Minki/linux
1
0
Fork 1
mirror of https://github.com/torvalds/linux.git synced 2024-11-24 13:11:40 +00:00
Code Issues Packages Projects Releases Wiki Activity
ddba91801a
linux/Documentation/virtual
History
Sean Christopherson ddba91801a KVM: Reject device ioctls from processes other than the VM's creator 
KVM's API requires thats ioctls must be issued from the same process
that created the VM.  In other words, userspace can play games with a
VM's file descriptors, e.g. fork(), SCM_RIGHTS, etc..., but only the
creator can do anything useful.  Explicitly reject device ioctls that
are issued by a process other than the VM's creator, and update KVM's
API documentation to extend its requirements to device ioctls.

Fixes: 852b6d57dc ("kvm: add device control API")
Cc: <stable@vger.kernel.org>
Signed-off-by: Sean Christopherson <sean.j.christopherson@intel.com>
Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
2019-03-28 17:27:06 +01:00
..
kvm KVM: Reject device ioctls from processes other than the VM's creator 2019-03-28 17:27:06 +01:00
uml Documentation: Update path to sysrq.txt 2017-03-03 15:48:38 -07:00
paravirt_ops.txt virtual: Documentation: simplify and generalize paravirt_ops.txt 2015-02-13 17:15:44 +10:30