linux/drivers/xen/xen-pciback
Jan Beulich af6fc858a3 xen-pciback: limit guest control of command register
Otherwise the guest can abuse that control to cause e.g. PCIe
Unsupported Request responses by disabling memory and/or I/O decoding
and subsequently causing (CPU side) accesses to the respective address
ranges, which (depending on system configuration) may be fatal to the
host.

Note that to alter any of the bits collected together as
PCI_COMMAND_GUEST permissive mode is now required to be enabled
globally or on the specific device.

This is CVE-2015-2150 / XSA-120.

Signed-off-by: Jan Beulich <jbeulich@suse.com>
Reviewed-by: Konrad Rzeszutek Wilk <konrad.wilk@oracle.com>
Cc: <stable@vger.kernel.org>
Signed-off-by: David Vrabel <david.vrabel@citrix.com>
2015-03-11 14:34:40 +00:00
..
conf_space_capability.c xen/pciback: Drop two backends, squash and cleanup some code. 2011-07-19 20:58:35 -04:00
conf_space_header.c xen-pciback: limit guest control of command register 2015-03-11 14:34:40 +00:00
conf_space_quirks.c xen/pciback: miscellaneous adjustments 2011-09-21 18:17:59 -04:00
conf_space_quirks.h xen/pciback: Drop two backends, squash and cleanup some code. 2011-07-19 20:58:35 -04:00
conf_space.c xen-pciback: limit guest control of command register 2015-03-11 14:34:40 +00:00
conf_space.h xen-pciback: limit guest control of command register 2015-03-11 14:34:40 +00:00
Makefile xen/pciback: Have 'passthrough' option instead of XEN_PCIDEV_BACKEND_PASS and XEN_PCIDEV_BACKEND_VPCI 2011-07-19 21:04:20 -04:00
passthrough.c xen/pciback: Don't deadlock when unbinding. 2014-12-04 12:41:58 +00:00
pci_stub.c xen-pciback: drop SR-IOV VFs when PF driver unloads 2014-12-04 12:42:03 +00:00
pciback_ops.c arch: Mass conversion of smp_mb__*() 2014-04-18 14:20:48 +02:00
pciback.h xen/pciback: Don't deadlock when unbinding. 2014-12-04 12:41:58 +00:00
vpci.c xen/pciback: Don't deadlock when unbinding. 2014-12-04 12:41:58 +00:00
xenbus.c xen/pciback: Print out the domain owning the device. 2014-12-04 12:42:00 +00:00