Re: some questions

To: Pavel Cahyna <pavel.cahyna%st.mff.cuni.cz@localhost>
Subject: Re: some questions
From: Manuel Bouyer <bouyer%antioche.eu.org@localhost>
Date: Sat, 7 Jan 2006 11:54:55 +0100

On Sat, Jan 07, 2006 at 08:59:38AM +0100, Pavel Cahyna wrote:
> On Sat, Jan 07, 2006 at 05:44:50AM +0100, Manuel Bouyer wrote:
> > On Sat, Jan 07, 2006 at 01:14:49AM +0100, Pavel Cahyna wrote:
> > > Why?
> > > 
> > > if you have root in a domU, you don't need a kernel bug to use DMA, which
> > > opens the door to dom0.
> > 
> > How do you get access to the DMA register if you don't take control over
> > the kernel ?
> 
> i386_iopl ?

int
i386_iopl(l, args, retval)
{
[...]
        if (securelevel > 1)
                return EPERM;

Of course what I said relies on the kernel starting at securelevel 1, which
I said in a previous mail.

-- 
Manuel Bouyer <bouyer%antioche.eu.org@localhost>
     NetBSD: 26 ans d'experience feront toujours la difference
--

Follow-Ups:
- Re: some questions
  - From: Thor Lancelot Simon
- Re: some questions
  - From: Pavel Cahyna

References:
- Re: some questions
  - From: Manuel Bouyer
- Re: some questions
  - From: Thor Lancelot Simon
- Re: some questions
  - From: Manuel Bouyer
- Re: some questions
  - From: Thor Lancelot Simon
- Re: some questions
  - From: Manuel Bouyer
- Re: some questions
  - From: Thor Lancelot Simon
- Re: some questions
  - From: Manuel Bouyer
- Re: some questions
  - From: Pavel Cahyna
- Re: some questions
  - From: Manuel Bouyer
- Re: some questions
  - From: Pavel Cahyna

Prev by Date: Re: Xen and VLANs
Next by Date: Re: Xen and VLANs
Previous by Thread: Re: some questions
Next by Thread: Re: some questions
Indexes:

Home | Main Index | Thread Index | Old Index