xen/privcmd: Relax access control in privcmd_ioctl_mmap
authorTamas Lengyel <tamas.lengyel@zentific.com>
Mon, 31 Dec 2012 20:44:30 +0000 (15:44 -0500)
committerKonrad Rzeszutek Wilk <konrad.wilk@oracle.com>
Fri, 11 Jan 2013 17:40:00 +0000 (12:40 -0500)
commit30d4b180e20c081f435143f8bc211c66a930608a
tree538e29c13c199f64e0154bd761bf644842ff723b
parent9d328a948f38ec240fc6d05db2c146e23ccd9b8b
xen/privcmd: Relax access control in privcmd_ioctl_mmap

In the privcmd Linux driver two checks in the functions
privcmd_ioctl_mmap and privcmd_ioctl_mmap_batch are not needed as they
are trying to enforce hypervisor-level access control.  They should be
removed as they break secondary control domains when performing dom0
disaggregation. Xen itself provides adequate security controls around
these hypercalls and these checks prevent those controls from
functioning as intended.

Signed-off-by: Tamas K Lengyel <tamas.lengyel@zentific.com>
Cc: Daniel De Graaf <dgdegra@tycho.nsa.gov>
[v1: Fixed up the patch and commit description]
Signed-off-by: Konrad Rzeszutek Wilk <konrad.wilk@oracle.com>
drivers/xen/privcmd.c