[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-ia64-devel] RE: PATCH: merge iva

To: "Magenheimer, Dan (HP Labs Fort Collins)" <dan.magenheimer@xxxxxx>, <xen-ia64-devel@xxxxxxxxxxxxxxxxxxx>, "Williamson, Alex (Linux Kernel Dev)" <alex.williamson@xxxxxx>
From: Tristan Gingold <Tristan.Gingold@xxxxxxxx>
Date: Thu, 15 Jun 2006 09:41:18 +0200
Delivery-date: Thu, 15 Jun 2006 00:37:31 -0700
List-id: Discussion of the ia64 port of Xen <xen-ia64-devel.lists.xensource.com>

Le Mercredi 14 Juin 2006 18:48, Magenheimer, Dan (HP Labs Fort Collins) a 
écrit :
[...]
> I wasn't fighting the specific patch as much as providing
> history.  The possibility of vcr.iva being used maliciously
> is very small but vBlades evolved from a security-focused
> project so validating all privileged registers to eliminate
> security holes was an early vBlades objective. 
Thank you for the historical view.

> To contrive
> an example, if an attacker could somehow change vcr.iva,
> he might be able to cause arbitrary user code to be executed
> at PL2.
I still don't understand this example: privregs are only accessible at PL2.
So the attacker has to be in PL2.  This seems to be moot.

Tristan.

_______________________________________________
Xen-ia64-devel mailing list
Xen-ia64-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-ia64-devel

References:
- RE: [Xen-ia64-devel] RE: PATCH: merge iva
  - From: Magenheimer, Dan (HP Labs Fort Collins)

Prev by Date: [Xen-ia64-devel] [PATCH 6/7][SMP] remove unnecessary vtlb_lock
Next by Date: Re: [Xen-ia64-devel] One unstablity in fast syscall path
Previous by thread: RE: [Xen-ia64-devel] RE: PATCH: merge iva
Next by thread: [Xen-ia64-devel] Xen/ia64 OLS attendees?
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.