WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 
 
Home Products Support Community News
 
   
 

xen-devel

Re: [Xen-devel] readonly grants

To: xen-devel@xxxxxxxxxxxxxxxxxxx
Subject: Re: [Xen-devel] readonly grants
From: Mohammad Hedayati <hedayati.mo@xxxxxxxxx>
Date: Wed, 26 Oct 2011 21:06:10 +0330
Delivery-date: Wed, 26 Oct 2011 10:37:32 -0700
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :content-type; bh=PPQtoN2hOA1f1NfIlFhpZcSu9udYcO2njblwEn3jTuU=; b=b4zhfnDbWdo9tz12fzR9D1Dzxwst1gd887hsY+hA2UGtp83p6QVUJGufmWMjDZTE/z R+U01WYJ1zpKd0EgnimuQEqjbL9FNqYy/eYBcsa+KED5XlE8vBhoIAPUn1tMmR2MFb60 1CLEaqN5xquKNJnVkR1TP3wHOLyInDPFtK89w=
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <1319648133.9436.58.camel@xxxxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
References: <CABA5EEsXEhN8DPwbm-YLMwW8qVK-1-gV37vCYCu=spG8uUUZ5g@xxxxxxxxxxxxxx> <1319648133.9436.58.camel@xxxxxxxxxxxxxxxxxxxxxx>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx
Though the page is not owned by the issuing domain, the l1 page is, so
the l1e_get_page (if you meant so instead of get_page_from_l1e)
succeeds. There should be a check somewhere else, probably in
x86_emulate or subordinate routines.

On Wed, Oct 26, 2011 at 8:25 PM, Ian Campbell <Ian.Campbell@xxxxxxxxxx> wrote:
> On Wed, 2011-10-26 at 17:46 +0100, Mohammad Hedayati wrote:
>> After mapping a readonly granted page in a PV guest, the guest can try
>> to change his l1 page table entry, faulting into Xen. Here xen
>> emulates the update operation, but first it must check whether the
>> modification is allowed or not (i.e. the grant is readonly or not).
>> I'm looking through the code, but I can't find where this checking is
>> done. Can anyone help?!
>
> I don't think a guest can modify any grant mapping that way, read only
> or otherwise, they have to use the GNTTABOP hypercalls.
>
> The thing which prevents it is that the page is really owned by another
> domain so the get_page_from_l1e in ptwr_emulated_update will fail.
>
> (disclaimer, I'm not really sure about this...)
>
> Ian.
>
>

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

<Prev in Thread] Current Thread [Next in Thread>