[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] out of bounds handling for get_mfn_from_gpfn()

To: "Jan Beulich" <jbeulich@xxxxxxxxxx>
From: Keir Fraser <Keir.Fraser@xxxxxxxxxxxx>
Date: Wed, 26 Apr 2006 13:44:36 +0100
Cc: xen-devel@xxxxxxxxxxxxxxxxxxx
Delivery-date: Wed, 26 Apr 2006 05:48:42 -0700
List-id: Xen developer discussion <xen-devel.lists.xensource.com>


On 26 Apr 2006, at 13:01, Jan Beulich wrote:

- add a bounds check to get_mfn_from_gpfn() (in which case I'd beuncertain what the correct boundary is, since on 64bits (RO_MPT_VIRT_END - RO_MPT_VIRT_START) != (RDWR_MPT_VIRT_END -RDWR_MPT_VIRT_START), and only one of the two ranges
can be the correct one)

A range check is needed as the function can be passed unvalidatedvalues from a guest.

The tables you mention above are not involved in get_mfn_from_gpfn() --they translate the other way. The input gpfn either needs testingagainst, or masking with, (PADDR_MASK >> PAGE_SHIFT). We should alwaysensure that the m2p and p2m tables are big enough to be indexed by thatvalue.

I don't think that the mfn-to-gpfn direction needs a check, but anassertion might be worthwhile.


 -- Keir


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

Follow-Ups:
- Re: [Xen-devel] out of bounds handling for get_mfn_from_gpfn()
  - From: Jan Beulich

References:
- [Xen-devel] out of bounds handling for get_mfn_from_gpfn()
  - From: Jan Beulich

Prev by Date: RE: [Xen-devel] NE2000 support in HVM domain
Next by Date: Re: [Xen-devel] out of bounds handling for get_mfn_from_gpfn()
Previous by thread: [Xen-devel] out of bounds handling for get_mfn_from_gpfn()
Next by thread: Re: [Xen-devel] out of bounds handling for get_mfn_from_gpfn()
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.