[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[PATCH 0/3] x86/pv: Multiple fixes to SYSCALL/SYSENTER handling (XSA-339 followup)

To: Xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxxx>
From: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>
Date: Wed, 23 Sep 2020 11:18:45 +0100
Authentication-results: esa2.hc3370-68.iphmx.com; dkim=none (message not signed) header.i=none
Cc: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Jan Beulich <JBeulich@xxxxxxxx>, Roger Pau Monné <roger.pau@xxxxxxxxxx>, Wei Liu <wl@xxxxxxx>, Andy Lutomirski <luto@xxxxxxxxxx>, Manuel Bouyer <bouyer@xxxxxxxxxxxxxxx>
Delivery-date: Wed, 23 Sep 2020 10:19:22 +0000
Ironport-sdr: ICeEvJ0CGQjvxQWuQQDQ0Bs0DB7r2iAbrrgk0Tq7T9xDshOIrEvR3XJ6/cNm5lUrULb756qJpk 9b/QhEonRbw+UI0XsNCEugAP49QrOIDBZhf5900kLlMSk0rFSrt2WR8JKY4vdF1kL/Sn0Rr8Dz BsOYPYz4dF51bMTghVelH+zHVlYdOqeVPFiEJXiNFArdw7QcQ9k23j8Fits31J9PaDLaXGVUxQ Ci0uJoJtgmY29CAWMxKXoeKy2SaBBBX3jVCjqcA9DXBtMUJ6q3k/FxAe2y6NCZQ1/8S4dneITE 0Lw=
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

Patches 1 and 2 are a consequence of trying to get the Linux x86 selftests to
pass even when running under Xen.

Patches 3 and XSA-339 were further fallout from trying to put in place testing
to cover all aspects of the PV fast system call entrypoints.

Patch 3 was almost an XSA itself, but was ultimately argued as not affecting
any known PV guest.  It turns out that this is only true because of c/s
dba899de14 in 2018, which did fix a real userspace => VM DoS on NetBSD.

All fixes need backporting.

Andrew Cooper (3):
  x86/pv: Don't deliver #GP for a SYSENTER with NT set
  x86/pv: Don't clobber NT on return-to-guest
  x86/pv: Inject #UD for missing SYSCALL callbacks

 xen/arch/x86/x86_64/compat/entry.S |  2 +-
 xen/arch/x86/x86_64/entry.S        | 31 +++++++++++++++++++++----------
 2 files changed, 22 insertions(+), 11 deletions(-)

-- 
2.11.0

Follow-Ups:
- [PATCH 3/3] x86/pv: Inject #UD for missing SYSCALL callbacks
  - From: Andrew Cooper
- [PATCH 2/3] x86/pv: Don't clobber NT on return-to-guest
  - From: Andrew Cooper
- [PATCH 1/3] x86/pv: Don't deliver #GP for a SYSENTER with NT set
  - From: Andrew Cooper

Prev by Date: [xen-unstable-coverity test] 154638: all pass - PUSHED
Next by Date: [PATCH 1/3] x86/pv: Don't deliver #GP for a SYSENTER with NT set
Previous by thread: [xen-unstable-coverity test] 154638: all pass - PUSHED
Next by thread: [PATCH 1/3] x86/pv: Don't deliver #GP for a SYSENTER with NT set
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.