[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [Xen-devel] [PATCH v10 12/12] xen/common: do not implicitly permit access to mapped I/O memory
>>> On 29.07.14 at 00:12, <avanzini.arianna@xxxxxxxxx> wrote: > Currently, the XEN_DOMCTL_memory_mapping hypercall implicitly grants > to a domain access permission to the I/O memory areas mapped in its > guest address space. This conflicts with the presence of a specific > hypercall (XEN_DOMCTL_iomem_permission) used to grant such a permission > to a domain. > This commit separates the functions of the two hypercalls by having only > the latter be able to permit I/O memory access to a domain, and the > former just performing the mapping after a permissions check on both the > granting and the grantee domains. > > Signed-off-by: Arianna Avanzini <avanzini.arianna@xxxxxxxxx> Acked-by: Jan Beulich <jbeulich@xxxxxxxx> _______________________________________________ Xen-devel mailing list Xen-devel@xxxxxxxxxxxxx http://lists.xen.org/xen-devel
|
Lists.xenproject.org is hosted with RackSpace, monitoring our |