From xen-announce-bounces@lists.xen.org Thu Feb 12 17:42:43 2015 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Thu, 12 Feb 2015 17:42:43 +0000 Received: from localhost ([127.0.0.1] helo=lists.xen.org) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1YLxlj-0005HC-2k; Thu, 12 Feb 2015 17:41:39 +0000 Received: from mail6.bemta14.messagelabs.com ([193.109.254.103]) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1YLxlh-0005Fk-Gy; Thu, 12 Feb 2015 17:41:37 +0000 Received: from [193.109.254.147] by server-4.bemta-14.messagelabs.com id 8F/FA-02994-0D5ECD45; Thu, 12 Feb 2015 17:41:36 +0000 X-Env-Sender: iwj@xenbits.xen.org X-Msg-Ref: server-16.tower-27.messagelabs.com!1423762895!7681785!1 X-Originating-IP: [50.57.168.107] X-SpamReason: No, hits=0.0 required=7.0 tests= X-StarScan-Received: X-StarScan-Version: 6.13.4; banners=-,-,- X-VirusChecked: Checked Received: (qmail 4937 invoked from network); 12 Feb 2015 17:41:36 -0000 Received: from mail.xen.org (HELO mail.xen.org) (50.57.168.107) by server-16.tower-27.messagelabs.com with AES256-SHA encrypted SMTP; 12 Feb 2015 17:41:36 -0000 Received: from xenbits.xen.org ([50.57.170.242]) by mail.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1YLxlY-0001yz-5Z; Thu, 12 Feb 2015 17:41:28 +0000 Received: from iwj by xenbits.xen.org with local (Exim 4.72) (envelope-from ) id 1YLxlX-0005MD-7c; Thu, 12 Feb 2015 17:41:27 +0000 Date: Thu, 12 Feb 2015 17:41:27 +0000 Message-Id: Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.428 (Entity 5.428) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Cc: "Xen.org security team" Subject: [Xen-announce] Xen Security Advisory 117 (CVE-2015-0268) - arm: vgic-v2: GICD_SGIR is not properly emulated X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.13 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Sender: xen-announce-bounces@lists.xen.org Errors-To: xen-announce-bounces@lists.xen.org --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Xen Security Advisory CVE-2015-0268 / XSA-117 version 2 arm: vgic-v2: GICD_SGIR is not properly emulated UPDATES IN VERSION 2 ==================== CVE assigned. Mention CVE and XSA numbers in patch commit message. Public release. ISSUE DESCRIPTION ================= When decoding a guest write to a specific register in the virtual interrupt controller Xen would treat an invalid value as a critical error and crash the host. IMPACT ====== By writing an invalid value to the GICD.SGIR register a guest can crash the host, resulting in a Denial of Service attack. VULNERABLE SYSTEMS ================== Xen 4.5 and later systems running on ARM hardware with version 2 of the generic interrupt controller are vulnerable. Systems running on ARM hardware with version 3 of the generic interrupt controller are not vulnerable. x86 systems are not affected. MITIGATION ========== None. CREDITS ======= This issue was discovered by Julien Grall. RESOLUTION ========== Applying the appropriate attached patch resolves this issue. xsa117.patch Xen 4.5.x, xen-unstable $ sha256sum xsa117*.patch 5d7c1ec3bd604ed49999a56fefeebda1206f424b1b48c0e44899f13bc1e55cd0 xsa117.patch $ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAEBAgAGBQJU3OW0AAoJEIP+FMlX6CvZePcH/06WboLULU7JEfvzFqpnxpQV XmNXCuvjcOt4d/w77a78kq8Bw8RUiDHR3f6qb+sJeNsJ1V55o0/KGgydEu+DqoF7 3bftmPDvuBcqoF3+7KupjRp0sBU+11Q/Jtb+P/0ZtVReFKGxmpg8kBura56rL3wf iL1kMA4V0Kd4abmXXr6yUJMQuI19OZSQ43Zo7F9kOomyc7lcKB6vhnMtCiXw1F9Y zfnyP1V1s5h77juSe01pQhEqjDlKv/NNkfJav6s7eVYVbJAwFgUP2vOZ14t2dR+o 5M8PPwF6EFBm421Z1D67caBh1ovGzeywZcrCl8nxuex+dqwomLymIMaL0P/fY6g= =edQs -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa117.patch" Content-Disposition: attachment; filename="xsa117.patch" Content-Transfer-Encoding: base64 RnJvbSA0NzJkYzllNjI3YzhmMWI5ZDcxMzhiMTQyYTViMDgzODU1MGEyMDcy IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBKdWxpZW4gR3JhbGwg PGp1bGllbi5ncmFsbEBsaW5hcm8ub3JnPgpEYXRlOiBGcmksIDIzIEphbiAy MDE1IDE0OjE1OjA3ICswMDAwClN1YmplY3Q6IFtQQVRDSF0geGVuL2FybTog dmdpYy12MjogRG9uJ3QgY3Jhc2ggdGhlIGh5cGVydmlzb3IgaWYgdGhlIFNH SQogdGFyZ2V0IG1vZGUgaXMgaW52YWxpZAoKVGhlIEdJQ3YyIHNwZWMgcmVz ZXJ2ZWQgdGhlIHZhbHVlIDBiMTEgZm9yIEdJQ0RfU0dJUi5UYXJnZXRMaXN0 RmlsdGVyLgoKRXZlbiBpZiBpdCdzIGFuIGludmFsaWQgdmFsdWUsIGEgbWFs aWNpb3VzIGd1ZXN0IGNvdWxkIHdyaXRlIHRoaXMgdmFsdWUKYW5kIHRocmVm b3JlIGNyYXNoIHRoZSBoeXBlcnZpc29yLgoKUmVwbGFjZSB0aGUgQlVHKCkg YnkgbG9nZ2luZyB0aGUgZXJyb3IgYW5kIGluamVjdCBhIGRhdGEgYWJvcnQg dG8gdGhlIGd1ZXN0LgoKVGhpcyB3YXMgaW50cm9kdWNlZCBieSBjb21taXQg ZWEzN2ZkMjExMTBiNmZiY2Y5MjU3ZjgxNDA3NmEyNDNkMzg3M2NiNwoieGVu L2FybTogc3BsaXQgdmdpYyBkcml2ZXIgaW50byBnZW5lcmljIGFuZCB2Z2lj LXYyIGRyaXZlciIuCgpUaGlzIGlzIENWRS0yMDE1LTAyNjggLyBYU0EtMTE3 LgoKU2lnbmVkLW9mZi1ieTogSnVsaWVuIEdyYWxsIDxqdWxpZW4uZ3JhbGxA bGluYXJvLm9yZz4KLS0tCiB4ZW4vYXJjaC9hcm0vdmdpYy12Mi5jIHwgNSAr KysrLQogMSBmaWxlIGNoYW5nZWQsIDQgaW5zZXJ0aW9ucygrKSwgMSBkZWxl dGlvbigtKQoKZGlmZiAtLWdpdCBhL3hlbi9hcmNoL2FybS92Z2ljLXYyLmMg Yi94ZW4vYXJjaC9hcm0vdmdpYy12Mi5jCmluZGV4IDU5OGJmMDYuLjlkYzlh MjAgMTAwNjQ0Ci0tLSBhL3hlbi9hcmNoL2FybS92Z2ljLXYyLmMKKysrIGIv eGVuL2FyY2gvYXJtL3ZnaWMtdjIuYwpAQCAtMjU3LDcgKzI1NywxMCBAQCBz dGF0aWMgaW50IHZnaWNfdjJfdG9fc2dpKHN0cnVjdCB2Y3B1ICp2LCByZWdp c3Rlcl90IHNnaXIpCiAgICAgICAgIHNnaV9tb2RlID0gU0dJX1RBUkdFVF9T RUxGOwogICAgICAgICBicmVhazsKICAgICBkZWZhdWx0OgotICAgICAgICBC VUcoKTsKKyAgICAgICAgcHJpbnRrKFhFTkxPR19HX0RFQlVHCisgICAgICAg ICAgICAgICAiJXB2OiB2R0lDRDogdW5oYW5kbGVkIEdJQ0RfU0dJUiB3cml0 ZSAlIlBSSXJlZ2lzdGVyIiB3aXRoIHdyb25nIG1vZGVcbiIsCisgICAgICAg ICAgICAgICB2LCBzZ2lyKTsKKyAgICAgICAgcmV0dXJuIDA7CiAgICAgfQog CiAgICAgcmV0dXJuIHZnaWNfdG9fc2dpKHYsIHNnaXIsIHNnaV9tb2RlLCB2 aXJxLCB2Y3B1X21hc2spOwotLSAKMi4xLjQKCg== --=separator Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ Xen-announce mailing list Xen-announce@lists.xen.org http://lists.xen.org/xen-announce --=separator-- From xen-announce-bounces@lists.xen.org Thu Feb 12 17:42:43 2015 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Thu, 12 Feb 2015 17:42:43 +0000 Received: from localhost ([127.0.0.1] helo=lists.xen.org) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1YLxlj-0005HC-2k; Thu, 12 Feb 2015 17:41:39 +0000 Received: from mail6.bemta14.messagelabs.com ([193.109.254.103]) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1YLxlh-0005Fk-Gy; Thu, 12 Feb 2015 17:41:37 +0000 Received: from [193.109.254.147] by server-4.bemta-14.messagelabs.com id 8F/FA-02994-0D5ECD45; Thu, 12 Feb 2015 17:41:36 +0000 X-Env-Sender: iwj@xenbits.xen.org X-Msg-Ref: server-16.tower-27.messagelabs.com!1423762895!7681785!1 X-Originating-IP: [50.57.168.107] X-SpamReason: No, hits=0.0 required=7.0 tests= X-StarScan-Received: X-StarScan-Version: 6.13.4; banners=-,-,- X-VirusChecked: Checked Received: (qmail 4937 invoked from network); 12 Feb 2015 17:41:36 -0000 Received: from mail.xen.org (HELO mail.xen.org) (50.57.168.107) by server-16.tower-27.messagelabs.com with AES256-SHA encrypted SMTP; 12 Feb 2015 17:41:36 -0000 Received: from xenbits.xen.org ([50.57.170.242]) by mail.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1YLxlY-0001yz-5Z; Thu, 12 Feb 2015 17:41:28 +0000 Received: from iwj by xenbits.xen.org with local (Exim 4.72) (envelope-from ) id 1YLxlX-0005MD-7c; Thu, 12 Feb 2015 17:41:27 +0000 Date: Thu, 12 Feb 2015 17:41:27 +0000 Message-Id: Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.428 (Entity 5.428) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Cc: "Xen.org security team" Subject: [Xen-announce] Xen Security Advisory 117 (CVE-2015-0268) - arm: vgic-v2: GICD_SGIR is not properly emulated X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.13 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Sender: xen-announce-bounces@lists.xen.org Errors-To: xen-announce-bounces@lists.xen.org --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Xen Security Advisory CVE-2015-0268 / XSA-117 version 2 arm: vgic-v2: GICD_SGIR is not properly emulated UPDATES IN VERSION 2 ==================== CVE assigned. Mention CVE and XSA numbers in patch commit message. Public release. ISSUE DESCRIPTION ================= When decoding a guest write to a specific register in the virtual interrupt controller Xen would treat an invalid value as a critical error and crash the host. IMPACT ====== By writing an invalid value to the GICD.SGIR register a guest can crash the host, resulting in a Denial of Service attack. VULNERABLE SYSTEMS ================== Xen 4.5 and later systems running on ARM hardware with version 2 of the generic interrupt controller are vulnerable. Systems running on ARM hardware with version 3 of the generic interrupt controller are not vulnerable. x86 systems are not affected. MITIGATION ========== None. CREDITS ======= This issue was discovered by Julien Grall. RESOLUTION ========== Applying the appropriate attached patch resolves this issue. xsa117.patch Xen 4.5.x, xen-unstable $ sha256sum xsa117*.patch 5d7c1ec3bd604ed49999a56fefeebda1206f424b1b48c0e44899f13bc1e55cd0 xsa117.patch $ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAEBAgAGBQJU3OW0AAoJEIP+FMlX6CvZePcH/06WboLULU7JEfvzFqpnxpQV XmNXCuvjcOt4d/w77a78kq8Bw8RUiDHR3f6qb+sJeNsJ1V55o0/KGgydEu+DqoF7 3bftmPDvuBcqoF3+7KupjRp0sBU+11Q/Jtb+P/0ZtVReFKGxmpg8kBura56rL3wf iL1kMA4V0Kd4abmXXr6yUJMQuI19OZSQ43Zo7F9kOomyc7lcKB6vhnMtCiXw1F9Y zfnyP1V1s5h77juSe01pQhEqjDlKv/NNkfJav6s7eVYVbJAwFgUP2vOZ14t2dR+o 5M8PPwF6EFBm421Z1D67caBh1ovGzeywZcrCl8nxuex+dqwomLymIMaL0P/fY6g= =edQs -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa117.patch" Content-Disposition: attachment; filename="xsa117.patch" Content-Transfer-Encoding: base64 RnJvbSA0NzJkYzllNjI3YzhmMWI5ZDcxMzhiMTQyYTViMDgzODU1MGEyMDcy IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBKdWxpZW4gR3JhbGwg PGp1bGllbi5ncmFsbEBsaW5hcm8ub3JnPgpEYXRlOiBGcmksIDIzIEphbiAy MDE1IDE0OjE1OjA3ICswMDAwClN1YmplY3Q6IFtQQVRDSF0geGVuL2FybTog dmdpYy12MjogRG9uJ3QgY3Jhc2ggdGhlIGh5cGVydmlzb3IgaWYgdGhlIFNH SQogdGFyZ2V0IG1vZGUgaXMgaW52YWxpZAoKVGhlIEdJQ3YyIHNwZWMgcmVz ZXJ2ZWQgdGhlIHZhbHVlIDBiMTEgZm9yIEdJQ0RfU0dJUi5UYXJnZXRMaXN0 RmlsdGVyLgoKRXZlbiBpZiBpdCdzIGFuIGludmFsaWQgdmFsdWUsIGEgbWFs aWNpb3VzIGd1ZXN0IGNvdWxkIHdyaXRlIHRoaXMgdmFsdWUKYW5kIHRocmVm b3JlIGNyYXNoIHRoZSBoeXBlcnZpc29yLgoKUmVwbGFjZSB0aGUgQlVHKCkg YnkgbG9nZ2luZyB0aGUgZXJyb3IgYW5kIGluamVjdCBhIGRhdGEgYWJvcnQg dG8gdGhlIGd1ZXN0LgoKVGhpcyB3YXMgaW50cm9kdWNlZCBieSBjb21taXQg ZWEzN2ZkMjExMTBiNmZiY2Y5MjU3ZjgxNDA3NmEyNDNkMzg3M2NiNwoieGVu L2FybTogc3BsaXQgdmdpYyBkcml2ZXIgaW50byBnZW5lcmljIGFuZCB2Z2lj LXYyIGRyaXZlciIuCgpUaGlzIGlzIENWRS0yMDE1LTAyNjggLyBYU0EtMTE3 LgoKU2lnbmVkLW9mZi1ieTogSnVsaWVuIEdyYWxsIDxqdWxpZW4uZ3JhbGxA bGluYXJvLm9yZz4KLS0tCiB4ZW4vYXJjaC9hcm0vdmdpYy12Mi5jIHwgNSAr KysrLQogMSBmaWxlIGNoYW5nZWQsIDQgaW5zZXJ0aW9ucygrKSwgMSBkZWxl dGlvbigtKQoKZGlmZiAtLWdpdCBhL3hlbi9hcmNoL2FybS92Z2ljLXYyLmMg Yi94ZW4vYXJjaC9hcm0vdmdpYy12Mi5jCmluZGV4IDU5OGJmMDYuLjlkYzlh MjAgMTAwNjQ0Ci0tLSBhL3hlbi9hcmNoL2FybS92Z2ljLXYyLmMKKysrIGIv eGVuL2FyY2gvYXJtL3ZnaWMtdjIuYwpAQCAtMjU3LDcgKzI1NywxMCBAQCBz dGF0aWMgaW50IHZnaWNfdjJfdG9fc2dpKHN0cnVjdCB2Y3B1ICp2LCByZWdp c3Rlcl90IHNnaXIpCiAgICAgICAgIHNnaV9tb2RlID0gU0dJX1RBUkdFVF9T RUxGOwogICAgICAgICBicmVhazsKICAgICBkZWZhdWx0OgotICAgICAgICBC VUcoKTsKKyAgICAgICAgcHJpbnRrKFhFTkxPR19HX0RFQlVHCisgICAgICAg ICAgICAgICAiJXB2OiB2R0lDRDogdW5oYW5kbGVkIEdJQ0RfU0dJUiB3cml0 ZSAlIlBSSXJlZ2lzdGVyIiB3aXRoIHdyb25nIG1vZGVcbiIsCisgICAgICAg ICAgICAgICB2LCBzZ2lyKTsKKyAgICAgICAgcmV0dXJuIDA7CiAgICAgfQog CiAgICAgcmV0dXJuIHZnaWNfdG9fc2dpKHYsIHNnaXIsIHNnaV9tb2RlLCB2 aXJxLCB2Y3B1X21hc2spOwotLSAKMi4xLjQKCg== --=separator Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ Xen-announce mailing list Xen-announce@lists.xen.org http://lists.xen.org/xen-announce --=separator-- From xen-announce-bounces@lists.xen.org Wed Feb 25 11:17:12 2015 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Wed, 25 Feb 2015 11:17:12 +0000 Received: from localhost ([127.0.0.1] helo=lists.xen.org) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1YQZwi-00037m-Hd; Wed, 25 Feb 2015 11:16:04 +0000 Received: from mail6.bemta5.messagelabs.com ([195.245.231.135]) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1YQZwh-00037T-45; Wed, 25 Feb 2015 11:16:03 +0000 Received: from [85.158.139.211] by server-2.bemta-5.messagelabs.com id 6E/D2-03511-2FEADE45; Wed, 25 Feb 2015 11:16:02 +0000 X-Env-Sender: iwj@xenbits.xen.org X-Msg-Ref: server-12.tower-206.messagelabs.com!1424862960!11220220!1 X-Originating-IP: [50.57.168.107] X-SpamReason: No, hits=0.5 required=7.0 tests=BODY_RANDOM_LONG X-StarScan-Received: X-StarScan-Version: 6.13.4; banners=-,-,- X-VirusChecked: Checked Received: (qmail 26274 invoked from network); 25 Feb 2015 11:16:01 -0000 Received: from mail.xen.org (HELO mail.xen.org) (50.57.168.107) by server-12.tower-206.messagelabs.com with AES256-SHA encrypted SMTP; 25 Feb 2015 11:16:01 -0000 Received: from xenbits.xen.org ([50.57.170.242]) by mail.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1YQZwY-0004uT-DH; Wed, 25 Feb 2015 11:15:54 +0000 Received: from iwj by xenbits.xen.org with local (Exim 4.72) (envelope-from ) id 1YQZwX-0001DY-PV; Wed, 25 Feb 2015 11:15:53 +0000 Date: Wed, 25 Feb 2015 11:15:53 +0000 Message-Id: Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.428 (Entity 5.428) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Cc: "Xen.org security team" Subject: [Xen-announce] Xen Security Advisory 118 (CVE-2015-1563) - arm: vgic: incorrect rate limiting of guest triggered logging X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.13 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Sender: xen-announce-bounces@lists.xen.org Errors-To: xen-announce-bounces@lists.xen.org --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Xen Security Advisory CVE-2015-1563 / XSA-118 version 2 arm: vgic: incorrect rate limiting of guest triggered logging UPDATES IN VERSION 2 ==================== CVE assigned. ISSUE DESCRIPTION ================= On ARM systems the code which deals with virtualising the GIC distributor would, under various circumstances, log messages on a guest accessible code path without appropriate rate limiting. IMPACT ====== A malicious guest could cause repeated logging to the hypervisor console, leading to a Denial of Service attack. VULNERABLE SYSTEMS ================== Xen 4.4 and later systems running on ARM hardware are vulnerable. x86 systems are not affected. MITIGATION ========== The problematic log messages are issued with priority Warning. Therefore they can be rate limited by adding "loglvl=error/warning" to the hypervisor command line or suppressed entirely by adding "loglvl=error". NOTE REGARDING LACK OF EMBARGO ============================== This bug was publicly reported on xen-devel, before it was appreciated that there was a security problem. CREDITS ======= This issue was discovered by Julien Grall. RESOLUTION ========== Applying the appropriate attached patch(es) resolves this issue. xsa118-unstable-4.5-{1,2}.patch xen-unstable, Xen 4.5.x xsa118-4.4.patch Xen 4.4.x $ sha256sum xsa118*.patch 5741cfe408273bd80e1a03c21a5650f963d7103fd022c688730f55dcf5373433 xsa118-4.4.patch ee24a4c5e12b67d7539f08b644080c87797f31b4402215cd4efbbc6114bffc25 xsa118-4.5-unstable-1.patch bd532e3cd535fcdea51f43631a519012baff068cb62d2205fc25f2c823f031eb xsa118-4.5-unstable-2.patch $ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAEBAgAGBQJU7a6RAAoJEIP+FMlX6CvZR7UH/3zahTQv65m5AZCtXcihzjjd EuTAnc9I1yPcHqyEDgilVsDHCM25R7TA7Fn++sYTkIvzcUAwEfJDhEJxy5SOfWFo pAVbuV8p/0iKOjsufJgY40nNGyhLknPH2p+deH6P039th0X2CdnFpxSHkewjSJQH OTdeLUt2jfvsBBO/ufOH3z1fc+L/L119PDbcAmhiX9JzS4UeqsE9zKzDa/LfwXCm uL5Ggk99zuyNs3xaun6zQfRErFel0qXLIl36MIiyFXtyElD0liO5h15EjityoeXH 6ZVoAex459R9Xrr3f5snoFVazzBfCwnchmMCFqpRNfH7l8VNkdzav3HoUKAbMU8= =8ydP -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa118-4.4.patch" Content-Disposition: attachment; filename="xsa118-4.4.patch" Content-Transfer-Encoding: base64 RnJvbSAxNzJjZjA0ODliNTA0YjM1YzdjMTY2NmZiN2QwMTUwMDY5NzZjNGU3 IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBKdWxpZW4gR3JhbGwg PGp1bGllbi5ncmFsbEBsaW5hcm8ub3JnPgpEYXRlOiBNb24sIDE5IEphbiAy MDE1IDEyOjU5OjQyICswMDAwClN1YmplY3Q6IFtQQVRDSF0geGVuL2FybTog dmdpYzogbWVzc2FnZSBpbiB0aGUgZW11bGF0aW9uIGNvZGUgc2hvdWxkIGJl CiByYXRlLWxpbWl0ZWQKCnByaW50ayBpcyBub3QgcmF0ZWQtbGltaXRlZCBi eSBkZWZhdWx0LiBUaGVyZWZvcmUgYSBtYWxpY2lvdXMgZ3Vlc3QgbWF5CmJl IGFibGUgdG8gZmxvb2QgdGhlIFhlbiBjb25zb2xlLgoKSWYgd2UgdXNlIGdk cHJpbnRrLCB1bmVjZXNzYXJ5IGluZm9ybWF0aW9uIHdpbGwgYmUgcHJpbnRl ZCBzdWNoIGFzIHRoZQpmaWxlbmFtZSBhbmQgdGhlIGxpbmUuIEluc3RlYWQg dXNlIFhFTkxPR19HX0VSUiBjb21iaW5lIHdpdGggJXB2LgoKU2lnbmVkLW9m Zi1ieTogSnVsaWVuIEdyYWxsIDxqdWxpZW4uZ3JhbGxAbGluYXJvLm9yZz4K LS0tCiB4ZW4vYXJjaC9hcm0vdmdpYy5jIHwgNDAgKysrKysrKysrKysrKysr KysrKysrKystLS0tLS0tLS0tLS0tLS0tLQogMSBmaWxlIGNoYW5nZWQsIDIz IGluc2VydGlvbnMoKyksIDE3IGRlbGV0aW9ucygtKQoKZGlmZiAtLWdpdCBh L3hlbi9hcmNoL2FybS92Z2ljLmMgYi94ZW4vYXJjaC9hcm0vdmdpYy5jCmlu ZGV4IDhkMWI3OWUuLmIyMjYyYzYgMTAwNjQ0Ci0tLSBhL3hlbi9hcmNoL2Fy bS92Z2ljLmMKKysrIGIveGVuL2FyY2gvYXJtL3ZnaWMuYwpAQCAtMzMyLDcg KzMzMiw3IEBAIHN0YXRpYyBpbnQgdmdpY19kaXN0cl9tbWlvX3JlYWQoc3Ry dWN0IHZjcHUgKnYsIG1taW9faW5mb190ICppbmZvKQogCiAgICAgY2FzZSBH SUNEX0lDUElEUjI6CiAgICAgICAgIGlmICggZGFidC5zaXplICE9IDIgKSBn b3RvIGJhZF93aWR0aDsKLSAgICAgICAgcHJpbnRrKCJ2R0lDRDogdW5oYW5k bGVkIHJlYWQgZnJvbSBJQ1BJRFIyXG4iKTsKKyAgICAgICAgcHJpbnRrKFhF TkxPR19HX0VSUiAiJXB2OiB2R0lDRDogdW5oYW5kbGVkIHJlYWQgZnJvbSBJ Q1BJRFIyXG4iLCB2KTsKICAgICAgICAgcmV0dXJuIDA7CiAKICAgICAvKiBJ bXBsZW1lbnRhdGlvbiBkZWZpbmVkIC0tIHJlYWQgYXMgemVybyAqLwpAQCAt MzQ5LDE0ICszNDksMTQgQEAgc3RhdGljIGludCB2Z2ljX2Rpc3RyX21taW9f cmVhZChzdHJ1Y3QgdmNwdSAqdiwgbW1pb19pbmZvX3QgKmluZm8pCiAgICAg ICAgIGdvdG8gcmVhZF9hc196ZXJvOwogCiAgICAgZGVmYXVsdDoKLSAgICAg ICAgcHJpbnRrKCJ2R0lDRDogdW5oYW5kbGVkIHJlYWQgciVkIG9mZnNldCAl IzA4eFxuIiwKLSAgICAgICAgICAgICAgIGRhYnQucmVnLCBvZmZzZXQpOwor ICAgICAgICBwcmludGsoWEVOTE9HX0dfRVJSICIlcHY6IHZHSUNEOiB1bmhh bmRsZWQgcmVhZCByJWQgb2Zmc2V0ICUjMDh4XG4iLAorICAgICAgICAgICAg ICAgdiwgZGFidC5yZWcsIG9mZnNldCk7CiAgICAgICAgIHJldHVybiAwOwog ICAgIH0KIAogYmFkX3dpZHRoOgotICAgIHByaW50aygidkdJQ0Q6IGJhZCBy ZWFkIHdpZHRoICVkIHIlZCBvZmZzZXQgJSMwOHhcbiIsCi0gICAgICAgICAg IGRhYnQuc2l6ZSwgZGFidC5yZWcsIG9mZnNldCk7CisgICAgcHJpbnRrKFhF TkxPR19HX0VSUiAiJXB2OiB2R0lDRDogYmFkIHJlYWQgd2lkdGggJWQgciVk IG9mZnNldCAlIzA4eFxuIiwKKyAgICAgICAgICAgdiwgZGFidC5zaXplLCBk YWJ0LnJlZywgb2Zmc2V0KTsKICAgICBkb21haW5fY3Jhc2hfc3luY2hyb25v dXMoKTsKICAgICByZXR1cm4gMDsKIApAQCAtNTIzLDE0ICs1MjMsMTYgQEAg c3RhdGljIGludCB2Z2ljX2Rpc3RyX21taW9fd3JpdGUoc3RydWN0IHZjcHUg KnYsIG1taW9faW5mb190ICppbmZvKQogCiAgICAgY2FzZSBHSUNEX0lTUEVO RFIgLi4uIEdJQ0RfSVNQRU5EUk46CiAgICAgICAgIGlmICggZGFidC5zaXpl ICE9IDAgJiYgZGFidC5zaXplICE9IDIgKSBnb3RvIGJhZF93aWR0aDsKLSAg ICAgICAgcHJpbnRrKCJ2R0lDRDogdW5oYW5kbGVkICVzIHdyaXRlICUjIlBS SXJlZ2lzdGVyIiB0byBJU1BFTkRSJWRcbiIsCi0gICAgICAgICAgICAgICBk YWJ0LnNpemUgPyAid29yZCIgOiAiYnl0ZSIsICpyLCBnaWNkX3JlZyAtIEdJ Q0RfSVNQRU5EUik7CisgICAgICAgIHByaW50ayhYRU5MT0dfR19FUlIKKyAg ICAgICAgICAgICAgICIlcHY6IHZHSUNEOiB1bmhhbmRsZWQgJXMgd3JpdGUg JSMiUFJJcmVnaXN0ZXIiIHRvIElTUEVORFIlZFxuIiwKKyAgICAgICAgICAg ICAgIHYsIGRhYnQuc2l6ZSA/ICJ3b3JkIiA6ICJieXRlIiwgKnIsIGdpY2Rf cmVnIC0gR0lDRF9JU1BFTkRSKTsKICAgICAgICAgcmV0dXJuIDA7CiAKICAg ICBjYXNlIEdJQ0RfSUNQRU5EUiAuLi4gR0lDRF9JQ1BFTkRSTjoKICAgICAg ICAgaWYgKCBkYWJ0LnNpemUgIT0gMCAmJiBkYWJ0LnNpemUgIT0gMiApIGdv dG8gYmFkX3dpZHRoOwotICAgICAgICBwcmludGsoInZHSUNEOiB1bmhhbmRs ZWQgJXMgd3JpdGUgJSMiUFJJcmVnaXN0ZXIiIHRvIElDUEVORFIlZFxuIiwK LSAgICAgICAgICAgICAgIGRhYnQuc2l6ZSA/ICJ3b3JkIiA6ICJieXRlIiwg KnIsIGdpY2RfcmVnIC0gR0lDRF9JQ1BFTkRSKTsKKyAgICAgICAgcHJpbnRr KFhFTkxPR19HX0VSUgorICAgICAgICAgICAgICAgIiVwdjogdkdJQ0Q6IHVu aGFuZGxlZCAlcyB3cml0ZSAlIyJQUklyZWdpc3RlciIgdG8gSUNQRU5EUiVk XG4iLAorICAgICAgICAgICAgICAgdiwgZGFidC5zaXplID8gIndvcmQiIDog ImJ5dGUiLCAqciwgZ2ljZF9yZWcgLSBHSUNEX0lDUEVORFIpOwogICAgICAg ICByZXR1cm4gMDsKIAogICAgIGNhc2UgR0lDRF9JU0FDVElWRVIgLi4uIEdJ Q0RfSVNBQ1RJVkVSTjoKQEAgLTYwNiwxNCArNjA4LDE2IEBAIHN0YXRpYyBp bnQgdmdpY19kaXN0cl9tbWlvX3dyaXRlKHN0cnVjdCB2Y3B1ICp2LCBtbWlv X2luZm9fdCAqaW5mbykKIAogICAgIGNhc2UgR0lDRF9DUEVORFNHSVIgLi4u IEdJQ0RfQ1BFTkRTR0lSTjoKICAgICAgICAgaWYgKCBkYWJ0LnNpemUgIT0g MCAmJiBkYWJ0LnNpemUgIT0gMiApIGdvdG8gYmFkX3dpZHRoOwotICAgICAg ICBwcmludGsoInZHSUNEOiB1bmhhbmRsZWQgJXMgd3JpdGUgJSMiUFJJcmVn aXN0ZXIiIHRvIElDUEVORFNHSVIlZFxuIiwKLSAgICAgICAgICAgICAgIGRh YnQuc2l6ZSA/ICJ3b3JkIiA6ICJieXRlIiwgKnIsIGdpY2RfcmVnIC0gR0lD RF9DUEVORFNHSVIpOworICAgICAgICBwcmludGsoWEVOTE9HX0dfRVJSCisg ICAgICAgICAgICAgICAiJXB2OiB2R0lDRDogdW5oYW5kbGVkICVzIHdyaXRl ICUjIlBSSXJlZ2lzdGVyIiB0byBJQ1BFTkRTR0lSJWRcbiIsCisgICAgICAg ICAgICAgICB2LCBkYWJ0LnNpemUgPyAid29yZCIgOiAiYnl0ZSIsICpyLCBn aWNkX3JlZyAtIEdJQ0RfQ1BFTkRTR0lSKTsKICAgICAgICAgcmV0dXJuIDA7 CiAKICAgICBjYXNlIEdJQ0RfU1BFTkRTR0lSIC4uLiBHSUNEX1NQRU5EU0dJ Uk46CiAgICAgICAgIGlmICggZGFidC5zaXplICE9IDAgJiYgZGFidC5zaXpl ICE9IDIgKSBnb3RvIGJhZF93aWR0aDsKLSAgICAgICAgcHJpbnRrKCJ2R0lD RDogdW5oYW5kbGVkICVzIHdyaXRlICUjIlBSSXJlZ2lzdGVyIiB0byBJU1BF TkRTR0lSJWRcbiIsCi0gICAgICAgICAgICAgICBkYWJ0LnNpemUgPyAid29y ZCIgOiAiYnl0ZSIsICpyLCBnaWNkX3JlZyAtIEdJQ0RfU1BFTkRTR0lSKTsK KyAgICAgICAgcHJpbnRrKFhFTkxPR19HX0VSUgorICAgICAgICAgICAgICAg IiVwdjogdkdJQ0Q6IHVuaGFuZGxlZCAlcyB3cml0ZSAlIyJQUklyZWdpc3Rl ciIgdG8gSVNQRU5EU0dJUiVkXG4iLAorICAgICAgICAgICAgICAgdiwgZGFi dC5zaXplID8gIndvcmQiIDogImJ5dGUiLCAqciwgZ2ljZF9yZWcgLSBHSUNE X1NQRU5EU0dJUik7CiAgICAgICAgIHJldHVybiAwOwogCiAgICAgLyogSW1w bGVtZW50YXRpb24gZGVmaW5lZCAtLSB3cml0ZSBpZ25vcmVkICovCkBAIC02 MzgsMTQgKzY0MiwxNiBAQCBzdGF0aWMgaW50IHZnaWNfZGlzdHJfbW1pb193 cml0ZShzdHJ1Y3QgdmNwdSAqdiwgbW1pb19pbmZvX3QgKmluZm8pCiAgICAg ICAgIGdvdG8gd3JpdGVfaWdub3JlOwogCiAgICAgZGVmYXVsdDoKLSAgICAg ICAgcHJpbnRrKCJ2R0lDRDogdW5oYW5kbGVkIHdyaXRlIHIlZD0lIlBSSXJl Z2lzdGVyIiBvZmZzZXQgJSMwOHhcbiIsCi0gICAgICAgICAgICAgICBkYWJ0 LnJlZywgKnIsIG9mZnNldCk7CisgICAgICAgIHByaW50ayhYRU5MT0dfR19F UlIKKyAgICAgICAgICAgICAgICIlcHY6IHZHSUNEOiB1bmhhbmRsZWQgd3Jp dGUgciVkPSUiUFJJcmVnaXN0ZXIiIG9mZnNldCAlIzA4eFxuIiwKKyAgICAg ICAgICAgICAgIHYsIGRhYnQucmVnLCAqciwgb2Zmc2V0KTsKICAgICAgICAg cmV0dXJuIDA7CiAgICAgfQogCiBiYWRfd2lkdGg6Ci0gICAgcHJpbnRrKCJ2 R0lDRDogYmFkIHdyaXRlIHdpZHRoICVkIHIlZD0lIlBSSXJlZ2lzdGVyIiBv ZmZzZXQgJSMwOHhcbiIsCi0gICAgICAgICAgIGRhYnQuc2l6ZSwgZGFidC5y ZWcsICpyLCBvZmZzZXQpOworICAgIHByaW50ayhYRU5MT0dfR19FUlIKKyAg ICAgICAgICAgIiVwdjogdkdJQ0Q6IGJhZCB3cml0ZSB3aWR0aCAlZCByJWQ9 JSJQUklyZWdpc3RlciIgb2Zmc2V0ICUjMDh4XG4iLAorICAgICAgICAgICB2 LCBkYWJ0LnNpemUsIGRhYnQucmVnLCAqciwgb2Zmc2V0KTsKICAgICBkb21h aW5fY3Jhc2hfc3luY2hyb25vdXMoKTsKICAgICByZXR1cm4gMDsKIAotLSAK Mi4xLjQKCg== --=separator Content-Type: application/octet-stream; name="xsa118-4.5-unstable-1.patch" Content-Disposition: attachment; filename="xsa118-4.5-unstable-1.patch" Content-Transfer-Encoding: base64 RnJvbSBlNjk4ZjRhYjA1YTcxMGU0NDYzMzE3ZWE5NzhkNDI2ZDQzMTA3ZTI3 IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBKdWxpZW4gR3JhbGwg PGp1bGllbi5ncmFsbEBsaW5hcm8ub3JnPgpEYXRlOiBNb24sIDE5IEphbiAy MDE1IDE0OjAxOjA5ICswMDAwClN1YmplY3Q6IFtQQVRDSCAxLzJdIHhlbi9h cm06IHZnaWMtdjM6IG1lc3NhZ2UgaW4gdGhlIGVtdWxhdGlvbiBjb2RlIHNo b3VsZCBiZQogcmF0ZS1saW1pdGVkCgpwcmludGsgYnkgZGVmYXVsdCBpcyBu b3QgcmF0ZS1saW1pdGVkIGJ5IGRlZmF1bHQuIFRoZXJlZm9yZSBhIG1hbGlj aW91cyBndWVzdAptYXkgYmUgYWJsZSB0byBmbG9vZCB0aGUgWGVuIGNvbnNv bGUuCgpJZiB3ZSB1c2UgZ2RwcmludGssIHVubmVjZXNzYXJ5IGluZm9ybWF0 aW9uIHdpbGwgYmUgcHJpbnRlZCBzdWNoIGFzIHRoZQpmaWxlbmFtZSBhbmQg dGhlIGxpbmUuIEluc3RlYWQgdXNlIFhFTkxPR19HX3tFUlIsREVCVUd9IGNv bWJpbmUgd2l0aCAlcHYuCgpBbHNvIHJlbW92ZSB0aGUgdkdJQ3YzIHByZWZp eCB3aGljaCBpcyBub3QgbmVjY2Vzc2FyeSBhbmQgdXBkYXRlIHNvbWUKbWVz c2FnZSB3aGljaCB3ZXJlIHdyb25nLgoKU2lnbmVkLW9mZi1ieTogSnVsaWVu IEdyYWxsIDxqdWxpZW4uZ3JhbGxAbGluYXJvLm9yZz4KLS0tCiB4ZW4vYXJj aC9hcm0vdmdpYy12My5jIHwgMTA5ICsrKysrKysrKysrKysrKysrKysrKysr KysrKy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0KIDEgZmlsZSBjaGFuZ2VkLCA2 MSBpbnNlcnRpb25zKCspLCA0OCBkZWxldGlvbnMoLSkKCmRpZmYgLS1naXQg YS94ZW4vYXJjaC9hcm0vdmdpYy12My5jIGIveGVuL2FyY2gvYXJtL3ZnaWMt djMuYwppbmRleCBhZTQ0ODJjLi5iZWNlMTg5IDEwMDY0NAotLS0gYS94ZW4v YXJjaC9hcm0vdmdpYy12My5jCisrKyBiL3hlbi9hcmNoL2FybS92Z2ljLXYz LmMKQEAgLTE2OCwxMyArMTY4LDE0IEBAIHN0YXRpYyBpbnQgX192Z2ljX3Yz X3JkaXN0cl9yZF9tbWlvX3JlYWQoc3RydWN0IHZjcHUgKnYsIG1taW9faW5m b190ICppbmZvLAogICAgICAgICAvKiBSZXNlcnZlZDAgKi8KICAgICAgICAg Z290byByZWFkX2FzX3plcm87CiAgICAgZGVmYXVsdDoKLSAgICAgICAgcHJp bnRrKCJ2R0lDdjM6IHZHSUNSOiByZWFkIHIlZCBvZmZzZXQgJSMwOHhcbiBu b3QgZm91bmQiLAotICAgICAgICAgICAgICAgZGFidC5yZWcsIGdpY3JfcmVn KTsKKyAgICAgICAgcHJpbnRrKFhFTkxPR19HX0VSUgorICAgICAgICAgICAg ICAgIiVwdjogdkdJQ1I6IHJlYWQgciVkIG9mZnNldCAlIzA4eFxuIG5vdCBm b3VuZCIsCisgICAgICAgICAgICAgICB2LCBkYWJ0LnJlZywgZ2ljcl9yZWcp OwogICAgICAgICByZXR1cm4gMDsKICAgICB9CiBiYWRfd2lkdGg6Ci0gICAg cHJpbnRrKCJ2R0lDdjM6IHZHSUNSOiBiYWQgcmVhZCB3aWR0aCAlZCByJWQg b2Zmc2V0ICUjMDh4XG4iLAotICAgICAgICAgICBkYWJ0LnNpemUsIGRhYnQu cmVnLCBnaWNyX3JlZyk7CisgICAgcHJpbnRrKFhFTkxPR19HX0VSUiAiJXB2 IHZHSUNSOiBiYWQgcmVhZCB3aWR0aCAlZCByJWQgb2Zmc2V0ICUjMDh4XG4i LAorICAgICAgICAgICB2LCBkYWJ0LnNpemUsIGRhYnQucmVnLCBnaWNyX3Jl Zyk7CiAgICAgZG9tYWluX2NyYXNoX3N5bmNocm9ub3VzKCk7CiAgICAgcmV0 dXJuIDA7CiAKQEAgLTI0NCwxMiArMjQ1LDE0IEBAIHN0YXRpYyBpbnQgX192 Z2ljX3YzX3JkaXN0cl9yZF9tbWlvX3dyaXRlKHN0cnVjdCB2Y3B1ICp2LCBt bWlvX2luZm9fdCAqaW5mbywKICAgICAgICAgLyogUk8gKi8KICAgICAgICAg Z290byB3cml0ZV9pZ25vcmU7CiAgICAgZGVmYXVsdDoKLSAgICAgICAgcHJp bnRrKCJ2R0lDUjogd3JpdGUgciVkIG9mZnNldCAlIzA4eFxuIG5vdCBmb3Vu ZCIsIGRhYnQucmVnLCBnaWNyX3JlZyk7CisgICAgICAgIHByaW50ayhYRU5M T0dfR19FUlIgIiVwdjogdkdJQ1I6IHdyaXRlIHIlZCBvZmZzZXQgJSMwOHhc biBub3QgZm91bmQiLAorICAgICAgICAgICAgICAgdiwgZGFidC5yZWcsIGdp Y3JfcmVnKTsKICAgICAgICAgcmV0dXJuIDA7CiAgICAgfQogYmFkX3dpZHRo OgotICAgIHByaW50aygidkdJQ1I6IGJhZCB3cml0ZSB3aWR0aCAlZCByJWQ9 JSJQUklyZWdpc3RlciIgb2Zmc2V0ICUjMDh4XG4iLAotICAgICAgICAgICBk YWJ0LnNpemUsIGRhYnQucmVnLCAqciwgZ2ljcl9yZWcpOworICAgIHByaW50 ayhYRU5MT0dfR19FUlIKKyAgICAgICAgICAiJXB2OiB2R0lDUjogYmFkIHdy aXRlIHdpZHRoICVkIHIlZD0lIlBSSXJlZ2lzdGVyIiBvZmZzZXQgJSMwOHhc biIsCisgICAgICAgICAgdiwgZGFidC5zaXplLCBkYWJ0LnJlZywgKnIsIGdp Y3JfcmVnKTsKICAgICBkb21haW5fY3Jhc2hfc3luY2hyb25vdXMoKTsKICAg ICByZXR1cm4gMDsKIApAQCAtMzQ1LDE1ICszNDgsMTYgQEAgc3RhdGljIGlu dCBfX3ZnaWNfdjNfZGlzdHJfY29tbW9uX21taW9fcmVhZChzdHJ1Y3QgdmNw dSAqdiwgbW1pb19pbmZvX3QgKmluZm8sCiAgICAgICAgIHZnaWNfdW5sb2Nr X3JhbmsodiwgcmFuaywgZmxhZ3MpOwogICAgICAgICByZXR1cm4gMTsKICAg ICBkZWZhdWx0OgotICAgICAgICBwcmludGsoInZHSUN2MzogdkdJQ0QvdkdJ Q1I6IHVuaGFuZGxlZCByZWFkIHIlZCBvZmZzZXQgJSMwOHhcbiIsCi0gICAg ICAgICAgICAgICBkYWJ0LnJlZywgcmVnKTsKKyAgICAgICAgcHJpbnRrKFhF TkxPR19HX0VSUgorICAgICAgICAgICAgICAgIiVwdjogdkdJQ0QvdkdJQ1I6 IHVuaGFuZGxlZCByZWFkIHIlZCBvZmZzZXQgJSMwOHhcbiIsCisgICAgICAg ICAgICAgICB2LCBkYWJ0LnJlZywgcmVnKTsKICAgICAgICAgcmV0dXJuIDA7 CiAgICAgfQogCiBiYWRfd2lkdGg6Ci0gICAgZHByaW50ayhYRU5MT0dfRVJS LAotICAgICAgICAgICAgInZHSUN2MzogdkdJQ0QvdkdJQ1I6IGJhZCByZWFk IHdpZHRoICVkIHIlZCBvZmZzZXQgJSMwOHhcbiIsCi0gICAgICAgICAgICBk YWJ0LnNpemUsIGRhYnQucmVnLCByZWcpOworICAgIHByaW50ayhYRU5MT0df R19FUlIKKyAgICAgICAgICAgIiVwdjogdkdJQ0QvdkdJQ1I6IGJhZCByZWFk IHdpZHRoICVkIHIlZCBvZmZzZXQgJSMwOHhcbiIsCisgICAgICAgICAgIHYs IGRhYnQuc2l6ZSwgZGFidC5yZWcsIHJlZyk7CiAgICAgZG9tYWluX2NyYXNo X3N5bmNocm9ub3VzKCk7CiAgICAgcmV0dXJuIDA7CiAKQEAgLTQ1OCwxNSAr NDYyLDE2IEBAIHN0YXRpYyBpbnQgX192Z2ljX3YzX2Rpc3RyX2NvbW1vbl9t bWlvX3dyaXRlKHN0cnVjdCB2Y3B1ICp2LCBtbWlvX2luZm9fdCAqaW5mbywK ICAgICAgICAgdmdpY191bmxvY2tfcmFuayh2LCByYW5rLCBmbGFncyk7CiAg ICAgICAgIHJldHVybiAxOwogICAgIGRlZmF1bHQ6Ci0gICAgICAgIHByaW50 aygidkdJQ3YzOiB2R0lDRC92R0lDUjogdW5oYW5kbGVkIHdyaXRlIHIlZCAi Ci0gICAgICAgICAgICAgICAiPSUiUFJJcmVnaXN0ZXIiIG9mZnNldCAlIzA4 eFxuIiwgZGFidC5yZWcsICpyLCByZWcpOworICAgICAgICBwcmludGsoWEVO TE9HX0dfRVJSCisgICAgICAgICAgICAgICAiJXB2OiB2R0lDRC92R0lDUjog dW5oYW5kbGVkIHdyaXRlIHIlZD0lIlBSSXJlZ2lzdGVyIiBvZmZzZXQgJSMw OHhcbiIsCisgICAgICAgICAgICAgICB2LCBkYWJ0LnJlZywgKnIsIHJlZyk7 CiAgICAgICAgIHJldHVybiAwOwogICAgIH0KIAogYmFkX3dpZHRoOgotICAg IGRwcmludGsoWEVOTE9HX0VSUiwKLSAgICAgICAgICAgICJ2R0lDdjM6IHZH SUNEL3ZHSUNSOiBiYWQgd3JpdGUgd2lkdGggJWQgciVkPSUiUFJJcmVnaXN0 ZXIiICIKLSAgICAgICAgICAgICJvZmZzZXQgJSMwOHhcbiIsIGRhYnQuc2l6 ZSwgZGFidC5yZWcsICpyLCByZWcpOworICAgIHByaW50ayhYRU5MT0dfR19F UlIKKyAgICAgICAgICAgIiVwdjogdkdJQ0QvdkdJQ1I6IGJhZCB3cml0ZSB3 aWR0aCAlZCByJWQ9JSJQUklyZWdpc3RlciIgb2Zmc2V0ICUjMDh4XG4iLAor ICAgICAgICAgICB2LCBkYWJ0LnNpemUsIGRhYnQucmVnLCAqciwgcmVnKTsK ICAgICBkb21haW5fY3Jhc2hfc3luY2hyb25vdXMoKTsKICAgICByZXR1cm4g MDsKIApAQCAtNTIxLDEzICs1MjYsMTQgQEAgc3RhdGljIGludCB2Z2ljX3Yz X3JkaXN0cl9zZ2lfbW1pb19yZWFkKHN0cnVjdCB2Y3B1ICp2LCBtbWlvX2lu Zm9fdCAqaW5mbywKICAgICAgICAgaWYgKCBkYWJ0LnNpemUgIT0gREFCVF9X T1JEICkgZ290byBiYWRfd2lkdGg7CiAgICAgICAgIHJldHVybiAxOwogICAg IGRlZmF1bHQ6Ci0gICAgICAgIHByaW50aygidkdJQ3YzOiB2R0lDUjogcmVh ZCByJWQgb2Zmc2V0ICUjMDh4XG4gbm90IGZvdW5kIiwKLSAgICAgICAgICAg ICAgIGRhYnQucmVnLCBnaWNyX3JlZyk7CisgICAgICAgIHByaW50ayhYRU5M T0dfR19FUlIKKyAgICAgICAgICAgICAgICIlcHY6IHZHSUNSOiBTR0k6IHJl YWQgciVkIG9mZnNldCAlIzA4eFxuIG5vdCBmb3VuZCIsCisgICAgICAgICAg ICAgICB2LCBkYWJ0LnJlZywgZ2ljcl9yZWcpOwogICAgICAgICByZXR1cm4g MDsKICAgICB9CiBiYWRfd2lkdGg6Ci0gICAgcHJpbnRrKCJ2R0lDdjM6IHZH SUNSOiBiYWQgcmVhZCB3aWR0aCAlZCByJWQgb2Zmc2V0ICUjMDh4XG4iLAot ICAgICAgICAgICBkYWJ0LnNpemUsIGRhYnQucmVnLCBnaWNyX3JlZyk7Cisg ICAgcHJpbnRrKFhFTkxPR19HX0VSUiAiJXB2OiB2R0lDUjogU0dJOiBiYWQg cmVhZCB3aWR0aCAlZCByJWQgb2Zmc2V0ICUjMDh4XG4iLAorICAgICAgICAg ICB2LCBkYWJ0LnNpemUsIGRhYnQucmVnLCBnaWNyX3JlZyk7CiAgICAgZG9t YWluX2NyYXNoX3N5bmNocm9ub3VzKCk7CiAgICAgcmV0dXJuIDA7CiAKQEAg LTU4NSwxNCArNTkxLDE2IEBAIHN0YXRpYyBpbnQgdmdpY192M19yZGlzdHJf c2dpX21taW9fd3JpdGUoc3RydWN0IHZjcHUgKnYsIG1taW9faW5mb190ICpp bmZvLAogICAgICAgICAvKiBXZSBkbyBub3QgaW1wbGVtZW50IHNlY3VyaXR5 IGV4dGVuc2lvbnMgZm9yIGd1ZXN0cywgd3JpdGUgaWdub3JlICovCiAgICAg ICAgIGdvdG8gd3JpdGVfaWdub3JlOwogICAgIGRlZmF1bHQ6Ci0gICAgICAg IHByaW50aygidkdJQ3YzOiB2R0lDUiBTR0k6IHdyaXRlIHIlZCBvZmZzZXQg JSMwOHhcbiBub3QgZm91bmQiLAotICAgICAgICAgICAgICAgZGFidC5yZWcs IGdpY3JfcmVnKTsKKyAgICAgICAgcHJpbnRrKFhFTkxPR19HX0VSUgorICAg ICAgICAgICAgICAgIiVwdjogdkdJQ1I6IFNHSTogd3JpdGUgciVkIG9mZnNl dCAlIzA4eFxuIG5vdCBmb3VuZCIsCisgICAgICAgICAgICAgICB2LCBkYWJ0 LnJlZywgZ2ljcl9yZWcpOwogICAgICAgICByZXR1cm4gMDsKICAgICB9CiAK IGJhZF93aWR0aDoKLSAgICBwcmludGsoInZHSUNSIFNHSTogYmFkIHdyaXRl IHdpZHRoICVkIHIlZD0lIlBSSXJlZ2lzdGVyIiBvZmZzZXQgJSMwOHhcbiIs Ci0gICAgICAgICAgIGRhYnQuc2l6ZSwgZGFidC5yZWcsICpyLCBnaWNyX3Jl Zyk7CisgICAgcHJpbnRrKFhFTkxPR19HX0VSUgorICAgICAgICAgICAiJXB2 OiB2R0lDUjogU0dJOiBiYWQgd3JpdGUgd2lkdGggJWQgciVkPSUiUFJJcmVn aXN0ZXIiIG9mZnNldCAlIzA4eFxuIiwKKyAgICAgICAgICAgdiwgZGFidC5z aXplLCBkYWJ0LnJlZywgKnIsIGdpY3JfcmVnKTsKICAgICBkb21haW5fY3Jh c2hfc3luY2hyb25vdXMoKTsKICAgICByZXR1cm4gMDsKIApAQCAtNjE4LDkg KzYyNiw5IEBAIHN0YXRpYyBpbnQgdmdpY192M19yZGlzdHJfbW1pb19yZWFk KHN0cnVjdCB2Y3B1ICp2LCBtbWlvX2luZm9fdCAqaW5mbykKICAgICBlbHNl ICBpZiAoIChvZmZzZXQgPj0gU1pfNjRLKSAmJiAob2Zmc2V0IDwgMiAqIFNa XzY0SykgKQogICAgICAgICByZXR1cm4gdmdpY192M19yZGlzdHJfc2dpX21t aW9fcmVhZCh2LCBpbmZvLCAob2Zmc2V0IC0gU1pfNjRLKSk7CiAgICAgZWxz ZQotICAgICAgICBnZHByaW50ayhYRU5MT0dfV0FSTklORywKLSAgICAgICAg ICAgICAgICAgInZHSUN2MzogdkdJQ1I6IHVua25vd24gZ3BhIHJlYWQgYWRk cmVzcyAlIlBSSXBhZGRyIlxuIiwKLSAgICAgICAgICAgICAgICAgaW5mby0+ Z3BhKTsKKyAgICAgICAgcHJpbnRrKFhFTkxPR19HX1dBUk5JTkcKKyAgICAg ICAgICAgICAgICIlcHY6IHZHSUNSOiB1bmtub3duIGdwYSByZWFkIGFkZHJl c3MgJSJQUklwYWRkciJcbiIsCisgICAgICAgICAgICAgICAgdiwgaW5mby0+ Z3BhKTsKIAogICAgIHJldHVybiAwOwogfQpAQCAtNjQyLDkgKzY1MCw5IEBA IHN0YXRpYyBpbnQgdmdpY192M19yZGlzdHJfbW1pb193cml0ZShzdHJ1Y3Qg dmNwdSAqdiwgbW1pb19pbmZvX3QgKmluZm8pCiAgICAgZWxzZSAgaWYgKCAo b2Zmc2V0ID49IFNaXzY0SykgJiYgKG9mZnNldCA8IDIgKiBTWl82NEspICkK ICAgICAgICAgcmV0dXJuIHZnaWNfdjNfcmRpc3RyX3NnaV9tbWlvX3dyaXRl KHYsIGluZm8sIChvZmZzZXQgLSBTWl82NEspKTsKICAgICBlbHNlCi0gICAg ICAgIGdkcHJpbnRrKFhFTkxPR19XQVJOSU5HLAotICAgICAgICAgICAgICAg ICAidkdJQ1YzOiB2R0lDUjogdW5rbm93biBncGEgd3JpdGUgYWRkcmVzcyAl IlBSSXBhZGRyIlxuIiwKLSAgICAgICAgICAgICAgICAgaW5mby0+Z3BhKTsK KyAgICAgICAgcHJpbnRrKFhFTkxPR19HX1dBUk5JTkcKKyAgICAgICAgICAg ICAgICIlcHY6IHZHSUNSOiB1bmtub3duIGdwYSB3cml0ZSBhZGRyZXNzICUi UFJJcGFkZHIiXG4iLAorICAgICAgICAgICAgICAgdiwgaW5mby0+Z3BhKTsK IAogICAgIHJldHVybiAwOwogfQpAQCAtNzcwLDE4ICs3NzgsMTkgQEAgc3Rh dGljIGludCB2Z2ljX3YzX2Rpc3RyX21taW9fcmVhZChzdHJ1Y3QgdmNwdSAq diwgbW1pb19pbmZvX3QgKmluZm8pCiAgICAgY2FzZSAweGYzMCAuLi4gMHg1 ZmNjOgogICAgIGNhc2UgMHg4MDAwIC4uLiAweGJmY2M6CiAgICAgICAgIC8q IFRoZXNlIGFyZSByZXNlcnZlZCByZWdpc3RlciBhZGRyZXNzZXMgKi8KLSAg ICAgICAgcHJpbnRrKCJ2R0lDdjM6IHZHSUNEOiByZWFkIHVua25vd24gMHgw MGMgLi4gMHhmY2MgciVkIG9mZnNldCAlIzA4eFxuIiwKLSAgICAgICAgICAg ICAgIGRhYnQucmVnLCBnaWNkX3JlZyk7CisgICAgICAgIHByaW50ayhYRU5M T0dfR19ERUJVRworICAgICAgICAgICAgICAgIiVwdjogdkdJQ0Q6IFJBWiBv biByZXNlcnZlZCByZWdpc3RlciBvZmZzZXQgJSMwOHhcbiIsCisgICAgICAg ICAgICAgICB2LCBnaWNkX3JlZyk7CiAgICAgICAgIGdvdG8gcmVhZF9hc196 ZXJvOwogICAgIGRlZmF1bHQ6Ci0gICAgICAgIHByaW50aygidkdJQ3YzOiB2 R0lDRDogdW5oYW5kbGVkIHJlYWQgciVkIG9mZnNldCAlIzA4eFxuIiwKLSAg ICAgICAgICAgICAgIGRhYnQucmVnLCBnaWNkX3JlZyk7CisgICAgICAgIHBy aW50ayhYRU5MT0dfR19FUlIgIiVwdjogdkdJQ0Q6IHVuaGFuZGxlZCByZWFk IHIlZCBvZmZzZXQgJSMwOHhcbiIsCisgICAgICAgICAgICAgICB2LCBkYWJ0 LnJlZywgZ2ljZF9yZWcpOwogICAgICAgICByZXR1cm4gMDsKICAgICB9CiAK IGJhZF93aWR0aDoKLSAgICBkcHJpbnRrKFhFTkxPR19FUlIsICJ2R0lDdjM6 IHZHSUNEOiBiYWQgcmVhZCB3aWR0aCAlZCByJWQgb2Zmc2V0ICUjMDh4XG4i LAotICAgICAgICAgICAgZGFidC5zaXplLCBkYWJ0LnJlZywgZ2ljZF9yZWcp OworICAgIHByaW50ayhYRU5MT0dfR19FUlIgIiVwdjogdkdJQ0Q6IGJhZCBy ZWFkIHdpZHRoICVkIHIlZCBvZmZzZXQgJSMwOHhcbiIsCisgICAgICAgICAg IHYsIGRhYnQuc2l6ZSwgZGFidC5yZWcsIGdpY2RfcmVnKTsKICAgICBkb21h aW5fY3Jhc2hfc3luY2hyb25vdXMoKTsKICAgICByZXR1cm4gMDsKIApAQCAt ODQwLDggKzg0OSw5IEBAIHN0YXRpYyBpbnQgdmdpY192M19kaXN0cl9tbWlv X3dyaXRlKHN0cnVjdCB2Y3B1ICp2LCBtbWlvX2luZm9fdCAqaW5mbykKICAg ICBjYXNlIDB4MDIwIC4uLiAweDAzYzoKICAgICBjYXNlIDB4YzAwMCAuLi4g MHhmZmNjOgogICAgICAgICAvKiBJbXBsZW1lbnRhdGlvbiBkZWZpbmVkIC0t IHdyaXRlIGlnbm9yZWQgKi8KLSAgICAgICAgcHJpbnRrKCJ2R0lDdjM6IHZH SUNEOiB3cml0ZSB1bmtub3duIDB4MDIwIC0gMHgwM2MgciVkIG9mZnNldCAl IzA4eFxuIiwKLSAgICAgICAgICAgICAgIGRhYnQucmVnLCBnaWNkX3JlZyk7 CisgICAgICAgIHByaW50ayhYRU5MT0dfR19ERUJVRworICAgICAgICAgICAg ICAgIiVwdjogdkdJQ0Q6IFdJIG9uIGltcGxlbWVudGF0aW9uIGRlZmluZWQg cmVnaXN0ZXIgb2Zmc2V0ICUjMDh4XG4iLAorICAgICAgICAgICAgICAgdiwg Z2ljZF9yZWcpOwogICAgICAgICBnb3RvIHdyaXRlX2lnbm9yZTsKICAgICBj YXNlIEdJQ0RfSUdST1VQUiAuLi4gR0lDRF9JR1JPVVBSTjoKICAgICBjYXNl IEdJQ0RfSVNFTkFCTEVSIC4uLiBHSUNEX0lTRU5BQkxFUk46CkBAIC04ODUs OCArODk1LDkgQEAgc3RhdGljIGludCB2Z2ljX3YzX2Rpc3RyX21taW9fd3Jp dGUoc3RydWN0IHZjcHUgKnYsIG1taW9faW5mb190ICppbmZvKQogICAgICAg ICAgICAgbmV3X3RhcmdldCA9IG5ld19pcm91dGVyICYgTVBJRFJfQUZGMF9N QVNLOwogICAgICAgICAgICAgaWYgKCBuZXdfdGFyZ2V0ID49IHYtPmRvbWFp bi0+bWF4X3ZjcHVzICkKICAgICAgICAgICAgIHsKLSAgICAgICAgICAgICAg ICBwcmludGsoInZHSUN2MzogdkdJQ0Q6IHdyb25nIGlyb3V0ZXIgYXQgb2Zm c2V0ICUjMDh4XG4gdmFsIDB4JWx4IHZjcHUgJXgiLAotICAgICAgICAgICAg ICAgICAgICAgICBnaWNkX3JlZywgbmV3X3RhcmdldCwgdi0+ZG9tYWluLT5t YXhfdmNwdXMpOworICAgICAgICAgICAgICAgIHByaW50ayhYRU5MT0dfR19E RUJVRworICAgICAgICAgICAgICAgICAgICAgICAiJXB2OiB2R0lDRDogd3Jv bmcgaXJvdXRlciBhdCBvZmZzZXQgJSMwOHhcbiB2YWwgMHglbHggdmNwdSAl eCIsCisgICAgICAgICAgICAgICAgICAgICAgIHYsIGdpY2RfcmVnLCBuZXdf dGFyZ2V0LCB2LT5kb21haW4tPm1heF92Y3B1cyk7CiAgICAgICAgICAgICAg ICAgdmdpY191bmxvY2tfcmFuayh2LCByYW5rLCBmbGFncyk7CiAgICAgICAg ICAgICAgICAgcmV0dXJuIDA7CiAgICAgICAgICAgICB9CkBAIC05MjYsMTkg KzkzNywyMSBAQCBzdGF0aWMgaW50IHZnaWNfdjNfZGlzdHJfbW1pb193cml0 ZShzdHJ1Y3QgdmNwdSAqdiwgbW1pb19pbmZvX3QgKmluZm8pCiAgICAgY2Fz ZSAweGYzMCAuLi4gMHg1ZmNjOgogICAgIGNhc2UgMHg4MDAwIC4uLiAweGJm Y2M6CiAgICAgICAgIC8qIFJlc2VydmVkIHJlZ2lzdGVyIGFkZHJlc3NlcyAq LwotICAgICAgICBwcmludGsoInZHSUN2MzogdkdJQ0Q6IHdyaXRlIHVua25v d24gMHgwMGMgMHhmY2MgIHIlZCBvZmZzZXQgJSMwOHhcbiIsCi0gICAgICAg ICAgICAgICAgZGFidC5yZWcsIGdpY2RfcmVnKTsKKyAgICAgICAgcHJpbnRr KFhFTkxPR19HX0RFQlVHCisgICAgICAgICAgICAgICAiJXB2OiB2R0lDRDog d3JpdGUgdW5rbm93biAweDAwYyAweGZjYyAgciVkIG9mZnNldCAlIzA4eFxu IiwKKyAgICAgICAgICAgICAgIHYsIGRhYnQucmVnLCBnaWNkX3JlZyk7CiAg ICAgICAgIGdvdG8gd3JpdGVfaWdub3JlOwogICAgIGRlZmF1bHQ6Ci0gICAg ICAgIHByaW50aygidkdJQ3YzOiB2R0lDRDogdW5oYW5kbGVkIHdyaXRlIHIl ZD0lIlBSSXJlZ2lzdGVyIiAiCi0gICAgICAgICAgICAgICAib2Zmc2V0ICUj MDh4XG4iLCBkYWJ0LnJlZywgKnIsIGdpY2RfcmVnKTsKKyAgICAgICAgcHJp bnRrKFhFTkxPR19HX0VSUgorICAgICAgICAgICAgICAgIiVwdjogdkdJQ0Q6 IHVuaGFuZGxlZCB3cml0ZSByJWQ9JSJQUklyZWdpc3RlciIgb2Zmc2V0ICUj MDh4XG4iLAorICAgICAgICAgICAgICAgdiwgZGFidC5yZWcsICpyLCBnaWNk X3JlZyk7CiAgICAgICAgIHJldHVybiAwOwogICAgIH0KIAogYmFkX3dpZHRo OgotICAgIGRwcmludGsoWEVOTE9HX0VSUiwKLSAgICAgICAgICAgICJWR0lD djM6IHZHSUNEOiBiYWQgd3JpdGUgd2lkdGggJWQgciVkPSUiUFJJcmVnaXN0 ZXIiICIKLSAgICAgICAgICAgICJvZmZzZXQgJSMwOHhcbiIsIGRhYnQuc2l6 ZSwgZGFidC5yZWcsICpyLCBnaWNkX3JlZyk7CisgICAgcHJpbnRrKFhFTkxP R19HX0VSUgorICAgICAgICAgICAiJXB2OiB2R0lDRDogYmFkIHdyaXRlIHdp ZHRoICVkIHIlZD0lIlBSSXJlZ2lzdGVyIiBvZmZzZXQgJSMwOHhcbiIsCisg ICAgICAgICAgIHYsIGRhYnQuc2l6ZSwgZGFidC5yZWcsICpyLCBnaWNkX3Jl Zyk7CiAgICAgZG9tYWluX2NyYXNoX3N5bmNocm9ub3VzKCk7CiAgICAgcmV0 dXJuIDA7CiAKLS0gCjIuMS40Cgo= --=separator Content-Type: application/octet-stream; name="xsa118-4.5-unstable-2.patch" Content-Disposition: attachment; filename="xsa118-4.5-unstable-2.patch" Content-Transfer-Encoding: base64 RnJvbSBlOGZhNDY5NTk1ZTI5YjJkYmU2ZGRlM2E3N2VlMmVhMmQ5ZTkzMjgz IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBKdWxpZW4gR3JhbGwg PGp1bGllbi5ncmFsbEBsaW5hcm8ub3JnPgpEYXRlOiBNb24sIDE5IEphbiAy MDE1IDEyOjU5OjQyICswMDAwClN1YmplY3Q6IFtQQVRDSCAyLzJdIHhlbi9h cm06IHZnaWMtdjI6IG1lc3NhZ2UgaW4gdGhlIGVtdWxhdGlvbiBjb2RlIHNo b3VsZCBiZQogcmF0ZS1saW1pdGVkCgpwcmludGsgaXMgbm90IHJhdGVkLWxp bWl0ZWQgYnkgZGVmYXVsdC4gVGhlcmVmb3JlIGEgbWFsaWNpb3VzIGd1ZXN0 IG1heQpiZSBhYmxlIHRvIGZsb29kIHRoZSBYZW4gY29uc29sZS4KCklmIHdl IHVzZSBnZHByaW50aywgdW5lY2Vzc2FyeSBpbmZvcm1hdGlvbiB3aWxsIGJl IHByaW50ZWQgc3VjaCBhcyB0aGUKZmlsZW5hbWUgYW5kIHRoZSBsaW5lLiBJ bnN0ZWFkIHVzZSBYRU5MT0dfR19FUlIgY29tYmluZSB3aXRoICVwdi4KClNp Z25lZC1vZmYtYnk6IEp1bGllbiBHcmFsbCA8anVsaWVuLmdyYWxsQGxpbmFy by5vcmc+Ci0tLQogeGVuL2FyY2gvYXJtL3ZnaWMtdjIuYyB8IDQwICsrKysr KysrKysrKysrKysrKysrKysrLS0tLS0tLS0tLS0tLS0tLS0KIDEgZmlsZSBj aGFuZ2VkLCAyMyBpbnNlcnRpb25zKCspLCAxNyBkZWxldGlvbnMoLSkKCmRp ZmYgLS1naXQgYS94ZW4vYXJjaC9hcm0vdmdpYy12Mi5jIGIveGVuL2FyY2gv YXJtL3ZnaWMtdjIuYwppbmRleCA5ZGM5YTIwLi4zYjg3ZjU0IDEwMDY0NAot LS0gYS94ZW4vYXJjaC9hcm0vdmdpYy12Mi5jCisrKyBiL3hlbi9hcmNoL2Fy bS92Z2ljLXYyLmMKQEAgLTE5OCw3ICsxOTgsNyBAQCBzdGF0aWMgaW50IHZn aWNfdjJfZGlzdHJfbW1pb19yZWFkKHN0cnVjdCB2Y3B1ICp2LCBtbWlvX2lu Zm9fdCAqaW5mbykKIAogICAgIGNhc2UgR0lDRF9JQ1BJRFIyOgogICAgICAg ICBpZiAoIGRhYnQuc2l6ZSAhPSBEQUJUX1dPUkQgKSBnb3RvIGJhZF93aWR0 aDsKLSAgICAgICAgcHJpbnRrKCJ2R0lDRDogdW5oYW5kbGVkIHJlYWQgZnJv bSBJQ1BJRFIyXG4iKTsKKyAgICAgICAgcHJpbnRrKFhFTkxPR19HX0VSUiAi JXB2OiB2R0lDRDogdW5oYW5kbGVkIHJlYWQgZnJvbSBJQ1BJRFIyXG4iLCB2 KTsKICAgICAgICAgcmV0dXJuIDA7CiAKICAgICAvKiBJbXBsZW1lbnRhdGlv biBkZWZpbmVkIC0tIHJlYWQgYXMgemVybyAqLwpAQCAtMjE1LDE0ICsyMTUs MTQgQEAgc3RhdGljIGludCB2Z2ljX3YyX2Rpc3RyX21taW9fcmVhZChzdHJ1 Y3QgdmNwdSAqdiwgbW1pb19pbmZvX3QgKmluZm8pCiAgICAgICAgIGdvdG8g cmVhZF9hc196ZXJvOwogCiAgICAgZGVmYXVsdDoKLSAgICAgICAgcHJpbnRr KCJ2R0lDRDogdW5oYW5kbGVkIHJlYWQgciVkIG9mZnNldCAlIzA4eFxuIiwK LSAgICAgICAgICAgICAgIGRhYnQucmVnLCBnaWNkX3JlZyk7CisgICAgICAg IHByaW50ayhYRU5MT0dfR19FUlIgIiVwdjogdkdJQ0Q6IHVuaGFuZGxlZCBy ZWFkIHIlZCBvZmZzZXQgJSMwOHhcbiIsCisgICAgICAgICAgICAgICB2LCBk YWJ0LnJlZywgZ2ljZF9yZWcpOwogICAgICAgICByZXR1cm4gMDsKICAgICB9 CiAKIGJhZF93aWR0aDoKLSAgICBwcmludGsoInZHSUNEOiBiYWQgcmVhZCB3 aWR0aCAlZCByJWQgb2Zmc2V0ICUjMDh4XG4iLAotICAgICAgICAgICBkYWJ0 LnNpemUsIGRhYnQucmVnLCBnaWNkX3JlZyk7CisgICAgcHJpbnRrKFhFTkxP R19HX0VSUiAiJXB2OiB2R0lDRDogYmFkIHJlYWQgd2lkdGggJWQgciVkIG9m ZnNldCAlIzA4eFxuIiwKKyAgICAgICAgICAgdiwgZGFidC5zaXplLCBkYWJ0 LnJlZywgZ2ljZF9yZWcpOwogICAgIGRvbWFpbl9jcmFzaF9zeW5jaHJvbm91 cygpOwogICAgIHJldHVybiAwOwogCkBAIC0zMzEsMTQgKzMzMSwxNiBAQCBz dGF0aWMgaW50IHZnaWNfdjJfZGlzdHJfbW1pb193cml0ZShzdHJ1Y3QgdmNw dSAqdiwgbW1pb19pbmZvX3QgKmluZm8pCiAKICAgICBjYXNlIEdJQ0RfSVNQ RU5EUiAuLi4gR0lDRF9JU1BFTkRSTjoKICAgICAgICAgaWYgKCBkYWJ0LnNp emUgIT0gREFCVF9CWVRFICYmIGRhYnQuc2l6ZSAhPSBEQUJUX1dPUkQgKSBn b3RvIGJhZF93aWR0aDsKLSAgICAgICAgcHJpbnRrKCJ2R0lDRDogdW5oYW5k bGVkICVzIHdyaXRlICUjIlBSSXJlZ2lzdGVyIiB0byBJU1BFTkRSJWRcbiIs Ci0gICAgICAgICAgICAgICBkYWJ0LnNpemUgPyAid29yZCIgOiAiYnl0ZSIs ICpyLCBnaWNkX3JlZyAtIEdJQ0RfSVNQRU5EUik7CisgICAgICAgIHByaW50 ayhYRU5MT0dfR19FUlIKKyAgICAgICAgICAgICAgICIlcHY6IHZHSUNEOiB1 bmhhbmRsZWQgJXMgd3JpdGUgJSMiUFJJcmVnaXN0ZXIiIHRvIElTUEVORFIl ZFxuIiwKKyAgICAgICAgICAgICAgIHYsIGRhYnQuc2l6ZSA/ICJ3b3JkIiA6 ICJieXRlIiwgKnIsIGdpY2RfcmVnIC0gR0lDRF9JU1BFTkRSKTsKICAgICAg ICAgcmV0dXJuIDA7CiAKICAgICBjYXNlIEdJQ0RfSUNQRU5EUiAuLi4gR0lD RF9JQ1BFTkRSTjoKICAgICAgICAgaWYgKCBkYWJ0LnNpemUgIT0gREFCVF9C WVRFICYmIGRhYnQuc2l6ZSAhPSBEQUJUX1dPUkQgKSBnb3RvIGJhZF93aWR0 aDsKLSAgICAgICAgcHJpbnRrKCJ2R0lDRDogdW5oYW5kbGVkICVzIHdyaXRl ICUjIlBSSXJlZ2lzdGVyIiB0byBJQ1BFTkRSJWRcbiIsCi0gICAgICAgICAg ICAgICBkYWJ0LnNpemUgPyAid29yZCIgOiAiYnl0ZSIsICpyLCBnaWNkX3Jl ZyAtIEdJQ0RfSUNQRU5EUik7CisgICAgICAgIHByaW50ayhYRU5MT0dfR19F UlIKKyAgICAgICAgICAgICAgICIlcHY6IHZHSUNEOiB1bmhhbmRsZWQgJXMg d3JpdGUgJSMiUFJJcmVnaXN0ZXIiIHRvIElDUEVORFIlZFxuIiwKKyAgICAg ICAgICAgICAgIHYsIGRhYnQuc2l6ZSA/ICJ3b3JkIiA6ICJieXRlIiwgKnIs IGdpY2RfcmVnIC0gR0lDRF9JQ1BFTkRSKTsKICAgICAgICAgcmV0dXJuIDA7 CiAKICAgICBjYXNlIEdJQ0RfSVNBQ1RJVkVSIC4uLiBHSUNEX0lTQUNUSVZF Uk46CkBAIC00NTcsMTQgKzQ1OSwxNiBAQCBzdGF0aWMgaW50IHZnaWNfdjJf ZGlzdHJfbW1pb193cml0ZShzdHJ1Y3QgdmNwdSAqdiwgbW1pb19pbmZvX3Qg KmluZm8pCiAKICAgICBjYXNlIEdJQ0RfQ1BFTkRTR0lSIC4uLiBHSUNEX0NQ RU5EU0dJUk46CiAgICAgICAgIGlmICggZGFidC5zaXplICE9IERBQlRfQllU RSAmJiBkYWJ0LnNpemUgIT0gREFCVF9XT1JEICkgZ290byBiYWRfd2lkdGg7 Ci0gICAgICAgIHByaW50aygidkdJQ0Q6IHVuaGFuZGxlZCAlcyB3cml0ZSAl IyJQUklyZWdpc3RlciIgdG8gSUNQRU5EU0dJUiVkXG4iLAotICAgICAgICAg ICAgICAgZGFidC5zaXplID8gIndvcmQiIDogImJ5dGUiLCAqciwgZ2ljZF9y ZWcgLSBHSUNEX0NQRU5EU0dJUik7CisgICAgICAgIHByaW50ayhYRU5MT0df R19FUlIKKyAgICAgICAgICAgICAgICIlcHY6IHZHSUNEOiB1bmhhbmRsZWQg JXMgd3JpdGUgJSMiUFJJcmVnaXN0ZXIiIHRvIElDUEVORFNHSVIlZFxuIiwK KyAgICAgICAgICAgICAgIHYsIGRhYnQuc2l6ZSA/ICJ3b3JkIiA6ICJieXRl IiwgKnIsIGdpY2RfcmVnIC0gR0lDRF9DUEVORFNHSVIpOwogICAgICAgICBy ZXR1cm4gMDsKIAogICAgIGNhc2UgR0lDRF9TUEVORFNHSVIgLi4uIEdJQ0Rf U1BFTkRTR0lSTjoKICAgICAgICAgaWYgKCBkYWJ0LnNpemUgIT0gREFCVF9C WVRFICYmIGRhYnQuc2l6ZSAhPSBEQUJUX1dPUkQgKSBnb3RvIGJhZF93aWR0 aDsKLSAgICAgICAgcHJpbnRrKCJ2R0lDRDogdW5oYW5kbGVkICVzIHdyaXRl ICUjIlBSSXJlZ2lzdGVyIiB0byBJU1BFTkRTR0lSJWRcbiIsCi0gICAgICAg ICAgICAgICBkYWJ0LnNpemUgPyAid29yZCIgOiAiYnl0ZSIsICpyLCBnaWNk X3JlZyAtIEdJQ0RfU1BFTkRTR0lSKTsKKyAgICAgICAgcHJpbnRrKFhFTkxP R19HX0VSUgorICAgICAgICAgICAgICAgIiVwdjogdkdJQ0Q6IHVuaGFuZGxl ZCAlcyB3cml0ZSAlIyJQUklyZWdpc3RlciIgdG8gSVNQRU5EU0dJUiVkXG4i LAorICAgICAgICAgICAgICAgdiwgZGFidC5zaXplID8gIndvcmQiIDogImJ5 dGUiLCAqciwgZ2ljZF9yZWcgLSBHSUNEX1NQRU5EU0dJUik7CiAgICAgICAg IHJldHVybiAwOwogCiAgICAgLyogSW1wbGVtZW50YXRpb24gZGVmaW5lZCAt LSB3cml0ZSBpZ25vcmVkICovCkBAIC00ODksMTQgKzQ5MywxNiBAQCBzdGF0 aWMgaW50IHZnaWNfdjJfZGlzdHJfbW1pb193cml0ZShzdHJ1Y3QgdmNwdSAq diwgbW1pb19pbmZvX3QgKmluZm8pCiAgICAgICAgIGdvdG8gd3JpdGVfaWdu b3JlOwogCiAgICAgZGVmYXVsdDoKLSAgICAgICAgcHJpbnRrKCJ2R0lDRDog dW5oYW5kbGVkIHdyaXRlIHIlZD0lIlBSSXJlZ2lzdGVyIiBvZmZzZXQgJSMw OHhcbiIsCi0gICAgICAgICAgICAgICBkYWJ0LnJlZywgKnIsIGdpY2RfcmVn KTsKKyAgICAgICAgcHJpbnRrKFhFTkxPR19HX0VSUgorICAgICAgICAgICAg ICAgIiVwdjogdkdJQ0Q6IHVuaGFuZGxlZCB3cml0ZSByJWQ9JSJQUklyZWdp c3RlciIgb2Zmc2V0ICUjMDh4XG4iLAorICAgICAgICAgICAgICAgdiwgZGFi dC5yZWcsICpyLCBnaWNkX3JlZyk7CiAgICAgICAgIHJldHVybiAwOwogICAg IH0KIAogYmFkX3dpZHRoOgotICAgIHByaW50aygidkdJQ0Q6IGJhZCB3cml0 ZSB3aWR0aCAlZCByJWQ9JSJQUklyZWdpc3RlciIgb2Zmc2V0ICUjMDh4XG4i LAotICAgICAgICAgICBkYWJ0LnNpemUsIGRhYnQucmVnLCAqciwgZ2ljZF9y ZWcpOworICAgIHByaW50ayhYRU5MT0dfR19FUlIKKyAgICAgICAgICAgIiVw djogdkdJQ0Q6IGJhZCB3cml0ZSB3aWR0aCAlZCByJWQ9JSJQUklyZWdpc3Rl ciIgb2Zmc2V0ICUjMDh4XG4iLAorICAgICAgICAgICB2LCBkYWJ0LnNpemUs IGRhYnQucmVnLCAqciwgZ2ljZF9yZWcpOwogICAgIGRvbWFpbl9jcmFzaF9z eW5jaHJvbm91cygpOwogICAgIHJldHVybiAwOwogCi0tIAoyLjEuNAoK --=separator Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ Xen-announce mailing list Xen-announce@lists.xen.org http://lists.xen.org/xen-announce --=separator-- From xen-announce-bounces@lists.xen.org Wed Feb 25 11:17:12 2015 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Wed, 25 Feb 2015 11:17:12 +0000 Received: from localhost ([127.0.0.1] helo=lists.xen.org) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1YQZwi-00037m-Hd; Wed, 25 Feb 2015 11:16:04 +0000 Received: from mail6.bemta5.messagelabs.com ([195.245.231.135]) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1YQZwh-00037T-45; Wed, 25 Feb 2015 11:16:03 +0000 Received: from [85.158.139.211] by server-2.bemta-5.messagelabs.com id 6E/D2-03511-2FEADE45; Wed, 25 Feb 2015 11:16:02 +0000 X-Env-Sender: iwj@xenbits.xen.org X-Msg-Ref: server-12.tower-206.messagelabs.com!1424862960!11220220!1 X-Originating-IP: [50.57.168.107] X-SpamReason: No, hits=0.5 required=7.0 tests=BODY_RANDOM_LONG X-StarScan-Received: X-StarScan-Version: 6.13.4; banners=-,-,- X-VirusChecked: Checked Received: (qmail 26274 invoked from network); 25 Feb 2015 11:16:01 -0000 Received: from mail.xen.org (HELO mail.xen.org) (50.57.168.107) by server-12.tower-206.messagelabs.com with AES256-SHA encrypted SMTP; 25 Feb 2015 11:16:01 -0000 Received: from xenbits.xen.org ([50.57.170.242]) by mail.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1YQZwY-0004uT-DH; Wed, 25 Feb 2015 11:15:54 +0000 Received: from iwj by xenbits.xen.org with local (Exim 4.72) (envelope-from ) id 1YQZwX-0001DY-PV; Wed, 25 Feb 2015 11:15:53 +0000 Date: Wed, 25 Feb 2015 11:15:53 +0000 Message-Id: Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.428 (Entity 5.428) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Cc: "Xen.org security team" Subject: [Xen-announce] Xen Security Advisory 118 (CVE-2015-1563) - arm: vgic: incorrect rate limiting of guest triggered logging X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.13 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Sender: xen-announce-bounces@lists.xen.org Errors-To: xen-announce-bounces@lists.xen.org --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Xen Security Advisory CVE-2015-1563 / XSA-118 version 2 arm: vgic: incorrect rate limiting of guest triggered logging UPDATES IN VERSION 2 ==================== CVE assigned. ISSUE DESCRIPTION ================= On ARM systems the code which deals with virtualising the GIC distributor would, under various circumstances, log messages on a guest accessible code path without appropriate rate limiting. IMPACT ====== A malicious guest could cause repeated logging to the hypervisor console, leading to a Denial of Service attack. VULNERABLE SYSTEMS ================== Xen 4.4 and later systems running on ARM hardware are vulnerable. x86 systems are not affected. MITIGATION ========== The problematic log messages are issued with priority Warning. Therefore they can be rate limited by adding "loglvl=error/warning" to the hypervisor command line or suppressed entirely by adding "loglvl=error". NOTE REGARDING LACK OF EMBARGO ============================== This bug was publicly reported on xen-devel, before it was appreciated that there was a security problem. CREDITS ======= This issue was discovered by Julien Grall. RESOLUTION ========== Applying the appropriate attached patch(es) resolves this issue. xsa118-unstable-4.5-{1,2}.patch xen-unstable, Xen 4.5.x xsa118-4.4.patch Xen 4.4.x $ sha256sum xsa118*.patch 5741cfe408273bd80e1a03c21a5650f963d7103fd022c688730f55dcf5373433 xsa118-4.4.patch ee24a4c5e12b67d7539f08b644080c87797f31b4402215cd4efbbc6114bffc25 xsa118-4.5-unstable-1.patch bd532e3cd535fcdea51f43631a519012baff068cb62d2205fc25f2c823f031eb xsa118-4.5-unstable-2.patch $ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAEBAgAGBQJU7a6RAAoJEIP+FMlX6CvZR7UH/3zahTQv65m5AZCtXcihzjjd EuTAnc9I1yPcHqyEDgilVsDHCM25R7TA7Fn++sYTkIvzcUAwEfJDhEJxy5SOfWFo pAVbuV8p/0iKOjsufJgY40nNGyhLknPH2p+deH6P039th0X2CdnFpxSHkewjSJQH OTdeLUt2jfvsBBO/ufOH3z1fc+L/L119PDbcAmhiX9JzS4UeqsE9zKzDa/LfwXCm uL5Ggk99zuyNs3xaun6zQfRErFel0qXLIl36MIiyFXtyElD0liO5h15EjityoeXH 6ZVoAex459R9Xrr3f5snoFVazzBfCwnchmMCFqpRNfH7l8VNkdzav3HoUKAbMU8= =8ydP -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa118-4.4.patch" Content-Disposition: attachment; filename="xsa118-4.4.patch" Content-Transfer-Encoding: base64 RnJvbSAxNzJjZjA0ODliNTA0YjM1YzdjMTY2NmZiN2QwMTUwMDY5NzZjNGU3 IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBKdWxpZW4gR3JhbGwg PGp1bGllbi5ncmFsbEBsaW5hcm8ub3JnPgpEYXRlOiBNb24sIDE5IEphbiAy MDE1IDEyOjU5OjQyICswMDAwClN1YmplY3Q6IFtQQVRDSF0geGVuL2FybTog dmdpYzogbWVzc2FnZSBpbiB0aGUgZW11bGF0aW9uIGNvZGUgc2hvdWxkIGJl CiByYXRlLWxpbWl0ZWQKCnByaW50ayBpcyBub3QgcmF0ZWQtbGltaXRlZCBi eSBkZWZhdWx0LiBUaGVyZWZvcmUgYSBtYWxpY2lvdXMgZ3Vlc3QgbWF5CmJl IGFibGUgdG8gZmxvb2QgdGhlIFhlbiBjb25zb2xlLgoKSWYgd2UgdXNlIGdk cHJpbnRrLCB1bmVjZXNzYXJ5IGluZm9ybWF0aW9uIHdpbGwgYmUgcHJpbnRl ZCBzdWNoIGFzIHRoZQpmaWxlbmFtZSBhbmQgdGhlIGxpbmUuIEluc3RlYWQg dXNlIFhFTkxPR19HX0VSUiBjb21iaW5lIHdpdGggJXB2LgoKU2lnbmVkLW9m Zi1ieTogSnVsaWVuIEdyYWxsIDxqdWxpZW4uZ3JhbGxAbGluYXJvLm9yZz4K LS0tCiB4ZW4vYXJjaC9hcm0vdmdpYy5jIHwgNDAgKysrKysrKysrKysrKysr KysrKysrKystLS0tLS0tLS0tLS0tLS0tLQogMSBmaWxlIGNoYW5nZWQsIDIz IGluc2VydGlvbnMoKyksIDE3IGRlbGV0aW9ucygtKQoKZGlmZiAtLWdpdCBh L3hlbi9hcmNoL2FybS92Z2ljLmMgYi94ZW4vYXJjaC9hcm0vdmdpYy5jCmlu ZGV4IDhkMWI3OWUuLmIyMjYyYzYgMTAwNjQ0Ci0tLSBhL3hlbi9hcmNoL2Fy bS92Z2ljLmMKKysrIGIveGVuL2FyY2gvYXJtL3ZnaWMuYwpAQCAtMzMyLDcg KzMzMiw3IEBAIHN0YXRpYyBpbnQgdmdpY19kaXN0cl9tbWlvX3JlYWQoc3Ry dWN0IHZjcHUgKnYsIG1taW9faW5mb190ICppbmZvKQogCiAgICAgY2FzZSBH SUNEX0lDUElEUjI6CiAgICAgICAgIGlmICggZGFidC5zaXplICE9IDIgKSBn b3RvIGJhZF93aWR0aDsKLSAgICAgICAgcHJpbnRrKCJ2R0lDRDogdW5oYW5k bGVkIHJlYWQgZnJvbSBJQ1BJRFIyXG4iKTsKKyAgICAgICAgcHJpbnRrKFhF TkxPR19HX0VSUiAiJXB2OiB2R0lDRDogdW5oYW5kbGVkIHJlYWQgZnJvbSBJ Q1BJRFIyXG4iLCB2KTsKICAgICAgICAgcmV0dXJuIDA7CiAKICAgICAvKiBJ bXBsZW1lbnRhdGlvbiBkZWZpbmVkIC0tIHJlYWQgYXMgemVybyAqLwpAQCAt MzQ5LDE0ICszNDksMTQgQEAgc3RhdGljIGludCB2Z2ljX2Rpc3RyX21taW9f cmVhZChzdHJ1Y3QgdmNwdSAqdiwgbW1pb19pbmZvX3QgKmluZm8pCiAgICAg ICAgIGdvdG8gcmVhZF9hc196ZXJvOwogCiAgICAgZGVmYXVsdDoKLSAgICAg ICAgcHJpbnRrKCJ2R0lDRDogdW5oYW5kbGVkIHJlYWQgciVkIG9mZnNldCAl IzA4eFxuIiwKLSAgICAgICAgICAgICAgIGRhYnQucmVnLCBvZmZzZXQpOwor ICAgICAgICBwcmludGsoWEVOTE9HX0dfRVJSICIlcHY6IHZHSUNEOiB1bmhh bmRsZWQgcmVhZCByJWQgb2Zmc2V0ICUjMDh4XG4iLAorICAgICAgICAgICAg ICAgdiwgZGFidC5yZWcsIG9mZnNldCk7CiAgICAgICAgIHJldHVybiAwOwog ICAgIH0KIAogYmFkX3dpZHRoOgotICAgIHByaW50aygidkdJQ0Q6IGJhZCBy ZWFkIHdpZHRoICVkIHIlZCBvZmZzZXQgJSMwOHhcbiIsCi0gICAgICAgICAg IGRhYnQuc2l6ZSwgZGFidC5yZWcsIG9mZnNldCk7CisgICAgcHJpbnRrKFhF TkxPR19HX0VSUiAiJXB2OiB2R0lDRDogYmFkIHJlYWQgd2lkdGggJWQgciVk IG9mZnNldCAlIzA4eFxuIiwKKyAgICAgICAgICAgdiwgZGFidC5zaXplLCBk YWJ0LnJlZywgb2Zmc2V0KTsKICAgICBkb21haW5fY3Jhc2hfc3luY2hyb25v dXMoKTsKICAgICByZXR1cm4gMDsKIApAQCAtNTIzLDE0ICs1MjMsMTYgQEAg c3RhdGljIGludCB2Z2ljX2Rpc3RyX21taW9fd3JpdGUoc3RydWN0IHZjcHUg KnYsIG1taW9faW5mb190ICppbmZvKQogCiAgICAgY2FzZSBHSUNEX0lTUEVO RFIgLi4uIEdJQ0RfSVNQRU5EUk46CiAgICAgICAgIGlmICggZGFidC5zaXpl ICE9IDAgJiYgZGFidC5zaXplICE9IDIgKSBnb3RvIGJhZF93aWR0aDsKLSAg ICAgICAgcHJpbnRrKCJ2R0lDRDogdW5oYW5kbGVkICVzIHdyaXRlICUjIlBS SXJlZ2lzdGVyIiB0byBJU1BFTkRSJWRcbiIsCi0gICAgICAgICAgICAgICBk YWJ0LnNpemUgPyAid29yZCIgOiAiYnl0ZSIsICpyLCBnaWNkX3JlZyAtIEdJ Q0RfSVNQRU5EUik7CisgICAgICAgIHByaW50ayhYRU5MT0dfR19FUlIKKyAg ICAgICAgICAgICAgICIlcHY6IHZHSUNEOiB1bmhhbmRsZWQgJXMgd3JpdGUg JSMiUFJJcmVnaXN0ZXIiIHRvIElTUEVORFIlZFxuIiwKKyAgICAgICAgICAg ICAgIHYsIGRhYnQuc2l6ZSA/ICJ3b3JkIiA6ICJieXRlIiwgKnIsIGdpY2Rf cmVnIC0gR0lDRF9JU1BFTkRSKTsKICAgICAgICAgcmV0dXJuIDA7CiAKICAg ICBjYXNlIEdJQ0RfSUNQRU5EUiAuLi4gR0lDRF9JQ1BFTkRSTjoKICAgICAg ICAgaWYgKCBkYWJ0LnNpemUgIT0gMCAmJiBkYWJ0LnNpemUgIT0gMiApIGdv dG8gYmFkX3dpZHRoOwotICAgICAgICBwcmludGsoInZHSUNEOiB1bmhhbmRs ZWQgJXMgd3JpdGUgJSMiUFJJcmVnaXN0ZXIiIHRvIElDUEVORFIlZFxuIiwK LSAgICAgICAgICAgICAgIGRhYnQuc2l6ZSA/ICJ3b3JkIiA6ICJieXRlIiwg KnIsIGdpY2RfcmVnIC0gR0lDRF9JQ1BFTkRSKTsKKyAgICAgICAgcHJpbnRr KFhFTkxPR19HX0VSUgorICAgICAgICAgICAgICAgIiVwdjogdkdJQ0Q6IHVu aGFuZGxlZCAlcyB3cml0ZSAlIyJQUklyZWdpc3RlciIgdG8gSUNQRU5EUiVk XG4iLAorICAgICAgICAgICAgICAgdiwgZGFidC5zaXplID8gIndvcmQiIDog ImJ5dGUiLCAqciwgZ2ljZF9yZWcgLSBHSUNEX0lDUEVORFIpOwogICAgICAg ICByZXR1cm4gMDsKIAogICAgIGNhc2UgR0lDRF9JU0FDVElWRVIgLi4uIEdJ Q0RfSVNBQ1RJVkVSTjoKQEAgLTYwNiwxNCArNjA4LDE2IEBAIHN0YXRpYyBp bnQgdmdpY19kaXN0cl9tbWlvX3dyaXRlKHN0cnVjdCB2Y3B1ICp2LCBtbWlv X2luZm9fdCAqaW5mbykKIAogICAgIGNhc2UgR0lDRF9DUEVORFNHSVIgLi4u IEdJQ0RfQ1BFTkRTR0lSTjoKICAgICAgICAgaWYgKCBkYWJ0LnNpemUgIT0g MCAmJiBkYWJ0LnNpemUgIT0gMiApIGdvdG8gYmFkX3dpZHRoOwotICAgICAg ICBwcmludGsoInZHSUNEOiB1bmhhbmRsZWQgJXMgd3JpdGUgJSMiUFJJcmVn aXN0ZXIiIHRvIElDUEVORFNHSVIlZFxuIiwKLSAgICAgICAgICAgICAgIGRh YnQuc2l6ZSA/ICJ3b3JkIiA6ICJieXRlIiwgKnIsIGdpY2RfcmVnIC0gR0lD RF9DUEVORFNHSVIpOworICAgICAgICBwcmludGsoWEVOTE9HX0dfRVJSCisg ICAgICAgICAgICAgICAiJXB2OiB2R0lDRDogdW5oYW5kbGVkICVzIHdyaXRl ICUjIlBSSXJlZ2lzdGVyIiB0byBJQ1BFTkRTR0lSJWRcbiIsCisgICAgICAg ICAgICAgICB2LCBkYWJ0LnNpemUgPyAid29yZCIgOiAiYnl0ZSIsICpyLCBn aWNkX3JlZyAtIEdJQ0RfQ1BFTkRTR0lSKTsKICAgICAgICAgcmV0dXJuIDA7 CiAKICAgICBjYXNlIEdJQ0RfU1BFTkRTR0lSIC4uLiBHSUNEX1NQRU5EU0dJ Uk46CiAgICAgICAgIGlmICggZGFidC5zaXplICE9IDAgJiYgZGFidC5zaXpl ICE9IDIgKSBnb3RvIGJhZF93aWR0aDsKLSAgICAgICAgcHJpbnRrKCJ2R0lD RDogdW5oYW5kbGVkICVzIHdyaXRlICUjIlBSSXJlZ2lzdGVyIiB0byBJU1BF TkRTR0lSJWRcbiIsCi0gICAgICAgICAgICAgICBkYWJ0LnNpemUgPyAid29y ZCIgOiAiYnl0ZSIsICpyLCBnaWNkX3JlZyAtIEdJQ0RfU1BFTkRTR0lSKTsK KyAgICAgICAgcHJpbnRrKFhFTkxPR19HX0VSUgorICAgICAgICAgICAgICAg IiVwdjogdkdJQ0Q6IHVuaGFuZGxlZCAlcyB3cml0ZSAlIyJQUklyZWdpc3Rl ciIgdG8gSVNQRU5EU0dJUiVkXG4iLAorICAgICAgICAgICAgICAgdiwgZGFi dC5zaXplID8gIndvcmQiIDogImJ5dGUiLCAqciwgZ2ljZF9yZWcgLSBHSUNE X1NQRU5EU0dJUik7CiAgICAgICAgIHJldHVybiAwOwogCiAgICAgLyogSW1w bGVtZW50YXRpb24gZGVmaW5lZCAtLSB3cml0ZSBpZ25vcmVkICovCkBAIC02 MzgsMTQgKzY0MiwxNiBAQCBzdGF0aWMgaW50IHZnaWNfZGlzdHJfbW1pb193 cml0ZShzdHJ1Y3QgdmNwdSAqdiwgbW1pb19pbmZvX3QgKmluZm8pCiAgICAg ICAgIGdvdG8gd3JpdGVfaWdub3JlOwogCiAgICAgZGVmYXVsdDoKLSAgICAg ICAgcHJpbnRrKCJ2R0lDRDogdW5oYW5kbGVkIHdyaXRlIHIlZD0lIlBSSXJl Z2lzdGVyIiBvZmZzZXQgJSMwOHhcbiIsCi0gICAgICAgICAgICAgICBkYWJ0 LnJlZywgKnIsIG9mZnNldCk7CisgICAgICAgIHByaW50ayhYRU5MT0dfR19F UlIKKyAgICAgICAgICAgICAgICIlcHY6IHZHSUNEOiB1bmhhbmRsZWQgd3Jp dGUgciVkPSUiUFJJcmVnaXN0ZXIiIG9mZnNldCAlIzA4eFxuIiwKKyAgICAg ICAgICAgICAgIHYsIGRhYnQucmVnLCAqciwgb2Zmc2V0KTsKICAgICAgICAg cmV0dXJuIDA7CiAgICAgfQogCiBiYWRfd2lkdGg6Ci0gICAgcHJpbnRrKCJ2 R0lDRDogYmFkIHdyaXRlIHdpZHRoICVkIHIlZD0lIlBSSXJlZ2lzdGVyIiBv ZmZzZXQgJSMwOHhcbiIsCi0gICAgICAgICAgIGRhYnQuc2l6ZSwgZGFidC5y ZWcsICpyLCBvZmZzZXQpOworICAgIHByaW50ayhYRU5MT0dfR19FUlIKKyAg ICAgICAgICAgIiVwdjogdkdJQ0Q6IGJhZCB3cml0ZSB3aWR0aCAlZCByJWQ9 JSJQUklyZWdpc3RlciIgb2Zmc2V0ICUjMDh4XG4iLAorICAgICAgICAgICB2 LCBkYWJ0LnNpemUsIGRhYnQucmVnLCAqciwgb2Zmc2V0KTsKICAgICBkb21h aW5fY3Jhc2hfc3luY2hyb25vdXMoKTsKICAgICByZXR1cm4gMDsKIAotLSAK Mi4xLjQKCg== --=separator Content-Type: application/octet-stream; name="xsa118-4.5-unstable-1.patch" Content-Disposition: attachment; filename="xsa118-4.5-unstable-1.patch" Content-Transfer-Encoding: base64 RnJvbSBlNjk4ZjRhYjA1YTcxMGU0NDYzMzE3ZWE5NzhkNDI2ZDQzMTA3ZTI3 IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBKdWxpZW4gR3JhbGwg PGp1bGllbi5ncmFsbEBsaW5hcm8ub3JnPgpEYXRlOiBNb24sIDE5IEphbiAy MDE1IDE0OjAxOjA5ICswMDAwClN1YmplY3Q6IFtQQVRDSCAxLzJdIHhlbi9h cm06IHZnaWMtdjM6IG1lc3NhZ2UgaW4gdGhlIGVtdWxhdGlvbiBjb2RlIHNo b3VsZCBiZQogcmF0ZS1saW1pdGVkCgpwcmludGsgYnkgZGVmYXVsdCBpcyBu b3QgcmF0ZS1saW1pdGVkIGJ5IGRlZmF1bHQuIFRoZXJlZm9yZSBhIG1hbGlj aW91cyBndWVzdAptYXkgYmUgYWJsZSB0byBmbG9vZCB0aGUgWGVuIGNvbnNv bGUuCgpJZiB3ZSB1c2UgZ2RwcmludGssIHVubmVjZXNzYXJ5IGluZm9ybWF0 aW9uIHdpbGwgYmUgcHJpbnRlZCBzdWNoIGFzIHRoZQpmaWxlbmFtZSBhbmQg dGhlIGxpbmUuIEluc3RlYWQgdXNlIFhFTkxPR19HX3tFUlIsREVCVUd9IGNv bWJpbmUgd2l0aCAlcHYuCgpBbHNvIHJlbW92ZSB0aGUgdkdJQ3YzIHByZWZp eCB3aGljaCBpcyBub3QgbmVjY2Vzc2FyeSBhbmQgdXBkYXRlIHNvbWUKbWVz c2FnZSB3aGljaCB3ZXJlIHdyb25nLgoKU2lnbmVkLW9mZi1ieTogSnVsaWVu IEdyYWxsIDxqdWxpZW4uZ3JhbGxAbGluYXJvLm9yZz4KLS0tCiB4ZW4vYXJj aC9hcm0vdmdpYy12My5jIHwgMTA5ICsrKysrKysrKysrKysrKysrKysrKysr KysrKy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0KIDEgZmlsZSBjaGFuZ2VkLCA2 MSBpbnNlcnRpb25zKCspLCA0OCBkZWxldGlvbnMoLSkKCmRpZmYgLS1naXQg YS94ZW4vYXJjaC9hcm0vdmdpYy12My5jIGIveGVuL2FyY2gvYXJtL3ZnaWMt djMuYwppbmRleCBhZTQ0ODJjLi5iZWNlMTg5IDEwMDY0NAotLS0gYS94ZW4v YXJjaC9hcm0vdmdpYy12My5jCisrKyBiL3hlbi9hcmNoL2FybS92Z2ljLXYz LmMKQEAgLTE2OCwxMyArMTY4LDE0IEBAIHN0YXRpYyBpbnQgX192Z2ljX3Yz X3JkaXN0cl9yZF9tbWlvX3JlYWQoc3RydWN0IHZjcHUgKnYsIG1taW9faW5m b190ICppbmZvLAogICAgICAgICAvKiBSZXNlcnZlZDAgKi8KICAgICAgICAg Z290byByZWFkX2FzX3plcm87CiAgICAgZGVmYXVsdDoKLSAgICAgICAgcHJp bnRrKCJ2R0lDdjM6IHZHSUNSOiByZWFkIHIlZCBvZmZzZXQgJSMwOHhcbiBu b3QgZm91bmQiLAotICAgICAgICAgICAgICAgZGFidC5yZWcsIGdpY3JfcmVn KTsKKyAgICAgICAgcHJpbnRrKFhFTkxPR19HX0VSUgorICAgICAgICAgICAg ICAgIiVwdjogdkdJQ1I6IHJlYWQgciVkIG9mZnNldCAlIzA4eFxuIG5vdCBm b3VuZCIsCisgICAgICAgICAgICAgICB2LCBkYWJ0LnJlZywgZ2ljcl9yZWcp OwogICAgICAgICByZXR1cm4gMDsKICAgICB9CiBiYWRfd2lkdGg6Ci0gICAg cHJpbnRrKCJ2R0lDdjM6IHZHSUNSOiBiYWQgcmVhZCB3aWR0aCAlZCByJWQg b2Zmc2V0ICUjMDh4XG4iLAotICAgICAgICAgICBkYWJ0LnNpemUsIGRhYnQu cmVnLCBnaWNyX3JlZyk7CisgICAgcHJpbnRrKFhFTkxPR19HX0VSUiAiJXB2 IHZHSUNSOiBiYWQgcmVhZCB3aWR0aCAlZCByJWQgb2Zmc2V0ICUjMDh4XG4i LAorICAgICAgICAgICB2LCBkYWJ0LnNpemUsIGRhYnQucmVnLCBnaWNyX3Jl Zyk7CiAgICAgZG9tYWluX2NyYXNoX3N5bmNocm9ub3VzKCk7CiAgICAgcmV0 dXJuIDA7CiAKQEAgLTI0NCwxMiArMjQ1LDE0IEBAIHN0YXRpYyBpbnQgX192 Z2ljX3YzX3JkaXN0cl9yZF9tbWlvX3dyaXRlKHN0cnVjdCB2Y3B1ICp2LCBt bWlvX2luZm9fdCAqaW5mbywKICAgICAgICAgLyogUk8gKi8KICAgICAgICAg Z290byB3cml0ZV9pZ25vcmU7CiAgICAgZGVmYXVsdDoKLSAgICAgICAgcHJp bnRrKCJ2R0lDUjogd3JpdGUgciVkIG9mZnNldCAlIzA4eFxuIG5vdCBmb3Vu ZCIsIGRhYnQucmVnLCBnaWNyX3JlZyk7CisgICAgICAgIHByaW50ayhYRU5M T0dfR19FUlIgIiVwdjogdkdJQ1I6IHdyaXRlIHIlZCBvZmZzZXQgJSMwOHhc biBub3QgZm91bmQiLAorICAgICAgICAgICAgICAgdiwgZGFidC5yZWcsIGdp Y3JfcmVnKTsKICAgICAgICAgcmV0dXJuIDA7CiAgICAgfQogYmFkX3dpZHRo OgotICAgIHByaW50aygidkdJQ1I6IGJhZCB3cml0ZSB3aWR0aCAlZCByJWQ9 JSJQUklyZWdpc3RlciIgb2Zmc2V0ICUjMDh4XG4iLAotICAgICAgICAgICBk YWJ0LnNpemUsIGRhYnQucmVnLCAqciwgZ2ljcl9yZWcpOworICAgIHByaW50 ayhYRU5MT0dfR19FUlIKKyAgICAgICAgICAiJXB2OiB2R0lDUjogYmFkIHdy aXRlIHdpZHRoICVkIHIlZD0lIlBSSXJlZ2lzdGVyIiBvZmZzZXQgJSMwOHhc biIsCisgICAgICAgICAgdiwgZGFidC5zaXplLCBkYWJ0LnJlZywgKnIsIGdp Y3JfcmVnKTsKICAgICBkb21haW5fY3Jhc2hfc3luY2hyb25vdXMoKTsKICAg ICByZXR1cm4gMDsKIApAQCAtMzQ1LDE1ICszNDgsMTYgQEAgc3RhdGljIGlu dCBfX3ZnaWNfdjNfZGlzdHJfY29tbW9uX21taW9fcmVhZChzdHJ1Y3QgdmNw dSAqdiwgbW1pb19pbmZvX3QgKmluZm8sCiAgICAgICAgIHZnaWNfdW5sb2Nr X3JhbmsodiwgcmFuaywgZmxhZ3MpOwogICAgICAgICByZXR1cm4gMTsKICAg ICBkZWZhdWx0OgotICAgICAgICBwcmludGsoInZHSUN2MzogdkdJQ0QvdkdJ Q1I6IHVuaGFuZGxlZCByZWFkIHIlZCBvZmZzZXQgJSMwOHhcbiIsCi0gICAg ICAgICAgICAgICBkYWJ0LnJlZywgcmVnKTsKKyAgICAgICAgcHJpbnRrKFhF TkxPR19HX0VSUgorICAgICAgICAgICAgICAgIiVwdjogdkdJQ0QvdkdJQ1I6 IHVuaGFuZGxlZCByZWFkIHIlZCBvZmZzZXQgJSMwOHhcbiIsCisgICAgICAg ICAgICAgICB2LCBkYWJ0LnJlZywgcmVnKTsKICAgICAgICAgcmV0dXJuIDA7 CiAgICAgfQogCiBiYWRfd2lkdGg6Ci0gICAgZHByaW50ayhYRU5MT0dfRVJS LAotICAgICAgICAgICAgInZHSUN2MzogdkdJQ0QvdkdJQ1I6IGJhZCByZWFk IHdpZHRoICVkIHIlZCBvZmZzZXQgJSMwOHhcbiIsCi0gICAgICAgICAgICBk YWJ0LnNpemUsIGRhYnQucmVnLCByZWcpOworICAgIHByaW50ayhYRU5MT0df R19FUlIKKyAgICAgICAgICAgIiVwdjogdkdJQ0QvdkdJQ1I6IGJhZCByZWFk IHdpZHRoICVkIHIlZCBvZmZzZXQgJSMwOHhcbiIsCisgICAgICAgICAgIHYs IGRhYnQuc2l6ZSwgZGFidC5yZWcsIHJlZyk7CiAgICAgZG9tYWluX2NyYXNo X3N5bmNocm9ub3VzKCk7CiAgICAgcmV0dXJuIDA7CiAKQEAgLTQ1OCwxNSAr NDYyLDE2IEBAIHN0YXRpYyBpbnQgX192Z2ljX3YzX2Rpc3RyX2NvbW1vbl9t bWlvX3dyaXRlKHN0cnVjdCB2Y3B1ICp2LCBtbWlvX2luZm9fdCAqaW5mbywK ICAgICAgICAgdmdpY191bmxvY2tfcmFuayh2LCByYW5rLCBmbGFncyk7CiAg ICAgICAgIHJldHVybiAxOwogICAgIGRlZmF1bHQ6Ci0gICAgICAgIHByaW50 aygidkdJQ3YzOiB2R0lDRC92R0lDUjogdW5oYW5kbGVkIHdyaXRlIHIlZCAi Ci0gICAgICAgICAgICAgICAiPSUiUFJJcmVnaXN0ZXIiIG9mZnNldCAlIzA4 eFxuIiwgZGFidC5yZWcsICpyLCByZWcpOworICAgICAgICBwcmludGsoWEVO TE9HX0dfRVJSCisgICAgICAgICAgICAgICAiJXB2OiB2R0lDRC92R0lDUjog dW5oYW5kbGVkIHdyaXRlIHIlZD0lIlBSSXJlZ2lzdGVyIiBvZmZzZXQgJSMw OHhcbiIsCisgICAgICAgICAgICAgICB2LCBkYWJ0LnJlZywgKnIsIHJlZyk7 CiAgICAgICAgIHJldHVybiAwOwogICAgIH0KIAogYmFkX3dpZHRoOgotICAg IGRwcmludGsoWEVOTE9HX0VSUiwKLSAgICAgICAgICAgICJ2R0lDdjM6IHZH SUNEL3ZHSUNSOiBiYWQgd3JpdGUgd2lkdGggJWQgciVkPSUiUFJJcmVnaXN0 ZXIiICIKLSAgICAgICAgICAgICJvZmZzZXQgJSMwOHhcbiIsIGRhYnQuc2l6 ZSwgZGFidC5yZWcsICpyLCByZWcpOworICAgIHByaW50ayhYRU5MT0dfR19F UlIKKyAgICAgICAgICAgIiVwdjogdkdJQ0QvdkdJQ1I6IGJhZCB3cml0ZSB3 aWR0aCAlZCByJWQ9JSJQUklyZWdpc3RlciIgb2Zmc2V0ICUjMDh4XG4iLAor ICAgICAgICAgICB2LCBkYWJ0LnNpemUsIGRhYnQucmVnLCAqciwgcmVnKTsK ICAgICBkb21haW5fY3Jhc2hfc3luY2hyb25vdXMoKTsKICAgICByZXR1cm4g MDsKIApAQCAtNTIxLDEzICs1MjYsMTQgQEAgc3RhdGljIGludCB2Z2ljX3Yz X3JkaXN0cl9zZ2lfbW1pb19yZWFkKHN0cnVjdCB2Y3B1ICp2LCBtbWlvX2lu Zm9fdCAqaW5mbywKICAgICAgICAgaWYgKCBkYWJ0LnNpemUgIT0gREFCVF9X T1JEICkgZ290byBiYWRfd2lkdGg7CiAgICAgICAgIHJldHVybiAxOwogICAg IGRlZmF1bHQ6Ci0gICAgICAgIHByaW50aygidkdJQ3YzOiB2R0lDUjogcmVh ZCByJWQgb2Zmc2V0ICUjMDh4XG4gbm90IGZvdW5kIiwKLSAgICAgICAgICAg ICAgIGRhYnQucmVnLCBnaWNyX3JlZyk7CisgICAgICAgIHByaW50ayhYRU5M T0dfR19FUlIKKyAgICAgICAgICAgICAgICIlcHY6IHZHSUNSOiBTR0k6IHJl YWQgciVkIG9mZnNldCAlIzA4eFxuIG5vdCBmb3VuZCIsCisgICAgICAgICAg ICAgICB2LCBkYWJ0LnJlZywgZ2ljcl9yZWcpOwogICAgICAgICByZXR1cm4g MDsKICAgICB9CiBiYWRfd2lkdGg6Ci0gICAgcHJpbnRrKCJ2R0lDdjM6IHZH SUNSOiBiYWQgcmVhZCB3aWR0aCAlZCByJWQgb2Zmc2V0ICUjMDh4XG4iLAot ICAgICAgICAgICBkYWJ0LnNpemUsIGRhYnQucmVnLCBnaWNyX3JlZyk7Cisg ICAgcHJpbnRrKFhFTkxPR19HX0VSUiAiJXB2OiB2R0lDUjogU0dJOiBiYWQg cmVhZCB3aWR0aCAlZCByJWQgb2Zmc2V0ICUjMDh4XG4iLAorICAgICAgICAg ICB2LCBkYWJ0LnNpemUsIGRhYnQucmVnLCBnaWNyX3JlZyk7CiAgICAgZG9t YWluX2NyYXNoX3N5bmNocm9ub3VzKCk7CiAgICAgcmV0dXJuIDA7CiAKQEAg LTU4NSwxNCArNTkxLDE2IEBAIHN0YXRpYyBpbnQgdmdpY192M19yZGlzdHJf c2dpX21taW9fd3JpdGUoc3RydWN0IHZjcHUgKnYsIG1taW9faW5mb190ICpp bmZvLAogICAgICAgICAvKiBXZSBkbyBub3QgaW1wbGVtZW50IHNlY3VyaXR5 IGV4dGVuc2lvbnMgZm9yIGd1ZXN0cywgd3JpdGUgaWdub3JlICovCiAgICAg ICAgIGdvdG8gd3JpdGVfaWdub3JlOwogICAgIGRlZmF1bHQ6Ci0gICAgICAg IHByaW50aygidkdJQ3YzOiB2R0lDUiBTR0k6IHdyaXRlIHIlZCBvZmZzZXQg JSMwOHhcbiBub3QgZm91bmQiLAotICAgICAgICAgICAgICAgZGFidC5yZWcs IGdpY3JfcmVnKTsKKyAgICAgICAgcHJpbnRrKFhFTkxPR19HX0VSUgorICAg ICAgICAgICAgICAgIiVwdjogdkdJQ1I6IFNHSTogd3JpdGUgciVkIG9mZnNl dCAlIzA4eFxuIG5vdCBmb3VuZCIsCisgICAgICAgICAgICAgICB2LCBkYWJ0 LnJlZywgZ2ljcl9yZWcpOwogICAgICAgICByZXR1cm4gMDsKICAgICB9CiAK IGJhZF93aWR0aDoKLSAgICBwcmludGsoInZHSUNSIFNHSTogYmFkIHdyaXRl IHdpZHRoICVkIHIlZD0lIlBSSXJlZ2lzdGVyIiBvZmZzZXQgJSMwOHhcbiIs Ci0gICAgICAgICAgIGRhYnQuc2l6ZSwgZGFidC5yZWcsICpyLCBnaWNyX3Jl Zyk7CisgICAgcHJpbnRrKFhFTkxPR19HX0VSUgorICAgICAgICAgICAiJXB2 OiB2R0lDUjogU0dJOiBiYWQgd3JpdGUgd2lkdGggJWQgciVkPSUiUFJJcmVn aXN0ZXIiIG9mZnNldCAlIzA4eFxuIiwKKyAgICAgICAgICAgdiwgZGFidC5z aXplLCBkYWJ0LnJlZywgKnIsIGdpY3JfcmVnKTsKICAgICBkb21haW5fY3Jh c2hfc3luY2hyb25vdXMoKTsKICAgICByZXR1cm4gMDsKIApAQCAtNjE4LDkg KzYyNiw5IEBAIHN0YXRpYyBpbnQgdmdpY192M19yZGlzdHJfbW1pb19yZWFk KHN0cnVjdCB2Y3B1ICp2LCBtbWlvX2luZm9fdCAqaW5mbykKICAgICBlbHNl ICBpZiAoIChvZmZzZXQgPj0gU1pfNjRLKSAmJiAob2Zmc2V0IDwgMiAqIFNa XzY0SykgKQogICAgICAgICByZXR1cm4gdmdpY192M19yZGlzdHJfc2dpX21t aW9fcmVhZCh2LCBpbmZvLCAob2Zmc2V0IC0gU1pfNjRLKSk7CiAgICAgZWxz ZQotICAgICAgICBnZHByaW50ayhYRU5MT0dfV0FSTklORywKLSAgICAgICAg ICAgICAgICAgInZHSUN2MzogdkdJQ1I6IHVua25vd24gZ3BhIHJlYWQgYWRk cmVzcyAlIlBSSXBhZGRyIlxuIiwKLSAgICAgICAgICAgICAgICAgaW5mby0+ Z3BhKTsKKyAgICAgICAgcHJpbnRrKFhFTkxPR19HX1dBUk5JTkcKKyAgICAg ICAgICAgICAgICIlcHY6IHZHSUNSOiB1bmtub3duIGdwYSByZWFkIGFkZHJl c3MgJSJQUklwYWRkciJcbiIsCisgICAgICAgICAgICAgICAgdiwgaW5mby0+ Z3BhKTsKIAogICAgIHJldHVybiAwOwogfQpAQCAtNjQyLDkgKzY1MCw5IEBA IHN0YXRpYyBpbnQgdmdpY192M19yZGlzdHJfbW1pb193cml0ZShzdHJ1Y3Qg dmNwdSAqdiwgbW1pb19pbmZvX3QgKmluZm8pCiAgICAgZWxzZSAgaWYgKCAo b2Zmc2V0ID49IFNaXzY0SykgJiYgKG9mZnNldCA8IDIgKiBTWl82NEspICkK ICAgICAgICAgcmV0dXJuIHZnaWNfdjNfcmRpc3RyX3NnaV9tbWlvX3dyaXRl KHYsIGluZm8sIChvZmZzZXQgLSBTWl82NEspKTsKICAgICBlbHNlCi0gICAg ICAgIGdkcHJpbnRrKFhFTkxPR19XQVJOSU5HLAotICAgICAgICAgICAgICAg ICAidkdJQ1YzOiB2R0lDUjogdW5rbm93biBncGEgd3JpdGUgYWRkcmVzcyAl IlBSSXBhZGRyIlxuIiwKLSAgICAgICAgICAgICAgICAgaW5mby0+Z3BhKTsK KyAgICAgICAgcHJpbnRrKFhFTkxPR19HX1dBUk5JTkcKKyAgICAgICAgICAg ICAgICIlcHY6IHZHSUNSOiB1bmtub3duIGdwYSB3cml0ZSBhZGRyZXNzICUi UFJJcGFkZHIiXG4iLAorICAgICAgICAgICAgICAgdiwgaW5mby0+Z3BhKTsK IAogICAgIHJldHVybiAwOwogfQpAQCAtNzcwLDE4ICs3NzgsMTkgQEAgc3Rh dGljIGludCB2Z2ljX3YzX2Rpc3RyX21taW9fcmVhZChzdHJ1Y3QgdmNwdSAq diwgbW1pb19pbmZvX3QgKmluZm8pCiAgICAgY2FzZSAweGYzMCAuLi4gMHg1 ZmNjOgogICAgIGNhc2UgMHg4MDAwIC4uLiAweGJmY2M6CiAgICAgICAgIC8q IFRoZXNlIGFyZSByZXNlcnZlZCByZWdpc3RlciBhZGRyZXNzZXMgKi8KLSAg ICAgICAgcHJpbnRrKCJ2R0lDdjM6IHZHSUNEOiByZWFkIHVua25vd24gMHgw MGMgLi4gMHhmY2MgciVkIG9mZnNldCAlIzA4eFxuIiwKLSAgICAgICAgICAg ICAgIGRhYnQucmVnLCBnaWNkX3JlZyk7CisgICAgICAgIHByaW50ayhYRU5M T0dfR19ERUJVRworICAgICAgICAgICAgICAgIiVwdjogdkdJQ0Q6IFJBWiBv biByZXNlcnZlZCByZWdpc3RlciBvZmZzZXQgJSMwOHhcbiIsCisgICAgICAg ICAgICAgICB2LCBnaWNkX3JlZyk7CiAgICAgICAgIGdvdG8gcmVhZF9hc196 ZXJvOwogICAgIGRlZmF1bHQ6Ci0gICAgICAgIHByaW50aygidkdJQ3YzOiB2 R0lDRDogdW5oYW5kbGVkIHJlYWQgciVkIG9mZnNldCAlIzA4eFxuIiwKLSAg ICAgICAgICAgICAgIGRhYnQucmVnLCBnaWNkX3JlZyk7CisgICAgICAgIHBy aW50ayhYRU5MT0dfR19FUlIgIiVwdjogdkdJQ0Q6IHVuaGFuZGxlZCByZWFk IHIlZCBvZmZzZXQgJSMwOHhcbiIsCisgICAgICAgICAgICAgICB2LCBkYWJ0 LnJlZywgZ2ljZF9yZWcpOwogICAgICAgICByZXR1cm4gMDsKICAgICB9CiAK IGJhZF93aWR0aDoKLSAgICBkcHJpbnRrKFhFTkxPR19FUlIsICJ2R0lDdjM6 IHZHSUNEOiBiYWQgcmVhZCB3aWR0aCAlZCByJWQgb2Zmc2V0ICUjMDh4XG4i LAotICAgICAgICAgICAgZGFidC5zaXplLCBkYWJ0LnJlZywgZ2ljZF9yZWcp OworICAgIHByaW50ayhYRU5MT0dfR19FUlIgIiVwdjogdkdJQ0Q6IGJhZCBy ZWFkIHdpZHRoICVkIHIlZCBvZmZzZXQgJSMwOHhcbiIsCisgICAgICAgICAg IHYsIGRhYnQuc2l6ZSwgZGFidC5yZWcsIGdpY2RfcmVnKTsKICAgICBkb21h aW5fY3Jhc2hfc3luY2hyb25vdXMoKTsKICAgICByZXR1cm4gMDsKIApAQCAt ODQwLDggKzg0OSw5IEBAIHN0YXRpYyBpbnQgdmdpY192M19kaXN0cl9tbWlv X3dyaXRlKHN0cnVjdCB2Y3B1ICp2LCBtbWlvX2luZm9fdCAqaW5mbykKICAg ICBjYXNlIDB4MDIwIC4uLiAweDAzYzoKICAgICBjYXNlIDB4YzAwMCAuLi4g MHhmZmNjOgogICAgICAgICAvKiBJbXBsZW1lbnRhdGlvbiBkZWZpbmVkIC0t IHdyaXRlIGlnbm9yZWQgKi8KLSAgICAgICAgcHJpbnRrKCJ2R0lDdjM6IHZH SUNEOiB3cml0ZSB1bmtub3duIDB4MDIwIC0gMHgwM2MgciVkIG9mZnNldCAl IzA4eFxuIiwKLSAgICAgICAgICAgICAgIGRhYnQucmVnLCBnaWNkX3JlZyk7 CisgICAgICAgIHByaW50ayhYRU5MT0dfR19ERUJVRworICAgICAgICAgICAg ICAgIiVwdjogdkdJQ0Q6IFdJIG9uIGltcGxlbWVudGF0aW9uIGRlZmluZWQg cmVnaXN0ZXIgb2Zmc2V0ICUjMDh4XG4iLAorICAgICAgICAgICAgICAgdiwg Z2ljZF9yZWcpOwogICAgICAgICBnb3RvIHdyaXRlX2lnbm9yZTsKICAgICBj YXNlIEdJQ0RfSUdST1VQUiAuLi4gR0lDRF9JR1JPVVBSTjoKICAgICBjYXNl IEdJQ0RfSVNFTkFCTEVSIC4uLiBHSUNEX0lTRU5BQkxFUk46CkBAIC04ODUs OCArODk1LDkgQEAgc3RhdGljIGludCB2Z2ljX3YzX2Rpc3RyX21taW9fd3Jp dGUoc3RydWN0IHZjcHUgKnYsIG1taW9faW5mb190ICppbmZvKQogICAgICAg ICAgICAgbmV3X3RhcmdldCA9IG5ld19pcm91dGVyICYgTVBJRFJfQUZGMF9N QVNLOwogICAgICAgICAgICAgaWYgKCBuZXdfdGFyZ2V0ID49IHYtPmRvbWFp bi0+bWF4X3ZjcHVzICkKICAgICAgICAgICAgIHsKLSAgICAgICAgICAgICAg ICBwcmludGsoInZHSUN2MzogdkdJQ0Q6IHdyb25nIGlyb3V0ZXIgYXQgb2Zm c2V0ICUjMDh4XG4gdmFsIDB4JWx4IHZjcHUgJXgiLAotICAgICAgICAgICAg ICAgICAgICAgICBnaWNkX3JlZywgbmV3X3RhcmdldCwgdi0+ZG9tYWluLT5t YXhfdmNwdXMpOworICAgICAgICAgICAgICAgIHByaW50ayhYRU5MT0dfR19E RUJVRworICAgICAgICAgICAgICAgICAgICAgICAiJXB2OiB2R0lDRDogd3Jv bmcgaXJvdXRlciBhdCBvZmZzZXQgJSMwOHhcbiB2YWwgMHglbHggdmNwdSAl eCIsCisgICAgICAgICAgICAgICAgICAgICAgIHYsIGdpY2RfcmVnLCBuZXdf dGFyZ2V0LCB2LT5kb21haW4tPm1heF92Y3B1cyk7CiAgICAgICAgICAgICAg ICAgdmdpY191bmxvY2tfcmFuayh2LCByYW5rLCBmbGFncyk7CiAgICAgICAg ICAgICAgICAgcmV0dXJuIDA7CiAgICAgICAgICAgICB9CkBAIC05MjYsMTkg KzkzNywyMSBAQCBzdGF0aWMgaW50IHZnaWNfdjNfZGlzdHJfbW1pb193cml0 ZShzdHJ1Y3QgdmNwdSAqdiwgbW1pb19pbmZvX3QgKmluZm8pCiAgICAgY2Fz ZSAweGYzMCAuLi4gMHg1ZmNjOgogICAgIGNhc2UgMHg4MDAwIC4uLiAweGJm Y2M6CiAgICAgICAgIC8qIFJlc2VydmVkIHJlZ2lzdGVyIGFkZHJlc3NlcyAq LwotICAgICAgICBwcmludGsoInZHSUN2MzogdkdJQ0Q6IHdyaXRlIHVua25v d24gMHgwMGMgMHhmY2MgIHIlZCBvZmZzZXQgJSMwOHhcbiIsCi0gICAgICAg ICAgICAgICAgZGFidC5yZWcsIGdpY2RfcmVnKTsKKyAgICAgICAgcHJpbnRr KFhFTkxPR19HX0RFQlVHCisgICAgICAgICAgICAgICAiJXB2OiB2R0lDRDog d3JpdGUgdW5rbm93biAweDAwYyAweGZjYyAgciVkIG9mZnNldCAlIzA4eFxu IiwKKyAgICAgICAgICAgICAgIHYsIGRhYnQucmVnLCBnaWNkX3JlZyk7CiAg ICAgICAgIGdvdG8gd3JpdGVfaWdub3JlOwogICAgIGRlZmF1bHQ6Ci0gICAg ICAgIHByaW50aygidkdJQ3YzOiB2R0lDRDogdW5oYW5kbGVkIHdyaXRlIHIl ZD0lIlBSSXJlZ2lzdGVyIiAiCi0gICAgICAgICAgICAgICAib2Zmc2V0ICUj MDh4XG4iLCBkYWJ0LnJlZywgKnIsIGdpY2RfcmVnKTsKKyAgICAgICAgcHJp bnRrKFhFTkxPR19HX0VSUgorICAgICAgICAgICAgICAgIiVwdjogdkdJQ0Q6 IHVuaGFuZGxlZCB3cml0ZSByJWQ9JSJQUklyZWdpc3RlciIgb2Zmc2V0ICUj MDh4XG4iLAorICAgICAgICAgICAgICAgdiwgZGFidC5yZWcsICpyLCBnaWNk X3JlZyk7CiAgICAgICAgIHJldHVybiAwOwogICAgIH0KIAogYmFkX3dpZHRo OgotICAgIGRwcmludGsoWEVOTE9HX0VSUiwKLSAgICAgICAgICAgICJWR0lD djM6IHZHSUNEOiBiYWQgd3JpdGUgd2lkdGggJWQgciVkPSUiUFJJcmVnaXN0 ZXIiICIKLSAgICAgICAgICAgICJvZmZzZXQgJSMwOHhcbiIsIGRhYnQuc2l6 ZSwgZGFidC5yZWcsICpyLCBnaWNkX3JlZyk7CisgICAgcHJpbnRrKFhFTkxP R19HX0VSUgorICAgICAgICAgICAiJXB2OiB2R0lDRDogYmFkIHdyaXRlIHdp ZHRoICVkIHIlZD0lIlBSSXJlZ2lzdGVyIiBvZmZzZXQgJSMwOHhcbiIsCisg ICAgICAgICAgIHYsIGRhYnQuc2l6ZSwgZGFidC5yZWcsICpyLCBnaWNkX3Jl Zyk7CiAgICAgZG9tYWluX2NyYXNoX3N5bmNocm9ub3VzKCk7CiAgICAgcmV0 dXJuIDA7CiAKLS0gCjIuMS40Cgo= --=separator Content-Type: application/octet-stream; name="xsa118-4.5-unstable-2.patch" Content-Disposition: attachment; filename="xsa118-4.5-unstable-2.patch" Content-Transfer-Encoding: base64 RnJvbSBlOGZhNDY5NTk1ZTI5YjJkYmU2ZGRlM2E3N2VlMmVhMmQ5ZTkzMjgz IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBKdWxpZW4gR3JhbGwg PGp1bGllbi5ncmFsbEBsaW5hcm8ub3JnPgpEYXRlOiBNb24sIDE5IEphbiAy MDE1IDEyOjU5OjQyICswMDAwClN1YmplY3Q6IFtQQVRDSCAyLzJdIHhlbi9h cm06IHZnaWMtdjI6IG1lc3NhZ2UgaW4gdGhlIGVtdWxhdGlvbiBjb2RlIHNo b3VsZCBiZQogcmF0ZS1saW1pdGVkCgpwcmludGsgaXMgbm90IHJhdGVkLWxp bWl0ZWQgYnkgZGVmYXVsdC4gVGhlcmVmb3JlIGEgbWFsaWNpb3VzIGd1ZXN0 IG1heQpiZSBhYmxlIHRvIGZsb29kIHRoZSBYZW4gY29uc29sZS4KCklmIHdl IHVzZSBnZHByaW50aywgdW5lY2Vzc2FyeSBpbmZvcm1hdGlvbiB3aWxsIGJl IHByaW50ZWQgc3VjaCBhcyB0aGUKZmlsZW5hbWUgYW5kIHRoZSBsaW5lLiBJ bnN0ZWFkIHVzZSBYRU5MT0dfR19FUlIgY29tYmluZSB3aXRoICVwdi4KClNp Z25lZC1vZmYtYnk6IEp1bGllbiBHcmFsbCA8anVsaWVuLmdyYWxsQGxpbmFy by5vcmc+Ci0tLQogeGVuL2FyY2gvYXJtL3ZnaWMtdjIuYyB8IDQwICsrKysr KysrKysrKysrKysrKysrKysrLS0tLS0tLS0tLS0tLS0tLS0KIDEgZmlsZSBj aGFuZ2VkLCAyMyBpbnNlcnRpb25zKCspLCAxNyBkZWxldGlvbnMoLSkKCmRp ZmYgLS1naXQgYS94ZW4vYXJjaC9hcm0vdmdpYy12Mi5jIGIveGVuL2FyY2gv YXJtL3ZnaWMtdjIuYwppbmRleCA5ZGM5YTIwLi4zYjg3ZjU0IDEwMDY0NAot LS0gYS94ZW4vYXJjaC9hcm0vdmdpYy12Mi5jCisrKyBiL3hlbi9hcmNoL2Fy bS92Z2ljLXYyLmMKQEAgLTE5OCw3ICsxOTgsNyBAQCBzdGF0aWMgaW50IHZn aWNfdjJfZGlzdHJfbW1pb19yZWFkKHN0cnVjdCB2Y3B1ICp2LCBtbWlvX2lu Zm9fdCAqaW5mbykKIAogICAgIGNhc2UgR0lDRF9JQ1BJRFIyOgogICAgICAg ICBpZiAoIGRhYnQuc2l6ZSAhPSBEQUJUX1dPUkQgKSBnb3RvIGJhZF93aWR0 aDsKLSAgICAgICAgcHJpbnRrKCJ2R0lDRDogdW5oYW5kbGVkIHJlYWQgZnJv bSBJQ1BJRFIyXG4iKTsKKyAgICAgICAgcHJpbnRrKFhFTkxPR19HX0VSUiAi JXB2OiB2R0lDRDogdW5oYW5kbGVkIHJlYWQgZnJvbSBJQ1BJRFIyXG4iLCB2 KTsKICAgICAgICAgcmV0dXJuIDA7CiAKICAgICAvKiBJbXBsZW1lbnRhdGlv biBkZWZpbmVkIC0tIHJlYWQgYXMgemVybyAqLwpAQCAtMjE1LDE0ICsyMTUs MTQgQEAgc3RhdGljIGludCB2Z2ljX3YyX2Rpc3RyX21taW9fcmVhZChzdHJ1 Y3QgdmNwdSAqdiwgbW1pb19pbmZvX3QgKmluZm8pCiAgICAgICAgIGdvdG8g cmVhZF9hc196ZXJvOwogCiAgICAgZGVmYXVsdDoKLSAgICAgICAgcHJpbnRr KCJ2R0lDRDogdW5oYW5kbGVkIHJlYWQgciVkIG9mZnNldCAlIzA4eFxuIiwK LSAgICAgICAgICAgICAgIGRhYnQucmVnLCBnaWNkX3JlZyk7CisgICAgICAg IHByaW50ayhYRU5MT0dfR19FUlIgIiVwdjogdkdJQ0Q6IHVuaGFuZGxlZCBy ZWFkIHIlZCBvZmZzZXQgJSMwOHhcbiIsCisgICAgICAgICAgICAgICB2LCBk YWJ0LnJlZywgZ2ljZF9yZWcpOwogICAgICAgICByZXR1cm4gMDsKICAgICB9 CiAKIGJhZF93aWR0aDoKLSAgICBwcmludGsoInZHSUNEOiBiYWQgcmVhZCB3 aWR0aCAlZCByJWQgb2Zmc2V0ICUjMDh4XG4iLAotICAgICAgICAgICBkYWJ0 LnNpemUsIGRhYnQucmVnLCBnaWNkX3JlZyk7CisgICAgcHJpbnRrKFhFTkxP R19HX0VSUiAiJXB2OiB2R0lDRDogYmFkIHJlYWQgd2lkdGggJWQgciVkIG9m ZnNldCAlIzA4eFxuIiwKKyAgICAgICAgICAgdiwgZGFidC5zaXplLCBkYWJ0 LnJlZywgZ2ljZF9yZWcpOwogICAgIGRvbWFpbl9jcmFzaF9zeW5jaHJvbm91 cygpOwogICAgIHJldHVybiAwOwogCkBAIC0zMzEsMTQgKzMzMSwxNiBAQCBz dGF0aWMgaW50IHZnaWNfdjJfZGlzdHJfbW1pb193cml0ZShzdHJ1Y3QgdmNw dSAqdiwgbW1pb19pbmZvX3QgKmluZm8pCiAKICAgICBjYXNlIEdJQ0RfSVNQ RU5EUiAuLi4gR0lDRF9JU1BFTkRSTjoKICAgICAgICAgaWYgKCBkYWJ0LnNp emUgIT0gREFCVF9CWVRFICYmIGRhYnQuc2l6ZSAhPSBEQUJUX1dPUkQgKSBn b3RvIGJhZF93aWR0aDsKLSAgICAgICAgcHJpbnRrKCJ2R0lDRDogdW5oYW5k bGVkICVzIHdyaXRlICUjIlBSSXJlZ2lzdGVyIiB0byBJU1BFTkRSJWRcbiIs Ci0gICAgICAgICAgICAgICBkYWJ0LnNpemUgPyAid29yZCIgOiAiYnl0ZSIs ICpyLCBnaWNkX3JlZyAtIEdJQ0RfSVNQRU5EUik7CisgICAgICAgIHByaW50 ayhYRU5MT0dfR19FUlIKKyAgICAgICAgICAgICAgICIlcHY6IHZHSUNEOiB1 bmhhbmRsZWQgJXMgd3JpdGUgJSMiUFJJcmVnaXN0ZXIiIHRvIElTUEVORFIl ZFxuIiwKKyAgICAgICAgICAgICAgIHYsIGRhYnQuc2l6ZSA/ICJ3b3JkIiA6 ICJieXRlIiwgKnIsIGdpY2RfcmVnIC0gR0lDRF9JU1BFTkRSKTsKICAgICAg ICAgcmV0dXJuIDA7CiAKICAgICBjYXNlIEdJQ0RfSUNQRU5EUiAuLi4gR0lD RF9JQ1BFTkRSTjoKICAgICAgICAgaWYgKCBkYWJ0LnNpemUgIT0gREFCVF9C WVRFICYmIGRhYnQuc2l6ZSAhPSBEQUJUX1dPUkQgKSBnb3RvIGJhZF93aWR0 aDsKLSAgICAgICAgcHJpbnRrKCJ2R0lDRDogdW5oYW5kbGVkICVzIHdyaXRl ICUjIlBSSXJlZ2lzdGVyIiB0byBJQ1BFTkRSJWRcbiIsCi0gICAgICAgICAg ICAgICBkYWJ0LnNpemUgPyAid29yZCIgOiAiYnl0ZSIsICpyLCBnaWNkX3Jl ZyAtIEdJQ0RfSUNQRU5EUik7CisgICAgICAgIHByaW50ayhYRU5MT0dfR19F UlIKKyAgICAgICAgICAgICAgICIlcHY6IHZHSUNEOiB1bmhhbmRsZWQgJXMg d3JpdGUgJSMiUFJJcmVnaXN0ZXIiIHRvIElDUEVORFIlZFxuIiwKKyAgICAg ICAgICAgICAgIHYsIGRhYnQuc2l6ZSA/ICJ3b3JkIiA6ICJieXRlIiwgKnIs IGdpY2RfcmVnIC0gR0lDRF9JQ1BFTkRSKTsKICAgICAgICAgcmV0dXJuIDA7 CiAKICAgICBjYXNlIEdJQ0RfSVNBQ1RJVkVSIC4uLiBHSUNEX0lTQUNUSVZF Uk46CkBAIC00NTcsMTQgKzQ1OSwxNiBAQCBzdGF0aWMgaW50IHZnaWNfdjJf ZGlzdHJfbW1pb193cml0ZShzdHJ1Y3QgdmNwdSAqdiwgbW1pb19pbmZvX3Qg KmluZm8pCiAKICAgICBjYXNlIEdJQ0RfQ1BFTkRTR0lSIC4uLiBHSUNEX0NQ RU5EU0dJUk46CiAgICAgICAgIGlmICggZGFidC5zaXplICE9IERBQlRfQllU RSAmJiBkYWJ0LnNpemUgIT0gREFCVF9XT1JEICkgZ290byBiYWRfd2lkdGg7 Ci0gICAgICAgIHByaW50aygidkdJQ0Q6IHVuaGFuZGxlZCAlcyB3cml0ZSAl IyJQUklyZWdpc3RlciIgdG8gSUNQRU5EU0dJUiVkXG4iLAotICAgICAgICAg ICAgICAgZGFidC5zaXplID8gIndvcmQiIDogImJ5dGUiLCAqciwgZ2ljZF9y ZWcgLSBHSUNEX0NQRU5EU0dJUik7CisgICAgICAgIHByaW50ayhYRU5MT0df R19FUlIKKyAgICAgICAgICAgICAgICIlcHY6IHZHSUNEOiB1bmhhbmRsZWQg JXMgd3JpdGUgJSMiUFJJcmVnaXN0ZXIiIHRvIElDUEVORFNHSVIlZFxuIiwK KyAgICAgICAgICAgICAgIHYsIGRhYnQuc2l6ZSA/ICJ3b3JkIiA6ICJieXRl IiwgKnIsIGdpY2RfcmVnIC0gR0lDRF9DUEVORFNHSVIpOwogICAgICAgICBy ZXR1cm4gMDsKIAogICAgIGNhc2UgR0lDRF9TUEVORFNHSVIgLi4uIEdJQ0Rf U1BFTkRTR0lSTjoKICAgICAgICAgaWYgKCBkYWJ0LnNpemUgIT0gREFCVF9C WVRFICYmIGRhYnQuc2l6ZSAhPSBEQUJUX1dPUkQgKSBnb3RvIGJhZF93aWR0 aDsKLSAgICAgICAgcHJpbnRrKCJ2R0lDRDogdW5oYW5kbGVkICVzIHdyaXRl ICUjIlBSSXJlZ2lzdGVyIiB0byBJU1BFTkRTR0lSJWRcbiIsCi0gICAgICAg ICAgICAgICBkYWJ0LnNpemUgPyAid29yZCIgOiAiYnl0ZSIsICpyLCBnaWNk X3JlZyAtIEdJQ0RfU1BFTkRTR0lSKTsKKyAgICAgICAgcHJpbnRrKFhFTkxP R19HX0VSUgorICAgICAgICAgICAgICAgIiVwdjogdkdJQ0Q6IHVuaGFuZGxl ZCAlcyB3cml0ZSAlIyJQUklyZWdpc3RlciIgdG8gSVNQRU5EU0dJUiVkXG4i LAorICAgICAgICAgICAgICAgdiwgZGFidC5zaXplID8gIndvcmQiIDogImJ5 dGUiLCAqciwgZ2ljZF9yZWcgLSBHSUNEX1NQRU5EU0dJUik7CiAgICAgICAg IHJldHVybiAwOwogCiAgICAgLyogSW1wbGVtZW50YXRpb24gZGVmaW5lZCAt LSB3cml0ZSBpZ25vcmVkICovCkBAIC00ODksMTQgKzQ5MywxNiBAQCBzdGF0 aWMgaW50IHZnaWNfdjJfZGlzdHJfbW1pb193cml0ZShzdHJ1Y3QgdmNwdSAq diwgbW1pb19pbmZvX3QgKmluZm8pCiAgICAgICAgIGdvdG8gd3JpdGVfaWdu b3JlOwogCiAgICAgZGVmYXVsdDoKLSAgICAgICAgcHJpbnRrKCJ2R0lDRDog dW5oYW5kbGVkIHdyaXRlIHIlZD0lIlBSSXJlZ2lzdGVyIiBvZmZzZXQgJSMw OHhcbiIsCi0gICAgICAgICAgICAgICBkYWJ0LnJlZywgKnIsIGdpY2RfcmVn KTsKKyAgICAgICAgcHJpbnRrKFhFTkxPR19HX0VSUgorICAgICAgICAgICAg ICAgIiVwdjogdkdJQ0Q6IHVuaGFuZGxlZCB3cml0ZSByJWQ9JSJQUklyZWdp c3RlciIgb2Zmc2V0ICUjMDh4XG4iLAorICAgICAgICAgICAgICAgdiwgZGFi dC5yZWcsICpyLCBnaWNkX3JlZyk7CiAgICAgICAgIHJldHVybiAwOwogICAg IH0KIAogYmFkX3dpZHRoOgotICAgIHByaW50aygidkdJQ0Q6IGJhZCB3cml0 ZSB3aWR0aCAlZCByJWQ9JSJQUklyZWdpc3RlciIgb2Zmc2V0ICUjMDh4XG4i LAotICAgICAgICAgICBkYWJ0LnNpemUsIGRhYnQucmVnLCAqciwgZ2ljZF9y ZWcpOworICAgIHByaW50ayhYRU5MT0dfR19FUlIKKyAgICAgICAgICAgIiVw djogdkdJQ0Q6IGJhZCB3cml0ZSB3aWR0aCAlZCByJWQ9JSJQUklyZWdpc3Rl ciIgb2Zmc2V0ICUjMDh4XG4iLAorICAgICAgICAgICB2LCBkYWJ0LnNpemUs IGRhYnQucmVnLCAqciwgZ2ljZF9yZWcpOwogICAgIGRvbWFpbl9jcmFzaF9z eW5jaHJvbm91cygpOwogICAgIHJldHVybiAwOwogCi0tIAoyLjEuNAoK --=separator Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ Xen-announce mailing list Xen-announce@lists.xen.org http://lists.xen.org/xen-announce --=separator--