head	1.2;
access;
symbols
	pkgsrc-2019Q2:1.1.0.4
	pkgsrc-2019Q2-base:1.1
	pkgsrc-2019Q1:1.1.0.2
	pkgsrc-2019Q1-base:1.1;
locks; strict;
comment	@# @;


1.2
date	2019.08.30.13.16.27;	author bouyer;	state dead;
branches;
next	1.1;
commitid	Bhbqj9CPVWgYm3BB;

1.1
date	2019.03.07.11.13.26;	author bouyer;	state Exp;
branches;
next	;
commitid	Gzute5jK7xPyjqeB;


desc
@@


1.2
log
@Upgrade Xen 4.11 packages to 4.11.2. CHANGES since 4.11.1:
- include security patches up to and including XSA297
- various performances improvements, code cleanup and bug fixes
@
text
@$NetBSD: patch-XSA284,v 1.1 2019/03/07 11:13:26 bouyer Exp $

From: Jan Beulich <jbeulich@@suse.com>
Subject: gnttab: set page refcount for copy-on-grant-transfer

Commit 5cc77f9098 ("32-on-64: Fix domain address-size clamping,
implement"), which introduced this functionality, took care of clearing
the old page's PGC_allocated, but failed to set the bit (and install the
associated reference) on the newly allocated one. Furthermore the "mfn"
local variable was never updated, and hence the wrong MFN was passed to
guest_physmap_add_page() (and back to the destination domain) in this
case, leading to an IOMMU mapping into an unowned page.

Ideally the code would use assign_pages(), but the call to
gnttab_prepare_for_transfer() sits in the middle of the actions
mirroring that function.

This is XSA-284.

Signed-off-by: Jan Beulich <jbeulich@@suse.com>
Acked-by: George Dunlap <george.dunlap@@citrix.com>

--- xen/common/grant_table.c.orig
+++ xen/common/grant_table.c
@@@@ -2183,6 +2183,8 @@@@ gnttab_transfer(
             page->count_info &= ~(PGC_count_mask|PGC_allocated);
             free_domheap_page(page);
             page = new_page;
+            page->count_info = PGC_allocated | 1;
+            mfn = page_to_mfn(page);
         }
 
         spin_lock(&e->page_alloc_lock);
@


1.1
log
@Update to 4.11.1nb1
PKGREVISION set to 1 on purpose, because this is not a stock 4.11.1 kernel
(it includes security patches).
4.11.1 includes all security patches up to XSA282.
Apply official patches for XSA284, XSA285, XSA287, XSA288, XSA290, XSA291,
XSA292, XSA293 and XSA294.
Other changes since 4.11.0 are mostly bugfixes, no new features.
@
text
@d1 1
a1 1
$NetBSD: $
@