xen/26340-VT-d-intremap-verify-legacy-bridge.patch

References: CVE-2012-5634 XSA-33 bnc#794316

# HG changeset patch
# User Jan Beulich <jbeulich@suse.com>
# Date 1357748006 -3600
# Node ID 19fd1237ff0dfa3d97a896d6ed6fbbd33f816a9f
# Parent  56b0d5476c11bfd09986080dfa97923586ef474f
VT-d: fix interrupt remapping source validation for devices behind legacy bridges

Using SVT_VERIFY_BUS here doesn't make sense; native Linux also
uses SVT_VERIFY_SID_SQ here instead.

This is XSA-33 / CVE-2012-5634.

Signed-off-by: Jan Beulich <jbeulich@suse.com>

--- a/xen/drivers/passthrough/vtd/intremap.c
+++ b/xen/drivers/passthrough/vtd/intremap.c
@@ -469,7 +469,7 @@ static void set_msi_source_id(struct pci
                 set_ire_sid(ire, SVT_VERIFY_BUS, SQ_ALL_16,
                             (bus << 8) | pdev->bus);
             else if ( pdev_type(seg, bus, devfn) == DEV_TYPE_LEGACY_PCI_BRIDGE )
-                set_ire_sid(ire, SVT_VERIFY_BUS, SQ_ALL_16,
+                set_ire_sid(ire, SVT_VERIFY_SID_SQ, SQ_ALL_16,
                             PCI_BDF2(bus, devfn));
         }
         break;
Add/Remove package files OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=221 2013-01-14 17:53:52 +00:00			`References: CVE-2012-5634 XSA-33 bnc#794316`

- Add upstream patch to fix vfb/vkb initialization in libxl 26369-libxl-devid.patch - fate##313584: pass bios information to XEN HVM guest 26554-hvm-firmware-passthrough.patch 26555-hvm-firmware-passthrough.patch 26556-hvm-firmware-passthrough.patch - Upstream patches from Jan 26516-ACPI-parse-table-retval.patch (Replaces CVE-2013-0153-xsa36.patch) 26517-AMD-IOMMU-clear-irtes.patch (Replaces CVE-2013-0153-xsa36.patch) 26518-AMD-IOMMU-disable-if-SATA-combined-mode.patch (Replaces CVE-2013-0153-xsa36.patch) 26519-AMD-IOMMU-perdev-intremap-default.patch (Replaces CVE-2013-0153-xsa36.patch) 26526-pvdrv-no-devinit.patch 26529-gcc48-build-fix.patch 26531-AMD-IOMMU-IVHD-special-missing.patch (Replaces CVE-2013-0153-xsa36.patch) 26532-AMD-IOMMU-phantom-MSI.patch 26536-xenoprof-div-by-0.patch 26576-x86-APICV-migration.patch 26577-x86-APICV-x2APIC.patch 26578-AMD-IOMMU-replace-BUG_ON.patch - bnc#797014 - no way to control live migrations 26547-tools-xc_fix_logic_error_in_stdiostream_progress.patch 26548-tools-xc_handle_tty_output_differently_in_stdiostream_progress.patch 26549-tools-xc_turn_XCFLAGS_*_into_shifts.patch 26550-tools-xc_restore_logging_in_xc_save.patch 26551-tools-xc_log_pid_in_xc_save-xc_restore_output.patch - PVonHVM: __devinit was removed in linux-3.8 OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=229 2013-02-22 21:42:01 +00:00			`# HG changeset patch`
			`# User Jan Beulich <jbeulich@suse.com>`
			`# Date 1357748006 -3600`
			`# Node ID 19fd1237ff0dfa3d97a896d6ed6fbbd33f816a9f`
			`# Parent 56b0d5476c11bfd09986080dfa97923586ef474f`
Add/Remove package files OBS-URL: https://build.opensuse.org/package/show/Virtualization/xen?expand=0&rev=221 2013-01-14 17:53:52 +00:00			`VT-d: fix interrupt remapping source validation for devices behind legacy bridges`

			`Using SVT_VERIFY_BUS here doesn't make sense; native Linux also`
			`uses SVT_VERIFY_SID_SQ here instead.`

			`This is XSA-33 / CVE-2012-5634.`

			`Signed-off-by: Jan Beulich <jbeulich@suse.com>`

			`--- a/xen/drivers/passthrough/vtd/intremap.c`
			`+++ b/xen/drivers/passthrough/vtd/intremap.c`
			`@@ -469,7 +469,7 @@ static void set_msi_source_id(struct pci`
			`set_ire_sid(ire, SVT_VERIFY_BUS, SQ_ALL_16,`
			`(bus << 8) \| pdev->bus);`
			`else if ( pdev_type(seg, bus, devfn) == DEV_TYPE_LEGACY_PCI_BRIDGE )`
			`- set_ire_sid(ire, SVT_VERIFY_BUS, SQ_ALL_16,`
			`+ set_ire_sid(ire, SVT_VERIFY_SID_SQ, SQ_ALL_16,`
			`PCI_BDF2(bus, devfn));`
			`}`
			`break;`