We have libxl_ctxt.page_size for this purpose; use it to eliminate a
latent buffer overrun.
Fixes: 14c0d328da2b ("libxl/acpi: Build ACPI tables for HVMlite guests")
Signed-off-by: Jan Beulich <[email protected]>
---
Yet better might be to limit the size to what's actually used (libacpi's
struct acpi_info). That would then also have avoided the respective part
of XSA-???.
--- a/tools/libs/light/libxl_x86_acpi.c
+++ b/tools/libs/light/libxl_x86_acpi.c
@@ -218,7 +218,7 @@ int libxl__dom_load_acpi(libxl__gc *gc,
dom->acpi_modules[0].guest_addr_out = 0x100000 - 64;
dom->acpi_modules[1].data = (void *)config.infop;
- dom->acpi_modules[1].length = 4096;
+ dom->acpi_modules[1].length = libxl_ctxt.page_size;
dom->acpi_modules[1].guest_addr_out = ACPI_INFO_PHYSICAL_ADDRESS;
dom->acpi_modules[2].data = libxl_ctxt.buf;
