Hi,
At 10:31 -0400 on 30 Mar (1427711518), Konrad Rzeszutek Wilk wrote:
> On Thu, Mar 26, 2015 at 04:23:19PM +, Tim Deegan wrote:
> > Idea 1: track PV pagetables so that we can tell which pagetables
> > might map the zero address -- e.g. by adding a flag or new types at
> > each level to indic
On Mon, Mar 30, 2015 at 3:31 PM, Konrad Rzeszutek Wilk
wrote:
> On Thu, Mar 26, 2015 at 04:23:19PM +, Tim Deegan wrote:
>> Hi,
>>
>> After XSA-109 (a null function-pointer dereference) we've been
>> thinking about things we can do to make null pointers less dangerous
>> in PV guests. This is
On Thu, Mar 26, 2015 at 04:23:19PM +, Tim Deegan wrote:
> Hi,
>
> After XSA-109 (a null function-pointer dereference) we've been
> thinking about things we can do to make null pointers less dangerous
> in PV guests. This is a problem for pure PV only - when Xen is
> running HVM and PVH guests
On Thu, 2015-03-26 at 16:44 +, Andrew Cooper wrote:
> As a result I don't think this is a feasible option, although it might
> be a very good idea to have an opt-in restriction for guests which
> actively wish to play nice.
opt-in isn't very useful, my malicious guest simply wouldn't opt-in.
On 26/03/15 16:23, Tim Deegan wrote:
Hi,
After XSA-109 (a null function-pointer dereference) we've been
thinking about things we can do to make null pointers less dangerous
in PV guests. This is a problem for pure PV only - when Xen is
running HVM and PVH guests null pointer dereferences will f
At 18:31 +0200 on 26 Mar (1427394672), Razvan Cojocaru wrote:
> On 03/26/2015 06:23 PM, Tim Deegan wrote:
> > Idea 4: build-time support, with something like a clang analysis
> > pass or coccinelle, for finding uninitialised function pointers,
> > or for automatically inserting checks on indirect j
On 03/26/2015 06:23 PM, Tim Deegan wrote:
> Idea 4: build-time support, with something like a clang analysis
> pass or coccinelle, for finding uninitialised function pointers,
> or for automatically inserting checks on indirect jumps.
> Anyone know of existing tools that could help here?
Scan-buil