On 16/07/2015 16:46, Vijay Kilari wrote:
So you have to handle it properly to avoid the helper reading out of the LPI
configuration table.
the check on size lpi_size manages this.
I don't see any check on the lpi_size... While the code in this function
looks ok, there is some usage of the LPI configuration where you don't
check the validity of the offset (I'm thinking of vgic_its_get_priority
in patch #12).
Regards,
--
Julien Grall
_______________________________________________
Xen-devel mailing list
Xen-devel@lists.xen.org
http://lists.xen.org/xen-devel
