linux

History

Michael S. Tsirkin a89db445fb vhost: block speculation of translated descriptors iovec addresses coming from vhost are assumed to be pre-validated, but in fact can be speculated to a value out of range. Userspace address are later validated with array_index_nospec so we can be sure kernel info does not leak through these addresses, but vhost must also not leak userspace info outside the allowed memory table to guests. Following the defence in depth principle, make sure the address is not validated out of node range. Signed-off-by: Michael S. Tsirkin <mst@redhat.com> Cc: stable@vger.kernel.org Acked-by: Jason Wang <jasowang@redhat.com> Tested-by: Jason Wang <jasowang@redhat.com>		2019-09-11 15:15:07 -04:00
..
Kconfig	treewide: Add SPDX license identifier - Makefile/Kconfig	2019-05-21 10:50:46 +02:00
Kconfig.vringh	treewide: Add SPDX license identifier - Makefile/Kconfig	2019-05-21 10:50:46 +02:00
Makefile	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
net.c	virtio, vhost: fixes, features, performance	2019-07-17 11:26:09 -07:00
scsi.c	vhost: scsi: add weight support	2019-05-27 11:08:23 -04:00
test.c	vhost/test: fix build for vhost test	2019-09-04 06:21:17 -04:00
test.h	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	2017-11-02 11:10:55 +01:00
vhost.c	vhost: block speculation of translated descriptors	2019-09-11 15:15:07 -04:00
vhost.h	Revert "vhost: access vq metadata through kernel virtual address"	2019-09-04 07:39:48 -04:00
vringh.c	treewide: Add SPDX license identifier for more missed files	2019-05-21 10:50:45 +02:00
vsock.c	treewide: Replace GPLv2 boilerplate/reference with SPDX - rule 482	2019-06-19 17:09:52 +02:00