diff options
| author | Paul Durrant <paul.durrant@citrix.com> | 2017-02-13 20:03:24 +0300 | 
|---|---|---|
| committer | Boris Ostrovsky <boris.ostrovsky@oracle.com> | 2017-02-14 23:14:59 +0300 | 
| commit | 4610d240d691768203fdd210a5da0a2e02eddb76 (patch) | |
| tree | b3f34882aa7607ac00f2184df88a307f96377798 /net/lapb/lapb_in.c | |
| parent | ab520be8cd5d56867fc95cfbc34b90880faf1f9d (diff) | |
| download | linux-4610d240d691768203fdd210a5da0a2e02eddb76.tar.xz | |
xen/privcmd: add IOCTL_PRIVCMD_RESTRICT
The purpose if this ioctl is to allow a user of privcmd to restrict its
operation such that it will no longer service arbitrary hypercalls via
IOCTL_PRIVCMD_HYPERCALL, and will check for a matching domid when
servicing IOCTL_PRIVCMD_DM_OP or IOCTL_PRIVCMD_MMAP*. The aim of this
is to limit the attack surface for a compromised device model.
Signed-off-by: Paul Durrant <paul.durrant@citrix.com>
Signed-off-by: Boris Ostrovsky <boris.ostrovsky@oracle.com>
Diffstat (limited to 'net/lapb/lapb_in.c')
0 files changed, 0 insertions, 0 deletions
