Re: [Xen-devel] NULL pointers and PV guests.

2015-04-09 Thread Tim Deegan
Hi, At 10:31 -0400 on 30 Mar (1427711518), Konrad Rzeszutek Wilk wrote: > On Thu, Mar 26, 2015 at 04:23:19PM +, Tim Deegan wrote: > > Idea 1: track PV pagetables so that we can tell which pagetables > > might map the zero address -- e.g. by adding a flag or new types at > > each level to indic

Re: [Xen-devel] NULL pointers and PV guests.

2015-03-31 Thread George Dunlap
On Mon, Mar 30, 2015 at 3:31 PM, Konrad Rzeszutek Wilk wrote: > On Thu, Mar 26, 2015 at 04:23:19PM +, Tim Deegan wrote: >> Hi, >> >> After XSA-109 (a null function-pointer dereference) we've been >> thinking about things we can do to make null pointers less dangerous >> in PV guests. This is

Re: [Xen-devel] NULL pointers and PV guests.

2015-03-30 Thread Konrad Rzeszutek Wilk
On Thu, Mar 26, 2015 at 04:23:19PM +, Tim Deegan wrote: > Hi, > > After XSA-109 (a null function-pointer dereference) we've been > thinking about things we can do to make null pointers less dangerous > in PV guests. This is a problem for pure PV only - when Xen is > running HVM and PVH guests

Re: [Xen-devel] NULL pointers and PV guests.

2015-03-26 Thread Ian Campbell
On Thu, 2015-03-26 at 16:44 +, Andrew Cooper wrote: > As a result I don't think this is a feasible option, although it might > be a very good idea to have an opt-in restriction for guests which > actively wish to play nice. opt-in isn't very useful, my malicious guest simply wouldn't opt-in.

Re: [Xen-devel] NULL pointers and PV guests.

2015-03-26 Thread Andrew Cooper
On 26/03/15 16:23, Tim Deegan wrote: Hi, After XSA-109 (a null function-pointer dereference) we've been thinking about things we can do to make null pointers less dangerous in PV guests. This is a problem for pure PV only - when Xen is running HVM and PVH guests null pointer dereferences will f

Re: [Xen-devel] NULL pointers and PV guests.

2015-03-26 Thread Tim Deegan
At 18:31 +0200 on 26 Mar (1427394672), Razvan Cojocaru wrote: > On 03/26/2015 06:23 PM, Tim Deegan wrote: > > Idea 4: build-time support, with something like a clang analysis > > pass or coccinelle, for finding uninitialised function pointers, > > or for automatically inserting checks on indirect j

Re: [Xen-devel] NULL pointers and PV guests.

2015-03-26 Thread Razvan Cojocaru
On 03/26/2015 06:23 PM, Tim Deegan wrote: > Idea 4: build-time support, with something like a clang analysis > pass or coccinelle, for finding uninitialised function pointers, > or for automatically inserting checks on indirect jumps. > Anyone know of existing tools that could help here? Scan-buil