[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Xen-devel] [PATCH 0/11] Xen PCI Passthrough security fixes

To: <qemu-devel@xxxxxxxxxx>
From: Stefano Stabellini <stefano.stabellini@xxxxxxxxxxxxx>
Date: Tue, 2 Jun 2015 16:08:26 +0100
Cc: xen-devel@xxxxxxxxxxxxxxxxxxx, JBeulich@xxxxxxxx, Stefano Stabellini <Stefano.Stabellini@xxxxxxxxxxxxx>
Delivery-date: Tue, 02 Jun 2015 15:11:37 +0000
List-id: Xen developer discussion <xen-devel.lists.xen.org>

Hi all,

the following is a collection of QEMU security fixes for PCI Passthrough
on Xen. Non-Xen usages of QEMU are unaffected.

Although the CVEs have already been made public, given the large amount
of changes, I decided not to send a pull request without giving a chance
to the QEMU community to comment on the patches first.

Each patch has a detail description of what is trying to fix. You can
also cross-reference the CVE numbers.



Jan Beulich (11):
      xen: properly gate host writes of modified PCI CFG contents
      xen: don't allow guest to control MSI mask register
      xen/MSI-X: limit error messages
      xen/MSI: don't open-code pass-through of enable bit modifications
      xen/pt: consolidate PM capability emu_mask
      xen/pt: correctly handle PM status bit
      xen/pt: split out calculation of throughable mask in PCI config space 
handling
      xen/pt: mark all PCIe capability bits read-only
      xen/pt: mark reserved bits in PCI config space fields
      xen/pt: add a few PCI config space field descriptions
      xen/pt: unknown PCI config space fields should be read-only

 hw/pci/msi.c                |    4 -
 hw/xen/xen_pt.c             |   51 +++++++++-
 hw/xen/xen_pt.h             |    7 +-
 hw/xen/xen_pt_config_init.c |  235 ++++++++++++++++++++++++++++---------------
 hw/xen/xen_pt_msi.c         |   12 ++-
 include/hw/pci/pci_regs.h   |    2 +
 6 files changed, 217 insertions(+), 94 deletions(-)


Cheers,

Stefano

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel

Follow-Ups:
- Re: [Xen-devel] [PATCH 0/11] Xen PCI Passthrough security fixes
  - From: Ian Campbell
- Re: [Xen-devel] [PATCH 0/11] Xen PCI Passthrough security fixes
  - From: Stefano Stabellini
- [Xen-devel] [PATCH 11/11] xen/pt: unknown PCI config space fields should be read-only
  - From: Stefano Stabellini
- [Xen-devel] [PATCH 08/11] xen/pt: mark all PCIe capability bits read-only
  - From: Stefano Stabellini
- [Xen-devel] [PATCH 03/11] xen/MSI-X: limit error messages
  - From: Stefano Stabellini
- [Xen-devel] [PATCH 06/11] xen/pt: correctly handle PM status bit
  - From: Stefano Stabellini
- [Xen-devel] [PATCH 09/11] xen/pt: mark reserved bits in PCI config space fields
  - From: Stefano Stabellini
- [Xen-devel] [PATCH 05/11] xen/pt: consolidate PM capability emu_mask
  - From: Stefano Stabellini
- [Xen-devel] [PATCH 10/11] xen/pt: add a few PCI config space field descriptions
  - From: Stefano Stabellini
- [Xen-devel] [PATCH 04/11] xen/MSI: don't open-code pass-through of enable bit modifications
  - From: Stefano Stabellini
- [Xen-devel] [PATCH 07/11] xen/pt: split out calculation of throughable mask in PCI config space handling
  - From: Stefano Stabellini
- [Xen-devel] [PATCH 02/11] xen: don't allow guest to control MSI mask register
  - From: Stefano Stabellini
- [Xen-devel] [PATCH 01/11] xen: properly gate host writes of modified PCI CFG contents
  - From: Stefano Stabellini

Prev by Date: [Xen-devel] [PATCH] xen/sched_rt: Use the correct type for _cpumask_scratch
Next by Date: Re: [Xen-devel] [PATCH v7 07/10] libxc: introduce soft reset for HVM domains
Previous by thread: [Xen-devel] [PATCH] xen/sched_rt: Use the correct type for _cpumask_scratch
Next by thread: [Xen-devel] [PATCH 01/11] xen: properly gate host writes of modified PCI CFG contents
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.