xsm: Add missing access checks

Actions requiring IS_PRIV should also require some XSM access control in order for XSM to be useful in confining multiple privileged domains. Add XSM hooks for new hypercalls and sub-commands that are under IS_PRIV but not currently under any access checks. Signed-off-by: Daniel De Graaf <dgdegra@tycho.nsa.gov>
author: Daniel De Graaf <dgdegra@tycho.nsa.gov> 2011-12-18 14:33:48 +0000
committer: Daniel De Graaf <dgdegra@tycho.nsa.gov> 2011-12-18 14:33:48 +0000
commit: 875756ca34fabc7243c4a682ffd7008710a907e2 (patch)
tree: c4992e378b41a03f691fe756a5c3343b62381db9 /xen/arch/x86/domctl.c
parent: 4c1b911bbcd97fb68b4a9e0903a6644e50adda01 (diff)
download: xen-875756ca34fabc7243c4a682ffd7008710a907e2.tar.gz
xen-875756ca34fabc7243c4a682ffd7008710a907e2.tar.bz2
xen-875756ca34fabc7243c4a682ffd7008710a907e2.zip
1 files changed, 12 insertions, 5 deletions
diff --git a/xen/arch/x86/domctl.c b/xen/arch/x86/domctl.c
index 4e258f39ce..9c9d5d1e24 100644
--- a/xen/arch/x86/domctl.c
+++ b/xen/arch/x86/domctl.c
@@ -1441,8 +1441,10 @@ long arch_do_domctl(
         d = rcu_lock_domain_by_id(domctl->domain);
         if ( d != NULL )
         {
-            ret = mem_event_domctl(d, &domctl->u.mem_event_op,
-                                   guest_handle_cast(u_domctl, void));
+            ret = xsm_mem_event(d);
+            if ( !ret )
+                ret = mem_event_domctl(d, &domctl->u.mem_event_op,
+                                       guest_handle_cast(u_domctl, void));
             rcu_unlock_domain(d);
             copy_to_guest(u_domctl, domctl, 1);
         } 
@@ -1457,7 +1459,9 @@ long arch_do_domctl(
         d = rcu_lock_domain_by_id(domctl->domain);
         if ( d != NULL )
         {
-            ret = mem_sharing_domctl(d, &domctl->u.mem_sharing_op);
+            ret = xsm_mem_sharing(d);
+            if ( !ret )
+                ret = mem_sharing_domctl(d, &domctl->u.mem_sharing_op);
             rcu_unlock_domain(d);
             copy_to_guest(u_domctl, domctl, 1);
         } 
@@ -1498,8 +1502,11 @@ long arch_do_domctl(
         d = rcu_lock_domain_by_id(domctl->domain);
         if ( d != NULL )
         {
-            p2m = p2m_get_hostp2m(d);
-            p2m->access_required = domctl->u.access_required.access_required;
+            ret = xsm_mem_event(d);
+            if ( !ret ) {
+                p2m = p2m_get_hostp2m(d);
+                p2m->access_required = domctl->u.access_required.access_required;
+            }
             rcu_unlock_domain(d);
         } 
     }
author	Daniel De Graaf <dgdegra@tycho.nsa.gov>	2011-12-18 14:33:48 +0000
committer	Daniel De Graaf <dgdegra@tycho.nsa.gov>	2011-12-18 14:33:48 +0000
commit	875756ca34fabc7243c4a682ffd7008710a907e2 (patch)
tree	c4992e378b41a03f691fe756a5c3343b62381db9 /xen/arch/x86/domctl.c
parent	4c1b911bbcd97fb68b4a9e0903a6644e50adda01 (diff)
download	xen-875756ca34fabc7243c4a682ffd7008710a907e2.tar.gz xen-875756ca34fabc7243c4a682ffd7008710a907e2.tar.bz2 xen-875756ca34fabc7243c4a682ffd7008710a907e2.zip