATCH] xen: arm: Write to the correct PT when mapping the DTB on boot on arm64
Previous by thread: Re: [Xen-devel] [PATCH 2/2] x86/hvm: honor guest's option when updating secondary system time for guest
Next by thread: [Xen-devel] [PATCH 1/2] x86/hvm: Always do SMAP check when updating runstate_guest(v)
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.