WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-devel] [PATCH] add canonical address checks to HVM

from [Jan Beulich] [Permanent Link][Original]
To: "Keir Fraser" <keir@xxxxxxxxxxxxx>
Subject: Re: [Xen-devel] [PATCH] add canonical address checks to HVM
From: "Jan Beulich" <jbeulich@xxxxxxxxxx>
Date: Fri, 01 Dec 2006 08:05:02 +0000
Cc: xen-devel@xxxxxxxxxxxxxxxxxxx
Delivery-date: Fri, 01 Dec 2006 00:03:25 -0800
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
In-reply-to: <C194CBAB.5520%keir@xxxxxxxxxxxxx>
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
References: <456DAFBE.76E4.0078.0@xxxxxxxxxx> <C194CBAB.5520%keir@xxxxxxxxxxxxx>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx 
>>> Keir Fraser <keir@xxxxxxxxxxxxx> 30.11.06 18:55 >>>
>On 29/11/06 15:05, "Jan Beulich" <jbeulich@xxxxxxxxxx> wrote:
>
>> Add proper long mode canonical address checks to PIO emulation and MSR
>> writes, the former paralleling the limit checks added for 32-bit guests.
>> Also catches two more cases in the MSR handling code where only ECX
>> (rather than RCX) should be used.
>> 
>> Signed-off-by: Jan Beulich <jbeulich@xxxxxxxxxx>
>
>I wonder if we would be better consistently *removing* the canonical-address
>checks? It's not a security issue after all -- the check is done in hardware
>only to prevent code from ever depending on being able to use the high
>address bits for software flags. I think it is harmless to deviate from
>native behaviour on this issue and makes our emulation code smaller and
>simpler.

I think it might be a security issue:
- In MSR writes, are you certain there's not going to be any problem now or
in the future when the state gets actually loaded into CPU registers?
- In memory accesses, at least until no failures to read/write guest memory
are being ignored anymore.

Jan

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Next by Date:  Re: [Xen-devel] [PATCH] make shared_info architecture independent, Keir Fraser
Next by Thread:  Re: [Xen-devel] [PATCH] add canonical address checks to HVM, Keir Fraser
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy