[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] Changing semantics of ioperm() on Xen x86-64?

To: Anthony Liguori <aliguori@xxxxxxxxxx>
From: Keir Fraser <Keir.Fraser@xxxxxxxxxxxx>
Date: Wed, 19 Apr 2006 08:26:58 +0100
Cc: xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxx>
Delivery-date: Wed, 19 Apr 2006 00:33:02 -0700
List-id: Xen developer discussion <xen-devel.lists.xensource.com>


On 18 Apr 2006, at 22:50, Anthony Liguori wrote:

As part of the Xen x86-64 Linux port, we've changed the ioperm()syscall to always modify the IOPL instead of actually modifying the IObitmap in the TSS like we do on x86-32. Is there a particular reasonfor doing this?
I'm completely guessing here that this may allow us to avoid changingthe TR when changing from user/kernel mode but that doesn't seem likethat huge of a gain.
I don't expect that there are many apps that would rely on usingioperm to restrict access to only certain ranges of ports so I don'tthink this is a security problem but it still is a littlediscomforting.

As Ian said, x86/64 port took an old snap of the i386 port and has gonestale in quite a few ways. It needs some maintenance TLC. i386 did thesame thing with ioperm() until io bitmap support was added to Xen.


 -- Keir


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

References:
- [Xen-devel] Changing semantics of ioperm() on Xen x86-64?
  - From: Anthony Liguori

Prev by Date: [Xen-devel] Re: [rfc] [patch] "frame number" size in hypercall ABI
Next by Date: Re: [Xen-devel] Re: Quieten the hypervisor
Previous by thread: [Xen-devel] Changing semantics of ioperm() on Xen x86-64?
Next by thread: RE: [Xen-devel] Changing semantics of ioperm() on Xen x86-64?
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.