WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/

Home

xen-devel

[Top] [All Lists]

Re: [Xen-devel] [PATCH] proper bounds check in do_set_gdt entry point

from [Keir Fraser]

[Permanent Link][Original]

To:	Chris Wright <chrisw@xxxxxxxx>
Subject:	Re: [Xen-devel] [PATCH] proper bounds check in do_set_gdt entry point
From:	Keir Fraser <Keir.Fraser@xxxxxxxxxxxx>
Date:	Mon, 27 Jun 2005 21:09:32 +0100
Cc:	xen-devel@xxxxxxxxxxxxxxxxxxx
Delivery-date:	Mon, 27 Jun 2005 20:12:48 +0000
Envelope-to:	www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to:	<20050627200053.GC9046@xxxxxxxxxxxxxxxxxxx>
List-help:	<mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id:	Xen developer discussion <xen-devel.lists.xensource.com>
List-post:	<mailto:xen-devel@lists.xensource.com>
List-subscribe:	<http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe:	<http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
References:	<20050627184157.GM9157@xxxxxxxxxxxxxxxxxxx> <97f95b5ed2852e5d2385e36c03a37e64@xxxxxxxxxxxx> <20050627200053.GC9046@xxxxxxxxxxxxxxxxxxx>
Sender:	xen-devel-bounces@xxxxxxxxxxxxxxxxxxx


On 27 Jun 2005, at 21:00, Chris Wright wrote:

The check happens in set_gdt(). do_set_gdt is just a wrapper with a
copy_from_user plus conditional tlb flush.


I know, but copy_from_user has no sane limits.  This is stack smash.
-chris


Good point.

 -- Keir


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Xen-devel] [PATCH] proper bounds check in do_set_gdt entry point, Chris Wright Re: [Xen-devel] [PATCH] proper bounds check in do_set_gdt entry point, Keir Fraser Re: [Xen-devel] [PATCH] proper bounds check in do_set_gdt entry point, Chris Wright Re: [Xen-devel] [PATCH] proper bounds check in do_set_gdt entry point, Keir Fraser <=

Previous by Date:	Re: [Xen-devel] [PATCH] proper bounds check in do_set_gdt entry point, Chris Wright
Next by Date:	[Xen-devel] RE: x86_64 SMP support (status update), Nakajima, Jun
Previous by Thread:	Re: [Xen-devel] [PATCH] proper bounds check in do_set_gdt entry point, Chris Wright
Next by Thread:	[Xen-devel] FYI: 2.6.11 XenLinux has issues with x86-64 ia32 emulation compilation on gcc4, Jerone Young
Indexes:	[Date] [Thread] [Top] [All Lists]

This site is hosted by Citrix