subject:"\[PATCH 6\/8\] xen\/netfront\: don't read data from request on the ring page"

Re: [PATCH 6/8] xen/netfront: don't read data from request on the ring page

2021-05-17 Thread Jan Beulich

On 13.05.2021 12:03, Juergen Gross wrote: > In order to avoid a malicious backend being able to influence the local > processing of a request build the request locally first and then copy > it to the ring page. Any reading from the request needs to be done on > the local instance. "Any reading" is

[PATCH 6/8] xen/netfront: don't read data from request on the ring page

2021-05-13 Thread Juergen Gross

In order to avoid a malicious backend being able to influence the local processing of a request build the request locally first and then copy it to the ring page. Any reading from the request needs to be done on the local instance. Signed-off-by: Juergen Gross --- drivers/net/xen-netfront.c | 75