[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH 2/2] x86: don't allow clearing of TF_kernel_mode for other than 64-bit PV

To: Jan Beulich <JBeulich@xxxxxxxx>, xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxxx>
From: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>
Date: Wed, 31 May 2017 12:08:47 +0100
Delivery-date: Wed, 31 May 2017 11:08:55 +0000
List-id: Xen developer discussion <xen-devel.lists.xen.org>

On 31/05/17 08:15, Jan Beulich wrote:
> The flag is really only meant for those, both HVM and 32-bit PV tell
> kernel from user mode based on CPL/RPL. Remove the all-question-marks
> comment and let's be on the safe side here and also suppress clearing
> for 32-bit PV (this isn't a fast path after all).
>
> Signed-off-by: Jan Beulich <jbeulich@xxxxxxxx>

Wouldn't it just be safer to disallow starting a 64bit PV guest in user
mode?

No real kernel would do such a thing, and keeping the corner case around
is bad from an attack-surface point of view.

~Andrew

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
https://lists.xen.org/xen-devel

Follow-Ups:
- Re: [Xen-devel] [PATCH 2/2] x86: don't allow clearing of TF_kernel_mode for other than 64-bit PV
  - From: Jan Beulich

References:
- [Xen-devel] [PATCH 0/2] x86: XSA_214 follow-up
  - From: Jan Beulich
- [Xen-devel] [PATCH 2/2] x86: don't allow clearing of TF_kernel_mode for other than 64-bit PV
  - From: Jan Beulich

Prev by Date: Re: [Xen-devel] [PATCH for-next v3 01/22] x86/traps: move privilege instruction emulation code
Next by Date: Re: [Xen-devel] [PATCH v10 11/32] ARM: GICv3: forward pending LPIs to guests
Previous by thread: [Xen-devel] [xen-unstable-smoke test] 109890: regressions - trouble: blocked/broken/fail/pass
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.