I have found 2 more ways to crash Xen from a guest with nested virt. These patches implement some missing checks.
Sergey Dyasli (2): x86/vvmx: check vmcs address in vmread/vmwrite x86/vvmx: add vmcs id check into vmptrld emulation xen/arch/x86/hvm/vmx/vvmx.c | 23 +++++++++++++++++++++++ xen/include/asm-x86/hvm/vmx/vmcs.h | 1 + 2 files changed, 24 insertions(+) -- 2.9.3 _______________________________________________ Xen-devel mailing list Xen-devel@lists.xen.org https://lists.xen.org/xen-devel
