| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 15 Feb 2012 13:17:56 -0600 From: Scott Wood <scottwood@...escale.com> To: Alexander Graf <agraf@...e.de> CC: Avi Kivity <avi@...hat.com>, Anthony Liguori <anthony@...emonkey.ws>, KVM list <kvm@...r.kernel.org>, linux-kernel <linux-kernel@...r.kernel.org>, qemu-devel <qemu-devel@...gnu.org>, kvm-ppc <kvm-ppc@...r.kernel.org> Subject: Re: [Qemu-devel] [RFC] Next gen kvm api On 02/15/2012 05:57 AM, Alexander Graf wrote: > > On 15.02.2012, at 12:18, Avi Kivity wrote: > >> Well the real reason is we have an extra bit reported by page faults >> that we can control. Can't you set up a hashed pte that is configured >> in a way that it will fault, no matter what type of access the guest >> does, and see it in your page fault handler? > > I might be able to synthesize a PTE that is !readable and might throw > a permission exception instead of a miss exception. I might be able > to synthesize something similar for booke. I don't however get any > indication on why things failed. On booke with ISA 2.06 hypervisor extensions, there's MAS8[VF] that will trigger a DSI that gets sent to the hypervisor even if normal DSIs go directly to the guest. You'll still need to zero out the execute permission bits. For other booke, you could use one of the user bits in MAS3 (along with zeroing out all the permission bits), which you could get to by doing a tlbsx. -Scott -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists