[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH v2 2/7] x86/traps: Poison unused stack pointers in the TSS

To: "Andrew Cooper" <andrew.cooper3@xxxxxxxxxx>
From: "Jan Beulich" <JBeulich@xxxxxxxx>
Date: Wed, 03 May 2017 07:45:19 -0600
Cc: Xen-devel <xen-devel@xxxxxxxxxxxxx>
Delivery-date: Wed, 03 May 2017 13:45:31 +0000
List-id: Xen developer discussion <xen-devel.lists.xen.org>

>>> On 03.05.17 at 15:29, <andrew.cooper3@xxxxxxxxxx> wrote:
> This is for additional defence-in-depth following LDT/GDT/IDT corruption.
> 
> It causes attempted control transfers to ring 1 or 2 (via a call gate), or
> attempts to use IST 3 through 7 to yield #SS, rather than executing with a
> stack starting at the top of virtual address space.
> 
> Express the TSS setup in terms of structure assignment, which should be less
> fragile if the IST indexes need to change, and has the useful side effect of
> zeroing the reserved fields.
> 
> Signed-off-by: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>

Reviewed-by: Jan Beulich <jbeulich@xxxxxxxx>



_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
https://lists.xen.org/xen-devel

References:
- [Xen-devel] [PATCH 2/7] x86/traps: Poison unused stack pointers in the TSS
  - From: Andrew Cooper
- [Xen-devel] [PATCH v2 2/7] x86/traps: Poison unused stack pointers in the TSS
  - From: Andrew Cooper

Prev by Date: Re: [Xen-devel] [PATCH 4/7] x86/traps: Rename compat_hypercall() to entry_int82()
Next by Date: Re: [Xen-devel] [PATCH 3/7] x86/mm: Further restrict permissions on some virtual mappings
Previous by thread: [Xen-devel] [PATCH v2 2/7] x86/traps: Poison unused stack pointers in the TSS
Next by thread: [Xen-devel] [PATCH 6/7] x86/asm: Fold LOAD_C_CLOBBERED into RESTORE_ALL
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.