projects / linux-2.6-microblaze.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8446066) | patch
xen/netfront: don't read data from request on the ring page
authorJuergen Gross <jgross@suse.com>
Tue, 24 Aug 2021 10:28:07 +0000 (12:28 +0200)
committerDavid S. Miller <davem@davemloft.net>
Wed, 25 Aug 2021 09:43:21 +0000 (10:43 +0100)
commit162081ec33c2686afa29d91bf8d302824aa846c7
treedba74fae7a7da79922e649a7cbc96a4e4ccf7f42tree
parent8446066bf8c1f9f7b7412c43fbea0fb87464d75bcommit | diff
xen/netfront: don't read data from request on the ring page

In order to avoid a malicious backend being able to influence the local
processing of a request build the request locally first and then copy
it to the ring page. Any reading from the request influencing the
processing in the frontend needs to be done on the local instance.

Signed-off-by: Juergen Gross <jgross@suse.com>
Reviewed-by: Jan Beulich <jbeulich@suse.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
drivers/net/xen-netfront.c diff | blob | history
MicroBlaze GIT Repository