From xen-announce-bounces@lists.xen.org Tue May 02 12:01:30 2017 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Tue, 02 May 2017 12:01:30 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d5WTx-0007BS-6f; Tue, 02 May 2017 12:00:41 +0000 Received: from mail6.bemta6.messagelabs.com ([193.109.254.103]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d5WTv-00079K-Qr; Tue, 02 May 2017 12:00:39 +0000 Received: from [193.109.254.147] by server-5.bemta-6.messagelabs.com id 1B/BA-03371-6E478095; Tue, 02 May 2017 12:00:38 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFnrHIsWRWlGSWpSXmKPExsWS0XRdVfdZCUe kwcErLBa3brYyWyz5uJjFYtXVA6wOzB5Hd/9mCmCMYs3MS8qvSGDNOLv4MntBv1HFjP+6DYzt ul2MXBxCAscZJY58/M4K4SxilNh2+hyQw8nBLOAqcWPfZjYIW1Hiwr0GFhCbV0BQ4uTMJ2C2h ICmxJ03q9hBbBGBIomd516C2WwCehJzz05igujVkXi5fzWYLSwQJnFp+0E2iDlmEuveLWIGsV kEVCWuXbzBOIGRZxaS1bOQrJ6FZPUsRg6guKbE+l36EKa0xPJ/HBDV8hLb385hhrCtJfrXfmK BsC0k/je/ZIaZOKX7IfsCRs5VjBrFqUVlqUW6RhZ6SUWZ6RkluYmZObqGBmZ6uanFxYnpqTmJ ScV6yfm5mxiB4c0ABDsYz68NPMQoycGkJMqr/oo9UogvKT+lMiOxOCO+qDQntfgQowwHh5IEL zcwXoQEi1LTUyvSMnOAkQaTluDgURLhXV0MlOYtLkjMLc5Mh0idYrTkODf33XsmjndLPwDJGw u+vmcSYsnLz0uVEuedCtIgANKQUZoHNw6WDC4xykoJ8zICHSjEU5BalJtZgir/ilGcg1FJmPc jyBSezLwSuK2vgA5iAjqoWRbsoJJEhJRUA+P0m+fD00vXK753DVJZvNf41dLptzj0uBqO3eYQ nfeT62+26aNCvgS+YpsidYXeAw4rLV52lGy/LaywveHwJwkBMYMnExfHrPoqxJwQOY1P5wSL9 p2W62oz+w7lllteEfune1J6hcaff39EQp4kLvRjeeFdx61ntmmTn5bYkayj9/dpmDOdeqvEUp yRaKjFXFScCAAEmm4CAQMAAA== X-Env-Sender: iwj@xenbits.xen.org X-Msg-Ref: server-15.tower-27.messagelabs.com!1493726437!47101587!1 X-Originating-IP: [104.130.215.37] X-SpamReason: No, hits=0.5 required=7.0 tests=BODY_RANDOM_LONG X-StarScan-Received: X-StarScan-Version: 9.4.12; banners=-,-,- X-VirusChecked: Checked Received: (qmail 51211 invoked from network); 2 May 2017 12:00:37 -0000 Received: from mail.xenproject.org (HELO mail.xenproject.org) (104.130.215.37) by server-15.tower-27.messagelabs.com with AES128-GCM-SHA256 encrypted SMTP; 2 May 2017 12:00:37 -0000 Received: from xenbits.xenproject.org ([104.239.192.120]) by mail.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d5WTg-0004gT-04; Tue, 02 May 2017 12:00:23 +0000 Received: from iwj by xenbits.xenproject.org with local (Exim 4.84_2) (envelope-from ) id 1d5WTf-0005MI-Tb; Tue, 02 May 2017 12:00:23 +0000 Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.505 (Entity 5.505) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Message-Id: Date: Tue, 02 May 2017 12:00:23 +0000 Cc: "Xen.org security team" Subject: [Xen-announce] Xen Security Advisory 215 - possible memory corruption via failsafe callback X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Errors-To: xen-announce-bounces@lists.xen.org Sender: "Xen-announce" --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Xen Security Advisory XSA-215 version 2 possible memory corruption via failsafe callback UPDATES IN VERSION 2 ==================== Public release. Added email header syntax to patches, for e.g. git-am. ISSUE DESCRIPTION ================= Under certain special conditions Xen reports an exception resulting from returning to guest mode not via ordinary exception entry points, but via a so call failsafe callback. This callback, unlike exception handlers, takes 4 extra arguments on the stack (the saved data selectors DS, ES, FS, and GS). Prior to placing exception or failsafe callback frames on the guest kernel stack, Xen checks the linear address range to not overlap with hypervisor space. The range spanned by that check was mistakenly not covering these extra 4 slots. IMPACT ====== A malicious or buggy 64-bit PV guest may be able to modify part of a physical memory page not belonging to it, potentially allowing for all of privilege escalation, host or other guest crashes, and information leaks. VULNERABLE SYSTEMS ================== 64-bit Xen versions 4.6 and earlier are vulnerable. Xen versions 4.7 and later are not vulnerable. Only x86 systems are affected. ARM systems are not vulnerable. Only x86 systems with physical memory extending to a configuration dependent boundary (5Tb or 3.5Tb) may be affected. Whether they are actually affected depends on actual physical memory layout. The vulnerability is only exposed to 64-bit PV guests. HVM guests and 32-bit PV guests can't exploit the vulnerability. MITIGATION ========== Running only HVM or 32-bit PV guests will avoid the vulnerability. The vulnerability can be avoided if the guest kernel is controlled by the host rather than guest administrator, provided that further steps are taken to prevent the guest administrator from loading code into the kernel (e.g. by disabling loadable modules etc) or from using other mechanisms which allow them to run code at kernel privilege. CREDITS ======= This issue was discovered by Jann Horn of Google Project Zero. RESOLUTION ========== Applying the attached patch resolves this issue. xsa215.patch Xen 4.6.x, Xen 4.5.x $ sha256sum xsa215* 5be4ff661dd22890b0120f86beee3ec809e2a29f833db8c48bd70ce98e9691ee xsa215.patch $ DEPLOYMENT DURING EMBARGO ========================= Deployment of the patches and/or mitigations described above (or others which are substantially similar) is permitted during the embargo, even on public-facing systems with untrusted guest users and administrators. But: Distribution of updated software is prohibited (except to other members of the predisclosure list). Predisclosure list members who wish to deploy significantly different patches and/or mitigations, please contact the Xen Project Security Team. (Note: this during-embargo deployment notice is retained in post-embargo publicly released Xen Project advisories, even though it is then no longer applicable. This is to enable the community to have oversight of the Xen Project Security Team's decisionmaking.) For more information about permissible uses of embargoed information, consult the Xen Project community's agreed Security Policy: http://www.xenproject.org/security-policy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEcBAEBCAAGBQJZCGsCAAoJEIP+FMlX6CvZulUH/38S+01LCZXAyAiPQTKGtJ09 QZeqIriU1rFn/jXWvxnlC2eaKmrZvucOtYWK5Uccmj49Y2lgvoxTqSCa0S86POWU xvwBH2nGMsJ0Q4m1qQ4fZQ3lSsRlRoz0FyeTwdjdGlGVqGqPhDqB7Nm68IyOjr5j zhIxl8WCQulaqlWwCIgR+KQEgbyVDdsqmOYq7vIrYvyEEtM98l2sQ4E5kO3QfxUV aRbUBH4XrleGYNXQE3kXCNBJJIxl8LwsIHvk55hWAjEwmdRbu8o4+eBNn+lvDzQb +AEMk1VrDMYCsxB6bUryJm6AzNc69vBNsdgGo4o0UXZtrfhtyBsEXD6daWqu3/c= =zQpX -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa215.patch" Content-Disposition: attachment; filename="xsa215.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiB4ODY6IGNvcnJlY3QgY3JlYXRlX2JvdW5jZV9mcmFtZQoKV2UgbWF5IHB1 c2ggdXAgdG8gOTYgYnl0ZXMgb24gdGhlIGd1ZXN0IChrZXJuZWwpIHN0YWNr LCBzbyB3ZSBzaG91bGQKYWxzbyBjb3ZlciBhcyBtdWNoIGluIHRoZSBlYXJs eSByYW5nZSBjaGVjay4gTm90ZSB0aGF0IHRoaXMgaXMgdGhlCnNpbXBsZXN0 IHBvc3NpYmxlIHBhdGNoLCB3aGljaCBoYXMgdGhlIHRoZW9yZXRpY2FsIHBv dGVudGlhbCBvZgpicmVha2luZyBhIGd1ZXN0OiBXZSBvbmx5IHJlYWxseSBw dXNoIDk2IGJ5dGVzIHdoZW4gaW52b2tpbmcgdGhlCmZhaWxzYWZlIGNhbGxi YWNrLCBvcmRpbmFyeSBleGNlcHRpb25zIG9ubHkgaGF2ZSA1NiBvciA2NCBi eXRlcyBwdXNoZWQKKHdpdGhvdXQgLyB3aXRoIGVycm9yIGNvZGUgcmVzcGVj dGl2ZWx5KS4gVGhlcmUgaXMsIGhvd2V2ZXIsIG5vIFBWIE9TCmtub3duIHRv IHBsYWNlIGEga2VybmVsIHN0YWNrIHRoZXJlLgoKVGhpcyBpcyBYU0EtMjE1 LgoKUmVwb3J0ZWQtYnk6IEphbm4gSG9ybiA8amFubmhAZ29vZ2xlLmNvbT4K U2lnbmVkLW9mZi1ieTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29t PgpSZXZpZXdlZC1ieTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNA Y2l0cml4LmNvbT4KCi0tLSBhL3hlbi9hcmNoL3g4Ni94ODZfNjQvZW50cnku UworKysgYi94ZW4vYXJjaC94ODYveDg2XzY0L2VudHJ5LlMKQEAgLTM0Nyw3 ICszNDcsNyBAQCBpbnQ4MF9zbG93X3BhdGg6CiAgICAgICAgIGptcCAgIGhh bmRsZV9leGNlcHRpb25fc2F2ZWQKIAogLyogQ1JFQVRFIEEgQkFTSUMgRVhD RVBUSU9OIEZSQU1FIE9OIEdVRVNUIE9TIFNUQUNLOiAgICAgICAgICAgICAg ICAgICAgICovCi0vKiAgIHsgUkNYLCBSMTEsIFtEUy1HUyxdIFtDUjIsXSBb RVJSQ09ERSxdIFJJUCwgQ1MsIFJGTEFHUywgUlNQLCBTUyB9ICAgKi8KKy8q ICAgeyBSQ1gsIFIxMSwgW0RTLUdTLF0gW0VSUkNPREUsXSBSSVAsIENTLCBS RkxBR1MsIFJTUCwgU1MgfSAgICAgICAgICAqLwogLyogJXJkeDogdHJhcF9i b3VuY2UsICVyYng6IHN0cnVjdCB2Y3B1ICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICovCiAvKiBPbiByZXR1cm4gb25seSAlcmJ4IGFuZCAl cmR4IGFyZSBndWFyYW50ZWVkIG5vbi1jbG9iYmVyZWQuICAgICAgICAgICAg Ki8KIGNyZWF0ZV9ib3VuY2VfZnJhbWU6CkBAIC0zNjcsNyArMzY3LDcgQEAg Y3JlYXRlX2JvdW5jZV9mcmFtZToKIDI6ICAgICAgYW5kcSAgJH4weGYsJXJz aSAgICAgICAgICAgICAgICAjIFN0YWNrIGZyYW1lcyBhcmUgMTYtYnl0ZSBh bGlnbmVkLgogICAgICAgICBtb3ZxICAkSFlQRVJWSVNPUl9WSVJUX1NUQVJU LCVyYXgKICAgICAgICAgY21wcSAgJXJheCwlcnNpCi0gICAgICAgIG1vdnEg ICRIWVBFUlZJU09SX1ZJUlRfRU5EKzYwLCVyYXgKKyAgICAgICAgbW92cSAg JEhZUEVSVklTT1JfVklSVF9FTkQrMTIqOCwlcmF4CiAgICAgICAgIHNiYiAg ICVlY3gsJWVjeCAgICAgICAgICAgICAgICAgIyBJbiArdmUgYWRkcmVzcyBz cGFjZT8gVGhlbiBva2F5LgogICAgICAgICBjbXBxICAlcmF4LCVyc2kKICAg ICAgICAgYWRjICAgJWVjeCwlZWN4ICAgICAgICAgICAgICAgICAjIEFib3Zl IFhlbiBwcml2YXRlIGFyZWE/IFRoZW4gb2theS4K --=separator Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KWGVuLWFubm91 bmNlIG1haWxpbmcgbGlzdApYZW4tYW5ub3VuY2VAbGlzdHMueGVuLm9yZwpodHRwczovL2xpc3Rz Lnhlbi5vcmcveGVuLWFubm91bmNl --=separator-- From xen-announce-bounces@lists.xen.org Tue May 02 12:01:30 2017 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Tue, 02 May 2017 12:01:30 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d5WTv-00079D-4I; Tue, 02 May 2017 12:00:39 +0000 Received: from mail6.bemta3.messagelabs.com ([195.245.230.39]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d5WTu-000786-20; Tue, 02 May 2017 12:00:38 +0000 Received: from [85.158.137.68] by server-6.bemta-3.messagelabs.com id 06/07-02189-4E478095; Tue, 02 May 2017 12:00:36 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrBKsWRWlGSWpSXmKPExsWS0XRdVfdJCUe kwcNCi1s3W5ktlnxczGKx6uoBVgdmj6O7fzMFMEaxZuYl5VcksGYcbb/OXvD8GlPFpLNXWBsY 955h6mLk5BASOM4osaZLtouRC8hexCjxdfZPsASzgKvEjX2b2SBsRYkL9xpYQGxeAUGJkzOfg NkSApoSd96sYgexRQSKJHaeewlmswnoScw9Owlqjo7Ey/2rwWxhgTSJB4fnMUHMMZPY/OkfM4 jNIqAqsfbfTeYJjDyzkKyehWT1LCSrZzFyAMU1Jdbv0ocwpSWW/+OAqJaX2P52DjOEbS2x430 n1BQLiS8rnrLDTJzS/RDKtpfYePEvC4RtI3H4yyesaqac+csIU9M19w0TNjW/Tk9ihqn5u+0N K6oaDrCaPT+dYEo2NK9BMWYBo+gqRo3i1KKy1CJdQ2O9pKLM9IyS3MTMHF1DA2O93NTi4sT01 JzEpGK95PzcTYzA+GcAgh2M27Z7HmKU5GBSEuVVf8UeKcSXlJ9SmZFYnBFfVJqTWnyIUYaDQ0 mClxuYToQEi1LTUyvSMnOAiQgmLcHBoyTCu7oYKM1bXJCYW5yZDpE6xWjMcW7uu/dMHDcWfH3 PJMSSl5+XKiXOOxWkVACkNKM0D24QLEFeYpSVEuZlBDpNiKcgtSg3swRV/hWjOAejkjDvR5Ap PJl5JXD7XgGdwgR0SrMs2CkliQgpqQZGlbinj6UZNuZqmjyWzreue1G05crX1V4f7J9E3foce XuG6vnsmC8zjy6YFBGzxXlfbMzj+nvRxystPk6q5Cy6t47n1Cfj1eZqwfoSPC9s0g/wHnwpsq DZXK5MYZOW58pUxZPB3EJTbkQfcgmTuJeg3fJqulzZeQkh1Qd/xO0yjj8QTLpyrcFBiaU4I9F Qi7moOBEAMqdVFosDAAA= X-Env-Sender: iwj@xenbits.xen.org X-Msg-Ref: server-11.tower-31.messagelabs.com!1493726434!67461149!1 X-Originating-IP: [104.130.215.37] X-SpamReason: No, hits=0.5 required=7.0 tests=BODY_RANDOM_LONG X-StarScan-Received: X-StarScan-Version: 9.4.12; banners=-,-,- X-VirusChecked: Checked Received: (qmail 43944 invoked from network); 2 May 2017 12:00:35 -0000 Received: from mail.xenproject.org (HELO mail.xenproject.org) (104.130.215.37) by server-11.tower-31.messagelabs.com with AES128-GCM-SHA256 encrypted SMTP; 2 May 2017 12:00:35 -0000 Received: from xenbits.xenproject.org ([104.239.192.120]) by mail.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d5WTa-0004g0-J1; Tue, 02 May 2017 12:00:18 +0000 Received: from iwj by xenbits.xenproject.org with local (Exim 4.84_2) (envelope-from ) id 1d5WTa-0005JS-EP; Tue, 02 May 2017 12:00:18 +0000 Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.505 (Entity 5.505) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Message-Id: Date: Tue, 02 May 2017 12:00:18 +0000 Cc: "Xen.org security team" Subject: [Xen-announce] Xen Security Advisory 213 - x86: 64bit PV guest breakout via pagetable use-after-mode-change X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Errors-To: xen-announce-bounces@lists.xen.org Sender: "Xen-announce" --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Xen Security Advisory XSA-213 version 2 x86: 64bit PV guest breakout via pagetable use-after-mode-change UPDATES IN VERSION 2 ==================== Public release. Added email header syntax to patches, for e.g. git-am. ISSUE DESCRIPTION ================= 64-bit PV guests typically use separate (root) page tables for their kernel and user modes. Hypercalls are accessible to guest kernel context only, which certain hypercall handlers make assumptions on. The IRET hypercall (replacing the identically name CPU instruction) is used by guest kernels to transfer control from kernel mode to user mode. If such an IRET hypercall is placed in the middle of a multicall batch, subsequent operations invoked by the same multicall batch may wrongly assume the guest to still be in kernel mode. If one or more of these subsequent operations involve operations on page tables, they may be using the wrong root page table, confusing internal accounting. As a result the guest may gain writable access to some of its page tables. IMPACT ====== A malicious or buggy 64-bit PV guest may be able to access all of system memory, allowing for all of privilege escalation, host crashes, and information leaks. VULNERABLE SYSTEMS ================== All 64-bit Xen versions are vulnerable. Only x86 systems are affected. ARM systems are not vulnerable. The vulnerability is only exposed to 64-bit PV guests. HVM guests and 32-bit PV guests can't exploit the vulnerability. MITIGATION ========== Running only HVM or 32-bit PV guests will avoid the vulnerability. The vulnerability can be avoided if the guest kernel is controlled by the host rather than guest administrator, provided that further steps are taken to prevent the guest administrator from loading code into the kernel (e.g. by disabling loadable modules etc) or from using other mechanisms which allow them to run code at kernel privilege. CREDITS ======= This issue was discovered by Jann Horn of Google Project Zero. RESOLUTION ========== Applying the appropriate attached patch resolves this issue. xsa213.patch xen-unstable xsa213-4.8.patch Xen 4.8.x xsa213-4.7.patch Xen 4.7.x xsa213-4.6.patch Xen 4.6.x xsa213-4.5.patch Xen 4.5.x $ sha256sum xsa213* cddea5eac2ad1f5a68b561da4e98afce891189a2fdedf93087a03889e9df6e99 xsa213.patch fce9bbc9fc30769dfbab4d1830d87d220000b2742e5e70aac22f3e9d013b7614 xsa213-4.5.patch dce026ed1a02db1cf22de89120e7129839f656d041379c450e7403ae909e7b99 xsa213-4.6.patch d8202db5981e2f13d9942332cd3fefded98a5cbc302caee431c7a15051887e7f xsa213-4.7.patch 20c12810ac73809ba74cfde811d420b1b544a07f759c393380afde1a09eb5274 xsa213-4.8.patch $ DEPLOYMENT DURING EMBARGO ========================= Deployment of the patches and/or mitigations described above (or others which are substantially similar) is permitted during the embargo, even on public-facing systems with untrusted guest users and administrators. But: Distribution of updated software is prohibited (except to other members of the predisclosure list). Predisclosure list members who wish to deploy significantly different patches and/or mitigations, please contact the Xen Project Security Team. (Note: this during-embargo deployment notice is retained in post-embargo publicly released Xen Project advisories, even though it is then no longer applicable. This is to enable the community to have oversight of the Xen Project Security Team's decisionmaking.) For more information about permissible uses of embargoed information, consult the Xen Project community's agreed Security Policy: http://www.xenproject.org/security-policy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEcBAEBCAAGBQJZCGr/AAoJEIP+FMlX6CvZ+s8IALroAx1MO5vn6Z0LY2noH+B3 LP32EfS6jzA210jXT1txfjEIFta7In03nCv3KQZZmvFWjIiDTBD/N8THg9XQHC0r R+FC0yTFXnLNluBY5FqOXf7C7pd3+N+onAMsRIJkaJiDMIL+xtfnLOTFpr9FrVSy pemRRr1vZuekeph7G446R04lXBCn5pRMj/v1abXjhAFq1leW9hI3vZII/oRpPUCF BCJysglvQEgk7Qh3Iqhi8nuqAj+IHxGD3udhsruwruzQ+u2XCLA5FeYo0GK+e9AF aSf+GL9lZIfVj+2v754Gh6xXSe2K/+Ok/8S5FRJQrGD+vQL+UUGT7GTfJEAPvYg= =meSL -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa213.patch" Content-Disposition: attachment; filename="xsa213.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBtdWx0aWNhbGw6IGRlYWwgd2l0aCBlYXJseSBleGl0IGNvbmRpdGlvbnMK CkluIHBhcnRpY3VsYXIgY2hhbmdlcyB0byBndWVzdCBwcml2aWxlZ2UgbGV2 ZWwgcmVxdWlyZSB0aGUgbXVsdGljYWxsCnNlcXVlbmNlIHRvIGJlIGFib3J0 ZWQsIGFzIGh5cGVyY2FsbHMgYXJlIHBlcm1pdHRlZCBmcm9tIGtlcm5lbCBt b2RlCm9ubHkuIFdoaWxlIGxpa2VseSBub3QgdmVyeSB1c2VmdWwgaW4gYSBt dWx0aWNhbGwsIGFsc28gcHJvcGVybHkgaGFuZGxlCnRoZSByZXR1cm4gdmFs dWUgaW4gdGhlIEhZUEVSVklTT1JfaXJldCBjYXNlICh3aGljaCBzaG91bGQg YmUgdGhlIGd1ZXN0CnNwZWNpZmllZCB2YWx1ZSkuCgpUaGlzIGlzIFhTQS0y MTMuCgpSZXBvcnRlZC1ieTogSmFubiBIb3JuIDxqYW5uaEBnb29nbGUuY29t PgpTaWduZWQtb2ZmLWJ5OiBKYW4gQmV1bGljaCA8amJldWxpY2hAc3VzZS5j b20+ClJldmlld2VkLWJ5OiBBbmRyZXcgQ29vcGVyIDxhbmRyZXcuY29vcGVy M0BjaXRyaXguY29tPgpBY2tlZC1ieTogSnVsaWVuIEdyYWxsIDxqdWxpZW4u Z3JhbGxAYXJtLmNvbT4KCi0tLSBhL3hlbi9hcmNoL2FybS90cmFwcy5jCisr KyBiL3hlbi9hcmNoL2FybS90cmFwcy5jCkBAIC0xNjUzLDcgKzE2NTMsNyBA QCBzdGF0aWMgYm9vbCBjaGVja19tdWx0aWNhbGxfMzJiaXRfY2xlYW4oCiAg ICAgcmV0dXJuIHRydWU7CiB9CiAKLXZvaWQgYXJjaF9kb19tdWx0aWNhbGxf Y2FsbChzdHJ1Y3QgbWNfc3RhdGUgKnN0YXRlKQorZW51bSBtY19kaXNwb3Np dGlvbiBhcmNoX2RvX211bHRpY2FsbF9jYWxsKHN0cnVjdCBtY19zdGF0ZSAq c3RhdGUpCiB7CiAgICAgc3RydWN0IG11bHRpY2FsbF9lbnRyeSAqbXVsdGkg PSAmc3RhdGUtPmNhbGw7CiAgICAgYXJtX2h5cGVyY2FsbF9mbl90IGNhbGwg PSBOVUxMOwpAQCAtMTY2MSwyMyArMTY2MSwyNiBAQCB2b2lkIGFyY2hfZG9f bXVsdGljYWxsX2NhbGwoc3RydWN0IG1jX3N0CiAgICAgaWYgKCBtdWx0aS0+ b3AgPj0gQVJSQVlfU0laRShhcm1faHlwZXJjYWxsX3RhYmxlKSApCiAgICAg ewogICAgICAgICBtdWx0aS0+cmVzdWx0ID0gLUVOT1NZUzsKLSAgICAgICAg cmV0dXJuOworICAgICAgICByZXR1cm4gbWNfY29udGludWU7CiAgICAgfQog CiAgICAgY2FsbCA9IGFybV9oeXBlcmNhbGxfdGFibGVbbXVsdGktPm9wXS5m bjsKICAgICBpZiAoIGNhbGwgPT0gTlVMTCApCiAgICAgewogICAgICAgICBt dWx0aS0+cmVzdWx0ID0gLUVOT1NZUzsKLSAgICAgICAgcmV0dXJuOworICAg ICAgICByZXR1cm4gbWNfY29udGludWU7CiAgICAgfQogCiAgICAgaWYgKCBp c18zMmJpdF9kb21haW4oY3VycmVudC0+ZG9tYWluKSAmJgogICAgICAgICAg IWNoZWNrX211bHRpY2FsbF8zMmJpdF9jbGVhbihtdWx0aSkgKQotICAgICAg ICByZXR1cm47CisgICAgICAgIHJldHVybiBtY19jb250aW51ZTsKIAogICAg IG11bHRpLT5yZXN1bHQgPSBjYWxsKG11bHRpLT5hcmdzWzBdLCBtdWx0aS0+ YXJnc1sxXSwKICAgICAgICAgICAgICAgICAgICAgICAgICBtdWx0aS0+YXJn c1syXSwgbXVsdGktPmFyZ3NbM10sCiAgICAgICAgICAgICAgICAgICAgICAg ICAgbXVsdGktPmFyZ3NbNF0pOworCisgICAgcmV0dXJuIGxpa2VseSghcHNy X21vZGVfaXNfdXNlcihndWVzdF9jcHVfdXNlcl9yZWdzKCkpKQorICAgICAg ICAgICA/IG1jX2NvbnRpbnVlIDogbWNfcHJlZW1wdDsKIH0KIAogLyoKLS0t IGEveGVuL2FyY2gveDg2L3B2L2h5cGVyY2FsbC5jCisrKyBiL3hlbi9hcmNo L3g4Ni9wdi9oeXBlcmNhbGwuYwpAQCAtMjE1LDE1ICsyMTUsMTkgQEAgdm9p ZCBwdl9oeXBlcmNhbGwoc3RydWN0IGNwdV91c2VyX3JlZ3MgKgogICAgIHBl cmZjX2luY3IoaHlwZXJjYWxscyk7CiB9CiAKLXZvaWQgYXJjaF9kb19tdWx0 aWNhbGxfY2FsbChzdHJ1Y3QgbWNfc3RhdGUgKnN0YXRlKQorZW51bSBtY19k aXNwb3NpdGlvbiBhcmNoX2RvX211bHRpY2FsbF9jYWxsKHN0cnVjdCBtY19z dGF0ZSAqc3RhdGUpCiB7Ci0gICAgaWYgKCAhaXNfcHZfMzJiaXRfdmNwdShj dXJyZW50KSApCisgICAgc3RydWN0IHZjcHUgKmN1cnIgPSBjdXJyZW50Owor ICAgIHVuc2lnbmVkIGxvbmcgb3A7CisKKyAgICBpZiAoICFpc19wdl8zMmJp dF92Y3B1KGN1cnIpICkKICAgICB7CiAgICAgICAgIHN0cnVjdCBtdWx0aWNh bGxfZW50cnkgKmNhbGwgPSAmc3RhdGUtPmNhbGw7CiAKLSAgICAgICAgaWYg KCAoY2FsbC0+b3AgPCBBUlJBWV9TSVpFKHB2X2h5cGVyY2FsbF90YWJsZSkp ICYmCi0gICAgICAgICAgICAgcHZfaHlwZXJjYWxsX3RhYmxlW2NhbGwtPm9w XS5uYXRpdmUgKQotICAgICAgICAgICAgY2FsbC0+cmVzdWx0ID0gcHZfaHlw ZXJjYWxsX3RhYmxlW2NhbGwtPm9wXS5uYXRpdmUoCisgICAgICAgIG9wID0g Y2FsbC0+b3A7CisgICAgICAgIGlmICggKG9wIDwgQVJSQVlfU0laRShwdl9o eXBlcmNhbGxfdGFibGUpKSAmJgorICAgICAgICAgICAgIHB2X2h5cGVyY2Fs bF90YWJsZVtvcF0ubmF0aXZlICkKKyAgICAgICAgICAgIGNhbGwtPnJlc3Vs dCA9IHB2X2h5cGVyY2FsbF90YWJsZVtvcF0ubmF0aXZlKAogICAgICAgICAg ICAgICAgIGNhbGwtPmFyZ3NbMF0sIGNhbGwtPmFyZ3NbMV0sIGNhbGwtPmFy Z3NbMl0sCiAgICAgICAgICAgICAgICAgY2FsbC0+YXJnc1szXSwgY2FsbC0+ YXJnc1s0XSwgY2FsbC0+YXJnc1s1XSk7CiAgICAgICAgIGVsc2UKQEAgLTIz NCwxNSArMjM4LDIxIEBAIHZvaWQgYXJjaF9kb19tdWx0aWNhbGxfY2FsbChz dHJ1Y3QgbWNfc3QKICAgICB7CiAgICAgICAgIHN0cnVjdCBjb21wYXRfbXVs dGljYWxsX2VudHJ5ICpjYWxsID0gJnN0YXRlLT5jb21wYXRfY2FsbDsKIAot ICAgICAgICBpZiAoIChjYWxsLT5vcCA8IEFSUkFZX1NJWkUocHZfaHlwZXJj YWxsX3RhYmxlKSkgJiYKLSAgICAgICAgICAgICBwdl9oeXBlcmNhbGxfdGFi bGVbY2FsbC0+b3BdLmNvbXBhdCApCi0gICAgICAgICAgICBjYWxsLT5yZXN1 bHQgPSBwdl9oeXBlcmNhbGxfdGFibGVbY2FsbC0+b3BdLmNvbXBhdCgKKyAg ICAgICAgb3AgPSBjYWxsLT5vcDsKKyAgICAgICAgaWYgKCAob3AgPCBBUlJB WV9TSVpFKHB2X2h5cGVyY2FsbF90YWJsZSkpICYmCisgICAgICAgICAgICAg cHZfaHlwZXJjYWxsX3RhYmxlW29wXS5jb21wYXQgKQorICAgICAgICAgICAg Y2FsbC0+cmVzdWx0ID0gcHZfaHlwZXJjYWxsX3RhYmxlW29wXS5jb21wYXQo CiAgICAgICAgICAgICAgICAgY2FsbC0+YXJnc1swXSwgY2FsbC0+YXJnc1sx XSwgY2FsbC0+YXJnc1syXSwKICAgICAgICAgICAgICAgICBjYWxsLT5hcmdz WzNdLCBjYWxsLT5hcmdzWzRdLCBjYWxsLT5hcmdzWzVdKTsKICAgICAgICAg ZWxzZQogICAgICAgICAgICAgY2FsbC0+cmVzdWx0ID0gLUVOT1NZUzsKICAg ICB9CiAjZW5kaWYKKworICAgIHJldHVybiB1bmxpa2VseShvcCA9PSBfX0hZ UEVSVklTT1JfaXJldCkKKyAgICAgICAgICAgPyBtY19leGl0CisgICAgICAg ICAgIDogbGlrZWx5KGd1ZXN0X2tlcm5lbF9tb2RlKGN1cnIsIGd1ZXN0X2Nw dV91c2VyX3JlZ3MoKSkpCisgICAgICAgICAgICAgPyBtY19jb250aW51ZSA6 IG1jX3ByZWVtcHQ7CiB9CiAKIC8qCi0tLSBhL3hlbi9jb21tb24vbXVsdGlj YWxsLmMKKysrIGIveGVuL2NvbW1vbi9tdWx0aWNhbGwuYwpAQCAtMzksNiAr MzksNyBAQCBkb19tdWx0aWNhbGwoCiAgICAgc3RydWN0IG1jX3N0YXRlICpt Y3MgPSAmY3VycmVudC0+bWNfc3RhdGU7CiAgICAgdWludDMyX3QgICAgICAg ICBpOwogICAgIGludCAgICAgICAgICAgICAgcmMgPSAwOworICAgIGVudW0g bWNfZGlzcG9zaXRpb24gZGlzcCA9IG1jX2NvbnRpbnVlOwogCiAgICAgaWYg KCB1bmxpa2VseShfX3Rlc3RfYW5kX3NldF9iaXQoX01DU0ZfaW5fbXVsdGlj YWxsLCAmbWNzLT5mbGFncykpICkKICAgICB7CkBAIC00OSw3ICs1MCw3IEBA IGRvX211bHRpY2FsbCgKICAgICBpZiAoIHVubGlrZWx5KCFndWVzdF9oYW5k bGVfb2theShjYWxsX2xpc3QsIG5yX2NhbGxzKSkgKQogICAgICAgICByYyA9 IC1FRkFVTFQ7CiAKLSAgICBmb3IgKCBpID0gMDsgIXJjICYmIGkgPCBucl9j YWxsczsgaSsrICkKKyAgICBmb3IgKCBpID0gMDsgIXJjICYmIGRpc3AgPT0g bWNfY29udGludWUgJiYgaSA8IG5yX2NhbGxzOyBpKysgKQogICAgIHsKICAg ICAgICAgaWYgKCBpICYmIGh5cGVyY2FsbF9wcmVlbXB0X2NoZWNrKCkgKQog ICAgICAgICAgICAgZ290byBwcmVlbXB0ZWQ7CkBAIC02Miw3ICs2Myw3IEBA IGRvX211bHRpY2FsbCgKIAogICAgICAgICB0cmFjZV9tdWx0aWNhbGxfY2Fs bCgmbWNzLT5jYWxsKTsKIAotICAgICAgICBhcmNoX2RvX211bHRpY2FsbF9j YWxsKG1jcyk7CisgICAgICAgIGRpc3AgPSBhcmNoX2RvX211bHRpY2FsbF9j YWxsKG1jcyk7CiAKICNpZm5kZWYgTkRFQlVHCiAgICAgICAgIHsKQEAgLTc2 LDcgKzc3LDE0IEBAIGRvX211bHRpY2FsbCgKICAgICAgICAgfQogI2VuZGlm CiAKLSAgICAgICAgaWYgKCB1bmxpa2VseShfX2NvcHlfZmllbGRfdG9fZ3Vl c3QoY2FsbF9saXN0LCAmbWNzLT5jYWxsLCByZXN1bHQpKSApCisgICAgICAg IGlmICggdW5saWtlbHkoZGlzcCA9PSBtY19leGl0KSApCisgICAgICAgIHsK KyAgICAgICAgICAgIGlmICggX19jb3B5X2ZpZWxkX3RvX2d1ZXN0KGNhbGxf bGlzdCwgJm1jcy0+Y2FsbCwgcmVzdWx0KSApCisgICAgICAgICAgICAgICAg Lyogbm90aGluZywgYmVzdCBlZmZvcnQgb25seSAqLzsKKyAgICAgICAgICAg IHJjID0gbWNzLT5jYWxsLnJlc3VsdDsKKyAgICAgICAgfQorICAgICAgICBl bHNlIGlmICggdW5saWtlbHkoX19jb3B5X2ZpZWxkX3RvX2d1ZXN0KGNhbGxf bGlzdCwgJm1jcy0+Y2FsbCwKKyAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICByZXN1bHQpKSApCiAgICAgICAgICAg ICByYyA9IC1FRkFVTFQ7CiAgICAgICAgIGVsc2UgaWYgKCBjdXJyZW50LT5o Y2FsbF9wcmVlbXB0ZWQgKQogICAgICAgICB7CkBAIC05NCw2ICsxMDIsOSBA QCBkb19tdWx0aWNhbGwoCiAgICAgICAgICAgICBndWVzdF9oYW5kbGVfYWRk X29mZnNldChjYWxsX2xpc3QsIDEpOwogICAgIH0KIAorICAgIGlmICggdW5s aWtlbHkoZGlzcCA9PSBtY19wcmVlbXB0KSAmJiBpIDwgbnJfY2FsbHMgKQor ICAgICAgICBnb3RvIHByZWVtcHRlZDsKKwogICAgIHBlcmZjX2luY3IoY2Fs bHNfdG9fbXVsdGljYWxsKTsKICAgICBwZXJmY19hZGQoY2FsbHNfZnJvbV9t dWx0aWNhbGwsIGkpOwogICAgIG1jcy0+ZmxhZ3MgPSAwOwotLS0gYS94ZW4v aW5jbHVkZS94ZW4vbXVsdGljYWxsLmgKKysrIGIveGVuL2luY2x1ZGUveGVu L211bHRpY2FsbC5oCkBAIC0yMiw2ICsyMiwxMCBAQCBzdHJ1Y3QgbWNfc3Rh dGUgewogICAgIH07CiB9OwogCi12b2lkIGFyY2hfZG9fbXVsdGljYWxsX2Nh bGwoc3RydWN0IG1jX3N0YXRlICptYyk7CitlbnVtIG1jX2Rpc3Bvc2l0aW9u IHsKKyAgICBtY19jb250aW51ZSwKKyAgICBtY19leGl0LAorICAgIG1jX3By ZWVtcHQsCit9IGFyY2hfZG9fbXVsdGljYWxsX2NhbGwoc3RydWN0IG1jX3N0 YXRlICptYyk7CiAKICNlbmRpZiAvKiBfX1hFTl9NVUxUSUNBTExfSF9fICov Cg== --=separator Content-Type: application/octet-stream; name="xsa213-4.5.patch" Content-Disposition: attachment; filename="xsa213-4.5.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBtdWx0aWNhbGw6IGRlYWwgd2l0aCBlYXJseSBleGl0IGNvbmRpdGlvbnMK CkluIHBhcnRpY3VsYXIgY2hhbmdlcyB0byBndWVzdCBwcml2aWxlZ2UgbGV2 ZWwgcmVxdWlyZSB0aGUgbXVsdGljYWxsCnNlcXVlbmNlIHRvIGJlIGFib3J0 ZWQsIGFzIGh5cGVyY2FsbHMgYXJlIHBlcm1pdHRlZCBmcm9tIGtlcm5lbCBt b2RlCm9ubHkuIFdoaWxlIGxpa2VseSBub3QgdmVyeSB1c2VmdWwgaW4gYSBt dWx0aWNhbGwsIGFsc28gcHJvcGVybHkgaGFuZGxlCnRoZSByZXR1cm4gdmFs dWUgaW4gdGhlIEhZUEVSVklTT1JfaXJldCBjYXNlICh3aGljaCBzaG91bGQg YmUgdGhlIGd1ZXN0CnNwZWNpZmllZCB2YWx1ZSkuCgpUaGlzIGlzIFhTQS0y MTMuCgpSZXBvcnRlZC1ieTogSmFubiBIb3JuIDxqYW5uaEBnb29nbGUuY29t PgpTaWduZWQtb2ZmLWJ5OiBKYW4gQmV1bGljaCA8amJldWxpY2hAc3VzZS5j b20+ClJldmlld2VkLWJ5OiBBbmRyZXcgQ29vcGVyIDxhbmRyZXcuY29vcGVy M0BjaXRyaXguY29tPgpBY2tlZC1ieTogSnVsaWVuIEdyYWxsIDxqdWxpZW4u Z3JhbGxAYXJtLmNvbT4KCi0tLSBhL3hlbi9hcmNoL2FybS90cmFwcy5jCisr KyBiL3hlbi9hcmNoL2FybS90cmFwcy5jCkBAIC0xMzk1LDMwICsxMzk1LDMz IEBAIHN0YXRpYyBib29sX3QgY2hlY2tfbXVsdGljYWxsXzMyYml0X2NsZWEK ICAgICByZXR1cm4gdHJ1ZTsKIH0KIAotdm9pZCBkb19tdWx0aWNhbGxfY2Fs bChzdHJ1Y3QgbXVsdGljYWxsX2VudHJ5ICptdWx0aSkKK2VudW0gbWNfZGlz cG9zaXRpb24gZG9fbXVsdGljYWxsX2NhbGwoc3RydWN0IG11bHRpY2FsbF9l bnRyeSAqbXVsdGkpCiB7CiAgICAgYXJtX2h5cGVyY2FsbF9mbl90IGNhbGwg PSBOVUxMOwogCiAgICAgaWYgKCBtdWx0aS0+b3AgPj0gQVJSQVlfU0laRShh cm1faHlwZXJjYWxsX3RhYmxlKSApCiAgICAgewogICAgICAgICBtdWx0aS0+ cmVzdWx0ID0gLUVOT1NZUzsKLSAgICAgICAgcmV0dXJuOworICAgICAgICBy ZXR1cm4gbWNfY29udGludWU7CiAgICAgfQogCiAgICAgY2FsbCA9IGFybV9o eXBlcmNhbGxfdGFibGVbbXVsdGktPm9wXS5mbjsKICAgICBpZiAoIGNhbGwg PT0gTlVMTCApCiAgICAgewogICAgICAgICBtdWx0aS0+cmVzdWx0ID0gLUVO T1NZUzsKLSAgICAgICAgcmV0dXJuOworICAgICAgICByZXR1cm4gbWNfY29u dGludWU7CiAgICAgfQogCiAgICAgaWYgKCBpc18zMmJpdF9kb21haW4oY3Vy cmVudC0+ZG9tYWluKSAmJgogICAgICAgICAgIWNoZWNrX211bHRpY2FsbF8z MmJpdF9jbGVhbihtdWx0aSkgKQotICAgICAgICByZXR1cm47CisgICAgICAg IHJldHVybiBtY19jb250aW51ZTsKIAogICAgIG11bHRpLT5yZXN1bHQgPSBj YWxsKG11bHRpLT5hcmdzWzBdLCBtdWx0aS0+YXJnc1sxXSwKICAgICAgICAg ICAgICAgICAgICAgICAgICBtdWx0aS0+YXJnc1syXSwgbXVsdGktPmFyZ3Nb M10sCiAgICAgICAgICAgICAgICAgICAgICAgICAgbXVsdGktPmFyZ3NbNF0p OworCisgICAgcmV0dXJuIGxpa2VseSghcHNyX21vZGVfaXNfdXNlcihndWVz dF9jcHVfdXNlcl9yZWdzKCkpKQorICAgICAgICAgICA/IG1jX2NvbnRpbnVl IDogbWNfcHJlZW1wdDsKIH0KIAogLyoKLS0tIGEveGVuL2NvbW1vbi9tdWx0 aWNhbGwuYworKysgYi94ZW4vY29tbW9uL211bHRpY2FsbC5jCkBAIC00MCw2 ICs0MCw3IEBAIGRvX211bHRpY2FsbCgKICAgICBzdHJ1Y3QgbWNfc3RhdGUg Km1jcyA9ICZjdXJyZW50LT5tY19zdGF0ZTsKICAgICB1aW50MzJfdCAgICAg ICAgIGk7CiAgICAgaW50ICAgICAgICAgICAgICByYyA9IDA7CisgICAgZW51 bSBtY19kaXNwb3NpdGlvbiBkaXNwID0gbWNfY29udGludWU7CiAKICAgICBp ZiAoIHVubGlrZWx5KF9fdGVzdF9hbmRfc2V0X2JpdChfTUNTRl9pbl9tdWx0 aWNhbGwsICZtY3MtPmZsYWdzKSkgKQogICAgIHsKQEAgLTUwLDcgKzUxLDcg QEAgZG9fbXVsdGljYWxsKAogICAgIGlmICggdW5saWtlbHkoIWd1ZXN0X2hh bmRsZV9va2F5KGNhbGxfbGlzdCwgbnJfY2FsbHMpKSApCiAgICAgICAgIHJj ID0gLUVGQVVMVDsKIAotICAgIGZvciAoIGkgPSAwOyAhcmMgJiYgaSA8IG5y X2NhbGxzOyBpKysgKQorICAgIGZvciAoIGkgPSAwOyAhcmMgJiYgZGlzcCA9 PSBtY19jb250aW51ZSAmJiBpIDwgbnJfY2FsbHM7IGkrKyApCiAgICAgewog ICAgICAgICBpZiAoIGkgJiYgaHlwZXJjYWxsX3ByZWVtcHRfY2hlY2soKSAp CiAgICAgICAgICAgICBnb3RvIHByZWVtcHRlZDsKQEAgLTYzLDcgKzY0LDcg QEAgZG9fbXVsdGljYWxsKAogCiAgICAgICAgIHRyYWNlX211bHRpY2FsbF9j YWxsKCZtY3MtPmNhbGwpOwogCi0gICAgICAgIGRvX211bHRpY2FsbF9jYWxs KCZtY3MtPmNhbGwpOworICAgICAgICBkaXNwID0gZG9fbXVsdGljYWxsX2Nh bGwoJm1jcy0+Y2FsbCk7CiAKICNpZm5kZWYgTkRFQlVHCiAgICAgICAgIHsK QEAgLTc3LDcgKzc4LDE0IEBAIGRvX211bHRpY2FsbCgKICAgICAgICAgfQog I2VuZGlmCiAKLSAgICAgICAgaWYgKCB1bmxpa2VseShfX2NvcHlfZmllbGRf dG9fZ3Vlc3QoY2FsbF9saXN0LCAmbWNzLT5jYWxsLCByZXN1bHQpKSApCisg ICAgICAgIGlmICggdW5saWtlbHkoZGlzcCA9PSBtY19leGl0KSApCisgICAg ICAgIHsKKyAgICAgICAgICAgIGlmICggX19jb3B5X2ZpZWxkX3RvX2d1ZXN0 KGNhbGxfbGlzdCwgJm1jcy0+Y2FsbCwgcmVzdWx0KSApCisgICAgICAgICAg ICAgICAgLyogbm90aGluZywgYmVzdCBlZmZvcnQgb25seSAqLzsKKyAgICAg ICAgICAgIHJjID0gbWNzLT5jYWxsLnJlc3VsdDsKKyAgICAgICAgfQorICAg ICAgICBlbHNlIGlmICggdW5saWtlbHkoX19jb3B5X2ZpZWxkX3RvX2d1ZXN0 KGNhbGxfbGlzdCwgJm1jcy0+Y2FsbCwKKyAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICByZXN1bHQpKSApCiAgICAg ICAgICAgICByYyA9IC1FRkFVTFQ7CiAgICAgICAgIGVsc2UgaWYgKCB0ZXN0 X2JpdChfTUNTRl9jYWxsX3ByZWVtcHRlZCwgJm1jcy0+ZmxhZ3MpICkKICAg ICAgICAgewpAQCAtOTMsNiArMTAxLDkgQEAgZG9fbXVsdGljYWxsKAogICAg ICAgICAgICAgZ3Vlc3RfaGFuZGxlX2FkZF9vZmZzZXQoY2FsbF9saXN0LCAx KTsKICAgICB9CiAKKyAgICBpZiAoIHVubGlrZWx5KGRpc3AgPT0gbWNfcHJl ZW1wdCkgJiYgaSA8IG5yX2NhbGxzICkKKyAgICAgICAgZ290byBwcmVlbXB0 ZWQ7CisKICAgICBwZXJmY19pbmNyKGNhbGxzX3RvX211bHRpY2FsbCk7CiAg ICAgcGVyZmNfYWRkKGNhbGxzX2Zyb21fbXVsdGljYWxsLCBpKTsKICAgICBt Y3MtPmZsYWdzID0gMDsKLS0tIGEveGVuL2luY2x1ZGUvYXNtLWFybS9tdWx0 aWNhbGwuaAorKysgYi94ZW4vaW5jbHVkZS9hc20tYXJtL211bHRpY2FsbC5o CkBAIC0xLDcgKzEsMTEgQEAKICNpZm5kZWYgX19BU01fQVJNX01VTFRJQ0FM TF9IX18KICNkZWZpbmUgX19BU01fQVJNX01VTFRJQ0FMTF9IX18KIAotZXh0 ZXJuIHZvaWQgZG9fbXVsdGljYWxsX2NhbGwoc3RydWN0IG11bHRpY2FsbF9l bnRyeSAqY2FsbCk7CitleHRlcm4gZW51bSBtY19kaXNwb3NpdGlvbiB7Cisg ICAgbWNfY29udGludWUsCisgICAgbWNfZXhpdCwKKyAgICBtY19wcmVlbXB0 LAorfSBkb19tdWx0aWNhbGxfY2FsbChzdHJ1Y3QgbXVsdGljYWxsX2VudHJ5 ICpjYWxsKTsKIAogI2VuZGlmIC8qIF9fQVNNX0FSTV9NVUxUSUNBTExfSF9f ICovCiAvKgotLS0gYS94ZW4vaW5jbHVkZS9hc20teDg2L211bHRpY2FsbC5o CisrKyBiL3hlbi9pbmNsdWRlL2FzbS14ODYvbXVsdGljYWxsLmgKQEAgLTcs OCArNywyMSBAQAogCiAjaW5jbHVkZSA8eGVuL2Vycm5vLmg+CiAKK2VudW0g bWNfZGlzcG9zaXRpb24geworICAgIG1jX2NvbnRpbnVlLAorICAgIG1jX2V4 aXQsCisgICAgbWNfcHJlZW1wdCwKK307CisKKyNkZWZpbmUgbXVsdGljYWxs X3JldChjYWxsKSAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBc CisgICAgKHVubGlrZWx5KChjYWxsKS0+b3AgPT0gX19IWVBFUlZJU09SX2ly ZXQpICAgICAgICAgICAgICAgXAorICAgICA/IG1jX2V4aXQgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKKyAgICAg ICA6IGxpa2VseShndWVzdF9rZXJuZWxfbW9kZShjdXJyZW50LCAgICAgICAg ICAgICAgICAgICBcCisgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgZ3Vlc3RfY3B1X3VzZXJfcmVncygpKSkgICAgXAorICAgICAgICAgPyBt Y19jb250aW51ZSA6IG1jX3ByZWVtcHQpCisKICNkZWZpbmUgZG9fbXVsdGlj YWxsX2NhbGwoX2NhbGwpICAgICAgICAgICAgICAgICAgICAgICAgICAgICBc Ci0gICAgZG8geyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgXAorICAgICh7ICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKICAgICAg ICAgX19hc21fXyBfX3ZvbGF0aWxlX18gKCAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICBcCiAgICAgICAgICAgICAiICAgIG1vdnEgICVjMSglMCks JSVyYXg7ICIgICAgICAgICAgICAgICAgICAgICAgXAogICAgICAgICAgICAg IiAgICBsZWFxICBoeXBlcmNhbGxfdGFibGUoJSVyaXApLCUlcmRpOyAiICAg ICAgIFwKQEAgLTM2LDkgKzQ5LDExIEBACiAgICAgICAgICAgICAgIC8qIGFs bCB0aGUgY2FsbGVyLXNhdmVzIHJlZ2lzdGVycyAqLyAgICAgICAgICAgXAog ICAgICAgICAgICAgOiAicmF4IiwgInJjeCIsICJyZHgiLCAicnNpIiwgInJk aSIsICAgICAgICAgICAgIFwKICAgICAgICAgICAgICAgInI4IiwgICJyOSIs ICAicjEwIiwgInIxMSIgKTsgICAgICAgICAgICAgICAgICBcCi0gICAgfSB3 aGlsZSAoIDAgKQorICAgICAgICBtdWx0aWNhbGxfcmV0KF9jYWxsKTsgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKKyAgICB9KQogCiAjZGVm aW5lIGNvbXBhdF9tdWx0aWNhbGxfY2FsbChfY2FsbCkgICAgICAgICAgICAg ICAgICAgICAgICAgXAorICAgICh7ICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKICAgICAgICAgX19h c21fXyBfX3ZvbGF0aWxlX18gKCAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICBcCiAgICAgICAgICAgICAiICAgIG1vdmwgICVjMSglMCksJSVlYXg7 ICIgICAgICAgICAgICAgICAgICAgICAgXAogICAgICAgICAgICAgIiAgICBs ZWFxICBjb21wYXRfaHlwZXJjYWxsX3RhYmxlKCUlcmlwKSwlJXJkaTsgIlwK QEAgLTY1LDYgKzgwLDggQEAKICAgICAgICAgICAgICAgImkiIChvZmZzZXRv ZihfX3R5cGVvZl9fKCpfY2FsbCksIHJlc3VsdCkpICAgICBcCiAgICAgICAg ICAgICAgIC8qIGFsbCB0aGUgY2FsbGVyLXNhdmVzIHJlZ2lzdGVycyAqLyAg ICAgICAgICAgXAogICAgICAgICAgICAgOiAicmF4IiwgInJjeCIsICJyZHgi LCAicnNpIiwgInJkaSIsICAgICAgICAgICAgIFwKLSAgICAgICAgICAgICAg InI4IiwgICJyOSIsICAicjEwIiwgInIxMSIgKSAgICAgICAgICAgICAgICAg ICBcCisgICAgICAgICAgICAgICJyOCIsICAicjkiLCAgInIxMCIsICJyMTEi ICk7ICAgICAgICAgICAgICAgICAgXAorICAgICAgICBtdWx0aWNhbGxfcmV0 KF9jYWxsKTsgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKKyAg ICB9KQogCiAjZW5kaWYgLyogX19BU01fWDg2X01VTFRJQ0FMTF9IX18gKi8K --=separator Content-Type: application/octet-stream; name="xsa213-4.6.patch" Content-Disposition: attachment; filename="xsa213-4.6.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBtdWx0aWNhbGw6IGRlYWwgd2l0aCBlYXJseSBleGl0IGNvbmRpdGlvbnMK CkluIHBhcnRpY3VsYXIgY2hhbmdlcyB0byBndWVzdCBwcml2aWxlZ2UgbGV2 ZWwgcmVxdWlyZSB0aGUgbXVsdGljYWxsCnNlcXVlbmNlIHRvIGJlIGFib3J0 ZWQsIGFzIGh5cGVyY2FsbHMgYXJlIHBlcm1pdHRlZCBmcm9tIGtlcm5lbCBt b2RlCm9ubHkuIFdoaWxlIGxpa2VseSBub3QgdmVyeSB1c2VmdWwgaW4gYSBt dWx0aWNhbGwsIGFsc28gcHJvcGVybHkgaGFuZGxlCnRoZSByZXR1cm4gdmFs dWUgaW4gdGhlIEhZUEVSVklTT1JfaXJldCBjYXNlICh3aGljaCBzaG91bGQg YmUgdGhlIGd1ZXN0CnNwZWNpZmllZCB2YWx1ZSkuCgpUaGlzIGlzIFhTQS0y MTMuCgpSZXBvcnRlZC1ieTogSmFubiBIb3JuIDxqYW5uaEBnb29nbGUuY29t PgpTaWduZWQtb2ZmLWJ5OiBKYW4gQmV1bGljaCA8amJldWxpY2hAc3VzZS5j b20+ClJldmlld2VkLWJ5OiBBbmRyZXcgQ29vcGVyIDxhbmRyZXcuY29vcGVy M0BjaXRyaXguY29tPgpBY2tlZC1ieTogSnVsaWVuIEdyYWxsIDxqdWxpZW4u Z3JhbGxAYXJtLmNvbT4KCi0tLSBhL3hlbi9hcmNoL2FybS90cmFwcy5jCisr KyBiL3hlbi9hcmNoL2FybS90cmFwcy5jCkBAIC0xNDg1LDMwICsxNDg1LDMz IEBAIHN0YXRpYyBib29sX3QgY2hlY2tfbXVsdGljYWxsXzMyYml0X2NsZWEK ICAgICByZXR1cm4gdHJ1ZTsKIH0KIAotdm9pZCBkb19tdWx0aWNhbGxfY2Fs bChzdHJ1Y3QgbXVsdGljYWxsX2VudHJ5ICptdWx0aSkKK2VudW0gbWNfZGlz cG9zaXRpb24gZG9fbXVsdGljYWxsX2NhbGwoc3RydWN0IG11bHRpY2FsbF9l bnRyeSAqbXVsdGkpCiB7CiAgICAgYXJtX2h5cGVyY2FsbF9mbl90IGNhbGwg PSBOVUxMOwogCiAgICAgaWYgKCBtdWx0aS0+b3AgPj0gQVJSQVlfU0laRShh cm1faHlwZXJjYWxsX3RhYmxlKSApCiAgICAgewogICAgICAgICBtdWx0aS0+ cmVzdWx0ID0gLUVOT1NZUzsKLSAgICAgICAgcmV0dXJuOworICAgICAgICBy ZXR1cm4gbWNfY29udGludWU7CiAgICAgfQogCiAgICAgY2FsbCA9IGFybV9o eXBlcmNhbGxfdGFibGVbbXVsdGktPm9wXS5mbjsKICAgICBpZiAoIGNhbGwg PT0gTlVMTCApCiAgICAgewogICAgICAgICBtdWx0aS0+cmVzdWx0ID0gLUVO T1NZUzsKLSAgICAgICAgcmV0dXJuOworICAgICAgICByZXR1cm4gbWNfY29u dGludWU7CiAgICAgfQogCiAgICAgaWYgKCBpc18zMmJpdF9kb21haW4oY3Vy cmVudC0+ZG9tYWluKSAmJgogICAgICAgICAgIWNoZWNrX211bHRpY2FsbF8z MmJpdF9jbGVhbihtdWx0aSkgKQotICAgICAgICByZXR1cm47CisgICAgICAg IHJldHVybiBtY19jb250aW51ZTsKIAogICAgIG11bHRpLT5yZXN1bHQgPSBj YWxsKG11bHRpLT5hcmdzWzBdLCBtdWx0aS0+YXJnc1sxXSwKICAgICAgICAg ICAgICAgICAgICAgICAgICBtdWx0aS0+YXJnc1syXSwgbXVsdGktPmFyZ3Nb M10sCiAgICAgICAgICAgICAgICAgICAgICAgICAgbXVsdGktPmFyZ3NbNF0p OworCisgICAgcmV0dXJuIGxpa2VseSghcHNyX21vZGVfaXNfdXNlcihndWVz dF9jcHVfdXNlcl9yZWdzKCkpKQorICAgICAgICAgICA/IG1jX2NvbnRpbnVl IDogbWNfcHJlZW1wdDsKIH0KIAogLyoKLS0tIGEveGVuL2NvbW1vbi9tdWx0 aWNhbGwuYworKysgYi94ZW4vY29tbW9uL211bHRpY2FsbC5jCkBAIC00MCw2 ICs0MCw3IEBAIGRvX211bHRpY2FsbCgKICAgICBzdHJ1Y3QgbWNfc3RhdGUg Km1jcyA9ICZjdXJyZW50LT5tY19zdGF0ZTsKICAgICB1aW50MzJfdCAgICAg ICAgIGk7CiAgICAgaW50ICAgICAgICAgICAgICByYyA9IDA7CisgICAgZW51 bSBtY19kaXNwb3NpdGlvbiBkaXNwID0gbWNfY29udGludWU7CiAKICAgICBp ZiAoIHVubGlrZWx5KF9fdGVzdF9hbmRfc2V0X2JpdChfTUNTRl9pbl9tdWx0 aWNhbGwsICZtY3MtPmZsYWdzKSkgKQogICAgIHsKQEAgLTUwLDcgKzUxLDcg QEAgZG9fbXVsdGljYWxsKAogICAgIGlmICggdW5saWtlbHkoIWd1ZXN0X2hh bmRsZV9va2F5KGNhbGxfbGlzdCwgbnJfY2FsbHMpKSApCiAgICAgICAgIHJj ID0gLUVGQVVMVDsKIAotICAgIGZvciAoIGkgPSAwOyAhcmMgJiYgaSA8IG5y X2NhbGxzOyBpKysgKQorICAgIGZvciAoIGkgPSAwOyAhcmMgJiYgZGlzcCA9 PSBtY19jb250aW51ZSAmJiBpIDwgbnJfY2FsbHM7IGkrKyApCiAgICAgewog ICAgICAgICBpZiAoIGkgJiYgaHlwZXJjYWxsX3ByZWVtcHRfY2hlY2soKSAp CiAgICAgICAgICAgICBnb3RvIHByZWVtcHRlZDsKQEAgLTYzLDcgKzY0LDcg QEAgZG9fbXVsdGljYWxsKAogCiAgICAgICAgIHRyYWNlX211bHRpY2FsbF9j YWxsKCZtY3MtPmNhbGwpOwogCi0gICAgICAgIGRvX211bHRpY2FsbF9jYWxs KCZtY3MtPmNhbGwpOworICAgICAgICBkaXNwID0gZG9fbXVsdGljYWxsX2Nh bGwoJm1jcy0+Y2FsbCk7CiAKICNpZm5kZWYgTkRFQlVHCiAgICAgICAgIHsK QEAgLTc3LDcgKzc4LDE0IEBAIGRvX211bHRpY2FsbCgKICAgICAgICAgfQog I2VuZGlmCiAKLSAgICAgICAgaWYgKCB1bmxpa2VseShfX2NvcHlfZmllbGRf dG9fZ3Vlc3QoY2FsbF9saXN0LCAmbWNzLT5jYWxsLCByZXN1bHQpKSApCisg ICAgICAgIGlmICggdW5saWtlbHkoZGlzcCA9PSBtY19leGl0KSApCisgICAg ICAgIHsKKyAgICAgICAgICAgIGlmICggX19jb3B5X2ZpZWxkX3RvX2d1ZXN0 KGNhbGxfbGlzdCwgJm1jcy0+Y2FsbCwgcmVzdWx0KSApCisgICAgICAgICAg ICAgICAgLyogbm90aGluZywgYmVzdCBlZmZvcnQgb25seSAqLzsKKyAgICAg ICAgICAgIHJjID0gbWNzLT5jYWxsLnJlc3VsdDsKKyAgICAgICAgfQorICAg ICAgICBlbHNlIGlmICggdW5saWtlbHkoX19jb3B5X2ZpZWxkX3RvX2d1ZXN0 KGNhbGxfbGlzdCwgJm1jcy0+Y2FsbCwKKyAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICByZXN1bHQpKSApCiAgICAg ICAgICAgICByYyA9IC1FRkFVTFQ7CiAgICAgICAgIGVsc2UgaWYgKCB0ZXN0 X2JpdChfTUNTRl9jYWxsX3ByZWVtcHRlZCwgJm1jcy0+ZmxhZ3MpICkKICAg ICAgICAgewpAQCAtOTMsNiArMTAxLDkgQEAgZG9fbXVsdGljYWxsKAogICAg ICAgICAgICAgZ3Vlc3RfaGFuZGxlX2FkZF9vZmZzZXQoY2FsbF9saXN0LCAx KTsKICAgICB9CiAKKyAgICBpZiAoIHVubGlrZWx5KGRpc3AgPT0gbWNfcHJl ZW1wdCkgJiYgaSA8IG5yX2NhbGxzICkKKyAgICAgICAgZ290byBwcmVlbXB0 ZWQ7CisKICAgICBwZXJmY19pbmNyKGNhbGxzX3RvX211bHRpY2FsbCk7CiAg ICAgcGVyZmNfYWRkKGNhbGxzX2Zyb21fbXVsdGljYWxsLCBpKTsKICAgICBt Y3MtPmZsYWdzID0gMDsKLS0tIGEveGVuL2luY2x1ZGUvYXNtLWFybS9tdWx0 aWNhbGwuaAorKysgYi94ZW4vaW5jbHVkZS9hc20tYXJtL211bHRpY2FsbC5o CkBAIC0xLDcgKzEsMTEgQEAKICNpZm5kZWYgX19BU01fQVJNX01VTFRJQ0FM TF9IX18KICNkZWZpbmUgX19BU01fQVJNX01VTFRJQ0FMTF9IX18KIAotZXh0 ZXJuIHZvaWQgZG9fbXVsdGljYWxsX2NhbGwoc3RydWN0IG11bHRpY2FsbF9l bnRyeSAqY2FsbCk7CitleHRlcm4gZW51bSBtY19kaXNwb3NpdGlvbiB7Cisg ICAgbWNfY29udGludWUsCisgICAgbWNfZXhpdCwKKyAgICBtY19wcmVlbXB0 LAorfSBkb19tdWx0aWNhbGxfY2FsbChzdHJ1Y3QgbXVsdGljYWxsX2VudHJ5 ICpjYWxsKTsKIAogI2VuZGlmIC8qIF9fQVNNX0FSTV9NVUxUSUNBTExfSF9f ICovCiAvKgotLS0gYS94ZW4vaW5jbHVkZS9hc20teDg2L211bHRpY2FsbC5o CisrKyBiL3hlbi9pbmNsdWRlL2FzbS14ODYvbXVsdGljYWxsLmgKQEAgLTcs OCArNywyMSBAQAogCiAjaW5jbHVkZSA8eGVuL2Vycm5vLmg+CiAKK2VudW0g bWNfZGlzcG9zaXRpb24geworICAgIG1jX2NvbnRpbnVlLAorICAgIG1jX2V4 aXQsCisgICAgbWNfcHJlZW1wdCwKK307CisKKyNkZWZpbmUgbXVsdGljYWxs X3JldChjYWxsKSAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBc CisgICAgKHVubGlrZWx5KChjYWxsKS0+b3AgPT0gX19IWVBFUlZJU09SX2ly ZXQpICAgICAgICAgICAgICAgXAorICAgICA/IG1jX2V4aXQgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKKyAgICAg ICA6IGxpa2VseShndWVzdF9rZXJuZWxfbW9kZShjdXJyZW50LCAgICAgICAg ICAgICAgICAgICBcCisgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgZ3Vlc3RfY3B1X3VzZXJfcmVncygpKSkgICAgXAorICAgICAgICAgPyBt Y19jb250aW51ZSA6IG1jX3ByZWVtcHQpCisKICNkZWZpbmUgZG9fbXVsdGlj YWxsX2NhbGwoX2NhbGwpICAgICAgICAgICAgICAgICAgICAgICAgICAgICBc Ci0gICAgZG8geyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgXAorICAgICh7ICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKICAgICAg ICAgX19hc21fXyBfX3ZvbGF0aWxlX18gKCAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICBcCiAgICAgICAgICAgICAiICAgIG1vdnEgICVjMSglMCks JSVyYXg7ICIgICAgICAgICAgICAgICAgICAgICAgXAogICAgICAgICAgICAg IiAgICBsZWFxICBoeXBlcmNhbGxfdGFibGUoJSVyaXApLCUlcmRpOyAiICAg ICAgIFwKQEAgLTM3LDkgKzUwLDExIEBACiAgICAgICAgICAgICAgIC8qIGFs bCB0aGUgY2FsbGVyLXNhdmVzIHJlZ2lzdGVycyAqLyAgICAgICAgICAgXAog ICAgICAgICAgICAgOiAicmF4IiwgInJjeCIsICJyZHgiLCAicnNpIiwgInJk aSIsICAgICAgICAgICAgIFwKICAgICAgICAgICAgICAgInI4IiwgICJyOSIs ICAicjEwIiwgInIxMSIgKTsgICAgICAgICAgICAgICAgICBcCi0gICAgfSB3 aGlsZSAoIDAgKQorICAgICAgICBtdWx0aWNhbGxfcmV0KF9jYWxsKTsgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKKyAgICB9KQogCiAjZGVm aW5lIGNvbXBhdF9tdWx0aWNhbGxfY2FsbChfY2FsbCkgICAgICAgICAgICAg ICAgICAgICAgICAgXAorICAgICh7ICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKICAgICAgICAgX19h c21fXyBfX3ZvbGF0aWxlX18gKCAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICBcCiAgICAgICAgICAgICAiICAgIG1vdmwgICVjMSglMCksJSVlYXg7 ICIgICAgICAgICAgICAgICAgICAgICAgXAogICAgICAgICAgICAgIiAgICBs ZWFxICBjb21wYXRfaHlwZXJjYWxsX3RhYmxlKCUlcmlwKSwlJXJkaTsgIlwK QEAgLTY3LDYgKzgyLDggQEAKICAgICAgICAgICAgICAgImkiICgtRU5PU1lT KSAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBcCiAgICAgICAg ICAgICAgIC8qIGFsbCB0aGUgY2FsbGVyLXNhdmVzIHJlZ2lzdGVycyAqLyAg ICAgICAgICAgXAogICAgICAgICAgICAgOiAicmF4IiwgInJjeCIsICJyZHgi LCAicnNpIiwgInJkaSIsICAgICAgICAgICAgIFwKLSAgICAgICAgICAgICAg InI4IiwgICJyOSIsICAicjEwIiwgInIxMSIgKSAgICAgICAgICAgICAgICAg ICBcCisgICAgICAgICAgICAgICJyOCIsICAicjkiLCAgInIxMCIsICJyMTEi ICk7ICAgICAgICAgICAgICAgICAgXAorICAgICAgICBtdWx0aWNhbGxfcmV0 KF9jYWxsKTsgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKKyAg ICB9KQogCiAjZW5kaWYgLyogX19BU01fWDg2X01VTFRJQ0FMTF9IX18gKi8K --=separator Content-Type: application/octet-stream; name="xsa213-4.7.patch" Content-Disposition: attachment; filename="xsa213-4.7.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBtdWx0aWNhbGw6IGRlYWwgd2l0aCBlYXJseSBleGl0IGNvbmRpdGlvbnMK CkluIHBhcnRpY3VsYXIgY2hhbmdlcyB0byBndWVzdCBwcml2aWxlZ2UgbGV2 ZWwgcmVxdWlyZSB0aGUgbXVsdGljYWxsCnNlcXVlbmNlIHRvIGJlIGFib3J0 ZWQsIGFzIGh5cGVyY2FsbHMgYXJlIHBlcm1pdHRlZCBmcm9tIGtlcm5lbCBt b2RlCm9ubHkuIFdoaWxlIGxpa2VseSBub3QgdmVyeSB1c2VmdWwgaW4gYSBt dWx0aWNhbGwsIGFsc28gcHJvcGVybHkgaGFuZGxlCnRoZSByZXR1cm4gdmFs dWUgaW4gdGhlIEhZUEVSVklTT1JfaXJldCBjYXNlICh3aGljaCBzaG91bGQg YmUgdGhlIGd1ZXN0CnNwZWNpZmllZCB2YWx1ZSkuCgpUaGlzIGlzIFhTQS0y MTMuCgpSZXBvcnRlZC1ieTogSmFubiBIb3JuIDxqYW5uaEBnb29nbGUuY29t PgpTaWduZWQtb2ZmLWJ5OiBKYW4gQmV1bGljaCA8amJldWxpY2hAc3VzZS5j b20+ClJldmlld2VkLWJ5OiBBbmRyZXcgQ29vcGVyIDxhbmRyZXcuY29vcGVy M0BjaXRyaXguY29tPgpBY2tlZC1ieTogSnVsaWVuIEdyYWxsIDxqdWxpZW4u Z3JhbGxAYXJtLmNvbT4KCi0tLSBhL3hlbi9hcmNoL2FybS90cmFwcy5jCisr KyBiL3hlbi9hcmNoL2FybS90cmFwcy5jCkBAIC0xNTI5LDMwICsxNTI5LDMz IEBAIHN0YXRpYyBib29sX3QgY2hlY2tfbXVsdGljYWxsXzMyYml0X2NsZWEK ICAgICByZXR1cm4gdHJ1ZTsKIH0KIAotdm9pZCBkb19tdWx0aWNhbGxfY2Fs bChzdHJ1Y3QgbXVsdGljYWxsX2VudHJ5ICptdWx0aSkKK2VudW0gbWNfZGlz cG9zaXRpb24gZG9fbXVsdGljYWxsX2NhbGwoc3RydWN0IG11bHRpY2FsbF9l bnRyeSAqbXVsdGkpCiB7CiAgICAgYXJtX2h5cGVyY2FsbF9mbl90IGNhbGwg PSBOVUxMOwogCiAgICAgaWYgKCBtdWx0aS0+b3AgPj0gQVJSQVlfU0laRShh cm1faHlwZXJjYWxsX3RhYmxlKSApCiAgICAgewogICAgICAgICBtdWx0aS0+ cmVzdWx0ID0gLUVOT1NZUzsKLSAgICAgICAgcmV0dXJuOworICAgICAgICBy ZXR1cm4gbWNfY29udGludWU7CiAgICAgfQogCiAgICAgY2FsbCA9IGFybV9o eXBlcmNhbGxfdGFibGVbbXVsdGktPm9wXS5mbjsKICAgICBpZiAoIGNhbGwg PT0gTlVMTCApCiAgICAgewogICAgICAgICBtdWx0aS0+cmVzdWx0ID0gLUVO T1NZUzsKLSAgICAgICAgcmV0dXJuOworICAgICAgICByZXR1cm4gbWNfY29u dGludWU7CiAgICAgfQogCiAgICAgaWYgKCBpc18zMmJpdF9kb21haW4oY3Vy cmVudC0+ZG9tYWluKSAmJgogICAgICAgICAgIWNoZWNrX211bHRpY2FsbF8z MmJpdF9jbGVhbihtdWx0aSkgKQotICAgICAgICByZXR1cm47CisgICAgICAg IHJldHVybiBtY19jb250aW51ZTsKIAogICAgIG11bHRpLT5yZXN1bHQgPSBj YWxsKG11bHRpLT5hcmdzWzBdLCBtdWx0aS0+YXJnc1sxXSwKICAgICAgICAg ICAgICAgICAgICAgICAgICBtdWx0aS0+YXJnc1syXSwgbXVsdGktPmFyZ3Nb M10sCiAgICAgICAgICAgICAgICAgICAgICAgICAgbXVsdGktPmFyZ3NbNF0p OworCisgICAgcmV0dXJuIGxpa2VseSghcHNyX21vZGVfaXNfdXNlcihndWVz dF9jcHVfdXNlcl9yZWdzKCkpKQorICAgICAgICAgICA/IG1jX2NvbnRpbnVl IDogbWNfcHJlZW1wdDsKIH0KIAogLyoKLS0tIGEveGVuL2NvbW1vbi9tdWx0 aWNhbGwuYworKysgYi94ZW4vY29tbW9uL211bHRpY2FsbC5jCkBAIC00MCw2 ICs0MCw3IEBAIGRvX211bHRpY2FsbCgKICAgICBzdHJ1Y3QgbWNfc3RhdGUg Km1jcyA9ICZjdXJyZW50LT5tY19zdGF0ZTsKICAgICB1aW50MzJfdCAgICAg ICAgIGk7CiAgICAgaW50ICAgICAgICAgICAgICByYyA9IDA7CisgICAgZW51 bSBtY19kaXNwb3NpdGlvbiBkaXNwID0gbWNfY29udGludWU7CiAKICAgICBp ZiAoIHVubGlrZWx5KF9fdGVzdF9hbmRfc2V0X2JpdChfTUNTRl9pbl9tdWx0 aWNhbGwsICZtY3MtPmZsYWdzKSkgKQogICAgIHsKQEAgLTUwLDcgKzUxLDcg QEAgZG9fbXVsdGljYWxsKAogICAgIGlmICggdW5saWtlbHkoIWd1ZXN0X2hh bmRsZV9va2F5KGNhbGxfbGlzdCwgbnJfY2FsbHMpKSApCiAgICAgICAgIHJj ID0gLUVGQVVMVDsKIAotICAgIGZvciAoIGkgPSAwOyAhcmMgJiYgaSA8IG5y X2NhbGxzOyBpKysgKQorICAgIGZvciAoIGkgPSAwOyAhcmMgJiYgZGlzcCA9 PSBtY19jb250aW51ZSAmJiBpIDwgbnJfY2FsbHM7IGkrKyApCiAgICAgewog ICAgICAgICBpZiAoIGkgJiYgaHlwZXJjYWxsX3ByZWVtcHRfY2hlY2soKSAp CiAgICAgICAgICAgICBnb3RvIHByZWVtcHRlZDsKQEAgLTYzLDcgKzY0LDcg QEAgZG9fbXVsdGljYWxsKAogCiAgICAgICAgIHRyYWNlX211bHRpY2FsbF9j YWxsKCZtY3MtPmNhbGwpOwogCi0gICAgICAgIGRvX211bHRpY2FsbF9jYWxs KCZtY3MtPmNhbGwpOworICAgICAgICBkaXNwID0gZG9fbXVsdGljYWxsX2Nh bGwoJm1jcy0+Y2FsbCk7CiAKICNpZm5kZWYgTkRFQlVHCiAgICAgICAgIHsK QEAgLTc3LDcgKzc4LDE0IEBAIGRvX211bHRpY2FsbCgKICAgICAgICAgfQog I2VuZGlmCiAKLSAgICAgICAgaWYgKCB1bmxpa2VseShfX2NvcHlfZmllbGRf dG9fZ3Vlc3QoY2FsbF9saXN0LCAmbWNzLT5jYWxsLCByZXN1bHQpKSApCisg ICAgICAgIGlmICggdW5saWtlbHkoZGlzcCA9PSBtY19leGl0KSApCisgICAg ICAgIHsKKyAgICAgICAgICAgIGlmICggX19jb3B5X2ZpZWxkX3RvX2d1ZXN0 KGNhbGxfbGlzdCwgJm1jcy0+Y2FsbCwgcmVzdWx0KSApCisgICAgICAgICAg ICAgICAgLyogbm90aGluZywgYmVzdCBlZmZvcnQgb25seSAqLzsKKyAgICAg ICAgICAgIHJjID0gbWNzLT5jYWxsLnJlc3VsdDsKKyAgICAgICAgfQorICAg ICAgICBlbHNlIGlmICggdW5saWtlbHkoX19jb3B5X2ZpZWxkX3RvX2d1ZXN0 KGNhbGxfbGlzdCwgJm1jcy0+Y2FsbCwKKyAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICByZXN1bHQpKSApCiAgICAg ICAgICAgICByYyA9IC1FRkFVTFQ7CiAgICAgICAgIGVsc2UgaWYgKCBtY3Mt PmZsYWdzICYgTUNTRl9jYWxsX3ByZWVtcHRlZCApCiAgICAgICAgIHsKQEAg LTkzLDYgKzEwMSw5IEBAIGRvX211bHRpY2FsbCgKICAgICAgICAgICAgIGd1 ZXN0X2hhbmRsZV9hZGRfb2Zmc2V0KGNhbGxfbGlzdCwgMSk7CiAgICAgfQog CisgICAgaWYgKCB1bmxpa2VseShkaXNwID09IG1jX3ByZWVtcHQpICYmIGkg PCBucl9jYWxscyApCisgICAgICAgIGdvdG8gcHJlZW1wdGVkOworCiAgICAg cGVyZmNfaW5jcihjYWxsc190b19tdWx0aWNhbGwpOwogICAgIHBlcmZjX2Fk ZChjYWxsc19mcm9tX211bHRpY2FsbCwgaSk7CiAgICAgbWNzLT5mbGFncyA9 IDA7Ci0tLSBhL3hlbi9pbmNsdWRlL2FzbS1hcm0vbXVsdGljYWxsLmgKKysr IGIveGVuL2luY2x1ZGUvYXNtLWFybS9tdWx0aWNhbGwuaApAQCAtMSw3ICsx LDExIEBACiAjaWZuZGVmIF9fQVNNX0FSTV9NVUxUSUNBTExfSF9fCiAjZGVm aW5lIF9fQVNNX0FSTV9NVUxUSUNBTExfSF9fCiAKLWV4dGVybiB2b2lkIGRv X211bHRpY2FsbF9jYWxsKHN0cnVjdCBtdWx0aWNhbGxfZW50cnkgKmNhbGwp OworZXh0ZXJuIGVudW0gbWNfZGlzcG9zaXRpb24geworICAgIG1jX2NvbnRp bnVlLAorICAgIG1jX2V4aXQsCisgICAgbWNfcHJlZW1wdCwKK30gZG9fbXVs dGljYWxsX2NhbGwoc3RydWN0IG11bHRpY2FsbF9lbnRyeSAqY2FsbCk7CiAK ICNlbmRpZiAvKiBfX0FTTV9BUk1fTVVMVElDQUxMX0hfXyAqLwogLyoKLS0t IGEveGVuL2luY2x1ZGUvYXNtLXg4Ni9tdWx0aWNhbGwuaAorKysgYi94ZW4v aW5jbHVkZS9hc20teDg2L211bHRpY2FsbC5oCkBAIC03LDggKzcsMjEgQEAK IAogI2luY2x1ZGUgPHhlbi9lcnJuby5oPgogCitlbnVtIG1jX2Rpc3Bvc2l0 aW9uIHsKKyAgICBtY19jb250aW51ZSwKKyAgICBtY19leGl0LAorICAgIG1j X3ByZWVtcHQsCit9OworCisjZGVmaW5lIG11bHRpY2FsbF9yZXQoY2FsbCkg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgXAorICAgICh1bmxp a2VseSgoY2FsbCktPm9wID09IF9fSFlQRVJWSVNPUl9pcmV0KSAgICAgICAg ICAgICAgIFwKKyAgICAgPyBtY19leGl0ICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICBcCisgICAgICAgOiBsaWtlbHko Z3Vlc3Rfa2VybmVsX21vZGUoY3VycmVudCwgICAgICAgICAgICAgICAgICAg XAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIGd1ZXN0X2Nw dV91c2VyX3JlZ3MoKSkpICAgIFwKKyAgICAgICAgID8gbWNfY29udGludWUg OiBtY19wcmVlbXB0KQorCiAjZGVmaW5lIGRvX211bHRpY2FsbF9jYWxsKF9j YWxsKSAgICAgICAgICAgICAgICAgICAgICAgICAgICAgXAotICAgIGRvIHsg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgIFwKKyAgICAoeyAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICBcCiAgICAgICAgIF9fYXNtX18g X192b2xhdGlsZV9fICggICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg XAogICAgICAgICAgICAgIiAgICBtb3ZxICAlYzEoJTApLCUlcmF4OyAiICAg ICAgICAgICAgICAgICAgICAgIFwKICAgICAgICAgICAgICIgICAgbGVhcSAg aHlwZXJjYWxsX3RhYmxlKCUlcmlwKSwlJXJkaTsgIiAgICAgICBcCkBAIC0z Nyw5ICs1MCwxMSBAQAogICAgICAgICAgICAgICAvKiBhbGwgdGhlIGNhbGxl ci1zYXZlcyByZWdpc3RlcnMgKi8gICAgICAgICAgIFwKICAgICAgICAgICAg IDogInJheCIsICJyY3giLCAicmR4IiwgInJzaSIsICJyZGkiLCAgICAgICAg ICAgICBcCiAgICAgICAgICAgICAgICJyOCIsICAicjkiLCAgInIxMCIsICJy MTEiICk7ICAgICAgICAgICAgICAgICAgXAotICAgIH0gd2hpbGUgKCAwICkK KyAgICAgICAgbXVsdGljYWxsX3JldChfY2FsbCk7ICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICBcCisgICAgfSkKIAogI2RlZmluZSBjb21wYXRf bXVsdGljYWxsX2NhbGwoX2NhbGwpICAgICAgICAgICAgICAgICAgICAgICAg IFwKKyAgICAoeyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICBcCiAgICAgICAgIF9fYXNtX18gX192b2xh dGlsZV9fICggICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgXAogICAg ICAgICAgICAgIiAgICBtb3ZsICAlYzEoJTApLCUlZWF4OyAiICAgICAgICAg ICAgICAgICAgICAgIFwKICAgICAgICAgICAgICIgICAgbGVhcSAgY29tcGF0 X2h5cGVyY2FsbF90YWJsZSglJXJpcCksJSVyZGk7ICJcCkBAIC02Nyw2ICs4 Miw4IEBACiAgICAgICAgICAgICAgICJpIiAoLUVOT1NZUykgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgXAogICAgICAgICAgICAgICAvKiBh bGwgdGhlIGNhbGxlci1zYXZlcyByZWdpc3RlcnMgKi8gICAgICAgICAgIFwK ICAgICAgICAgICAgIDogInJheCIsICJyY3giLCAicmR4IiwgInJzaSIsICJy ZGkiLCAgICAgICAgICAgICBcCi0gICAgICAgICAgICAgICJyOCIsICAicjki LCAgInIxMCIsICJyMTEiICkgICAgICAgICAgICAgICAgICAgXAorICAgICAg ICAgICAgICAicjgiLCAgInI5IiwgICJyMTAiLCAicjExIiApOyAgICAgICAg ICAgICAgICAgIFwKKyAgICAgICAgbXVsdGljYWxsX3JldChfY2FsbCk7ICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICBcCisgICAgfSkKIAogI2Vu ZGlmIC8qIF9fQVNNX1g4Nl9NVUxUSUNBTExfSF9fICovCg== --=separator Content-Type: application/octet-stream; name="xsa213-4.8.patch" Content-Disposition: attachment; filename="xsa213-4.8.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBtdWx0aWNhbGw6IGRlYWwgd2l0aCBlYXJseSBleGl0IGNvbmRpdGlvbnMK CkluIHBhcnRpY3VsYXIgY2hhbmdlcyB0byBndWVzdCBwcml2aWxlZ2UgbGV2 ZWwgcmVxdWlyZSB0aGUgbXVsdGljYWxsCnNlcXVlbmNlIHRvIGJlIGFib3J0 ZWQsIGFzIGh5cGVyY2FsbHMgYXJlIHBlcm1pdHRlZCBmcm9tIGtlcm5lbCBt b2RlCm9ubHkuIFdoaWxlIGxpa2VseSBub3QgdmVyeSB1c2VmdWwgaW4gYSBt dWx0aWNhbGwsIGFsc28gcHJvcGVybHkgaGFuZGxlCnRoZSByZXR1cm4gdmFs dWUgaW4gdGhlIEhZUEVSVklTT1JfaXJldCBjYXNlICh3aGljaCBzaG91bGQg YmUgdGhlIGd1ZXN0CnNwZWNpZmllZCB2YWx1ZSkuCgpUaGlzIGlzIFhTQS0y MTMuCgpSZXBvcnRlZC1ieTogSmFubiBIb3JuIDxqYW5uaEBnb29nbGUuY29t PgpTaWduZWQtb2ZmLWJ5OiBKYW4gQmV1bGljaCA8amJldWxpY2hAc3VzZS5j b20+ClJldmlld2VkLWJ5OiBBbmRyZXcgQ29vcGVyIDxhbmRyZXcuY29vcGVy M0BjaXRyaXguY29tPgpBY2tlZC1ieTogSnVsaWVuIEdyYWxsIDxqdWxpZW4u Z3JhbGxAYXJtLmNvbT4KCi0tLSBhL3hlbi9hcmNoL2FybS90cmFwcy5jCisr KyBiL3hlbi9hcmNoL2FybS90cmFwcy5jCkBAIC0xNTUwLDcgKzE1NTAsNyBA QCBzdGF0aWMgYm9vbF90IGNoZWNrX211bHRpY2FsbF8zMmJpdF9jbGVhCiAg ICAgcmV0dXJuIHRydWU7CiB9CiAKLXZvaWQgYXJjaF9kb19tdWx0aWNhbGxf Y2FsbChzdHJ1Y3QgbWNfc3RhdGUgKnN0YXRlKQorZW51bSBtY19kaXNwb3Np dGlvbiBhcmNoX2RvX211bHRpY2FsbF9jYWxsKHN0cnVjdCBtY19zdGF0ZSAq c3RhdGUpCiB7CiAgICAgc3RydWN0IG11bHRpY2FsbF9lbnRyeSAqbXVsdGkg PSAmc3RhdGUtPmNhbGw7CiAgICAgYXJtX2h5cGVyY2FsbF9mbl90IGNhbGwg PSBOVUxMOwpAQCAtMTU1OCwyMyArMTU1OCwyNiBAQCB2b2lkIGFyY2hfZG9f bXVsdGljYWxsX2NhbGwoc3RydWN0IG1jX3N0CiAgICAgaWYgKCBtdWx0aS0+ b3AgPj0gQVJSQVlfU0laRShhcm1faHlwZXJjYWxsX3RhYmxlKSApCiAgICAg ewogICAgICAgICBtdWx0aS0+cmVzdWx0ID0gLUVOT1NZUzsKLSAgICAgICAg cmV0dXJuOworICAgICAgICByZXR1cm4gbWNfY29udGludWU7CiAgICAgfQog CiAgICAgY2FsbCA9IGFybV9oeXBlcmNhbGxfdGFibGVbbXVsdGktPm9wXS5m bjsKICAgICBpZiAoIGNhbGwgPT0gTlVMTCApCiAgICAgewogICAgICAgICBt dWx0aS0+cmVzdWx0ID0gLUVOT1NZUzsKLSAgICAgICAgcmV0dXJuOworICAg ICAgICByZXR1cm4gbWNfY29udGludWU7CiAgICAgfQogCiAgICAgaWYgKCBp c18zMmJpdF9kb21haW4oY3VycmVudC0+ZG9tYWluKSAmJgogICAgICAgICAg IWNoZWNrX211bHRpY2FsbF8zMmJpdF9jbGVhbihtdWx0aSkgKQotICAgICAg ICByZXR1cm47CisgICAgICAgIHJldHVybiBtY19jb250aW51ZTsKIAogICAg IG11bHRpLT5yZXN1bHQgPSBjYWxsKG11bHRpLT5hcmdzWzBdLCBtdWx0aS0+ YXJnc1sxXSwKICAgICAgICAgICAgICAgICAgICAgICAgICBtdWx0aS0+YXJn c1syXSwgbXVsdGktPmFyZ3NbM10sCiAgICAgICAgICAgICAgICAgICAgICAg ICAgbXVsdGktPmFyZ3NbNF0pOworCisgICAgcmV0dXJuIGxpa2VseSghcHNy X21vZGVfaXNfdXNlcihndWVzdF9jcHVfdXNlcl9yZWdzKCkpKQorICAgICAg ICAgICA/IG1jX2NvbnRpbnVlIDogbWNfcHJlZW1wdDsKIH0KIAogLyoKLS0t IGEveGVuL2FyY2gveDg2L2h5cGVyY2FsbC5jCisrKyBiL3hlbi9hcmNoL3g4 Ni9oeXBlcmNhbGwuYwpAQCAtMjU1LDE1ICsyNTUsMTkgQEAgdm9pZCBwdl9o eXBlcmNhbGwoc3RydWN0IGNwdV91c2VyX3JlZ3MgKgogICAgIHBlcmZjX2lu Y3IoaHlwZXJjYWxscyk7CiB9CiAKLXZvaWQgYXJjaF9kb19tdWx0aWNhbGxf Y2FsbChzdHJ1Y3QgbWNfc3RhdGUgKnN0YXRlKQorZW51bSBtY19kaXNwb3Np dGlvbiBhcmNoX2RvX211bHRpY2FsbF9jYWxsKHN0cnVjdCBtY19zdGF0ZSAq c3RhdGUpCiB7Ci0gICAgaWYgKCAhaXNfcHZfMzJiaXRfdmNwdShjdXJyZW50 KSApCisgICAgc3RydWN0IHZjcHUgKmN1cnIgPSBjdXJyZW50OworICAgIHVu c2lnbmVkIGxvbmcgb3A7CisKKyAgICBpZiAoICFpc19wdl8zMmJpdF92Y3B1 KGN1cnIpICkKICAgICB7CiAgICAgICAgIHN0cnVjdCBtdWx0aWNhbGxfZW50 cnkgKmNhbGwgPSAmc3RhdGUtPmNhbGw7CiAKLSAgICAgICAgaWYgKCAoY2Fs bC0+b3AgPCBBUlJBWV9TSVpFKHB2X2h5cGVyY2FsbF90YWJsZSkpICYmCi0g ICAgICAgICAgICAgcHZfaHlwZXJjYWxsX3RhYmxlW2NhbGwtPm9wXS5uYXRp dmUgKQotICAgICAgICAgICAgY2FsbC0+cmVzdWx0ID0gcHZfaHlwZXJjYWxs X3RhYmxlW2NhbGwtPm9wXS5uYXRpdmUoCisgICAgICAgIG9wID0gY2FsbC0+ b3A7CisgICAgICAgIGlmICggKG9wIDwgQVJSQVlfU0laRShwdl9oeXBlcmNh bGxfdGFibGUpKSAmJgorICAgICAgICAgICAgIHB2X2h5cGVyY2FsbF90YWJs ZVtvcF0ubmF0aXZlICkKKyAgICAgICAgICAgIGNhbGwtPnJlc3VsdCA9IHB2 X2h5cGVyY2FsbF90YWJsZVtvcF0ubmF0aXZlKAogICAgICAgICAgICAgICAg IGNhbGwtPmFyZ3NbMF0sIGNhbGwtPmFyZ3NbMV0sIGNhbGwtPmFyZ3NbMl0s CiAgICAgICAgICAgICAgICAgY2FsbC0+YXJnc1szXSwgY2FsbC0+YXJnc1s0 XSwgY2FsbC0+YXJnc1s1XSk7CiAgICAgICAgIGVsc2UKQEAgLTI3NCwxNSAr Mjc4LDIxIEBAIHZvaWQgYXJjaF9kb19tdWx0aWNhbGxfY2FsbChzdHJ1Y3Qg bWNfc3QKICAgICB7CiAgICAgICAgIHN0cnVjdCBjb21wYXRfbXVsdGljYWxs X2VudHJ5ICpjYWxsID0gJnN0YXRlLT5jb21wYXRfY2FsbDsKIAotICAgICAg ICBpZiAoIChjYWxsLT5vcCA8IEFSUkFZX1NJWkUocHZfaHlwZXJjYWxsX3Rh YmxlKSkgJiYKLSAgICAgICAgICAgICBwdl9oeXBlcmNhbGxfdGFibGVbY2Fs bC0+b3BdLmNvbXBhdCApCi0gICAgICAgICAgICBjYWxsLT5yZXN1bHQgPSBw dl9oeXBlcmNhbGxfdGFibGVbY2FsbC0+b3BdLmNvbXBhdCgKKyAgICAgICAg b3AgPSBjYWxsLT5vcDsKKyAgICAgICAgaWYgKCAob3AgPCBBUlJBWV9TSVpF KHB2X2h5cGVyY2FsbF90YWJsZSkpICYmCisgICAgICAgICAgICAgcHZfaHlw ZXJjYWxsX3RhYmxlW29wXS5jb21wYXQgKQorICAgICAgICAgICAgY2FsbC0+ cmVzdWx0ID0gcHZfaHlwZXJjYWxsX3RhYmxlW29wXS5jb21wYXQoCiAgICAg ICAgICAgICAgICAgY2FsbC0+YXJnc1swXSwgY2FsbC0+YXJnc1sxXSwgY2Fs bC0+YXJnc1syXSwKICAgICAgICAgICAgICAgICBjYWxsLT5hcmdzWzNdLCBj YWxsLT5hcmdzWzRdLCBjYWxsLT5hcmdzWzVdKTsKICAgICAgICAgZWxzZQog ICAgICAgICAgICAgY2FsbC0+cmVzdWx0ID0gLUVOT1NZUzsKICAgICB9CiAj ZW5kaWYKKworICAgIHJldHVybiB1bmxpa2VseShvcCA9PSBfX0hZUEVSVklT T1JfaXJldCkKKyAgICAgICAgICAgPyBtY19leGl0CisgICAgICAgICAgIDog bGlrZWx5KGd1ZXN0X2tlcm5lbF9tb2RlKGN1cnIsIGd1ZXN0X2NwdV91c2Vy X3JlZ3MoKSkpCisgICAgICAgICAgICAgPyBtY19jb250aW51ZSA6IG1jX3By ZWVtcHQ7CiB9CiAKIC8qCi0tLSBhL3hlbi9jb21tb24vbXVsdGljYWxsLmMK KysrIGIveGVuL2NvbW1vbi9tdWx0aWNhbGwuYwpAQCAtNDAsNiArNDAsNyBA QCBkb19tdWx0aWNhbGwoCiAgICAgc3RydWN0IG1jX3N0YXRlICptY3MgPSAm Y3VycmVudC0+bWNfc3RhdGU7CiAgICAgdWludDMyX3QgICAgICAgICBpOwog ICAgIGludCAgICAgICAgICAgICAgcmMgPSAwOworICAgIGVudW0gbWNfZGlz cG9zaXRpb24gZGlzcCA9IG1jX2NvbnRpbnVlOwogCiAgICAgaWYgKCB1bmxp a2VseShfX3Rlc3RfYW5kX3NldF9iaXQoX01DU0ZfaW5fbXVsdGljYWxsLCAm bWNzLT5mbGFncykpICkKICAgICB7CkBAIC01MCw3ICs1MSw3IEBAIGRvX211 bHRpY2FsbCgKICAgICBpZiAoIHVubGlrZWx5KCFndWVzdF9oYW5kbGVfb2th eShjYWxsX2xpc3QsIG5yX2NhbGxzKSkgKQogICAgICAgICByYyA9IC1FRkFV TFQ7CiAKLSAgICBmb3IgKCBpID0gMDsgIXJjICYmIGkgPCBucl9jYWxsczsg aSsrICkKKyAgICBmb3IgKCBpID0gMDsgIXJjICYmIGRpc3AgPT0gbWNfY29u dGludWUgJiYgaSA8IG5yX2NhbGxzOyBpKysgKQogICAgIHsKICAgICAgICAg aWYgKCBpICYmIGh5cGVyY2FsbF9wcmVlbXB0X2NoZWNrKCkgKQogICAgICAg ICAgICAgZ290byBwcmVlbXB0ZWQ7CkBAIC02Myw3ICs2NCw3IEBAIGRvX211 bHRpY2FsbCgKIAogICAgICAgICB0cmFjZV9tdWx0aWNhbGxfY2FsbCgmbWNz LT5jYWxsKTsKIAotICAgICAgICBhcmNoX2RvX211bHRpY2FsbF9jYWxsKG1j cyk7CisgICAgICAgIGRpc3AgPSBhcmNoX2RvX211bHRpY2FsbF9jYWxsKG1j cyk7CiAKICNpZm5kZWYgTkRFQlVHCiAgICAgICAgIHsKQEAgLTc3LDcgKzc4 LDE0IEBAIGRvX211bHRpY2FsbCgKICAgICAgICAgfQogI2VuZGlmCiAKLSAg ICAgICAgaWYgKCB1bmxpa2VseShfX2NvcHlfZmllbGRfdG9fZ3Vlc3QoY2Fs bF9saXN0LCAmbWNzLT5jYWxsLCByZXN1bHQpKSApCisgICAgICAgIGlmICgg dW5saWtlbHkoZGlzcCA9PSBtY19leGl0KSApCisgICAgICAgIHsKKyAgICAg ICAgICAgIGlmICggX19jb3B5X2ZpZWxkX3RvX2d1ZXN0KGNhbGxfbGlzdCwg Jm1jcy0+Y2FsbCwgcmVzdWx0KSApCisgICAgICAgICAgICAgICAgLyogbm90 aGluZywgYmVzdCBlZmZvcnQgb25seSAqLzsKKyAgICAgICAgICAgIHJjID0g bWNzLT5jYWxsLnJlc3VsdDsKKyAgICAgICAgfQorICAgICAgICBlbHNlIGlm ICggdW5saWtlbHkoX19jb3B5X2ZpZWxkX3RvX2d1ZXN0KGNhbGxfbGlzdCwg Jm1jcy0+Y2FsbCwKKyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICByZXN1bHQpKSApCiAgICAgICAgICAgICByYyA9 IC1FRkFVTFQ7CiAgICAgICAgIGVsc2UgaWYgKCBtY3MtPmZsYWdzICYgTUNT Rl9jYWxsX3ByZWVtcHRlZCApCiAgICAgICAgIHsKQEAgLTkzLDYgKzEwMSw5 IEBAIGRvX211bHRpY2FsbCgKICAgICAgICAgICAgIGd1ZXN0X2hhbmRsZV9h ZGRfb2Zmc2V0KGNhbGxfbGlzdCwgMSk7CiAgICAgfQogCisgICAgaWYgKCB1 bmxpa2VseShkaXNwID09IG1jX3ByZWVtcHQpICYmIGkgPCBucl9jYWxscyAp CisgICAgICAgIGdvdG8gcHJlZW1wdGVkOworCiAgICAgcGVyZmNfaW5jcihj YWxsc190b19tdWx0aWNhbGwpOwogICAgIHBlcmZjX2FkZChjYWxsc19mcm9t X211bHRpY2FsbCwgaSk7CiAgICAgbWNzLT5mbGFncyA9IDA7Ci0tLSBhL3hl bi9pbmNsdWRlL3hlbi9tdWx0aWNhbGwuaAorKysgYi94ZW4vaW5jbHVkZS94 ZW4vbXVsdGljYWxsLmgKQEAgLTI0LDYgKzI0LDEwIEBAIHN0cnVjdCBtY19z dGF0ZSB7CiAgICAgfTsKIH07CiAKLXZvaWQgYXJjaF9kb19tdWx0aWNhbGxf Y2FsbChzdHJ1Y3QgbWNfc3RhdGUgKm1jKTsKK2VudW0gbWNfZGlzcG9zaXRp b24geworICAgIG1jX2NvbnRpbnVlLAorICAgIG1jX2V4aXQsCisgICAgbWNf cHJlZW1wdCwKK30gYXJjaF9kb19tdWx0aWNhbGxfY2FsbChzdHJ1Y3QgbWNf c3RhdGUgKm1jKTsKIAogI2VuZGlmIC8qIF9fWEVOX01VTFRJQ0FMTF9IX18g Ki8K --=separator Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KWGVuLWFubm91 bmNlIG1haWxpbmcgbGlzdApYZW4tYW5ub3VuY2VAbGlzdHMueGVuLm9yZwpodHRwczovL2xpc3Rz Lnhlbi5vcmcveGVuLWFubm91bmNl --=separator-- From xen-announce-bounces@lists.xen.org Tue May 02 12:01:30 2017 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Tue, 02 May 2017 12:01:30 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d5WTu-00078N-Ai; Tue, 02 May 2017 12:00:38 +0000 Received: from mail6.bemta5.messagelabs.com ([195.245.231.135]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d5WTt-00077h-34; Tue, 02 May 2017 12:00:37 +0000 Received: from [85.158.139.211] by server-5.bemta-5.messagelabs.com id BA/0A-02183-3E478095; Tue, 02 May 2017 12:00:35 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrKIsWRWlGSWpSXmKPExsWS0XRdVfdRCUe kwc8zlha3brYyWyz5uJjFYtXVA6wOzB5Hd/9mCmCMYs3MS8qvSGDN+Nh0lalgvknF7A0b2BoY P+h1MXJxCAkcZ5TY3PuNHcJZxCjRfuUsUxcjJwezgKvEjX2b2SBsRYkL9xpYQGxeAUGJkzOfg NkSApoSd96sYgexRQSKJHaeewlmswnoScw9Owlqjo7Ey/2rwWxhgSiJO/Oes0PMMZO4sawFbA 6LgKrEudkfmCcw8sxCsnoWktWzkKyexcgBFNeUWL9LH8KUllj+jwOiWl5i+9s5zBC2tcTfu5+ hplhI/N+3nRlm4pTuh+wLGDlXMWoUpxaVpRbpGhrqJRVlpmeU5CZm5ugaGpjq5aYWFyemp+Yk JhXrJefnbmIEBjgDEOxgXNnufIhRkoNJSZRX/RV7pBBfUn5KZUZicUZ8UWlOavEhRg0ODoG+N asvMEqx5OXnpSpJ8C4r5ogUEixKTU+tSMvMAcYgTKkEB4+SCO9qkDRvcUFibnFmOkTqFKMxx7 m5794zcdxY8PU9kxDYJClxXmFgdAsJgJRmlObBDYKlhkuMslLCvIxAZwrxFKQW5WaWoMq/YhT nYFQS5v0IspAnM68Ebt8roFOYgE5plgU7pSQRISXVwBjCdjT8U/fiyAv1B1Y0hT862nS4x8ja cbZocdakzKl7ZgpeniQ1rVirULGhfO5/iz+32rb3HK/+3iY7+aWvwIkVi/9/NVmdn+mh2xl2Q 2iWoUbW3WXpZ6cwqO471vI/6ublDpm6WXPy7lVPN3l4qW79/sfGnH8dGj0vh0X3B1aJyUmKnf sQEq7EUpyRaKjFXFScCADOQVa1CAMAAA== X-Env-Sender: iwj@xenbits.xen.org X-Msg-Ref: server-8.tower-206.messagelabs.com!1493726433!95839619!1 X-Originating-IP: [104.130.215.37] X-SpamReason: No, hits=0.5 required=7.0 tests=BODY_RANDOM_LONG X-StarScan-Received: X-StarScan-Version: 9.4.12; banners=-,-,- X-VirusChecked: Checked Received: (qmail 61990 invoked from network); 2 May 2017 12:00:34 -0000 Received: from mail.xenproject.org (HELO mail.xenproject.org) (104.130.215.37) by server-8.tower-206.messagelabs.com with AES128-GCM-SHA256 encrypted SMTP; 2 May 2017 12:00:34 -0000 Received: from xenbits.xenproject.org ([104.239.192.120]) by mail.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d5WTd-0004gB-MI; Tue, 02 May 2017 12:00:21 +0000 Received: from iwj by xenbits.xenproject.org with local (Exim 4.84_2) (envelope-from ) id 1d5WTd-0005Ku-JX; Tue, 02 May 2017 12:00:21 +0000 Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.505 (Entity 5.505) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Message-Id: Date: Tue, 02 May 2017 12:00:21 +0000 Cc: "Xen.org security team" Subject: [Xen-announce] Xen Security Advisory 214 - grant transfer allows PV guest to elevate privileges X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Errors-To: xen-announce-bounces@lists.xen.org Sender: "Xen-announce" --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Xen Security Advisory XSA-214 version 2 grant transfer allows PV guest to elevate privileges UPDATES IN VERSION 2 ==================== Public release. Added email header syntax to patches, for e.g. git-am. ISSUE DESCRIPTION ================= The GNTTABOP_transfer operation allows one guest to transfer a page to another guest. The internal processing of this, however, does not include zapping the previous type of the page being transferred. This makes it possible for a PV guest to transfer a page previously used as part of a segment descriptor table to another guest while retaining the "contains segment descriptors" property. If the destination guest is a PV one of different bitness, it may gain access to segment descriptors it is not normally allowed to have, like 64-bit code segments in a 32-bit PV guest. If the destination guest is a HVM one, that guest may freely alter the page contents and then hand the page back to the same or another PV guest. In either case, if the destination PV guest then inserts that page into one of its own descriptor tables, the page still having the designated type results in validation of its contents being skipped. IMPACT ====== A malicious pair of guests may be able to access all of system memory, allowing for all of privilege escalation, host crashes, and information leaks. VULNERABLE SYSTEMS ================== All Xen versions are vulnerable. Only x86 systems are affected. ARM systems are not vulnerable. MITIGATION ========== Running only one out of the three relevant classes of guest (namely: 32-bit PV; 64-bit PV; HVM) on any given host will avoid the vulnerability. (Note that this must also include any nonprivileged service domains such as stub device model domains.) The vulnerability can also be avoided if all guest kernels are controlled by the host rather than guest administrator, provided that further steps are taken to prevent the guest administrator from loading code into the kernel (e.g. by disabling loadable modules etc) or from using other mechanisms which allow them to run code at kernel privilege. CREDITS ======= This issue was discovered by Jann Horn of Google Project Zero. RESOLUTION ========== Applying the attached patch resolves this issue. xsa124.patch xen-unstable, Xen 4.8.x, 4.7.x, 4.6.x, 4.5.x $ sha256sum xsa214* 1c038c3927d08e6abdf3ce320bb8b0b68a106e6ac86b4e8194035dc5e4726d64 xsa214.patch $ DEPLOYMENT DURING EMBARGO ========================= Deployment of the patches and/or mitigations described above (or others which are substantially similar) is permitted during the embargo, even on public-facing systems with untrusted guest users and administrators. But: Distribution of updated software is prohibited (except to other members of the predisclosure list). Predisclosure list members who wish to deploy significantly different patches and/or mitigations, please contact the Xen Project Security Team. (Note: this during-embargo deployment notice is retained in post-embargo publicly released Xen Project advisories, even though it is then no longer applicable. This is to enable the community to have oversight of the Xen Project Security Team's decisionmaking.) For more information about permissible uses of embargoed information, consult the Xen Project community's agreed Security Policy: http://www.xenproject.org/security-policy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEcBAEBCAAGBQJZCGsBAAoJEIP+FMlX6CvZtvQH/i2VsJ5AIku19/0AfiuVA6WN WOu6TBGsaLTAXZHM/CPAOYuPHJ2dQlXRB+avo/Wu8MpuYIVrSarlfED8puDgwO2t vZp8k5KMV4hWY7EYWYuhMvJVgNK2kjRIsM8g4T56Tc8waQdFBVH1ODEFLOdTT2jf gVuEjV9vpdzW994N38QRLYuaaQwLGPf9yAx1pgcMr1K3qzcOOBiNqCtb1amYo84i e/xXSV7Y87/mZxsq23ZhrRgTogiIeZO3LnLnYyYqplTGNKZli6RyvlpLzADQNdae lpvLGHLRuIiLEFBqhINVDshRHu2cp346dOTTS8bjEfFD/d5NBUYjddP2QogqCqo= =g4Jg -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa214.patch" Content-Disposition: attachment; filename="xsa214.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiB4ODY6IGRpc2NhcmQgdHlwZSBpbmZvcm1hdGlvbiB3aGVuIHN0ZWFsaW5n IHBhZ2VzCgpXaGlsZSBhIHBhZ2UgaGF2aW5nIGp1c3QgYSBzaW5nbGUgZ2Vu ZXJhbCByZWZlcmVuY2UgbGVmdCBuZWNlc3NhcmlseQpoYXMgYSB6ZXJvIHR5 cGUgcmVmZXJlbmNlIGNvdW50IHRvbywgaXRzIHR5cGUgbWF5IHN0aWxsIGJl IHZhbGlkIChhbmQKaW4gdmFsaWRhdGVkIHN0YXRlOyBhdCBwcmVzZW50IHRo aXMgaXMgb25seSBwb3NzaWJsZSBhbmQgcmVsZXZhbnQgZm9yClBHVF9zZWdf ZGVzY19wYWdlLCBhcyBwYWdlIHRhYmxlcyBoYXZlIHRoZWlyIHR5cGUgZm9y Y2libHkgemFwcGVkIHdoZW4KdGhlaXIgdHlwZSByZWZlcmVuY2UgY291bnQg ZHJvcHMgdG8gemVybywgYW5kClBHVF97d3JpdGFibGUsc2hhcmVkfV9wYWdl IHBhZ2VzIGRvbid0IHJlcXVpcmUgYW55IHZhbGlkYXRpb24pLiBJbgpzdWNo IGEgY2FzZSB3aGVuIHRoZSBwYWdlIGlzIGJlaW5nIHJlLXVzZWQgd2l0aCB0 aGUgc2FtZSB0eXBlIGFnYWluLAp2YWxpZGF0aW9uIGlzIGJlaW5nIHNraXBw ZWQuIEFzIHZhbGlkYXRpb24gY3JpdGVyaWEgZGlmZmVyIGJldHdlZW4KMzIt IGFuZCA2NC1iaXQgZ3Vlc3RzLCBwYWdlcyB0byBiZSB0cmFuc2ZlcnJlZCBi ZXR3ZWVuIGd1ZXN0cyBuZWVkIHRvCmhhdmUgdGhlaXIgdmFsaWRhdGlvbiBp bmRpY2F0b3IgemFwcGVkIChhbmQgd2l0aCBpdCB3ZSB6YXAgYWxsIG90aGVy CnR5cGUgaW5mb3JtYXRpb24gYXQgb25jZSkuCgpUaGlzIGlzIFhTQS0yMTQu CgpSZXBvcnRlZC1ieTogSmFubiBIb3JuIDxqYW5uaEBnb29nbGUuY29tPgpT aWduZWQtb2ZmLWJ5OiBKYW4gQmV1bGljaCA8amJldWxpY2hAc3VzZS5jb20+ ClJldmlld2VkLWJ5OiBBbmRyZXcgQ29vcGVyIDxhbmRyZXcuY29vcGVyM0Bj aXRyaXguY29tPgoKLS0tIGEveGVuL2FyY2gveDg2L21tLmMKKysrIGIveGVu L2FyY2gveDg2L21tLmMKQEAgLTQ0NjYsNiArNDQ2NiwxNyBAQCBpbnQgc3Rl YWxfcGFnZSgKICAgICAgICAgeSA9IGNtcHhjaGcoJnBhZ2UtPmNvdW50X2lu Zm8sIHgsIHggJiB+UEdDX2NvdW50X21hc2spOwogICAgIH0gd2hpbGUgKCB5 ICE9IHggKTsKIAorICAgIC8qCisgICAgICogV2l0aCB0aGUgc29sZSByZWZl cmVuY2UgZHJvcHBlZCB0ZW1wb3JhcmlseSwgbm8tb25lIGNhbiB1cGRhdGUg dHlwZQorICAgICAqIGluZm9ybWF0aW9uLiBUeXBlIGNvdW50IGFsc28gbmVl ZHMgdG8gYmUgemVybyBpbiB0aGlzIGNhc2UsIGJ1dCBlLmcuCisgICAgICog UEdUX3NlZ19kZXNjX3BhZ2UgbWF5IHN0aWxsIGhhdmUgUEdUX3ZhbGlkYXRl ZCBzZXQsIHdoaWNoIHdlIG5lZWQgdG8KKyAgICAgKiBjbGVhciBiZWZvcmUg dHJhbnNmZXJyaW5nIG93bmVyc2hpcCAoYXMgdmFsaWRhdGlvbiBjcml0ZXJp YSB2YXJ5CisgICAgICogZGVwZW5kaW5nIG9uIGRvbWFpbiB0eXBlKS4KKyAg ICAgKi8KKyAgICBCVUdfT04ocGFnZS0+dS5pbnVzZS50eXBlX2luZm8gJiAo UEdUX2NvdW50X21hc2sgfCBQR1RfbG9ja2VkIHwKKyAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgUEdUX3Bpbm5lZCkpOworICAgIHBh Z2UtPnUuaW51c2UudHlwZV9pbmZvID0gMDsKKwogICAgIC8qIFN3aXp6bGUg dGhlIG93bmVyIHRoZW4gcmVpbnN0YXRlIHRoZSBQR0NfYWxsb2NhdGVkIHJl ZmVyZW5jZS4gKi8KICAgICBwYWdlX3NldF9vd25lcihwYWdlLCBOVUxMKTsK ICAgICB5ID0gcGFnZS0+Y291bnRfaW5mbzsK --=separator Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KWGVuLWFubm91 bmNlIG1haWxpbmcgbGlzdApYZW4tYW5ub3VuY2VAbGlzdHMueGVuLm9yZwpodHRwczovL2xpc3Rz Lnhlbi5vcmcveGVuLWFubm91bmNl --=separator-- From xen-announce-bounces@lists.xen.org Tue May 09 13:28:16 2017 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Tue, 09 May 2017 13:28:16 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d85Aj-000429-T1; Tue, 09 May 2017 13:27:25 +0000 Received: from mail6.bemta5.messagelabs.com ([195.245.231.135]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d859a-0003vS-6v; Tue, 09 May 2017 13:26:14 +0000 Received: from [85.158.139.211] by server-13.bemta-5.messagelabs.com id 14/B2-01709-573C1195; Tue, 09 May 2017 13:26:13 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFrrOIsWRWlGSWpSXmKPExsVyMbRhq27JYcF Igx1f2Sxmb2xjtni37y+zA5PH4Q9XWAIYo1gz85LyKxJYM/7tCSm4Il0xef0R9gbGc+JdjJwc QgIlEj3tXaxdjFwcLAINrBJTN85kA3EkBOawStz7c5MdpEpCIEni1fGrbBB2hcTVw5OZILrVJ e4tus0O0iAksJxJ4v/CdYwgCTYBbYlNNx4wg9jMQEV/5l2CsrUlli18DWYLCxhKfLn5GWg1Bw evgI3ErOfKIGEWARWJhee+MYOERQRCJb4+9AIJ8wroSby6dZkV4gRZid2/HzFNYBSYhWTBLCQ LZiFpWcDIvIpRvTi1qCy1SNdCL6koMz2jJDcxM0fX0MBULze1uDgxPTUnMalYLzk/dxMjMEgZ gGAH48Fm50OMkhxMSqK8PsUCkUJ8SfkplRmJxRnxRaU5qcWHGGU4OJQkeMsOCUYKCRalpqdWp GXmAOMFJi3BwaMkwpt5ECjNW1yQmFucmQ6ROsVoz/Hi8vv3TBzvln4Aki2LvgLJJyt/vGcSYs nLz0uVEufVBJkqANKWUZoHNxQW35cYZaWEeRmBzhTiKUgtys0sQZV/xSjOwagkzDsbZApPZl4 J3O5XQGcxAZ0VyCAAclZJIkJKqoGRLUJuec2qK3+Z2Ni9ds3X01Iu4/St29K0mOlMqs0L6wyf UxdTZ8xXCUxul/zws0DvfZGyI19WwaQjPUx/nGy8wn3PKc+vbT+/sDw7ze+CgI5wjf6pHR5y3 yzLVP+f8tkuvHNP72/DW8K5F4QFBVkWv0rsbD5j/nfyEouJOd9X3HWabMX2z1qJpTgj0VCLua g4EQC60WSx6gIAAA== X-Env-Sender: lars.kurth.xen@gmail.com X-Msg-Ref: server-11.tower-206.messagelabs.com!1494336371!77317165!1 X-Originating-IP: [209.85.128.181] X-SpamReason: No, hits=0.2 required=7.0 tests=MIME_QP_LONG_LINE X-StarScan-Received: X-StarScan-Version: 9.4.12; banners=-,-,- X-VirusChecked: Checked Received: (qmail 49113 invoked from network); 9 May 2017 13:26:12 -0000 Received: from mail-wr0-f181.google.com (HELO mail-wr0-f181.google.com) (209.85.128.181) by server-11.tower-206.messagelabs.com with AES128-GCM-SHA256 encrypted SMTP; 9 May 2017 13:26:12 -0000 Received: by mail-wr0-f181.google.com with SMTP id z52so73113534wrc.2; Tue, 09 May 2017 06:26:12 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:content-transfer-encoding:subject:message-id:date:to :mime-version; bh=SD+6bM6NSLtfC7f2EqQ0w/lsol6EzvfupZnWQAAAVwY=; b=tDSfKNy5J/OLw5PDVAub9I6KaYZoFWBA2Zw2XV1tjQ1sxAcxB0QWgJvi0HEbxDQzMG mcJF7d3su6clVxypitXT95IdQJXrBgfCEZggU8jham27WDTCXweYlSi3I8mcIzIkhdOe AfZ9cnoTcCWX6E3wsKS+AjpATtHHbQ5fPJSh917yUeswhZSQWBJ/ZsWpDGY9nKRhVVEi qZZ3M8YXXVBSGj+X5kSaKRAmWqbLSwL+bxG1bcvEUrnkIcjoeirUqLJITyeXktbh+Bub pHtSTHlDNhu4Jst9hjQr/9JZLXJueLeTupemTOZwnqtHey2x3Nh79UVUymgSnrY/GRdK g7xQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:content-transfer-encoding:subject :message-id:date:to:mime-version; bh=SD+6bM6NSLtfC7f2EqQ0w/lsol6EzvfupZnWQAAAVwY=; b=t3t4Qm8MSY9PMQ/OE2IxmTHapbzYfNP536VLXj/vNm03C27pntDR9Wnna6fa6o8SbX MVSSWpawYlTGDSoJIJiebmsqYzwmZEgSjq2rNwFtxijxQqES2P8hmR4K2IUtidCnFakC TuD7iMtPphVNQSRtBxUieaxXOLXaml+RQMyrbB5DbfBv2q4SMw+lEiV/CalPKj6EN/0K 6XB1+w15LU0ISa9jRVzML5fwQPmoN1+bkv56cJ9uDJ8+d5bPxbsBftZfaI/S2PJV3l9J nUMDI89s1H4ITVn7BRbVO9YYiScjMjryF8t02Bh+8hnD+CFGXQhxv52CmL0U1qLF5bIu XiyQ== X-Gm-Message-State: AODbwcBOEuWDysWLaJiyAbN/+FS1/yGfhmeQSInJ1M93exn+yywSK/f9 psitZIUx5Ty6bvK7HJw= X-Received: by 10.28.191.145 with SMTP id o17mr167542wmi.20.1494336371187; Tue, 09 May 2017 06:26:11 -0700 (PDT) Received: from ?IPv6:2a02:c7f:ac18:da00:aca9:3559:d313:ffd5? ([2a02:c7f:ac18:da00:aca9:3559:d313:ffd5]) by smtp.gmail.com with ESMTPSA id e125sm180748wmd.33.2017.05.09.06.26.10 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Tue, 09 May 2017 06:26:10 -0700 (PDT) From: Lars Kurth Message-Id: <47B26ABC-6E27-4671-B717-7BDE417E265E@gmail.com> Date: Tue, 9 May 2017 14:26:09 +0100 To: xen-announce , xen-users@lists.xenproject.org Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2104\)) X-Mailer: Apple Mail (2.2104) X-Mailman-Approved-At: Tue, 09 May 2017 13:27:24 +0000 Subject: [Xen-announce] Announcing the Windows PV Console Driver X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: xen-announce-bounces@lists.xen.org Sender: "Xen-announce" SXQgaGFzIGxvbmcgYmVlbiB0aGUgY2FzZSB0aGF0IGFsbCBIVk0gZ3Vlc3RzIHVuZGVyIFhlbiBh cmUgcHJvdmlkZWQgd2l0aCBhIFBWIGNvbnNvbGUuIFlvdSBjYW4gYXR0YWNoIHRvIHRoaXMgY29u c29sZSBpbiB0aGUgc2FtZSB3YXkgdGhhdCB5b3UgYXR0YWNoIHRvIHRoZSBjb25zb2xlIG9mIGEg UFYgZ3Vlc3QsIGJ5IHR5cGluZyBpbiB0aGUgY29udHJvbCBkb21haW46Cgp4bCBjb25zb2xlIG5h bWVfb2ZfZ3Vlc3QKClVudGlsIHJlY2VudGx5IHRoZXJlIGhhcyBiZWVuIG5vIFdpbmRvd3MgUFYg ZHJpdmVyIGludGVyYWN0aW9uIHdpdGggdGhpcyBjb25zb2xlLiBTdGFydGluZyB3aXRoIHRoaXMg Y29tbWl0IChodHRwOi8veGVuYml0cy54ZW4ub3JnL2dpdHdlYi8/cD1wdmRyaXZlcnMvd2luL3hl bmJ1cy5naXQ7YT1jb21taXQ7aD05Zjg5ZmFiNTVjMjljOWUzODJkYWFjN2Y5YjZlYWQwODcwMTEy MjAwKSBzdXBwb3J0IGZvciBsb2dnaW5nIHZpYSB0aGUgUFYgY29uc29sZSB3YXMgYWRkZWQgdG8g dGhlIFhFTkJVUyBkcml2ZXIuCgpJ4oCZbSBoYXBweSB0byBhbm5vdW5jZSB0aGF0IHRoZSB0aHJl ZSBjb21taXRzIHRvIFhFTkJVUyBzdGFydGluZyB3aXRoIHRoaXMgb25lIChodHRwOi8veGVuYml0 cy54ZW4ub3JnL2dpdHdlYi8/cD1wdmRyaXZlcnMvd2luL3hlbmJ1cy5naXQ7YT1jb21taXQ7aD0w N2U4M2MwZTUxMGU3NGNlYzg4Y2JkMGIzMzIzMjAxNTE1NGE4NjA3KSBhZGRlZCB0aGUgbmVjZXNz YXJ5IGluZnJhc3RydWN0dXJlIHRvIHN1cHBvcnQgYSBicmFuZCBuZXcgWEVOQ09OUyBQViBkcml2 ZXIgd2hpY2ggZXhwb3NlcyB0aGUgUFYgY29uc29sZSB0byBXaW5kb3dzIHVzZXItc3BhY2UgYXMg YSBjaGFyYWN0ZXIgZGV2aWNlLgoKVGhlIFhFTkNPTlMgZHJpdmVyIHNvdXJjZSBpcyBob3N0ZWQg YWxvbmdzaWRlIHRoZSBvdGhlciBQViBkcml2ZXIgc291cmNlcyBvbiB4ZW5iaXRzLnhlbi5vcmcg KGh0dHA6Ly94ZW5iaXRzLnhlbi5vcmcvZ2l0d2ViLz9hPXByb2plY3RfbGlzdDtwZj1wdmRyaXZl cnMvd2luKSBhbmQgZGV2ZWxvcG1lbnQgYnVpbGRzIGFyZSBhdmFpbGFibGUgZm9yIGRvd25sb2Fk IGhlcmUgKGh0dHBzOi8veGVucHJvamVjdC5vcmcvZG93bmxvYWRzL3dpbmRvd3MtcHYtZHJpdmVy cy9kZXZlbG9wbWVudC1idWlsZHMuaHRtbCkuCgpUaGUgWEVOQ09OUyBwYWNrYWdlIGFsc28gY29u dGFpbnMgYSBXaW5kb3dzIHNlcnZpY2UgdG8gbW9uaXRvciB0aGUgcHJlc2VuY2Ugb2YgdGhlIFBW IGNvbnNvbGUgZGV2aWNlIGFuZCBpbnZva2UgYSBjb21tYW5kIHNoZWxsIGxvZ2luIHByb2Nlc3Mg d2l0aCByZWRpcmVjdGVkIHN0ZGluL3N0ZG91dC4gVGhpcyBtZWFucyB0aGF0LCBvbmNlIHRoZSBk cml2ZXIgcGFja2FnZSBoYXMgYmVlbiBpbnN0YWxsZWQsIGlmIHlvdSBhdHRhY2ggdG8gdGhlIFBW IGNvbnNvbGUgYW5kIGhpdCBFTlRFUiB5b3XigJlsbCBzZWUgYSBwcm9tcHQgc29tZXRoaW5nIGxp a2UgdGhpczoKCkRFU0tUT1AtS1ZFSEFLVCBsb2dpbjoKCkZyb20gdGhpcyBwcm9tcHQgeW91IGNh biBsb2cgaW4gYXMgYW55IGxvY2FsIHVzZXIgYW5kIHlvdeKAmWxsIHRoZW4gYmUgcHJlc2VudGVk IHdpdGggdGhlIGNvbW1hbmQgc2hlbGw6CgpERVNLVE9QLUtWRUhBS1QgbG9naW46IFVzZXIKUGFz c3dvcmQ6Ck1pY3Jvc29mdCBXaW5kb3dzIFtWZXJzaW9uIDEwLjAuMTUwNjNdCihjKSAyMDE3IE1p Y3Jvc29mdCBDb3Jwb3JhdGlvbi4gQWxsIHJpZ2h0cyByZXNlcnZlZC4KCkM6XFVzZXJzXFVzZXI+ CgoKQmUgYXdhcmUgdGhhdCB0aGlzIHNoZWxsIGlzIHJ1bm5pbmcgaW4gc2Vzc2lvbiAwIHNvIGRv ZXMgbm90IGhhdmUgYWNjZXNzIHRvIHRoZSBpbnRlcmFjdGl2ZSBzZXNzaW9uLCBidXQgeW91IGNh biBzdGlsbCB1c2UgaXQgZm9yIG1hbnkgYWRtaW5pc3RyYXRpdmUgdGFza3MuIEZvciBpbnN0YW5j ZSwgeW91IGNhbiBydW4gbmV0c2ggdG8gZGlzcGxheSBhc3BlY3RzIG9mIHlvdXIgbmV0d29yayBj b25maWd1cmF0aW9uOgoKCkM6XFVzZXJzXFVzZXI+bmV0c2gKbmV0c2g+aW50ZXJmYWNlIGlwdjQg c2hvdyBnbG9iYWwKUXVlcnlpbmcgYWN0aXZlIHN0YXRlLi4uCgpHZW5lcmFsIEdsb2JhbCBQYXJh bWV0ZXJzCi0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQpEZWZh dWx0IEhvcCBMaW1pdCA6IDEyOCBob3BzCk5laWdoYm9yIENhY2hlIExpbWl0IDogMjU2IGVudHJp ZXMgcGVyIGludGVyZmFjZQpSb3V0ZSBDYWNoZSBMaW1pdCA6IDQwOTYgZW50cmllcyBwZXIgY29t cGFydG1lbnQKUmVhc3NlbWJseSBMaW1pdCA6IDMzNDIwMTYwIGJ5dGVzCklDTVAgUmVkaXJlY3Rz IDogZW5hYmxlZApTb3VyY2UgUm91dGluZyBCZWhhdmlvciA6IGRvbnRmb3J3YXJkClRhc2sgT2Zm bG9hZCA6IGVuYWJsZWQKRGhjcCBNZWRpYSBTZW5zZSA6IGVuYWJsZWQKTWVkaWEgU2Vuc2UgTG9n Z2luZyA6IGRpc2FibGVkCk1MRCBMZXZlbCA6IGFsbApNTEQgVmVyc2lvbiA6IHZlcnNpb24zCk11 bHRpY2FzdCBGb3J3YXJkaW5nIDogZGlzYWJsZWQKR3JvdXAgRm9yd2FyZGVkIEZyYWdtZW50cyA6 IGRpc2FibGVkClJhbmRvbWl6ZSBJZGVudGlmaWVycyA6IGVuYWJsZWQKQWRkcmVzcyBNYXNrIFJl cGx5IDogZGlzYWJsZWQKTWluaW11bSBNdHUgOiA1NzYKTG9jYWxpdHkgQWRkcmVzcyBTZWxlY3Rp b24gOiBkaXNhYmxlZApGbG93IExhYmVsIDogZGlzYWJsZWQKCkN1cnJlbnQgR2xvYmFsIFN0YXRp c3RpY3MKLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tCk51bWJl ciBvZiBDb21wYXJ0bWVudHMgOiAxCk51bWJlciBvZiBOTCBjbGllbnRzIDogNwpOdW1iZXIgb2Yg RkwgcHJvdmlkZXJzIDogNAoKCk92ZXIgdGhlIGNvbWluZyB3ZWVrcyBJIGludGVuZCB0byBhZGQg dG8gdGhlIGZ1bmN0aW9uYWxpdHkgdGhhdCB0aGUgZHJpdmVyIHByb3ZpZGVzLiBPbmUgb2J2aW91 cyBleHRlbnNpb24gd291bGQgYmUgc29tZSBmb3JtIG9mIGhvdGtleSBzdXBwb3J0IHRvIGxpbmsg aW50byB0aGUgWEVOQlVTX0RFQlVHIGludGVyZmFjZSAoaHR0cDovL3hlbmJpdHMueGVuLm9yZy9n aXR3ZWIvP3A9cHZkcml2ZXJzL3dpbi94ZW5idXMuZ2l0O2E9YmxvYjtmPWluY2x1ZGUvZGVidWdf aW50ZXJmYWNlLmg7aGI9SEVBRCkgdG8gZW5hYmxlIFBWIGRyaXZlcnMgdG8gcmVnaXN0ZXIgYSBj YWxsYmFjayB0byBiZSB0cmlnZ2VyZWQgYnkgYSBwYXJ0aWN1bGVyIGtleS4KCklmIHlvdSBhcmUg aW50ZXJlc3RlZCBpbiB0aGlzIHRoZW4gcGxlYXNlIHRyeSB0aGUgWEVOQ09OUyBwYWNrYWdlIGFu ZCBzZW5kIGZlZWRiYWNrIHRvIHRoZSBtYWlsaW5nIGxpc3QgKGh0dHBzOi8vbGlzdHMueGVucHJv amVjdC5vcmcvY2dpLWJpbi9tYWlsbWFuL2xpc3RpbmZvL3dpbi1wdi1kZXZlbCkuCgpCZXN0IFJl Z2FyZHMKTGFycwpfX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19f XwpYZW4tYW5ub3VuY2UgbWFpbGluZyBsaXN0Clhlbi1hbm5vdW5jZUBsaXN0cy54ZW4ub3JnCmh0 dHBzOi8vbGlzdHMueGVuLm9yZy94ZW4tYW5ub3VuY2U= From xen-announce-bounces@lists.xen.org Tue May 09 13:28:16 2017 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Tue, 09 May 2017 13:28:16 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d85Aj-00041j-DQ; Tue, 09 May 2017 13:27:25 +0000 Received: from mail6.bemta5.messagelabs.com ([195.245.231.135]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d1yNM-0000Fc-GA; Sat, 22 Apr 2017 16:59:12 +0000 Received: from [85.158.139.211] by server-15.bemta-5.messagelabs.com id E5/1B-01730-FDB8BF85; Sat, 22 Apr 2017 16:59:11 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFlrEIsWRWlGSWpSXmKPExsVysyfVTfde9+8 Ig1NLDCxmb2xjtvi+ZTKTxbt9f5kdmD0Of7jCEsAYxZqZl5RfkcCa8ezIVuaCmSwVLw+uZWtg vMbcxcjFISSwkVHixp45bF2MnEDOUkaJ9hcqILaIQJHEzmMX2EFsZgEbif1PNzKB2GwCmhJ3P n8Cs4UFRCQOTVkI1ssrYCVx+vUfZhCbRUBVYsqVE2A1ogLhEm8bj7BA1AhKnJz5hAViprrEn3 mXmCFseYntb+cwT2DkmYWkbBaSsllIyhYwMq9i1ChOLSpLLdI1MtJLKspMzyjJTczM0TU0MNX LTS0uTkxPzUlMKtZLzs/dxAgMqXoGBsYdjHva/Q4xSnIwKYnyhvz+GSHEl5SfUpmRWJwRX1Sa k1p8iFGGg0NJgvdf1+8IIcGi1PTUirTMHGBww6QlOHiURHhVgQEuxFtckJhbnJkOkTrFaMzxb umH90wcc+59fc8kxJKXn5cqJc7LCVIqAFKaUZoHNwgWdZcYZaWEeRkZGBiEeApSi3IzS1DlXz GKczAqCfPuAbmHJzOvBG7fK6BTmIBOOev3A+SUkkSElFQDI1PsWd8jPjyrQhK8V3t+m2dne/z okfaWSUkyXFbflPVr5luXHQw4ITdN58Hp3JXTXLhdXCNZ7m9fr5z2vaGiTelhhGttX03XfaUb ubmeb494SHVZ+L5j+SLbdHu/o92Wm10mQV/F/+5tn9VapW+54vMK0f7TLn2/9C4Wv+V9c7E1n 9WfYZm0EktxRqKhFnNRcSIAAsc82bUCAAA= X-Env-Sender: julien.grall@arm.com X-Msg-Ref: server-16.tower-206.messagelabs.com!1492880350!78703122!1 X-Originating-IP: [217.140.101.70] X-SpamReason: No, hits=0.0 required=7.0 tests= X-StarScan-Received: X-StarScan-Version: 9.4.12; banners=-,-,- X-VirusChecked: Checked Received: (qmail 25302 invoked from network); 22 Apr 2017 16:59:10 -0000 Received: from foss.arm.com (HELO foss.arm.com) (217.140.101.70) by server-16.tower-206.messagelabs.com with SMTP; 22 Apr 2017 16:59:10 -0000 Received: from usa-sjc-imap-foss1.foss.arm.com (unknown [10.72.51.249]) by usa-sjc-mx-foss1.foss.arm.com (Postfix) with ESMTP id 479CA2B; Sat, 22 Apr 2017 09:59:09 -0700 (PDT) Received: from [10.37.8.209] (unknown [10.37.8.209]) by usa-sjc-imap-foss1.foss.arm.com (Postfix) with ESMTPSA id B49CA3F3E1; Sat, 22 Apr 2017 09:59:07 -0700 (PDT) To: xen-devel , xen-users@lists.xenproject.org, xen-announce@lists.xenproject.org From: Julien Grall Message-ID: Date: Sat, 22 Apr 2017 17:59:06 +0100 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.8.0 MIME-Version: 1.0 X-Mailman-Approved-At: Tue, 09 May 2017 13:27:24 +0000 Cc: Lars Kurth Subject: [Xen-announce] Xen 4.9 RC2 X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: xen-announce-bounces@lists.xen.org Sender: "Xen-announce" SGkgYWxsLAoKWGVuIDQuOSBSQzIgaXMgdGFnZ2VkLiBZb3UgY2FuIGNoZWNrIHRoYXQgb3V0IGZy b20geGVuLmdpdDoKCiBnaXQ6Ly94ZW5iaXRzLnhlbi5vcmcveGVuLmdpdCA0LjkuMC1yYzIKCkZv ciB5b3VyIGNvbnZlbmllbmNlIHRoZXJlIGlzIGFsc28gYSB0YXJiYWxsIGF0OgpodHRwczovL2Rv d25sb2Fkcy54ZW5wcm9qZWN0Lm9yZy9yZWxlYXNlL3hlbi80LjkuMC1yYzIveGVuLTQuOS4wLXJj Mi50YXIuZ3ogIAoKQW5kIHRoZSBzaWduYXR1cmUgaXMgYXQ6Cmh0dHBzOi8vZG93bmxvYWRzLnhl bnByb2plY3Qub3JnL3JlbGVhc2UveGVuLzQuOS4wLXJjMi94ZW4tNC45LjAtcmMyLnRhci5nei5z aWcKClBsZWFzZSBzZW5kIGJ1ZyByZXBvcnRzIGFuZCB0ZXN0IHJlcG9ydHMgdG8KeGVuLWRldmVs QGxpc3RzLnhlbnByb2plY3Qub3JnLiBXaGVuIHNlbmRpbmcgYnVnIHJlcG9ydHMsIHBsZWFzZSBD QwpyZWxldmFudCBtYWludGFpbmVycyBhbmQgbWUgKGp1bGllbi5ncmFsbEBhcm0uY29tKS4KClRo YW5rcywKCi0tIApKdWxpZW4gR3JhbGwKCl9fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19f X19fX19fX19fX19fX19fClhlbi1hbm5vdW5jZSBtYWlsaW5nIGxpc3QKWGVuLWFubm91bmNlQGxp c3RzLnhlbi5vcmcKaHR0cHM6Ly9saXN0cy54ZW4ub3JnL3hlbi1hbm5vdW5jZQ== From xen-announce-bounces@lists.xen.org Tue May 09 13:28:16 2017 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Tue, 09 May 2017 13:28:16 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d85Aj-00041w-LD; Tue, 09 May 2017 13:27:25 +0000 Received: from mail6.bemta5.messagelabs.com ([195.245.231.135]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d7nam-0008JM-IH; Mon, 08 May 2017 18:41:08 +0000 Received: from [85.158.139.211] by server-9.bemta-5.messagelabs.com id C9/DC-01999-3CBB0195; Mon, 08 May 2017 18:41:07 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFlrEIsWRWlGSWpSXmKPExsVysyfVTffwboF IgxtPmCxmb2xjtvi+ZTKTxbt9f5kdmD0Of7jCEsAYxZqZl5RfkcCa8fHuD+aCu6wVXWtOsjcw trN2MXJxCAlsYpT4PW8XM4SzlFHi46ZO9i5GDg4RgSKJCasiuhg5OZgF1CS6zn5iA7HZBDQl7 nz+xARiCwuISFw/ch8szitgJfHv4V12EJtFQEXiT/tHVhBbVCBc4m3jERaIGkGJkzOfsEDMVJ f4M+8SM4QtL7H97RzmCYw8s5CUzUJSNgtJ2QJG5lWMGsWpRWWpRbqGFnpJRZnpGSW5iZk5uoY Gpnq5qcXFiempOYlJxXrJ+bmbGIEhxQAEOxibtnseYpTkYFIS5fUpFogU4kvKT6nMSCzOiC8q zUktPsQow8GhJMFrsAsoJ1iUmp5akZaZAwxumLQEB4+SCK8jSJq3uCAxtzgzHSJ1itGY493SD ++ZOObc+/qeSYglLz8vVUqcdwVIqQBIaUZpHtwgWNRdYpSVEuZlBDpNiKcgtSg3swRV/hWjOA ejkjCvDsgUnsy8Erh9r4BOYQI6JZAB7JSSRISUVAOjen1ml9bk2M95xp+St9U5hmYsfhpyoCX s91y/ltYH8h+f7THb1nnpjUTt9UNsDSvZai4rfdt4wWD5262ZueI+rzZXu9v/Zn4UV8bFGaOx VubWC413LgUM8woEewsKIvVM6iOPTecPXpNz8lH7Co8dMWqHYmRlgzTE+jfIPujW/zPlo+LM2 aeVWIozEg21mIuKEwGfb2r/tQIAAA== X-Env-Sender: julien.grall@arm.com X-Msg-Ref: server-12.tower-206.messagelabs.com!1494268865!60678978!1 X-Originating-IP: [217.140.101.70] X-SpamReason: No, hits=0.0 required=7.0 tests= X-StarScan-Received: X-StarScan-Version: 9.4.12; banners=-,-,- X-VirusChecked: Checked Received: (qmail 37509 invoked from network); 8 May 2017 18:41:06 -0000 Received: from foss.arm.com (HELO foss.arm.com) (217.140.101.70) by server-12.tower-206.messagelabs.com with SMTP; 8 May 2017 18:41:06 -0000 Received: from usa-sjc-imap-foss1.foss.arm.com (unknown [10.72.51.249]) by usa-sjc-mx-foss1.foss.arm.com (Postfix) with ESMTP id E95CF80D; Mon, 8 May 2017 11:41:04 -0700 (PDT) Received: from [10.37.10.44] (unknown [10.37.10.44]) by usa-sjc-imap-foss1.foss.arm.com (Postfix) with ESMTPSA id D6B2F3F220; Mon, 8 May 2017 11:41:03 -0700 (PDT) To: xen-devel , xen-announce@lists.xenproject.org, xen-users@lists.xenproject.org From: Julien Grall Message-ID: <9ceb9e3a-ead5-ad26-0a8c-d0967f76e39d@arm.com> Date: Mon, 8 May 2017 19:41:01 +0100 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.8.0 MIME-Version: 1.0 X-Mailman-Approved-At: Tue, 09 May 2017 13:27:24 +0000 Cc: Lars Kurth Subject: [Xen-announce] Xen 4.9 rc4 X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: xen-announce-bounces@lists.xen.org Sender: "Xen-announce" SGkgYWxsLAoKWGVuIDQuOSByYzQgaXMgdGFnZ2VkLiBZb3UgY2FuIGNoZWNrIHRoYXQgb3V0IGZy b20geGVuLmdpdDoKCiBnaXQ6Ly94ZW5iaXRzLnhlbi5vcmcveGVuLmdpdCA0LjkuMC1yYzQKCkZv ciB5b3VyIGNvbnZlbmllbmNlIHRoZXJlIGlzIGFsc28gYSB0YXJiYWxsIGF0OgpodHRwczovL2Rv d25sb2Fkcy54ZW5wcm9qZWN0Lm9yZy9yZWxlYXNlL3hlbi80LjkuMC1yYzQveGVuLTQuOS4wLXJj NC50YXIuZ3oKCkFuZCB0aGUgc2lnbmF0dXJlIGlzIGF0OgpodHRwczovL2Rvd25sb2Fkcy54ZW5w cm9qZWN0Lm9yZy9yZWxlYXNlL3hlbi80LjkuMC1yYzQveGVuLTQuOS4wLXJjNC50YXIuZ3ouc2ln CgpQbGVhc2Ugc2VuZCBidWcgcmVwb3J0cyBhbmQgdGVzdCByZXBvcnRzIHRvCnhlbi1kZXZlbEBs aXN0cy54ZW5wcm9qZWN0Lm9yZy4gV2hlbiBzZW5kaW5nIGJ1ZyByZXBvcnRzLCBwbGVhc2UgQ0MK cmVsZXZhbnQgbWFpbnRhaW5lcnMgYW5kIG1lIChqdWxpZW4uZ3JhbGxAYXJtLmNvbSkuCgpBcyBh IHJlbWluZGVyLCB0aGVyZSB3aWxsIGJlIGFub3RoZXIgWGVuIFRlc3QgRGF5IHRvbW9ycm93IChU dWVzZGF5IDl0aCBNYXkpLApmb3IgdGhlIGluc3RydWN0aW9ucyBzZWU6CgpodHRwczovL2Jsb2cu eGVucHJvamVjdC5vcmcvMjAxNy8wNC8xMy9hbm5vdW5jaW5nLXhlbi1wcm9qZWN0LTQtOS1yYy1h bmQtdGVzdC1kYXktc2NoZWR1bGUvCgpDaGVlcnMsCgotLSAKSnVsaWVuIEdyYWxsCgpfX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fXwpYZW4tYW5ub3VuY2UgbWFp bGluZyBsaXN0Clhlbi1hbm5vdW5jZUBsaXN0cy54ZW4ub3JnCmh0dHBzOi8vbGlzdHMueGVuLm9y Zy94ZW4tYW5ub3VuY2U= From xen-announce-bounces@lists.xen.org Wed May 10 13:43:35 2017 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Wed, 10 May 2017 13:43:35 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d8Rsu-0004HC-Hy; Wed, 10 May 2017 13:42:32 +0000 Received: from mail6.bemta5.messagelabs.com ([195.245.231.135]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d8Rst-0004Gy-0n; Wed, 10 May 2017 13:42:31 +0000 Received: from [85.158.139.211] by server-5.bemta-5.messagelabs.com id CE/0C-02183-6C813195; Wed, 10 May 2017 13:42:30 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFmpikeJIrShJLcpLzFFi42JxWrohUveQhHC kweVb8hazN7YxW3zfMpnJ4t2+v8wOzB6HP1xhCWCMYs3MS8qvSGDNeHroOVPBKe6Kn12tjA2M Fzi7GDk5JAT8JR7eWcsKYrMJ6Eo0bfnLBmLzCghKnJz5hAXEZhbQkViw+xMbhC0vsf3tHGaIG juJS8evg9ksAqoSs5+vAqsREciR+LNlHhNEvZbEvgvrwGqEBewlluxYDjSTg0NIQE1i7vr4CY zcs5Bsm4Vk2ywk2xYwMq9i1ChOLSpLLdI1tNBLKspMzyjJTczM0TU0MNXLTS0uTkxPzUlMKtZ Lzs/dxAgMGwYg2MHYtN3zEKMkB5OSKK/uLqFIIb6k/JTKjMTijPii0pzU4kOMMhwcShK81uLC kUKCRanpqRVpmTnAAIZJS3DwKInwLhMDSvMWFyTmFmemQ6ROMSpKifMmgvQJgCQySvPg2mBRc 4lRVkqYlxHoECGegtSi3MwSVPlXjOIcjErCvBkgU3gy80rgpr8CWswEtDiQQQBkcUkiQkqqgX FOQbM8f8OJH/eYG9lv3A36ePQW6/o/B47KPnhzTsvrs/wk7d3rVtx6F2m1Z9Ju/pvcHsfN/Tg i0njCpifduROR+lnu66qgXTWyV7VcHpTbts3c9nHFNFaTpnTpFQxng7i/C0jYeUefyT2aV1fk f2tLeMl2loajd3gr0792GE56vfr6xI8/NvorsRRnJBpqMRcVJwIAAIZT25UCAAA= X-Env-Sender: prvs=296d8c634=Ian.Jackson@citrix.com X-Msg-Ref: server-13.tower-206.messagelabs.com!1494423743!81796208!1 X-Originating-IP: [66.165.176.89] X-SpamReason: No, hits=0.0 required=7.0 tests=sa_preprocessor: VHJ1c3RlZCBJUDogNjYuMTY1LjE3Ni44OSA9PiAyMDMwMDc=\n,received_headers: No Received headers X-StarScan-Received: X-StarScan-Version: 9.4.12; banners=-,-,- X-VirusChecked: Checked Received: (qmail 60011 invoked from network); 10 May 2017 13:42:26 -0000 Received: from smtp.citrix.com (HELO SMTP.CITRIX.COM) (66.165.176.89) by server-13.tower-206.messagelabs.com with RC4-SHA encrypted SMTP; 10 May 2017 13:42:26 -0000 X-IronPort-AV: E=Sophos;i="5.38,319,1491264000"; d="scan'208";a="423029395" From: Ian Jackson MIME-Version: 1.0 Message-ID: <22803.6113.486674.72765@mariner.uk.xensource.com> Date: Wed, 10 May 2017 14:38:41 +0100 To: , , Cc: security-team-members@xenproject.org Subject: [Xen-announce] Vulnerability embargo dates - add your public holidays X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: xen-announce-bounces@lists.xen.org Sender: "Xen-announce" V2hlbiB0aGUgWGVuIFByb2plY3QgU2VjdXJpdHkgVGVhbSB0YWxrcyB0byBkaXNjb3ZlcmVycyBh Ym91dCBjaG9pY2UKb2YgcmVsZWFzZSBkYXRlcyBmb3Igc2VjdXJpdHkgdnVsbmVyYWJpbGl0aWVz LCB3ZSBnZW5lcmFsbHkgdHJ5IHRvCmF2b2lkIGtub3duIHB1YmxpYyBob2xpZGF5cyAoc3ViamVj dCB0byBvdGhlciBjb25zdHJhaW50cyBzdWNoIGFzIHRoZQpkaXNjb3ZlcmVyJ3MgcmVxdWlyZW1l bnRzLCB0aGUgWGVuIFByb2plY3QgcG9saWN5LCBhbmQgc28gb24pLgoKV2Ugd2lzaCB0byBtYWtl IHRoaXMgYXJyYW5nZW1lbnQgYSBiaXQgbW9yZSBmb3JtYWwsIGFuZCBpbiBwYXJ0aWN1bGFyCnRv IHByb3ZpZGUgZGlzY292ZXJlcnMgKHdobyB1bHRpbWF0ZWx5IGRlY2lkZSBkaXNjbG9zdXJlIGRh dGVzKSBhbmQKdGhlIFNlY3VyaXR5IFRlYW0gKHdobyBvZnRlbiBnaXZlIGFkdmljZSkgd2l0aCBn b29kIGluZm9ybWF0aW9uIHRvCnN1cHBvcnQgdGhlaXIgZGVjaXNpb25zLgoKVG8gdGhpcyBlbmQg d2UgaGF2ZSBjcmVhdGVkIGEgd2lraSBwYWdlIHdoZXJlIGludGVyZXN0ZWQgY29tbXVuaXR5Cm1l bWJlcnMgY2FuIGRvY3VtZW50IHB1YmxpYyBob2xpZGF5cyB3aGljaCB3b3VsZCBhZmZlY3QgdGhl aXIgYWJpbGl0eQp0byByZXNwb25kIHRvIHNlY3VyaXR5IGlzc3Vlcy4KClBsZWFzZSBzZWU6CiAg aHR0cHM6Ly93aWtpLnhlbnByb2plY3Qub3JnL3dpa2kvSG9saWRheUNhbGVuZGFyCgpJZiB5b3Ug d291bGQgbGlrZSB5b3VyIGNpcmN1bXN0YW5jZXMgdGFrZW4gaW50byBhY2NvdW50LCBwbGVhc2Ug YWRkIHRvCnRoZSBkYXRhIGZvciAyMDE3IG9uIHRoYXQgcGFnZS4KCk5vdGUgdGhhdCBpZiB5b3Ug ZG8gbm90IGFscmVhZHkgaGF2ZSB3cml0ZSBhY2Nlc3MgdG8gdGhlIHdpa2ksIHlvdSdsbApoYXZl IHRvIHJlcXVlc3QgaXQuICBTb3JyeSBmb3IgdGhlIGluY29udmVuaWVuY2UsIGFuZCBwbGVhc2Ug c2VlOgogIGh0dHBzOi8vd2lraS54ZW5wcm9qZWN0Lm9yZy93aWtpL01haW5fUGFnZQoKQWxzbywg YXMgdGhlIEhvbGlkYXlDYWxlbmRhciB3aWtpIHBhZ2Ugc2F5czoKCiAgTm90ZSB0aGF0IGRpc2Ns b3N1cmUgc2NoZWR1bGVzIGFyZSBkZXRlcm1pbmVkIGJ5IHRoZSBkaXNjb3ZlcmVycyBvZgogIHZ1 bG5lcmFiaWxpdGllcyB3aG8gZG8gbm90IG5lZWQgdG8gZm9sbG93IHRoZSBndWlkZWxpbmVzIGlu IHRoZSBYZW4KICBQcm9qZWN0IHBvbGljeS4gIFdoZXJlIGRpc2NvdmVyZXJzIGFzayB0aGUgWGVu IFByb2plY3QgU2VjdXJpdHkgVGVhbQogIGZvciBhZHZpY2UsIG9yIGNob29zZSB0byBmb2xsb3cg dGhlIHBvbGljeSwgdGhlIGhvbGlkYXkgaW5mb3JtYXRpb24KICBoZXJlIGlzIGFkdmlzb3J5IG9u bHkuICBCZWNhdXNlIHRoZSBwb2xpY3kgcmVxdWlyZXMgdXMgdG8gY29uc2lkZXIKICBvdGhlciBm YWN0b3JzIHRvbywgd2UgY2Fubm90IGd1YXJhbnRlZSB0byBhdm9pZCBob2xpZGF5cy4KCklhbi4K Cl9fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fClhlbi1hbm5v dW5jZSBtYWlsaW5nIGxpc3QKWGVuLWFubm91bmNlQGxpc3RzLnhlbi5vcmcKaHR0cHM6Ly9saXN0 cy54ZW4ub3JnL3hlbi1hbm5vdW5jZQ== From xen-announce-bounces@lists.xen.org Fri May 12 10:46:36 2017 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Fri, 12 May 2017 10:46:36 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d984t-0007z1-Fj; Fri, 12 May 2017 10:45:43 +0000 Received: from mail6.bemta5.messagelabs.com ([195.245.231.135]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d984s-0007xs-O4; Fri, 12 May 2017 10:45:42 +0000 Received: from [85.158.139.211] by server-4.bemta-5.messagelabs.com id A5/B1-02181-55295195; Fri, 12 May 2017 10:45:41 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFnrLIsWRWlGSWpSXmKPExsWS0XRdVTdokmi kweyHzBa3brYyWyz5uJjFYtXVA6wOzB5Hd/9mCmCMYs3MS8qvSGDNWLF0O1vBXcOKW/fnsTcw PtXpYuTiEBI4ziixoekRG4SziFHiz4OF7F2MnBzMAq4SN/ZtZoOwFSUu3GtgAbF5BQQlTs58A mZLCGhK3HmzCqxeRKBIYue5l2A2m4CexNyzk5ggenUkXu5fDWRzcAgLpEmcfy0KMcZM4sbB9W BjWARUJU5OWsQ8gZFnFpLNs5BsnoVk8yygScxAm9fv0ocwpSWW/+OAqJaX2P52DjOEbS3Rv/Y TC4RtIfG/+SUzzMQp3Q/ZFzByrmJUL04tKkst0jXTSyrKTM8oyU3MzNE1NDDVy00tLk5MT81J TCrWS87P3cQIDG4GINjBOLXB+RCjJAeTkijvJVbRSCG+pPyUyozE4oz4otKc1OJDjDIcHEoSv KYTgXKCRanpqRVpmTnAOINJS3DwKInwdoGkeYsLEnOLM9MhUqcYLTnOzX33nonj3dIPQPLGgq /vmYRY8vLzUqXEeRtAGgRAGjJK8+DGwVLBJUZZKWFeRqADhXgKUotyM0tQ5V8xinMwKgnzhoJ M4cnMK4Hb+groICagg/r/CIMcVJKIkJJqYFx/Ki7pyeQDv/bNm7zMsun8OcsdV9zCL3v03pQV aVPT+hDjz3BP5eq7+n9T2bct973VK+EeHf6Oc+EOBo55v2z9IupOONy/nP79s3OWYA7zu9k/i 1trMoo+fovVi49r3LdJZmJ5mWN3Qr/epXKVRy9iC4Kbv/b+WvZHK9gzr/+wx/KlWgHfLJRYij MSDbWYi4oTAQPRs+IAAwAA X-Env-Sender: iwj@xenbits.xen.org X-Msg-Ref: server-8.tower-206.messagelabs.com!1494585936!97633725!1 X-Originating-IP: [104.130.215.37] X-SpamReason: No, hits=0.5 required=7.0 tests=BODY_RANDOM_LONG X-StarScan-Received: X-StarScan-Version: 9.4.12; banners=-,-,- X-VirusChecked: Checked Received: (qmail 41193 invoked from network); 12 May 2017 10:45:37 -0000 Received: from mail.xenproject.org (HELO mail.xenproject.org) (104.130.215.37) by server-8.tower-206.messagelabs.com with AES128-GCM-SHA256 encrypted SMTP; 12 May 2017 10:45:37 -0000 Received: from xenbits.xenproject.org ([104.239.192.120]) by mail.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d984i-0007gu-SS; Fri, 12 May 2017 10:45:32 +0000 Received: from iwj by xenbits.xenproject.org with local (Exim 4.84_2) (envelope-from ) id 1d984i-000765-Pi; Fri, 12 May 2017 10:45:32 +0000 Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.505 (Entity 5.505) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Message-Id: Date: Fri, 12 May 2017 10:45:32 +0000 Cc: "Xen.org security team" Subject: [Xen-announce] Xen Security Advisory 215 (CVE-2017-8905) - possible memory corruption via failsafe callback X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Errors-To: xen-announce-bounces@lists.xen.org Sender: "Xen-announce" --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Xen Security Advisory CVE-2017-8905 / XSA-215 version 3 possible memory corruption via failsafe callback UPDATES IN VERSION 3 ==================== CVE assigned. ISSUE DESCRIPTION ================= Under certain special conditions Xen reports an exception resulting from returning to guest mode not via ordinary exception entry points, but via a so call failsafe callback. This callback, unlike exception handlers, takes 4 extra arguments on the stack (the saved data selectors DS, ES, FS, and GS). Prior to placing exception or failsafe callback frames on the guest kernel stack, Xen checks the linear address range to not overlap with hypervisor space. The range spanned by that check was mistakenly not covering these extra 4 slots. IMPACT ====== A malicious or buggy 64-bit PV guest may be able to modify part of a physical memory page not belonging to it, potentially allowing for all of privilege escalation, host or other guest crashes, and information leaks. VULNERABLE SYSTEMS ================== 64-bit Xen versions 4.6 and earlier are vulnerable. Xen versions 4.7 and later are not vulnerable. Only x86 systems are affected. ARM systems are not vulnerable. Only x86 systems with physical memory extending to a configuration dependent boundary (5Tb or 3.5Tb) may be affected. Whether they are actually affected depends on actual physical memory layout. The vulnerability is only exposed to 64-bit PV guests. HVM guests and 32-bit PV guests can't exploit the vulnerability. MITIGATION ========== Running only HVM or 32-bit PV guests will avoid the vulnerability. The vulnerability can be avoided if the guest kernel is controlled by the host rather than guest administrator, provided that further steps are taken to prevent the guest administrator from loading code into the kernel (e.g. by disabling loadable modules etc) or from using other mechanisms which allow them to run code at kernel privilege. CREDITS ======= This issue was discovered by Jann Horn of Google Project Zero. RESOLUTION ========== Applying the attached patch resolves this issue. xsa215.patch Xen 4.6.x, Xen 4.5.x $ sha256sum xsa215* 5be4ff661dd22890b0120f86beee3ec809e2a29f833db8c48bd70ce98e9691ee xsa215.patch $ DEPLOYMENT DURING EMBARGO ========================= Deployment of the patches and/or mitigations described above (or others which are substantially similar) is permitted during the embargo, even on public-facing systems with untrusted guest users and administrators. But: Distribution of updated software is prohibited (except to other members of the predisclosure list). Predisclosure list members who wish to deploy significantly different patches and/or mitigations, please contact the Xen Project Security Team. (Note: this during-embargo deployment notice is retained in post-embargo publicly released Xen Project advisories, even though it is then no longer applicable. This is to enable the community to have oversight of the Xen Project Security Team's decisionmaking.) For more information about permissible uses of embargoed information, consult the Xen Project community's agreed Security Policy: http://www.xenproject.org/security-policy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEcBAEBCAAGBQJZFZIqAAoJEIP+FMlX6CvZQUoIAMBeK3zz4qoOtlR92dLGyYkT PlITMMsz1PbkZapt/pdsuQFVRC0P7UXdJ/u1GjJLJqOBSsUOnlJ9m9uTjDW7KJTm 5Dch1lYO0npQLAcpr32KvDGDFt5dp+Cqn0NiGFV4yFsdMLnhW8Wyugc8DhJgVcv9 2PPZ5IlFFlrdCs4g6jMFy7rdM/r6d6wyPQukE6L0VObHv5MsqVgg+p01/yk/uDaz KHSlHdfAfuxpMbKPZ2cz/rWQYN2xwV6foZ2pn1WHQln9NxXzQWSR8J5KZj3BLXME +i1cg/aRm3jHM+SZDRXwton51SAkTpCYW5/n+QqbGJd7NN6+GMk14t8Y3wKSZVA= =skSs -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa215.patch" Content-Disposition: attachment; filename="xsa215.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiB4ODY6IGNvcnJlY3QgY3JlYXRlX2JvdW5jZV9mcmFtZQoKV2UgbWF5IHB1 c2ggdXAgdG8gOTYgYnl0ZXMgb24gdGhlIGd1ZXN0IChrZXJuZWwpIHN0YWNr LCBzbyB3ZSBzaG91bGQKYWxzbyBjb3ZlciBhcyBtdWNoIGluIHRoZSBlYXJs eSByYW5nZSBjaGVjay4gTm90ZSB0aGF0IHRoaXMgaXMgdGhlCnNpbXBsZXN0 IHBvc3NpYmxlIHBhdGNoLCB3aGljaCBoYXMgdGhlIHRoZW9yZXRpY2FsIHBv dGVudGlhbCBvZgpicmVha2luZyBhIGd1ZXN0OiBXZSBvbmx5IHJlYWxseSBw dXNoIDk2IGJ5dGVzIHdoZW4gaW52b2tpbmcgdGhlCmZhaWxzYWZlIGNhbGxi YWNrLCBvcmRpbmFyeSBleGNlcHRpb25zIG9ubHkgaGF2ZSA1NiBvciA2NCBi eXRlcyBwdXNoZWQKKHdpdGhvdXQgLyB3aXRoIGVycm9yIGNvZGUgcmVzcGVj dGl2ZWx5KS4gVGhlcmUgaXMsIGhvd2V2ZXIsIG5vIFBWIE9TCmtub3duIHRv IHBsYWNlIGEga2VybmVsIHN0YWNrIHRoZXJlLgoKVGhpcyBpcyBYU0EtMjE1 LgoKUmVwb3J0ZWQtYnk6IEphbm4gSG9ybiA8amFubmhAZ29vZ2xlLmNvbT4K U2lnbmVkLW9mZi1ieTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29t PgpSZXZpZXdlZC1ieTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNA Y2l0cml4LmNvbT4KCi0tLSBhL3hlbi9hcmNoL3g4Ni94ODZfNjQvZW50cnku UworKysgYi94ZW4vYXJjaC94ODYveDg2XzY0L2VudHJ5LlMKQEAgLTM0Nyw3 ICszNDcsNyBAQCBpbnQ4MF9zbG93X3BhdGg6CiAgICAgICAgIGptcCAgIGhh bmRsZV9leGNlcHRpb25fc2F2ZWQKIAogLyogQ1JFQVRFIEEgQkFTSUMgRVhD RVBUSU9OIEZSQU1FIE9OIEdVRVNUIE9TIFNUQUNLOiAgICAgICAgICAgICAg ICAgICAgICovCi0vKiAgIHsgUkNYLCBSMTEsIFtEUy1HUyxdIFtDUjIsXSBb RVJSQ09ERSxdIFJJUCwgQ1MsIFJGTEFHUywgUlNQLCBTUyB9ICAgKi8KKy8q ICAgeyBSQ1gsIFIxMSwgW0RTLUdTLF0gW0VSUkNPREUsXSBSSVAsIENTLCBS RkxBR1MsIFJTUCwgU1MgfSAgICAgICAgICAqLwogLyogJXJkeDogdHJhcF9i b3VuY2UsICVyYng6IHN0cnVjdCB2Y3B1ICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICovCiAvKiBPbiByZXR1cm4gb25seSAlcmJ4IGFuZCAl cmR4IGFyZSBndWFyYW50ZWVkIG5vbi1jbG9iYmVyZWQuICAgICAgICAgICAg Ki8KIGNyZWF0ZV9ib3VuY2VfZnJhbWU6CkBAIC0zNjcsNyArMzY3LDcgQEAg Y3JlYXRlX2JvdW5jZV9mcmFtZToKIDI6ICAgICAgYW5kcSAgJH4weGYsJXJz aSAgICAgICAgICAgICAgICAjIFN0YWNrIGZyYW1lcyBhcmUgMTYtYnl0ZSBh bGlnbmVkLgogICAgICAgICBtb3ZxICAkSFlQRVJWSVNPUl9WSVJUX1NUQVJU LCVyYXgKICAgICAgICAgY21wcSAgJXJheCwlcnNpCi0gICAgICAgIG1vdnEg ICRIWVBFUlZJU09SX1ZJUlRfRU5EKzYwLCVyYXgKKyAgICAgICAgbW92cSAg JEhZUEVSVklTT1JfVklSVF9FTkQrMTIqOCwlcmF4CiAgICAgICAgIHNiYiAg ICVlY3gsJWVjeCAgICAgICAgICAgICAgICAgIyBJbiArdmUgYWRkcmVzcyBz cGFjZT8gVGhlbiBva2F5LgogICAgICAgICBjbXBxICAlcmF4LCVyc2kKICAg ICAgICAgYWRjICAgJWVjeCwlZWN4ICAgICAgICAgICAgICAgICAjIEFib3Zl IFhlbiBwcml2YXRlIGFyZWE/IFRoZW4gb2theS4K --=separator Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KWGVuLWFubm91 bmNlIG1haWxpbmcgbGlzdApYZW4tYW5ub3VuY2VAbGlzdHMueGVuLm9yZwpodHRwczovL2xpc3Rz Lnhlbi5vcmcveGVuLWFubm91bmNl --=separator-- From xen-announce-bounces@lists.xen.org Fri May 12 10:46:36 2017 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Fri, 12 May 2017 10:46:36 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d984r-0007x1-57; Fri, 12 May 2017 10:45:41 +0000 Received: from mail6.bemta6.messagelabs.com ([193.109.254.103]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d984q-0007wM-MS; Fri, 12 May 2017 10:45:40 +0000 Received: from [193.109.254.147] by server-11.bemta-6.messagelabs.com id 04/3B-03587-45295195; Fri, 12 May 2017 10:45:40 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrFKsWRWlGSWpSXmKPExsWS0XRdVTdwkmi kwcseRotbN1uZLZZ8XMxiserqAVYHZo+ju38zBTBGsWbmJeVXJLBmtJw4xF6w9RpTxb6Df9kb GGefYepi5OIQEjjOKDF753NGCGcRo8SKXx3sXYycHMwCrhI39m1mg7AVJS7ca2ABsXkFBCVOz nwCZksIaErcebMKrF5EoEhi57mXYDabgJ7E3LOTmCB6dSRe7l8NZgsLlEmc33CYFWKOmcSrf1 PBbBYBVYnlXzYwTWDkmYVk9Swkq2chWT2LkQMorimxfpc+hCktsfwfB0S1vMT2t3OYIWxriR3 vO6GmWEh8WfGUHWbilO6HULa9xMaLf1kgbBuJw18+YVUz5cxfRpiarrlvmLCp+XV6EjNMzd9t b1hR1XCA1ez56QRTsqF5DYoxCxhFVzFqFKcWlaUW6Rob6SUVZaZnlOQmZuboGhqY6eWmFhcnp qfmJCYV6yXn525iBKYABiDYwXh6XeAhRkkOJiVR3kusopFCfEn5KZUZicUZ8UWlOanFhxhlOD iUJHgbJwLlBItS01Mr0jJzgMkIJi3BwaMkwtsFkuYtLkjMLc5Mh0idYjTmODf33XsmjhsLvr5 nEmLJy89LlRLnnTkBqFQApDSjNA9uECxJXmKUlRLmZQQ6TYinILUoN7MEVf4VozgHo5IwryzI Qp7MvBK4fa+ATmECOqX/jzDIKSWJCCmpBsbEhS8OyMzY/7HqpWXq3kPhBgFC1osD3hVNqroYY CL01vsI65Yczd5ZxUx78hd86mO/9fbhFNV/t8MWXF1fbFe6od5E8pnt/Pi9ipJmW88wm218/u bFjAsPEoWYqv3qV062kZ9f/kpxwu+7Fw5c3H06OGb69X/BByt/ZWcVRRQWXJLbM3uvhaOoEkt xRqKhFnNRcSIA3EN7KI0DAAA= X-Env-Sender: iwj@xenbits.xen.org X-Msg-Ref: server-16.tower-27.messagelabs.com!1494585935!101470564!1 X-Originating-IP: [104.130.215.37] X-SpamReason: No, hits=0.5 required=7.0 tests=BODY_RANDOM_LONG X-StarScan-Received: X-StarScan-Version: 9.4.12; banners=-,-,- X-VirusChecked: Checked Received: (qmail 25917 invoked from network); 12 May 2017 10:45:36 -0000 Received: from mail.xenproject.org (HELO mail.xenproject.org) (104.130.215.37) by server-16.tower-27.messagelabs.com with AES128-GCM-SHA256 encrypted SMTP; 12 May 2017 10:45:36 -0000 Received: from xenbits.xenproject.org ([104.239.192.120]) by mail.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d984d-0007gQ-Uh; Fri, 12 May 2017 10:45:27 +0000 Received: from iwj by xenbits.xenproject.org with local (Exim 4.84_2) (envelope-from ) id 1d984d-00072n-R5; Fri, 12 May 2017 10:45:27 +0000 Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.505 (Entity 5.505) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Message-Id: Date: Fri, 12 May 2017 10:45:27 +0000 Cc: "Xen.org security team" Subject: [Xen-announce] Xen Security Advisory 213 (CVE-2017-8903) - x86: 64bit PV guest breakout via pagetable use-after-mode-change X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Errors-To: xen-announce-bounces@lists.xen.org Sender: "Xen-announce" --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Xen Security Advisory CVE-2017-8903 / XSA-213 version 3 x86: 64bit PV guest breakout via pagetable use-after-mode-change UPDATES IN VERSION 3 ==================== CVE assigned. ISSUE DESCRIPTION ================= 64-bit PV guests typically use separate (root) page tables for their kernel and user modes. Hypercalls are accessible to guest kernel context only, which certain hypercall handlers make assumptions on. The IRET hypercall (replacing the identically name CPU instruction) is used by guest kernels to transfer control from kernel mode to user mode. If such an IRET hypercall is placed in the middle of a multicall batch, subsequent operations invoked by the same multicall batch may wrongly assume the guest to still be in kernel mode. If one or more of these subsequent operations involve operations on page tables, they may be using the wrong root page table, confusing internal accounting. As a result the guest may gain writable access to some of its page tables. IMPACT ====== A malicious or buggy 64-bit PV guest may be able to access all of system memory, allowing for all of privilege escalation, host crashes, and information leaks. VULNERABLE SYSTEMS ================== All 64-bit Xen versions are vulnerable. Only x86 systems are affected. ARM systems are not vulnerable. The vulnerability is only exposed to 64-bit PV guests. HVM guests and 32-bit PV guests can't exploit the vulnerability. MITIGATION ========== Running only HVM or 32-bit PV guests will avoid the vulnerability. The vulnerability can be avoided if the guest kernel is controlled by the host rather than guest administrator, provided that further steps are taken to prevent the guest administrator from loading code into the kernel (e.g. by disabling loadable modules etc) or from using other mechanisms which allow them to run code at kernel privilege. CREDITS ======= This issue was discovered by Jann Horn of Google Project Zero. RESOLUTION ========== Applying the appropriate attached patch resolves this issue. xsa213.patch xen-unstable xsa213-4.8.patch Xen 4.8.x xsa213-4.7.patch Xen 4.7.x xsa213-4.6.patch Xen 4.6.x xsa213-4.5.patch Xen 4.5.x $ sha256sum xsa213* cddea5eac2ad1f5a68b561da4e98afce891189a2fdedf93087a03889e9df6e99 xsa213.patch fce9bbc9fc30769dfbab4d1830d87d220000b2742e5e70aac22f3e9d013b7614 xsa213-4.5.patch dce026ed1a02db1cf22de89120e7129839f656d041379c450e7403ae909e7b99 xsa213-4.6.patch d8202db5981e2f13d9942332cd3fefded98a5cbc302caee431c7a15051887e7f xsa213-4.7.patch 20c12810ac73809ba74cfde811d420b1b544a07f759c393380afde1a09eb5274 xsa213-4.8.patch $ DEPLOYMENT DURING EMBARGO ========================= Deployment of the patches and/or mitigations described above (or others which are substantially similar) is permitted during the embargo, even on public-facing systems with untrusted guest users and administrators. But: Distribution of updated software is prohibited (except to other members of the predisclosure list). Predisclosure list members who wish to deploy significantly different patches and/or mitigations, please contact the Xen Project Security Team. (Note: this during-embargo deployment notice is retained in post-embargo publicly released Xen Project advisories, even though it is then no longer applicable. This is to enable the community to have oversight of the Xen Project Security Team's decisionmaking.) For more information about permissible uses of embargoed information, consult the Xen Project community's agreed Security Policy: http://www.xenproject.org/security-policy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEcBAEBCAAGBQJZFZInAAoJEIP+FMlX6CvZq7YIAL4qV4jk+XHwuTSPp/3DyOgX CSwDduXqwdeUTfc+1qn6yQFiDxOMVUUUq8Qq1j+x6QrcBocJ6qNJNXhHdExbJ9Aa VPMkf1c+WbuoqOy5BHgnVkTLbCjUzDknQmDBJF4JjADsFpWaIzaXXmLG7GLwSaaf XIYIRcqa51XYSA32E0nvn+AC5OQCx7Pt5jQwRnQFfWH4e79abbI/2jNci3Xe7vfa TmUFlmTEZ3qZ5WNL0+vW4qF/fwwLya9E3IqtqBKYf5BmI369dC9tQs4ELleJ1mqi pj+81RnpVMeQlmYkt+31zP1Hzn/zBdF19yDzpBmvRZJYrF/I6rd+8mYXa8k5H5g= =KN3M -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa213.patch" Content-Disposition: attachment; filename="xsa213.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBtdWx0aWNhbGw6IGRlYWwgd2l0aCBlYXJseSBleGl0IGNvbmRpdGlvbnMK CkluIHBhcnRpY3VsYXIgY2hhbmdlcyB0byBndWVzdCBwcml2aWxlZ2UgbGV2 ZWwgcmVxdWlyZSB0aGUgbXVsdGljYWxsCnNlcXVlbmNlIHRvIGJlIGFib3J0 ZWQsIGFzIGh5cGVyY2FsbHMgYXJlIHBlcm1pdHRlZCBmcm9tIGtlcm5lbCBt b2RlCm9ubHkuIFdoaWxlIGxpa2VseSBub3QgdmVyeSB1c2VmdWwgaW4gYSBt dWx0aWNhbGwsIGFsc28gcHJvcGVybHkgaGFuZGxlCnRoZSByZXR1cm4gdmFs dWUgaW4gdGhlIEhZUEVSVklTT1JfaXJldCBjYXNlICh3aGljaCBzaG91bGQg YmUgdGhlIGd1ZXN0CnNwZWNpZmllZCB2YWx1ZSkuCgpUaGlzIGlzIFhTQS0y MTMuCgpSZXBvcnRlZC1ieTogSmFubiBIb3JuIDxqYW5uaEBnb29nbGUuY29t PgpTaWduZWQtb2ZmLWJ5OiBKYW4gQmV1bGljaCA8amJldWxpY2hAc3VzZS5j b20+ClJldmlld2VkLWJ5OiBBbmRyZXcgQ29vcGVyIDxhbmRyZXcuY29vcGVy M0BjaXRyaXguY29tPgpBY2tlZC1ieTogSnVsaWVuIEdyYWxsIDxqdWxpZW4u Z3JhbGxAYXJtLmNvbT4KCi0tLSBhL3hlbi9hcmNoL2FybS90cmFwcy5jCisr KyBiL3hlbi9hcmNoL2FybS90cmFwcy5jCkBAIC0xNjUzLDcgKzE2NTMsNyBA QCBzdGF0aWMgYm9vbCBjaGVja19tdWx0aWNhbGxfMzJiaXRfY2xlYW4oCiAg ICAgcmV0dXJuIHRydWU7CiB9CiAKLXZvaWQgYXJjaF9kb19tdWx0aWNhbGxf Y2FsbChzdHJ1Y3QgbWNfc3RhdGUgKnN0YXRlKQorZW51bSBtY19kaXNwb3Np dGlvbiBhcmNoX2RvX211bHRpY2FsbF9jYWxsKHN0cnVjdCBtY19zdGF0ZSAq c3RhdGUpCiB7CiAgICAgc3RydWN0IG11bHRpY2FsbF9lbnRyeSAqbXVsdGkg PSAmc3RhdGUtPmNhbGw7CiAgICAgYXJtX2h5cGVyY2FsbF9mbl90IGNhbGwg PSBOVUxMOwpAQCAtMTY2MSwyMyArMTY2MSwyNiBAQCB2b2lkIGFyY2hfZG9f bXVsdGljYWxsX2NhbGwoc3RydWN0IG1jX3N0CiAgICAgaWYgKCBtdWx0aS0+ b3AgPj0gQVJSQVlfU0laRShhcm1faHlwZXJjYWxsX3RhYmxlKSApCiAgICAg ewogICAgICAgICBtdWx0aS0+cmVzdWx0ID0gLUVOT1NZUzsKLSAgICAgICAg cmV0dXJuOworICAgICAgICByZXR1cm4gbWNfY29udGludWU7CiAgICAgfQog CiAgICAgY2FsbCA9IGFybV9oeXBlcmNhbGxfdGFibGVbbXVsdGktPm9wXS5m bjsKICAgICBpZiAoIGNhbGwgPT0gTlVMTCApCiAgICAgewogICAgICAgICBt dWx0aS0+cmVzdWx0ID0gLUVOT1NZUzsKLSAgICAgICAgcmV0dXJuOworICAg ICAgICByZXR1cm4gbWNfY29udGludWU7CiAgICAgfQogCiAgICAgaWYgKCBp c18zMmJpdF9kb21haW4oY3VycmVudC0+ZG9tYWluKSAmJgogICAgICAgICAg IWNoZWNrX211bHRpY2FsbF8zMmJpdF9jbGVhbihtdWx0aSkgKQotICAgICAg ICByZXR1cm47CisgICAgICAgIHJldHVybiBtY19jb250aW51ZTsKIAogICAg IG11bHRpLT5yZXN1bHQgPSBjYWxsKG11bHRpLT5hcmdzWzBdLCBtdWx0aS0+ YXJnc1sxXSwKICAgICAgICAgICAgICAgICAgICAgICAgICBtdWx0aS0+YXJn c1syXSwgbXVsdGktPmFyZ3NbM10sCiAgICAgICAgICAgICAgICAgICAgICAg ICAgbXVsdGktPmFyZ3NbNF0pOworCisgICAgcmV0dXJuIGxpa2VseSghcHNy X21vZGVfaXNfdXNlcihndWVzdF9jcHVfdXNlcl9yZWdzKCkpKQorICAgICAg ICAgICA/IG1jX2NvbnRpbnVlIDogbWNfcHJlZW1wdDsKIH0KIAogLyoKLS0t IGEveGVuL2FyY2gveDg2L3B2L2h5cGVyY2FsbC5jCisrKyBiL3hlbi9hcmNo L3g4Ni9wdi9oeXBlcmNhbGwuYwpAQCAtMjE1LDE1ICsyMTUsMTkgQEAgdm9p ZCBwdl9oeXBlcmNhbGwoc3RydWN0IGNwdV91c2VyX3JlZ3MgKgogICAgIHBl cmZjX2luY3IoaHlwZXJjYWxscyk7CiB9CiAKLXZvaWQgYXJjaF9kb19tdWx0 aWNhbGxfY2FsbChzdHJ1Y3QgbWNfc3RhdGUgKnN0YXRlKQorZW51bSBtY19k aXNwb3NpdGlvbiBhcmNoX2RvX211bHRpY2FsbF9jYWxsKHN0cnVjdCBtY19z dGF0ZSAqc3RhdGUpCiB7Ci0gICAgaWYgKCAhaXNfcHZfMzJiaXRfdmNwdShj dXJyZW50KSApCisgICAgc3RydWN0IHZjcHUgKmN1cnIgPSBjdXJyZW50Owor ICAgIHVuc2lnbmVkIGxvbmcgb3A7CisKKyAgICBpZiAoICFpc19wdl8zMmJp dF92Y3B1KGN1cnIpICkKICAgICB7CiAgICAgICAgIHN0cnVjdCBtdWx0aWNh bGxfZW50cnkgKmNhbGwgPSAmc3RhdGUtPmNhbGw7CiAKLSAgICAgICAgaWYg KCAoY2FsbC0+b3AgPCBBUlJBWV9TSVpFKHB2X2h5cGVyY2FsbF90YWJsZSkp ICYmCi0gICAgICAgICAgICAgcHZfaHlwZXJjYWxsX3RhYmxlW2NhbGwtPm9w XS5uYXRpdmUgKQotICAgICAgICAgICAgY2FsbC0+cmVzdWx0ID0gcHZfaHlw ZXJjYWxsX3RhYmxlW2NhbGwtPm9wXS5uYXRpdmUoCisgICAgICAgIG9wID0g Y2FsbC0+b3A7CisgICAgICAgIGlmICggKG9wIDwgQVJSQVlfU0laRShwdl9o eXBlcmNhbGxfdGFibGUpKSAmJgorICAgICAgICAgICAgIHB2X2h5cGVyY2Fs bF90YWJsZVtvcF0ubmF0aXZlICkKKyAgICAgICAgICAgIGNhbGwtPnJlc3Vs dCA9IHB2X2h5cGVyY2FsbF90YWJsZVtvcF0ubmF0aXZlKAogICAgICAgICAg ICAgICAgIGNhbGwtPmFyZ3NbMF0sIGNhbGwtPmFyZ3NbMV0sIGNhbGwtPmFy Z3NbMl0sCiAgICAgICAgICAgICAgICAgY2FsbC0+YXJnc1szXSwgY2FsbC0+ YXJnc1s0XSwgY2FsbC0+YXJnc1s1XSk7CiAgICAgICAgIGVsc2UKQEAgLTIz NCwxNSArMjM4LDIxIEBAIHZvaWQgYXJjaF9kb19tdWx0aWNhbGxfY2FsbChz dHJ1Y3QgbWNfc3QKICAgICB7CiAgICAgICAgIHN0cnVjdCBjb21wYXRfbXVs dGljYWxsX2VudHJ5ICpjYWxsID0gJnN0YXRlLT5jb21wYXRfY2FsbDsKIAot ICAgICAgICBpZiAoIChjYWxsLT5vcCA8IEFSUkFZX1NJWkUocHZfaHlwZXJj YWxsX3RhYmxlKSkgJiYKLSAgICAgICAgICAgICBwdl9oeXBlcmNhbGxfdGFi bGVbY2FsbC0+b3BdLmNvbXBhdCApCi0gICAgICAgICAgICBjYWxsLT5yZXN1 bHQgPSBwdl9oeXBlcmNhbGxfdGFibGVbY2FsbC0+b3BdLmNvbXBhdCgKKyAg ICAgICAgb3AgPSBjYWxsLT5vcDsKKyAgICAgICAgaWYgKCAob3AgPCBBUlJB WV9TSVpFKHB2X2h5cGVyY2FsbF90YWJsZSkpICYmCisgICAgICAgICAgICAg cHZfaHlwZXJjYWxsX3RhYmxlW29wXS5jb21wYXQgKQorICAgICAgICAgICAg Y2FsbC0+cmVzdWx0ID0gcHZfaHlwZXJjYWxsX3RhYmxlW29wXS5jb21wYXQo CiAgICAgICAgICAgICAgICAgY2FsbC0+YXJnc1swXSwgY2FsbC0+YXJnc1sx XSwgY2FsbC0+YXJnc1syXSwKICAgICAgICAgICAgICAgICBjYWxsLT5hcmdz WzNdLCBjYWxsLT5hcmdzWzRdLCBjYWxsLT5hcmdzWzVdKTsKICAgICAgICAg ZWxzZQogICAgICAgICAgICAgY2FsbC0+cmVzdWx0ID0gLUVOT1NZUzsKICAg ICB9CiAjZW5kaWYKKworICAgIHJldHVybiB1bmxpa2VseShvcCA9PSBfX0hZ UEVSVklTT1JfaXJldCkKKyAgICAgICAgICAgPyBtY19leGl0CisgICAgICAg ICAgIDogbGlrZWx5KGd1ZXN0X2tlcm5lbF9tb2RlKGN1cnIsIGd1ZXN0X2Nw dV91c2VyX3JlZ3MoKSkpCisgICAgICAgICAgICAgPyBtY19jb250aW51ZSA6 IG1jX3ByZWVtcHQ7CiB9CiAKIC8qCi0tLSBhL3hlbi9jb21tb24vbXVsdGlj YWxsLmMKKysrIGIveGVuL2NvbW1vbi9tdWx0aWNhbGwuYwpAQCAtMzksNiAr MzksNyBAQCBkb19tdWx0aWNhbGwoCiAgICAgc3RydWN0IG1jX3N0YXRlICpt Y3MgPSAmY3VycmVudC0+bWNfc3RhdGU7CiAgICAgdWludDMyX3QgICAgICAg ICBpOwogICAgIGludCAgICAgICAgICAgICAgcmMgPSAwOworICAgIGVudW0g bWNfZGlzcG9zaXRpb24gZGlzcCA9IG1jX2NvbnRpbnVlOwogCiAgICAgaWYg KCB1bmxpa2VseShfX3Rlc3RfYW5kX3NldF9iaXQoX01DU0ZfaW5fbXVsdGlj YWxsLCAmbWNzLT5mbGFncykpICkKICAgICB7CkBAIC00OSw3ICs1MCw3IEBA IGRvX211bHRpY2FsbCgKICAgICBpZiAoIHVubGlrZWx5KCFndWVzdF9oYW5k bGVfb2theShjYWxsX2xpc3QsIG5yX2NhbGxzKSkgKQogICAgICAgICByYyA9 IC1FRkFVTFQ7CiAKLSAgICBmb3IgKCBpID0gMDsgIXJjICYmIGkgPCBucl9j YWxsczsgaSsrICkKKyAgICBmb3IgKCBpID0gMDsgIXJjICYmIGRpc3AgPT0g bWNfY29udGludWUgJiYgaSA8IG5yX2NhbGxzOyBpKysgKQogICAgIHsKICAg ICAgICAgaWYgKCBpICYmIGh5cGVyY2FsbF9wcmVlbXB0X2NoZWNrKCkgKQog ICAgICAgICAgICAgZ290byBwcmVlbXB0ZWQ7CkBAIC02Miw3ICs2Myw3IEBA IGRvX211bHRpY2FsbCgKIAogICAgICAgICB0cmFjZV9tdWx0aWNhbGxfY2Fs bCgmbWNzLT5jYWxsKTsKIAotICAgICAgICBhcmNoX2RvX211bHRpY2FsbF9j YWxsKG1jcyk7CisgICAgICAgIGRpc3AgPSBhcmNoX2RvX211bHRpY2FsbF9j YWxsKG1jcyk7CiAKICNpZm5kZWYgTkRFQlVHCiAgICAgICAgIHsKQEAgLTc2 LDcgKzc3LDE0IEBAIGRvX211bHRpY2FsbCgKICAgICAgICAgfQogI2VuZGlm CiAKLSAgICAgICAgaWYgKCB1bmxpa2VseShfX2NvcHlfZmllbGRfdG9fZ3Vl c3QoY2FsbF9saXN0LCAmbWNzLT5jYWxsLCByZXN1bHQpKSApCisgICAgICAg IGlmICggdW5saWtlbHkoZGlzcCA9PSBtY19leGl0KSApCisgICAgICAgIHsK KyAgICAgICAgICAgIGlmICggX19jb3B5X2ZpZWxkX3RvX2d1ZXN0KGNhbGxf bGlzdCwgJm1jcy0+Y2FsbCwgcmVzdWx0KSApCisgICAgICAgICAgICAgICAg Lyogbm90aGluZywgYmVzdCBlZmZvcnQgb25seSAqLzsKKyAgICAgICAgICAg IHJjID0gbWNzLT5jYWxsLnJlc3VsdDsKKyAgICAgICAgfQorICAgICAgICBl bHNlIGlmICggdW5saWtlbHkoX19jb3B5X2ZpZWxkX3RvX2d1ZXN0KGNhbGxf bGlzdCwgJm1jcy0+Y2FsbCwKKyAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICByZXN1bHQpKSApCiAgICAgICAgICAg ICByYyA9IC1FRkFVTFQ7CiAgICAgICAgIGVsc2UgaWYgKCBjdXJyZW50LT5o Y2FsbF9wcmVlbXB0ZWQgKQogICAgICAgICB7CkBAIC05NCw2ICsxMDIsOSBA QCBkb19tdWx0aWNhbGwoCiAgICAgICAgICAgICBndWVzdF9oYW5kbGVfYWRk X29mZnNldChjYWxsX2xpc3QsIDEpOwogICAgIH0KIAorICAgIGlmICggdW5s aWtlbHkoZGlzcCA9PSBtY19wcmVlbXB0KSAmJiBpIDwgbnJfY2FsbHMgKQor ICAgICAgICBnb3RvIHByZWVtcHRlZDsKKwogICAgIHBlcmZjX2luY3IoY2Fs bHNfdG9fbXVsdGljYWxsKTsKICAgICBwZXJmY19hZGQoY2FsbHNfZnJvbV9t dWx0aWNhbGwsIGkpOwogICAgIG1jcy0+ZmxhZ3MgPSAwOwotLS0gYS94ZW4v aW5jbHVkZS94ZW4vbXVsdGljYWxsLmgKKysrIGIveGVuL2luY2x1ZGUveGVu L211bHRpY2FsbC5oCkBAIC0yMiw2ICsyMiwxMCBAQCBzdHJ1Y3QgbWNfc3Rh dGUgewogICAgIH07CiB9OwogCi12b2lkIGFyY2hfZG9fbXVsdGljYWxsX2Nh bGwoc3RydWN0IG1jX3N0YXRlICptYyk7CitlbnVtIG1jX2Rpc3Bvc2l0aW9u IHsKKyAgICBtY19jb250aW51ZSwKKyAgICBtY19leGl0LAorICAgIG1jX3By ZWVtcHQsCit9IGFyY2hfZG9fbXVsdGljYWxsX2NhbGwoc3RydWN0IG1jX3N0 YXRlICptYyk7CiAKICNlbmRpZiAvKiBfX1hFTl9NVUxUSUNBTExfSF9fICov Cg== --=separator Content-Type: application/octet-stream; name="xsa213-4.5.patch" Content-Disposition: attachment; filename="xsa213-4.5.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBtdWx0aWNhbGw6IGRlYWwgd2l0aCBlYXJseSBleGl0IGNvbmRpdGlvbnMK CkluIHBhcnRpY3VsYXIgY2hhbmdlcyB0byBndWVzdCBwcml2aWxlZ2UgbGV2 ZWwgcmVxdWlyZSB0aGUgbXVsdGljYWxsCnNlcXVlbmNlIHRvIGJlIGFib3J0 ZWQsIGFzIGh5cGVyY2FsbHMgYXJlIHBlcm1pdHRlZCBmcm9tIGtlcm5lbCBt b2RlCm9ubHkuIFdoaWxlIGxpa2VseSBub3QgdmVyeSB1c2VmdWwgaW4gYSBt dWx0aWNhbGwsIGFsc28gcHJvcGVybHkgaGFuZGxlCnRoZSByZXR1cm4gdmFs dWUgaW4gdGhlIEhZUEVSVklTT1JfaXJldCBjYXNlICh3aGljaCBzaG91bGQg YmUgdGhlIGd1ZXN0CnNwZWNpZmllZCB2YWx1ZSkuCgpUaGlzIGlzIFhTQS0y MTMuCgpSZXBvcnRlZC1ieTogSmFubiBIb3JuIDxqYW5uaEBnb29nbGUuY29t PgpTaWduZWQtb2ZmLWJ5OiBKYW4gQmV1bGljaCA8amJldWxpY2hAc3VzZS5j b20+ClJldmlld2VkLWJ5OiBBbmRyZXcgQ29vcGVyIDxhbmRyZXcuY29vcGVy M0BjaXRyaXguY29tPgpBY2tlZC1ieTogSnVsaWVuIEdyYWxsIDxqdWxpZW4u Z3JhbGxAYXJtLmNvbT4KCi0tLSBhL3hlbi9hcmNoL2FybS90cmFwcy5jCisr KyBiL3hlbi9hcmNoL2FybS90cmFwcy5jCkBAIC0xMzk1LDMwICsxMzk1LDMz IEBAIHN0YXRpYyBib29sX3QgY2hlY2tfbXVsdGljYWxsXzMyYml0X2NsZWEK ICAgICByZXR1cm4gdHJ1ZTsKIH0KIAotdm9pZCBkb19tdWx0aWNhbGxfY2Fs bChzdHJ1Y3QgbXVsdGljYWxsX2VudHJ5ICptdWx0aSkKK2VudW0gbWNfZGlz cG9zaXRpb24gZG9fbXVsdGljYWxsX2NhbGwoc3RydWN0IG11bHRpY2FsbF9l bnRyeSAqbXVsdGkpCiB7CiAgICAgYXJtX2h5cGVyY2FsbF9mbl90IGNhbGwg PSBOVUxMOwogCiAgICAgaWYgKCBtdWx0aS0+b3AgPj0gQVJSQVlfU0laRShh cm1faHlwZXJjYWxsX3RhYmxlKSApCiAgICAgewogICAgICAgICBtdWx0aS0+ cmVzdWx0ID0gLUVOT1NZUzsKLSAgICAgICAgcmV0dXJuOworICAgICAgICBy ZXR1cm4gbWNfY29udGludWU7CiAgICAgfQogCiAgICAgY2FsbCA9IGFybV9o eXBlcmNhbGxfdGFibGVbbXVsdGktPm9wXS5mbjsKICAgICBpZiAoIGNhbGwg PT0gTlVMTCApCiAgICAgewogICAgICAgICBtdWx0aS0+cmVzdWx0ID0gLUVO T1NZUzsKLSAgICAgICAgcmV0dXJuOworICAgICAgICByZXR1cm4gbWNfY29u dGludWU7CiAgICAgfQogCiAgICAgaWYgKCBpc18zMmJpdF9kb21haW4oY3Vy cmVudC0+ZG9tYWluKSAmJgogICAgICAgICAgIWNoZWNrX211bHRpY2FsbF8z MmJpdF9jbGVhbihtdWx0aSkgKQotICAgICAgICByZXR1cm47CisgICAgICAg IHJldHVybiBtY19jb250aW51ZTsKIAogICAgIG11bHRpLT5yZXN1bHQgPSBj YWxsKG11bHRpLT5hcmdzWzBdLCBtdWx0aS0+YXJnc1sxXSwKICAgICAgICAg ICAgICAgICAgICAgICAgICBtdWx0aS0+YXJnc1syXSwgbXVsdGktPmFyZ3Nb M10sCiAgICAgICAgICAgICAgICAgICAgICAgICAgbXVsdGktPmFyZ3NbNF0p OworCisgICAgcmV0dXJuIGxpa2VseSghcHNyX21vZGVfaXNfdXNlcihndWVz dF9jcHVfdXNlcl9yZWdzKCkpKQorICAgICAgICAgICA/IG1jX2NvbnRpbnVl IDogbWNfcHJlZW1wdDsKIH0KIAogLyoKLS0tIGEveGVuL2NvbW1vbi9tdWx0 aWNhbGwuYworKysgYi94ZW4vY29tbW9uL211bHRpY2FsbC5jCkBAIC00MCw2 ICs0MCw3IEBAIGRvX211bHRpY2FsbCgKICAgICBzdHJ1Y3QgbWNfc3RhdGUg Km1jcyA9ICZjdXJyZW50LT5tY19zdGF0ZTsKICAgICB1aW50MzJfdCAgICAg ICAgIGk7CiAgICAgaW50ICAgICAgICAgICAgICByYyA9IDA7CisgICAgZW51 bSBtY19kaXNwb3NpdGlvbiBkaXNwID0gbWNfY29udGludWU7CiAKICAgICBp ZiAoIHVubGlrZWx5KF9fdGVzdF9hbmRfc2V0X2JpdChfTUNTRl9pbl9tdWx0 aWNhbGwsICZtY3MtPmZsYWdzKSkgKQogICAgIHsKQEAgLTUwLDcgKzUxLDcg QEAgZG9fbXVsdGljYWxsKAogICAgIGlmICggdW5saWtlbHkoIWd1ZXN0X2hh bmRsZV9va2F5KGNhbGxfbGlzdCwgbnJfY2FsbHMpKSApCiAgICAgICAgIHJj ID0gLUVGQVVMVDsKIAotICAgIGZvciAoIGkgPSAwOyAhcmMgJiYgaSA8IG5y X2NhbGxzOyBpKysgKQorICAgIGZvciAoIGkgPSAwOyAhcmMgJiYgZGlzcCA9 PSBtY19jb250aW51ZSAmJiBpIDwgbnJfY2FsbHM7IGkrKyApCiAgICAgewog ICAgICAgICBpZiAoIGkgJiYgaHlwZXJjYWxsX3ByZWVtcHRfY2hlY2soKSAp CiAgICAgICAgICAgICBnb3RvIHByZWVtcHRlZDsKQEAgLTYzLDcgKzY0LDcg QEAgZG9fbXVsdGljYWxsKAogCiAgICAgICAgIHRyYWNlX211bHRpY2FsbF9j YWxsKCZtY3MtPmNhbGwpOwogCi0gICAgICAgIGRvX211bHRpY2FsbF9jYWxs KCZtY3MtPmNhbGwpOworICAgICAgICBkaXNwID0gZG9fbXVsdGljYWxsX2Nh bGwoJm1jcy0+Y2FsbCk7CiAKICNpZm5kZWYgTkRFQlVHCiAgICAgICAgIHsK QEAgLTc3LDcgKzc4LDE0IEBAIGRvX211bHRpY2FsbCgKICAgICAgICAgfQog I2VuZGlmCiAKLSAgICAgICAgaWYgKCB1bmxpa2VseShfX2NvcHlfZmllbGRf dG9fZ3Vlc3QoY2FsbF9saXN0LCAmbWNzLT5jYWxsLCByZXN1bHQpKSApCisg ICAgICAgIGlmICggdW5saWtlbHkoZGlzcCA9PSBtY19leGl0KSApCisgICAg ICAgIHsKKyAgICAgICAgICAgIGlmICggX19jb3B5X2ZpZWxkX3RvX2d1ZXN0 KGNhbGxfbGlzdCwgJm1jcy0+Y2FsbCwgcmVzdWx0KSApCisgICAgICAgICAg ICAgICAgLyogbm90aGluZywgYmVzdCBlZmZvcnQgb25seSAqLzsKKyAgICAg ICAgICAgIHJjID0gbWNzLT5jYWxsLnJlc3VsdDsKKyAgICAgICAgfQorICAg ICAgICBlbHNlIGlmICggdW5saWtlbHkoX19jb3B5X2ZpZWxkX3RvX2d1ZXN0 KGNhbGxfbGlzdCwgJm1jcy0+Y2FsbCwKKyAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICByZXN1bHQpKSApCiAgICAg ICAgICAgICByYyA9IC1FRkFVTFQ7CiAgICAgICAgIGVsc2UgaWYgKCB0ZXN0 X2JpdChfTUNTRl9jYWxsX3ByZWVtcHRlZCwgJm1jcy0+ZmxhZ3MpICkKICAg ICAgICAgewpAQCAtOTMsNiArMTAxLDkgQEAgZG9fbXVsdGljYWxsKAogICAg ICAgICAgICAgZ3Vlc3RfaGFuZGxlX2FkZF9vZmZzZXQoY2FsbF9saXN0LCAx KTsKICAgICB9CiAKKyAgICBpZiAoIHVubGlrZWx5KGRpc3AgPT0gbWNfcHJl ZW1wdCkgJiYgaSA8IG5yX2NhbGxzICkKKyAgICAgICAgZ290byBwcmVlbXB0 ZWQ7CisKICAgICBwZXJmY19pbmNyKGNhbGxzX3RvX211bHRpY2FsbCk7CiAg ICAgcGVyZmNfYWRkKGNhbGxzX2Zyb21fbXVsdGljYWxsLCBpKTsKICAgICBt Y3MtPmZsYWdzID0gMDsKLS0tIGEveGVuL2luY2x1ZGUvYXNtLWFybS9tdWx0 aWNhbGwuaAorKysgYi94ZW4vaW5jbHVkZS9hc20tYXJtL211bHRpY2FsbC5o CkBAIC0xLDcgKzEsMTEgQEAKICNpZm5kZWYgX19BU01fQVJNX01VTFRJQ0FM TF9IX18KICNkZWZpbmUgX19BU01fQVJNX01VTFRJQ0FMTF9IX18KIAotZXh0 ZXJuIHZvaWQgZG9fbXVsdGljYWxsX2NhbGwoc3RydWN0IG11bHRpY2FsbF9l bnRyeSAqY2FsbCk7CitleHRlcm4gZW51bSBtY19kaXNwb3NpdGlvbiB7Cisg ICAgbWNfY29udGludWUsCisgICAgbWNfZXhpdCwKKyAgICBtY19wcmVlbXB0 LAorfSBkb19tdWx0aWNhbGxfY2FsbChzdHJ1Y3QgbXVsdGljYWxsX2VudHJ5 ICpjYWxsKTsKIAogI2VuZGlmIC8qIF9fQVNNX0FSTV9NVUxUSUNBTExfSF9f ICovCiAvKgotLS0gYS94ZW4vaW5jbHVkZS9hc20teDg2L211bHRpY2FsbC5o CisrKyBiL3hlbi9pbmNsdWRlL2FzbS14ODYvbXVsdGljYWxsLmgKQEAgLTcs OCArNywyMSBAQAogCiAjaW5jbHVkZSA8eGVuL2Vycm5vLmg+CiAKK2VudW0g bWNfZGlzcG9zaXRpb24geworICAgIG1jX2NvbnRpbnVlLAorICAgIG1jX2V4 aXQsCisgICAgbWNfcHJlZW1wdCwKK307CisKKyNkZWZpbmUgbXVsdGljYWxs X3JldChjYWxsKSAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBc CisgICAgKHVubGlrZWx5KChjYWxsKS0+b3AgPT0gX19IWVBFUlZJU09SX2ly ZXQpICAgICAgICAgICAgICAgXAorICAgICA/IG1jX2V4aXQgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKKyAgICAg ICA6IGxpa2VseShndWVzdF9rZXJuZWxfbW9kZShjdXJyZW50LCAgICAgICAg ICAgICAgICAgICBcCisgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgZ3Vlc3RfY3B1X3VzZXJfcmVncygpKSkgICAgXAorICAgICAgICAgPyBt Y19jb250aW51ZSA6IG1jX3ByZWVtcHQpCisKICNkZWZpbmUgZG9fbXVsdGlj YWxsX2NhbGwoX2NhbGwpICAgICAgICAgICAgICAgICAgICAgICAgICAgICBc Ci0gICAgZG8geyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgXAorICAgICh7ICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKICAgICAg ICAgX19hc21fXyBfX3ZvbGF0aWxlX18gKCAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICBcCiAgICAgICAgICAgICAiICAgIG1vdnEgICVjMSglMCks JSVyYXg7ICIgICAgICAgICAgICAgICAgICAgICAgXAogICAgICAgICAgICAg IiAgICBsZWFxICBoeXBlcmNhbGxfdGFibGUoJSVyaXApLCUlcmRpOyAiICAg ICAgIFwKQEAgLTM2LDkgKzQ5LDExIEBACiAgICAgICAgICAgICAgIC8qIGFs bCB0aGUgY2FsbGVyLXNhdmVzIHJlZ2lzdGVycyAqLyAgICAgICAgICAgXAog ICAgICAgICAgICAgOiAicmF4IiwgInJjeCIsICJyZHgiLCAicnNpIiwgInJk aSIsICAgICAgICAgICAgIFwKICAgICAgICAgICAgICAgInI4IiwgICJyOSIs ICAicjEwIiwgInIxMSIgKTsgICAgICAgICAgICAgICAgICBcCi0gICAgfSB3 aGlsZSAoIDAgKQorICAgICAgICBtdWx0aWNhbGxfcmV0KF9jYWxsKTsgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKKyAgICB9KQogCiAjZGVm aW5lIGNvbXBhdF9tdWx0aWNhbGxfY2FsbChfY2FsbCkgICAgICAgICAgICAg ICAgICAgICAgICAgXAorICAgICh7ICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKICAgICAgICAgX19h c21fXyBfX3ZvbGF0aWxlX18gKCAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICBcCiAgICAgICAgICAgICAiICAgIG1vdmwgICVjMSglMCksJSVlYXg7 ICIgICAgICAgICAgICAgICAgICAgICAgXAogICAgICAgICAgICAgIiAgICBs ZWFxICBjb21wYXRfaHlwZXJjYWxsX3RhYmxlKCUlcmlwKSwlJXJkaTsgIlwK QEAgLTY1LDYgKzgwLDggQEAKICAgICAgICAgICAgICAgImkiIChvZmZzZXRv ZihfX3R5cGVvZl9fKCpfY2FsbCksIHJlc3VsdCkpICAgICBcCiAgICAgICAg ICAgICAgIC8qIGFsbCB0aGUgY2FsbGVyLXNhdmVzIHJlZ2lzdGVycyAqLyAg ICAgICAgICAgXAogICAgICAgICAgICAgOiAicmF4IiwgInJjeCIsICJyZHgi LCAicnNpIiwgInJkaSIsICAgICAgICAgICAgIFwKLSAgICAgICAgICAgICAg InI4IiwgICJyOSIsICAicjEwIiwgInIxMSIgKSAgICAgICAgICAgICAgICAg ICBcCisgICAgICAgICAgICAgICJyOCIsICAicjkiLCAgInIxMCIsICJyMTEi ICk7ICAgICAgICAgICAgICAgICAgXAorICAgICAgICBtdWx0aWNhbGxfcmV0 KF9jYWxsKTsgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKKyAg ICB9KQogCiAjZW5kaWYgLyogX19BU01fWDg2X01VTFRJQ0FMTF9IX18gKi8K --=separator Content-Type: application/octet-stream; name="xsa213-4.6.patch" Content-Disposition: attachment; filename="xsa213-4.6.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBtdWx0aWNhbGw6IGRlYWwgd2l0aCBlYXJseSBleGl0IGNvbmRpdGlvbnMK CkluIHBhcnRpY3VsYXIgY2hhbmdlcyB0byBndWVzdCBwcml2aWxlZ2UgbGV2 ZWwgcmVxdWlyZSB0aGUgbXVsdGljYWxsCnNlcXVlbmNlIHRvIGJlIGFib3J0 ZWQsIGFzIGh5cGVyY2FsbHMgYXJlIHBlcm1pdHRlZCBmcm9tIGtlcm5lbCBt b2RlCm9ubHkuIFdoaWxlIGxpa2VseSBub3QgdmVyeSB1c2VmdWwgaW4gYSBt dWx0aWNhbGwsIGFsc28gcHJvcGVybHkgaGFuZGxlCnRoZSByZXR1cm4gdmFs dWUgaW4gdGhlIEhZUEVSVklTT1JfaXJldCBjYXNlICh3aGljaCBzaG91bGQg YmUgdGhlIGd1ZXN0CnNwZWNpZmllZCB2YWx1ZSkuCgpUaGlzIGlzIFhTQS0y MTMuCgpSZXBvcnRlZC1ieTogSmFubiBIb3JuIDxqYW5uaEBnb29nbGUuY29t PgpTaWduZWQtb2ZmLWJ5OiBKYW4gQmV1bGljaCA8amJldWxpY2hAc3VzZS5j b20+ClJldmlld2VkLWJ5OiBBbmRyZXcgQ29vcGVyIDxhbmRyZXcuY29vcGVy M0BjaXRyaXguY29tPgpBY2tlZC1ieTogSnVsaWVuIEdyYWxsIDxqdWxpZW4u Z3JhbGxAYXJtLmNvbT4KCi0tLSBhL3hlbi9hcmNoL2FybS90cmFwcy5jCisr KyBiL3hlbi9hcmNoL2FybS90cmFwcy5jCkBAIC0xNDg1LDMwICsxNDg1LDMz IEBAIHN0YXRpYyBib29sX3QgY2hlY2tfbXVsdGljYWxsXzMyYml0X2NsZWEK ICAgICByZXR1cm4gdHJ1ZTsKIH0KIAotdm9pZCBkb19tdWx0aWNhbGxfY2Fs bChzdHJ1Y3QgbXVsdGljYWxsX2VudHJ5ICptdWx0aSkKK2VudW0gbWNfZGlz cG9zaXRpb24gZG9fbXVsdGljYWxsX2NhbGwoc3RydWN0IG11bHRpY2FsbF9l bnRyeSAqbXVsdGkpCiB7CiAgICAgYXJtX2h5cGVyY2FsbF9mbl90IGNhbGwg PSBOVUxMOwogCiAgICAgaWYgKCBtdWx0aS0+b3AgPj0gQVJSQVlfU0laRShh cm1faHlwZXJjYWxsX3RhYmxlKSApCiAgICAgewogICAgICAgICBtdWx0aS0+ cmVzdWx0ID0gLUVOT1NZUzsKLSAgICAgICAgcmV0dXJuOworICAgICAgICBy ZXR1cm4gbWNfY29udGludWU7CiAgICAgfQogCiAgICAgY2FsbCA9IGFybV9o eXBlcmNhbGxfdGFibGVbbXVsdGktPm9wXS5mbjsKICAgICBpZiAoIGNhbGwg PT0gTlVMTCApCiAgICAgewogICAgICAgICBtdWx0aS0+cmVzdWx0ID0gLUVO T1NZUzsKLSAgICAgICAgcmV0dXJuOworICAgICAgICByZXR1cm4gbWNfY29u dGludWU7CiAgICAgfQogCiAgICAgaWYgKCBpc18zMmJpdF9kb21haW4oY3Vy cmVudC0+ZG9tYWluKSAmJgogICAgICAgICAgIWNoZWNrX211bHRpY2FsbF8z MmJpdF9jbGVhbihtdWx0aSkgKQotICAgICAgICByZXR1cm47CisgICAgICAg IHJldHVybiBtY19jb250aW51ZTsKIAogICAgIG11bHRpLT5yZXN1bHQgPSBj YWxsKG11bHRpLT5hcmdzWzBdLCBtdWx0aS0+YXJnc1sxXSwKICAgICAgICAg ICAgICAgICAgICAgICAgICBtdWx0aS0+YXJnc1syXSwgbXVsdGktPmFyZ3Nb M10sCiAgICAgICAgICAgICAgICAgICAgICAgICAgbXVsdGktPmFyZ3NbNF0p OworCisgICAgcmV0dXJuIGxpa2VseSghcHNyX21vZGVfaXNfdXNlcihndWVz dF9jcHVfdXNlcl9yZWdzKCkpKQorICAgICAgICAgICA/IG1jX2NvbnRpbnVl IDogbWNfcHJlZW1wdDsKIH0KIAogLyoKLS0tIGEveGVuL2NvbW1vbi9tdWx0 aWNhbGwuYworKysgYi94ZW4vY29tbW9uL211bHRpY2FsbC5jCkBAIC00MCw2 ICs0MCw3IEBAIGRvX211bHRpY2FsbCgKICAgICBzdHJ1Y3QgbWNfc3RhdGUg Km1jcyA9ICZjdXJyZW50LT5tY19zdGF0ZTsKICAgICB1aW50MzJfdCAgICAg ICAgIGk7CiAgICAgaW50ICAgICAgICAgICAgICByYyA9IDA7CisgICAgZW51 bSBtY19kaXNwb3NpdGlvbiBkaXNwID0gbWNfY29udGludWU7CiAKICAgICBp ZiAoIHVubGlrZWx5KF9fdGVzdF9hbmRfc2V0X2JpdChfTUNTRl9pbl9tdWx0 aWNhbGwsICZtY3MtPmZsYWdzKSkgKQogICAgIHsKQEAgLTUwLDcgKzUxLDcg QEAgZG9fbXVsdGljYWxsKAogICAgIGlmICggdW5saWtlbHkoIWd1ZXN0X2hh bmRsZV9va2F5KGNhbGxfbGlzdCwgbnJfY2FsbHMpKSApCiAgICAgICAgIHJj ID0gLUVGQVVMVDsKIAotICAgIGZvciAoIGkgPSAwOyAhcmMgJiYgaSA8IG5y X2NhbGxzOyBpKysgKQorICAgIGZvciAoIGkgPSAwOyAhcmMgJiYgZGlzcCA9 PSBtY19jb250aW51ZSAmJiBpIDwgbnJfY2FsbHM7IGkrKyApCiAgICAgewog ICAgICAgICBpZiAoIGkgJiYgaHlwZXJjYWxsX3ByZWVtcHRfY2hlY2soKSAp CiAgICAgICAgICAgICBnb3RvIHByZWVtcHRlZDsKQEAgLTYzLDcgKzY0LDcg QEAgZG9fbXVsdGljYWxsKAogCiAgICAgICAgIHRyYWNlX211bHRpY2FsbF9j YWxsKCZtY3MtPmNhbGwpOwogCi0gICAgICAgIGRvX211bHRpY2FsbF9jYWxs KCZtY3MtPmNhbGwpOworICAgICAgICBkaXNwID0gZG9fbXVsdGljYWxsX2Nh bGwoJm1jcy0+Y2FsbCk7CiAKICNpZm5kZWYgTkRFQlVHCiAgICAgICAgIHsK QEAgLTc3LDcgKzc4LDE0IEBAIGRvX211bHRpY2FsbCgKICAgICAgICAgfQog I2VuZGlmCiAKLSAgICAgICAgaWYgKCB1bmxpa2VseShfX2NvcHlfZmllbGRf dG9fZ3Vlc3QoY2FsbF9saXN0LCAmbWNzLT5jYWxsLCByZXN1bHQpKSApCisg ICAgICAgIGlmICggdW5saWtlbHkoZGlzcCA9PSBtY19leGl0KSApCisgICAg ICAgIHsKKyAgICAgICAgICAgIGlmICggX19jb3B5X2ZpZWxkX3RvX2d1ZXN0 KGNhbGxfbGlzdCwgJm1jcy0+Y2FsbCwgcmVzdWx0KSApCisgICAgICAgICAg ICAgICAgLyogbm90aGluZywgYmVzdCBlZmZvcnQgb25seSAqLzsKKyAgICAg ICAgICAgIHJjID0gbWNzLT5jYWxsLnJlc3VsdDsKKyAgICAgICAgfQorICAg ICAgICBlbHNlIGlmICggdW5saWtlbHkoX19jb3B5X2ZpZWxkX3RvX2d1ZXN0 KGNhbGxfbGlzdCwgJm1jcy0+Y2FsbCwKKyAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICByZXN1bHQpKSApCiAgICAg ICAgICAgICByYyA9IC1FRkFVTFQ7CiAgICAgICAgIGVsc2UgaWYgKCB0ZXN0 X2JpdChfTUNTRl9jYWxsX3ByZWVtcHRlZCwgJm1jcy0+ZmxhZ3MpICkKICAg ICAgICAgewpAQCAtOTMsNiArMTAxLDkgQEAgZG9fbXVsdGljYWxsKAogICAg ICAgICAgICAgZ3Vlc3RfaGFuZGxlX2FkZF9vZmZzZXQoY2FsbF9saXN0LCAx KTsKICAgICB9CiAKKyAgICBpZiAoIHVubGlrZWx5KGRpc3AgPT0gbWNfcHJl ZW1wdCkgJiYgaSA8IG5yX2NhbGxzICkKKyAgICAgICAgZ290byBwcmVlbXB0 ZWQ7CisKICAgICBwZXJmY19pbmNyKGNhbGxzX3RvX211bHRpY2FsbCk7CiAg ICAgcGVyZmNfYWRkKGNhbGxzX2Zyb21fbXVsdGljYWxsLCBpKTsKICAgICBt Y3MtPmZsYWdzID0gMDsKLS0tIGEveGVuL2luY2x1ZGUvYXNtLWFybS9tdWx0 aWNhbGwuaAorKysgYi94ZW4vaW5jbHVkZS9hc20tYXJtL211bHRpY2FsbC5o CkBAIC0xLDcgKzEsMTEgQEAKICNpZm5kZWYgX19BU01fQVJNX01VTFRJQ0FM TF9IX18KICNkZWZpbmUgX19BU01fQVJNX01VTFRJQ0FMTF9IX18KIAotZXh0 ZXJuIHZvaWQgZG9fbXVsdGljYWxsX2NhbGwoc3RydWN0IG11bHRpY2FsbF9l bnRyeSAqY2FsbCk7CitleHRlcm4gZW51bSBtY19kaXNwb3NpdGlvbiB7Cisg ICAgbWNfY29udGludWUsCisgICAgbWNfZXhpdCwKKyAgICBtY19wcmVlbXB0 LAorfSBkb19tdWx0aWNhbGxfY2FsbChzdHJ1Y3QgbXVsdGljYWxsX2VudHJ5 ICpjYWxsKTsKIAogI2VuZGlmIC8qIF9fQVNNX0FSTV9NVUxUSUNBTExfSF9f ICovCiAvKgotLS0gYS94ZW4vaW5jbHVkZS9hc20teDg2L211bHRpY2FsbC5o CisrKyBiL3hlbi9pbmNsdWRlL2FzbS14ODYvbXVsdGljYWxsLmgKQEAgLTcs OCArNywyMSBAQAogCiAjaW5jbHVkZSA8eGVuL2Vycm5vLmg+CiAKK2VudW0g bWNfZGlzcG9zaXRpb24geworICAgIG1jX2NvbnRpbnVlLAorICAgIG1jX2V4 aXQsCisgICAgbWNfcHJlZW1wdCwKK307CisKKyNkZWZpbmUgbXVsdGljYWxs X3JldChjYWxsKSAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBc CisgICAgKHVubGlrZWx5KChjYWxsKS0+b3AgPT0gX19IWVBFUlZJU09SX2ly ZXQpICAgICAgICAgICAgICAgXAorICAgICA/IG1jX2V4aXQgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKKyAgICAg ICA6IGxpa2VseShndWVzdF9rZXJuZWxfbW9kZShjdXJyZW50LCAgICAgICAg ICAgICAgICAgICBcCisgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgZ3Vlc3RfY3B1X3VzZXJfcmVncygpKSkgICAgXAorICAgICAgICAgPyBt Y19jb250aW51ZSA6IG1jX3ByZWVtcHQpCisKICNkZWZpbmUgZG9fbXVsdGlj YWxsX2NhbGwoX2NhbGwpICAgICAgICAgICAgICAgICAgICAgICAgICAgICBc Ci0gICAgZG8geyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgXAorICAgICh7ICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKICAgICAg ICAgX19hc21fXyBfX3ZvbGF0aWxlX18gKCAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICBcCiAgICAgICAgICAgICAiICAgIG1vdnEgICVjMSglMCks JSVyYXg7ICIgICAgICAgICAgICAgICAgICAgICAgXAogICAgICAgICAgICAg IiAgICBsZWFxICBoeXBlcmNhbGxfdGFibGUoJSVyaXApLCUlcmRpOyAiICAg ICAgIFwKQEAgLTM3LDkgKzUwLDExIEBACiAgICAgICAgICAgICAgIC8qIGFs bCB0aGUgY2FsbGVyLXNhdmVzIHJlZ2lzdGVycyAqLyAgICAgICAgICAgXAog ICAgICAgICAgICAgOiAicmF4IiwgInJjeCIsICJyZHgiLCAicnNpIiwgInJk aSIsICAgICAgICAgICAgIFwKICAgICAgICAgICAgICAgInI4IiwgICJyOSIs ICAicjEwIiwgInIxMSIgKTsgICAgICAgICAgICAgICAgICBcCi0gICAgfSB3 aGlsZSAoIDAgKQorICAgICAgICBtdWx0aWNhbGxfcmV0KF9jYWxsKTsgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKKyAgICB9KQogCiAjZGVm aW5lIGNvbXBhdF9tdWx0aWNhbGxfY2FsbChfY2FsbCkgICAgICAgICAgICAg ICAgICAgICAgICAgXAorICAgICh7ICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKICAgICAgICAgX19h c21fXyBfX3ZvbGF0aWxlX18gKCAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICBcCiAgICAgICAgICAgICAiICAgIG1vdmwgICVjMSglMCksJSVlYXg7 ICIgICAgICAgICAgICAgICAgICAgICAgXAogICAgICAgICAgICAgIiAgICBs ZWFxICBjb21wYXRfaHlwZXJjYWxsX3RhYmxlKCUlcmlwKSwlJXJkaTsgIlwK QEAgLTY3LDYgKzgyLDggQEAKICAgICAgICAgICAgICAgImkiICgtRU5PU1lT KSAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBcCiAgICAgICAg ICAgICAgIC8qIGFsbCB0aGUgY2FsbGVyLXNhdmVzIHJlZ2lzdGVycyAqLyAg ICAgICAgICAgXAogICAgICAgICAgICAgOiAicmF4IiwgInJjeCIsICJyZHgi LCAicnNpIiwgInJkaSIsICAgICAgICAgICAgIFwKLSAgICAgICAgICAgICAg InI4IiwgICJyOSIsICAicjEwIiwgInIxMSIgKSAgICAgICAgICAgICAgICAg ICBcCisgICAgICAgICAgICAgICJyOCIsICAicjkiLCAgInIxMCIsICJyMTEi ICk7ICAgICAgICAgICAgICAgICAgXAorICAgICAgICBtdWx0aWNhbGxfcmV0 KF9jYWxsKTsgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIFwKKyAg ICB9KQogCiAjZW5kaWYgLyogX19BU01fWDg2X01VTFRJQ0FMTF9IX18gKi8K --=separator Content-Type: application/octet-stream; name="xsa213-4.7.patch" Content-Disposition: attachment; filename="xsa213-4.7.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBtdWx0aWNhbGw6IGRlYWwgd2l0aCBlYXJseSBleGl0IGNvbmRpdGlvbnMK CkluIHBhcnRpY3VsYXIgY2hhbmdlcyB0byBndWVzdCBwcml2aWxlZ2UgbGV2 ZWwgcmVxdWlyZSB0aGUgbXVsdGljYWxsCnNlcXVlbmNlIHRvIGJlIGFib3J0 ZWQsIGFzIGh5cGVyY2FsbHMgYXJlIHBlcm1pdHRlZCBmcm9tIGtlcm5lbCBt b2RlCm9ubHkuIFdoaWxlIGxpa2VseSBub3QgdmVyeSB1c2VmdWwgaW4gYSBt dWx0aWNhbGwsIGFsc28gcHJvcGVybHkgaGFuZGxlCnRoZSByZXR1cm4gdmFs dWUgaW4gdGhlIEhZUEVSVklTT1JfaXJldCBjYXNlICh3aGljaCBzaG91bGQg YmUgdGhlIGd1ZXN0CnNwZWNpZmllZCB2YWx1ZSkuCgpUaGlzIGlzIFhTQS0y MTMuCgpSZXBvcnRlZC1ieTogSmFubiBIb3JuIDxqYW5uaEBnb29nbGUuY29t PgpTaWduZWQtb2ZmLWJ5OiBKYW4gQmV1bGljaCA8amJldWxpY2hAc3VzZS5j b20+ClJldmlld2VkLWJ5OiBBbmRyZXcgQ29vcGVyIDxhbmRyZXcuY29vcGVy M0BjaXRyaXguY29tPgpBY2tlZC1ieTogSnVsaWVuIEdyYWxsIDxqdWxpZW4u Z3JhbGxAYXJtLmNvbT4KCi0tLSBhL3hlbi9hcmNoL2FybS90cmFwcy5jCisr KyBiL3hlbi9hcmNoL2FybS90cmFwcy5jCkBAIC0xNTI5LDMwICsxNTI5LDMz IEBAIHN0YXRpYyBib29sX3QgY2hlY2tfbXVsdGljYWxsXzMyYml0X2NsZWEK ICAgICByZXR1cm4gdHJ1ZTsKIH0KIAotdm9pZCBkb19tdWx0aWNhbGxfY2Fs bChzdHJ1Y3QgbXVsdGljYWxsX2VudHJ5ICptdWx0aSkKK2VudW0gbWNfZGlz cG9zaXRpb24gZG9fbXVsdGljYWxsX2NhbGwoc3RydWN0IG11bHRpY2FsbF9l bnRyeSAqbXVsdGkpCiB7CiAgICAgYXJtX2h5cGVyY2FsbF9mbl90IGNhbGwg PSBOVUxMOwogCiAgICAgaWYgKCBtdWx0aS0+b3AgPj0gQVJSQVlfU0laRShh cm1faHlwZXJjYWxsX3RhYmxlKSApCiAgICAgewogICAgICAgICBtdWx0aS0+ cmVzdWx0ID0gLUVOT1NZUzsKLSAgICAgICAgcmV0dXJuOworICAgICAgICBy ZXR1cm4gbWNfY29udGludWU7CiAgICAgfQogCiAgICAgY2FsbCA9IGFybV9o eXBlcmNhbGxfdGFibGVbbXVsdGktPm9wXS5mbjsKICAgICBpZiAoIGNhbGwg PT0gTlVMTCApCiAgICAgewogICAgICAgICBtdWx0aS0+cmVzdWx0ID0gLUVO T1NZUzsKLSAgICAgICAgcmV0dXJuOworICAgICAgICByZXR1cm4gbWNfY29u dGludWU7CiAgICAgfQogCiAgICAgaWYgKCBpc18zMmJpdF9kb21haW4oY3Vy cmVudC0+ZG9tYWluKSAmJgogICAgICAgICAgIWNoZWNrX211bHRpY2FsbF8z MmJpdF9jbGVhbihtdWx0aSkgKQotICAgICAgICByZXR1cm47CisgICAgICAg IHJldHVybiBtY19jb250aW51ZTsKIAogICAgIG11bHRpLT5yZXN1bHQgPSBj YWxsKG11bHRpLT5hcmdzWzBdLCBtdWx0aS0+YXJnc1sxXSwKICAgICAgICAg ICAgICAgICAgICAgICAgICBtdWx0aS0+YXJnc1syXSwgbXVsdGktPmFyZ3Nb M10sCiAgICAgICAgICAgICAgICAgICAgICAgICAgbXVsdGktPmFyZ3NbNF0p OworCisgICAgcmV0dXJuIGxpa2VseSghcHNyX21vZGVfaXNfdXNlcihndWVz dF9jcHVfdXNlcl9yZWdzKCkpKQorICAgICAgICAgICA/IG1jX2NvbnRpbnVl IDogbWNfcHJlZW1wdDsKIH0KIAogLyoKLS0tIGEveGVuL2NvbW1vbi9tdWx0 aWNhbGwuYworKysgYi94ZW4vY29tbW9uL211bHRpY2FsbC5jCkBAIC00MCw2 ICs0MCw3IEBAIGRvX211bHRpY2FsbCgKICAgICBzdHJ1Y3QgbWNfc3RhdGUg Km1jcyA9ICZjdXJyZW50LT5tY19zdGF0ZTsKICAgICB1aW50MzJfdCAgICAg ICAgIGk7CiAgICAgaW50ICAgICAgICAgICAgICByYyA9IDA7CisgICAgZW51 bSBtY19kaXNwb3NpdGlvbiBkaXNwID0gbWNfY29udGludWU7CiAKICAgICBp ZiAoIHVubGlrZWx5KF9fdGVzdF9hbmRfc2V0X2JpdChfTUNTRl9pbl9tdWx0 aWNhbGwsICZtY3MtPmZsYWdzKSkgKQogICAgIHsKQEAgLTUwLDcgKzUxLDcg QEAgZG9fbXVsdGljYWxsKAogICAgIGlmICggdW5saWtlbHkoIWd1ZXN0X2hh bmRsZV9va2F5KGNhbGxfbGlzdCwgbnJfY2FsbHMpKSApCiAgICAgICAgIHJj ID0gLUVGQVVMVDsKIAotICAgIGZvciAoIGkgPSAwOyAhcmMgJiYgaSA8IG5y X2NhbGxzOyBpKysgKQorICAgIGZvciAoIGkgPSAwOyAhcmMgJiYgZGlzcCA9 PSBtY19jb250aW51ZSAmJiBpIDwgbnJfY2FsbHM7IGkrKyApCiAgICAgewog ICAgICAgICBpZiAoIGkgJiYgaHlwZXJjYWxsX3ByZWVtcHRfY2hlY2soKSAp CiAgICAgICAgICAgICBnb3RvIHByZWVtcHRlZDsKQEAgLTYzLDcgKzY0LDcg QEAgZG9fbXVsdGljYWxsKAogCiAgICAgICAgIHRyYWNlX211bHRpY2FsbF9j YWxsKCZtY3MtPmNhbGwpOwogCi0gICAgICAgIGRvX211bHRpY2FsbF9jYWxs KCZtY3MtPmNhbGwpOworICAgICAgICBkaXNwID0gZG9fbXVsdGljYWxsX2Nh bGwoJm1jcy0+Y2FsbCk7CiAKICNpZm5kZWYgTkRFQlVHCiAgICAgICAgIHsK QEAgLTc3LDcgKzc4LDE0IEBAIGRvX211bHRpY2FsbCgKICAgICAgICAgfQog I2VuZGlmCiAKLSAgICAgICAgaWYgKCB1bmxpa2VseShfX2NvcHlfZmllbGRf dG9fZ3Vlc3QoY2FsbF9saXN0LCAmbWNzLT5jYWxsLCByZXN1bHQpKSApCisg ICAgICAgIGlmICggdW5saWtlbHkoZGlzcCA9PSBtY19leGl0KSApCisgICAg ICAgIHsKKyAgICAgICAgICAgIGlmICggX19jb3B5X2ZpZWxkX3RvX2d1ZXN0 KGNhbGxfbGlzdCwgJm1jcy0+Y2FsbCwgcmVzdWx0KSApCisgICAgICAgICAg ICAgICAgLyogbm90aGluZywgYmVzdCBlZmZvcnQgb25seSAqLzsKKyAgICAg ICAgICAgIHJjID0gbWNzLT5jYWxsLnJlc3VsdDsKKyAgICAgICAgfQorICAg ICAgICBlbHNlIGlmICggdW5saWtlbHkoX19jb3B5X2ZpZWxkX3RvX2d1ZXN0 KGNhbGxfbGlzdCwgJm1jcy0+Y2FsbCwKKyAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICByZXN1bHQpKSApCiAgICAg ICAgICAgICByYyA9IC1FRkFVTFQ7CiAgICAgICAgIGVsc2UgaWYgKCBtY3Mt PmZsYWdzICYgTUNTRl9jYWxsX3ByZWVtcHRlZCApCiAgICAgICAgIHsKQEAg LTkzLDYgKzEwMSw5IEBAIGRvX211bHRpY2FsbCgKICAgICAgICAgICAgIGd1 ZXN0X2hhbmRsZV9hZGRfb2Zmc2V0KGNhbGxfbGlzdCwgMSk7CiAgICAgfQog CisgICAgaWYgKCB1bmxpa2VseShkaXNwID09IG1jX3ByZWVtcHQpICYmIGkg PCBucl9jYWxscyApCisgICAgICAgIGdvdG8gcHJlZW1wdGVkOworCiAgICAg cGVyZmNfaW5jcihjYWxsc190b19tdWx0aWNhbGwpOwogICAgIHBlcmZjX2Fk ZChjYWxsc19mcm9tX211bHRpY2FsbCwgaSk7CiAgICAgbWNzLT5mbGFncyA9 IDA7Ci0tLSBhL3hlbi9pbmNsdWRlL2FzbS1hcm0vbXVsdGljYWxsLmgKKysr IGIveGVuL2luY2x1ZGUvYXNtLWFybS9tdWx0aWNhbGwuaApAQCAtMSw3ICsx LDExIEBACiAjaWZuZGVmIF9fQVNNX0FSTV9NVUxUSUNBTExfSF9fCiAjZGVm aW5lIF9fQVNNX0FSTV9NVUxUSUNBTExfSF9fCiAKLWV4dGVybiB2b2lkIGRv X211bHRpY2FsbF9jYWxsKHN0cnVjdCBtdWx0aWNhbGxfZW50cnkgKmNhbGwp OworZXh0ZXJuIGVudW0gbWNfZGlzcG9zaXRpb24geworICAgIG1jX2NvbnRp bnVlLAorICAgIG1jX2V4aXQsCisgICAgbWNfcHJlZW1wdCwKK30gZG9fbXVs dGljYWxsX2NhbGwoc3RydWN0IG11bHRpY2FsbF9lbnRyeSAqY2FsbCk7CiAK ICNlbmRpZiAvKiBfX0FTTV9BUk1fTVVMVElDQUxMX0hfXyAqLwogLyoKLS0t IGEveGVuL2luY2x1ZGUvYXNtLXg4Ni9tdWx0aWNhbGwuaAorKysgYi94ZW4v aW5jbHVkZS9hc20teDg2L211bHRpY2FsbC5oCkBAIC03LDggKzcsMjEgQEAK IAogI2luY2x1ZGUgPHhlbi9lcnJuby5oPgogCitlbnVtIG1jX2Rpc3Bvc2l0 aW9uIHsKKyAgICBtY19jb250aW51ZSwKKyAgICBtY19leGl0LAorICAgIG1j X3ByZWVtcHQsCit9OworCisjZGVmaW5lIG11bHRpY2FsbF9yZXQoY2FsbCkg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgXAorICAgICh1bmxp a2VseSgoY2FsbCktPm9wID09IF9fSFlQRVJWSVNPUl9pcmV0KSAgICAgICAg ICAgICAgIFwKKyAgICAgPyBtY19leGl0ICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICBcCisgICAgICAgOiBsaWtlbHko Z3Vlc3Rfa2VybmVsX21vZGUoY3VycmVudCwgICAgICAgICAgICAgICAgICAg XAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIGd1ZXN0X2Nw dV91c2VyX3JlZ3MoKSkpICAgIFwKKyAgICAgICAgID8gbWNfY29udGludWUg OiBtY19wcmVlbXB0KQorCiAjZGVmaW5lIGRvX211bHRpY2FsbF9jYWxsKF9j YWxsKSAgICAgICAgICAgICAgICAgICAgICAgICAgICAgXAotICAgIGRvIHsg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgIFwKKyAgICAoeyAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICBcCiAgICAgICAgIF9fYXNtX18g X192b2xhdGlsZV9fICggICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg XAogICAgICAgICAgICAgIiAgICBtb3ZxICAlYzEoJTApLCUlcmF4OyAiICAg ICAgICAgICAgICAgICAgICAgIFwKICAgICAgICAgICAgICIgICAgbGVhcSAg aHlwZXJjYWxsX3RhYmxlKCUlcmlwKSwlJXJkaTsgIiAgICAgICBcCkBAIC0z Nyw5ICs1MCwxMSBAQAogICAgICAgICAgICAgICAvKiBhbGwgdGhlIGNhbGxl ci1zYXZlcyByZWdpc3RlcnMgKi8gICAgICAgICAgIFwKICAgICAgICAgICAg IDogInJheCIsICJyY3giLCAicmR4IiwgInJzaSIsICJyZGkiLCAgICAgICAg ICAgICBcCiAgICAgICAgICAgICAgICJyOCIsICAicjkiLCAgInIxMCIsICJy MTEiICk7ICAgICAgICAgICAgICAgICAgXAotICAgIH0gd2hpbGUgKCAwICkK KyAgICAgICAgbXVsdGljYWxsX3JldChfY2FsbCk7ICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICBcCisgICAgfSkKIAogI2RlZmluZSBjb21wYXRf bXVsdGljYWxsX2NhbGwoX2NhbGwpICAgICAgICAgICAgICAgICAgICAgICAg IFwKKyAgICAoeyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICBcCiAgICAgICAgIF9fYXNtX18gX192b2xh dGlsZV9fICggICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgXAogICAg ICAgICAgICAgIiAgICBtb3ZsICAlYzEoJTApLCUlZWF4OyAiICAgICAgICAg ICAgICAgICAgICAgIFwKICAgICAgICAgICAgICIgICAgbGVhcSAgY29tcGF0 X2h5cGVyY2FsbF90YWJsZSglJXJpcCksJSVyZGk7ICJcCkBAIC02Nyw2ICs4 Miw4IEBACiAgICAgICAgICAgICAgICJpIiAoLUVOT1NZUykgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgXAogICAgICAgICAgICAgICAvKiBh bGwgdGhlIGNhbGxlci1zYXZlcyByZWdpc3RlcnMgKi8gICAgICAgICAgIFwK ICAgICAgICAgICAgIDogInJheCIsICJyY3giLCAicmR4IiwgInJzaSIsICJy ZGkiLCAgICAgICAgICAgICBcCi0gICAgICAgICAgICAgICJyOCIsICAicjki LCAgInIxMCIsICJyMTEiICkgICAgICAgICAgICAgICAgICAgXAorICAgICAg ICAgICAgICAicjgiLCAgInI5IiwgICJyMTAiLCAicjExIiApOyAgICAgICAg ICAgICAgICAgIFwKKyAgICAgICAgbXVsdGljYWxsX3JldChfY2FsbCk7ICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICBcCisgICAgfSkKIAogI2Vu ZGlmIC8qIF9fQVNNX1g4Nl9NVUxUSUNBTExfSF9fICovCg== --=separator Content-Type: application/octet-stream; name="xsa213-4.8.patch" Content-Disposition: attachment; filename="xsa213-4.8.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiBtdWx0aWNhbGw6IGRlYWwgd2l0aCBlYXJseSBleGl0IGNvbmRpdGlvbnMK CkluIHBhcnRpY3VsYXIgY2hhbmdlcyB0byBndWVzdCBwcml2aWxlZ2UgbGV2 ZWwgcmVxdWlyZSB0aGUgbXVsdGljYWxsCnNlcXVlbmNlIHRvIGJlIGFib3J0 ZWQsIGFzIGh5cGVyY2FsbHMgYXJlIHBlcm1pdHRlZCBmcm9tIGtlcm5lbCBt b2RlCm9ubHkuIFdoaWxlIGxpa2VseSBub3QgdmVyeSB1c2VmdWwgaW4gYSBt dWx0aWNhbGwsIGFsc28gcHJvcGVybHkgaGFuZGxlCnRoZSByZXR1cm4gdmFs dWUgaW4gdGhlIEhZUEVSVklTT1JfaXJldCBjYXNlICh3aGljaCBzaG91bGQg YmUgdGhlIGd1ZXN0CnNwZWNpZmllZCB2YWx1ZSkuCgpUaGlzIGlzIFhTQS0y MTMuCgpSZXBvcnRlZC1ieTogSmFubiBIb3JuIDxqYW5uaEBnb29nbGUuY29t PgpTaWduZWQtb2ZmLWJ5OiBKYW4gQmV1bGljaCA8amJldWxpY2hAc3VzZS5j b20+ClJldmlld2VkLWJ5OiBBbmRyZXcgQ29vcGVyIDxhbmRyZXcuY29vcGVy M0BjaXRyaXguY29tPgpBY2tlZC1ieTogSnVsaWVuIEdyYWxsIDxqdWxpZW4u Z3JhbGxAYXJtLmNvbT4KCi0tLSBhL3hlbi9hcmNoL2FybS90cmFwcy5jCisr KyBiL3hlbi9hcmNoL2FybS90cmFwcy5jCkBAIC0xNTUwLDcgKzE1NTAsNyBA QCBzdGF0aWMgYm9vbF90IGNoZWNrX211bHRpY2FsbF8zMmJpdF9jbGVhCiAg ICAgcmV0dXJuIHRydWU7CiB9CiAKLXZvaWQgYXJjaF9kb19tdWx0aWNhbGxf Y2FsbChzdHJ1Y3QgbWNfc3RhdGUgKnN0YXRlKQorZW51bSBtY19kaXNwb3Np dGlvbiBhcmNoX2RvX211bHRpY2FsbF9jYWxsKHN0cnVjdCBtY19zdGF0ZSAq c3RhdGUpCiB7CiAgICAgc3RydWN0IG11bHRpY2FsbF9lbnRyeSAqbXVsdGkg PSAmc3RhdGUtPmNhbGw7CiAgICAgYXJtX2h5cGVyY2FsbF9mbl90IGNhbGwg PSBOVUxMOwpAQCAtMTU1OCwyMyArMTU1OCwyNiBAQCB2b2lkIGFyY2hfZG9f bXVsdGljYWxsX2NhbGwoc3RydWN0IG1jX3N0CiAgICAgaWYgKCBtdWx0aS0+ b3AgPj0gQVJSQVlfU0laRShhcm1faHlwZXJjYWxsX3RhYmxlKSApCiAgICAg ewogICAgICAgICBtdWx0aS0+cmVzdWx0ID0gLUVOT1NZUzsKLSAgICAgICAg cmV0dXJuOworICAgICAgICByZXR1cm4gbWNfY29udGludWU7CiAgICAgfQog CiAgICAgY2FsbCA9IGFybV9oeXBlcmNhbGxfdGFibGVbbXVsdGktPm9wXS5m bjsKICAgICBpZiAoIGNhbGwgPT0gTlVMTCApCiAgICAgewogICAgICAgICBt dWx0aS0+cmVzdWx0ID0gLUVOT1NZUzsKLSAgICAgICAgcmV0dXJuOworICAg ICAgICByZXR1cm4gbWNfY29udGludWU7CiAgICAgfQogCiAgICAgaWYgKCBp c18zMmJpdF9kb21haW4oY3VycmVudC0+ZG9tYWluKSAmJgogICAgICAgICAg IWNoZWNrX211bHRpY2FsbF8zMmJpdF9jbGVhbihtdWx0aSkgKQotICAgICAg ICByZXR1cm47CisgICAgICAgIHJldHVybiBtY19jb250aW51ZTsKIAogICAg IG11bHRpLT5yZXN1bHQgPSBjYWxsKG11bHRpLT5hcmdzWzBdLCBtdWx0aS0+ YXJnc1sxXSwKICAgICAgICAgICAgICAgICAgICAgICAgICBtdWx0aS0+YXJn c1syXSwgbXVsdGktPmFyZ3NbM10sCiAgICAgICAgICAgICAgICAgICAgICAg ICAgbXVsdGktPmFyZ3NbNF0pOworCisgICAgcmV0dXJuIGxpa2VseSghcHNy X21vZGVfaXNfdXNlcihndWVzdF9jcHVfdXNlcl9yZWdzKCkpKQorICAgICAg ICAgICA/IG1jX2NvbnRpbnVlIDogbWNfcHJlZW1wdDsKIH0KIAogLyoKLS0t IGEveGVuL2FyY2gveDg2L2h5cGVyY2FsbC5jCisrKyBiL3hlbi9hcmNoL3g4 Ni9oeXBlcmNhbGwuYwpAQCAtMjU1LDE1ICsyNTUsMTkgQEAgdm9pZCBwdl9o eXBlcmNhbGwoc3RydWN0IGNwdV91c2VyX3JlZ3MgKgogICAgIHBlcmZjX2lu Y3IoaHlwZXJjYWxscyk7CiB9CiAKLXZvaWQgYXJjaF9kb19tdWx0aWNhbGxf Y2FsbChzdHJ1Y3QgbWNfc3RhdGUgKnN0YXRlKQorZW51bSBtY19kaXNwb3Np dGlvbiBhcmNoX2RvX211bHRpY2FsbF9jYWxsKHN0cnVjdCBtY19zdGF0ZSAq c3RhdGUpCiB7Ci0gICAgaWYgKCAhaXNfcHZfMzJiaXRfdmNwdShjdXJyZW50 KSApCisgICAgc3RydWN0IHZjcHUgKmN1cnIgPSBjdXJyZW50OworICAgIHVu c2lnbmVkIGxvbmcgb3A7CisKKyAgICBpZiAoICFpc19wdl8zMmJpdF92Y3B1 KGN1cnIpICkKICAgICB7CiAgICAgICAgIHN0cnVjdCBtdWx0aWNhbGxfZW50 cnkgKmNhbGwgPSAmc3RhdGUtPmNhbGw7CiAKLSAgICAgICAgaWYgKCAoY2Fs bC0+b3AgPCBBUlJBWV9TSVpFKHB2X2h5cGVyY2FsbF90YWJsZSkpICYmCi0g ICAgICAgICAgICAgcHZfaHlwZXJjYWxsX3RhYmxlW2NhbGwtPm9wXS5uYXRp dmUgKQotICAgICAgICAgICAgY2FsbC0+cmVzdWx0ID0gcHZfaHlwZXJjYWxs X3RhYmxlW2NhbGwtPm9wXS5uYXRpdmUoCisgICAgICAgIG9wID0gY2FsbC0+ b3A7CisgICAgICAgIGlmICggKG9wIDwgQVJSQVlfU0laRShwdl9oeXBlcmNh bGxfdGFibGUpKSAmJgorICAgICAgICAgICAgIHB2X2h5cGVyY2FsbF90YWJs ZVtvcF0ubmF0aXZlICkKKyAgICAgICAgICAgIGNhbGwtPnJlc3VsdCA9IHB2 X2h5cGVyY2FsbF90YWJsZVtvcF0ubmF0aXZlKAogICAgICAgICAgICAgICAg IGNhbGwtPmFyZ3NbMF0sIGNhbGwtPmFyZ3NbMV0sIGNhbGwtPmFyZ3NbMl0s CiAgICAgICAgICAgICAgICAgY2FsbC0+YXJnc1szXSwgY2FsbC0+YXJnc1s0 XSwgY2FsbC0+YXJnc1s1XSk7CiAgICAgICAgIGVsc2UKQEAgLTI3NCwxNSAr Mjc4LDIxIEBAIHZvaWQgYXJjaF9kb19tdWx0aWNhbGxfY2FsbChzdHJ1Y3Qg bWNfc3QKICAgICB7CiAgICAgICAgIHN0cnVjdCBjb21wYXRfbXVsdGljYWxs X2VudHJ5ICpjYWxsID0gJnN0YXRlLT5jb21wYXRfY2FsbDsKIAotICAgICAg ICBpZiAoIChjYWxsLT5vcCA8IEFSUkFZX1NJWkUocHZfaHlwZXJjYWxsX3Rh YmxlKSkgJiYKLSAgICAgICAgICAgICBwdl9oeXBlcmNhbGxfdGFibGVbY2Fs bC0+b3BdLmNvbXBhdCApCi0gICAgICAgICAgICBjYWxsLT5yZXN1bHQgPSBw dl9oeXBlcmNhbGxfdGFibGVbY2FsbC0+b3BdLmNvbXBhdCgKKyAgICAgICAg b3AgPSBjYWxsLT5vcDsKKyAgICAgICAgaWYgKCAob3AgPCBBUlJBWV9TSVpF KHB2X2h5cGVyY2FsbF90YWJsZSkpICYmCisgICAgICAgICAgICAgcHZfaHlw ZXJjYWxsX3RhYmxlW29wXS5jb21wYXQgKQorICAgICAgICAgICAgY2FsbC0+ cmVzdWx0ID0gcHZfaHlwZXJjYWxsX3RhYmxlW29wXS5jb21wYXQoCiAgICAg ICAgICAgICAgICAgY2FsbC0+YXJnc1swXSwgY2FsbC0+YXJnc1sxXSwgY2Fs bC0+YXJnc1syXSwKICAgICAgICAgICAgICAgICBjYWxsLT5hcmdzWzNdLCBj YWxsLT5hcmdzWzRdLCBjYWxsLT5hcmdzWzVdKTsKICAgICAgICAgZWxzZQog ICAgICAgICAgICAgY2FsbC0+cmVzdWx0ID0gLUVOT1NZUzsKICAgICB9CiAj ZW5kaWYKKworICAgIHJldHVybiB1bmxpa2VseShvcCA9PSBfX0hZUEVSVklT T1JfaXJldCkKKyAgICAgICAgICAgPyBtY19leGl0CisgICAgICAgICAgIDog bGlrZWx5KGd1ZXN0X2tlcm5lbF9tb2RlKGN1cnIsIGd1ZXN0X2NwdV91c2Vy X3JlZ3MoKSkpCisgICAgICAgICAgICAgPyBtY19jb250aW51ZSA6IG1jX3By ZWVtcHQ7CiB9CiAKIC8qCi0tLSBhL3hlbi9jb21tb24vbXVsdGljYWxsLmMK KysrIGIveGVuL2NvbW1vbi9tdWx0aWNhbGwuYwpAQCAtNDAsNiArNDAsNyBA QCBkb19tdWx0aWNhbGwoCiAgICAgc3RydWN0IG1jX3N0YXRlICptY3MgPSAm Y3VycmVudC0+bWNfc3RhdGU7CiAgICAgdWludDMyX3QgICAgICAgICBpOwog ICAgIGludCAgICAgICAgICAgICAgcmMgPSAwOworICAgIGVudW0gbWNfZGlz cG9zaXRpb24gZGlzcCA9IG1jX2NvbnRpbnVlOwogCiAgICAgaWYgKCB1bmxp a2VseShfX3Rlc3RfYW5kX3NldF9iaXQoX01DU0ZfaW5fbXVsdGljYWxsLCAm bWNzLT5mbGFncykpICkKICAgICB7CkBAIC01MCw3ICs1MSw3IEBAIGRvX211 bHRpY2FsbCgKICAgICBpZiAoIHVubGlrZWx5KCFndWVzdF9oYW5kbGVfb2th eShjYWxsX2xpc3QsIG5yX2NhbGxzKSkgKQogICAgICAgICByYyA9IC1FRkFV TFQ7CiAKLSAgICBmb3IgKCBpID0gMDsgIXJjICYmIGkgPCBucl9jYWxsczsg aSsrICkKKyAgICBmb3IgKCBpID0gMDsgIXJjICYmIGRpc3AgPT0gbWNfY29u dGludWUgJiYgaSA8IG5yX2NhbGxzOyBpKysgKQogICAgIHsKICAgICAgICAg aWYgKCBpICYmIGh5cGVyY2FsbF9wcmVlbXB0X2NoZWNrKCkgKQogICAgICAg ICAgICAgZ290byBwcmVlbXB0ZWQ7CkBAIC02Myw3ICs2NCw3IEBAIGRvX211 bHRpY2FsbCgKIAogICAgICAgICB0cmFjZV9tdWx0aWNhbGxfY2FsbCgmbWNz LT5jYWxsKTsKIAotICAgICAgICBhcmNoX2RvX211bHRpY2FsbF9jYWxsKG1j cyk7CisgICAgICAgIGRpc3AgPSBhcmNoX2RvX211bHRpY2FsbF9jYWxsKG1j cyk7CiAKICNpZm5kZWYgTkRFQlVHCiAgICAgICAgIHsKQEAgLTc3LDcgKzc4 LDE0IEBAIGRvX211bHRpY2FsbCgKICAgICAgICAgfQogI2VuZGlmCiAKLSAg ICAgICAgaWYgKCB1bmxpa2VseShfX2NvcHlfZmllbGRfdG9fZ3Vlc3QoY2Fs bF9saXN0LCAmbWNzLT5jYWxsLCByZXN1bHQpKSApCisgICAgICAgIGlmICgg dW5saWtlbHkoZGlzcCA9PSBtY19leGl0KSApCisgICAgICAgIHsKKyAgICAg ICAgICAgIGlmICggX19jb3B5X2ZpZWxkX3RvX2d1ZXN0KGNhbGxfbGlzdCwg Jm1jcy0+Y2FsbCwgcmVzdWx0KSApCisgICAgICAgICAgICAgICAgLyogbm90 aGluZywgYmVzdCBlZmZvcnQgb25seSAqLzsKKyAgICAgICAgICAgIHJjID0g bWNzLT5jYWxsLnJlc3VsdDsKKyAgICAgICAgfQorICAgICAgICBlbHNlIGlm ICggdW5saWtlbHkoX19jb3B5X2ZpZWxkX3RvX2d1ZXN0KGNhbGxfbGlzdCwg Jm1jcy0+Y2FsbCwKKyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICByZXN1bHQpKSApCiAgICAgICAgICAgICByYyA9 IC1FRkFVTFQ7CiAgICAgICAgIGVsc2UgaWYgKCBtY3MtPmZsYWdzICYgTUNT Rl9jYWxsX3ByZWVtcHRlZCApCiAgICAgICAgIHsKQEAgLTkzLDYgKzEwMSw5 IEBAIGRvX211bHRpY2FsbCgKICAgICAgICAgICAgIGd1ZXN0X2hhbmRsZV9h ZGRfb2Zmc2V0KGNhbGxfbGlzdCwgMSk7CiAgICAgfQogCisgICAgaWYgKCB1 bmxpa2VseShkaXNwID09IG1jX3ByZWVtcHQpICYmIGkgPCBucl9jYWxscyAp CisgICAgICAgIGdvdG8gcHJlZW1wdGVkOworCiAgICAgcGVyZmNfaW5jcihj YWxsc190b19tdWx0aWNhbGwpOwogICAgIHBlcmZjX2FkZChjYWxsc19mcm9t X211bHRpY2FsbCwgaSk7CiAgICAgbWNzLT5mbGFncyA9IDA7Ci0tLSBhL3hl bi9pbmNsdWRlL3hlbi9tdWx0aWNhbGwuaAorKysgYi94ZW4vaW5jbHVkZS94 ZW4vbXVsdGljYWxsLmgKQEAgLTI0LDYgKzI0LDEwIEBAIHN0cnVjdCBtY19z dGF0ZSB7CiAgICAgfTsKIH07CiAKLXZvaWQgYXJjaF9kb19tdWx0aWNhbGxf Y2FsbChzdHJ1Y3QgbWNfc3RhdGUgKm1jKTsKK2VudW0gbWNfZGlzcG9zaXRp b24geworICAgIG1jX2NvbnRpbnVlLAorICAgIG1jX2V4aXQsCisgICAgbWNf cHJlZW1wdCwKK30gYXJjaF9kb19tdWx0aWNhbGxfY2FsbChzdHJ1Y3QgbWNf c3RhdGUgKm1jKTsKIAogI2VuZGlmIC8qIF9fWEVOX01VTFRJQ0FMTF9IX18g Ki8K --=separator Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KWGVuLWFubm91 bmNlIG1haWxpbmcgbGlzdApYZW4tYW5ub3VuY2VAbGlzdHMueGVuLm9yZwpodHRwczovL2xpc3Rz Lnhlbi5vcmcveGVuLWFubm91bmNl --=separator-- From xen-announce-bounces@lists.xen.org Fri May 12 10:46:36 2017 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Fri, 12 May 2017 10:46:36 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d9851-00081r-9R; Fri, 12 May 2017 10:45:51 +0000 Received: from mail6.bemta6.messagelabs.com ([193.109.254.103]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d9850-00080o-1n; Fri, 12 May 2017 10:45:50 +0000 Received: from [85.158.143.35] by server-8.bemta-6.messagelabs.com id 0E/2F-03696-D5295195; Fri, 12 May 2017 10:45:49 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrKIsWRWlGSWpSXmKPExsWS0XRdVTdmkmi kwawdPBa3brYyWyz5uJjFYtXVA6wOzB5Hd/9mCmCMYs3MS8qvSGDNOL5gFVPBW+OKvytmsjYw ntPrYuTiEBI4zihxqf8CC4SziFFi1rVlbF2MnBzMAq4SN/ZthrIVJS7ca2ABsXkFBCVOznwCZ ksIaErcebOKHcQWESiS2HnuJZjNJqAnMffsJCaIXh2Jl/tXg9nCAlkSh9/sh5pjJvGg9yVYnE VAVWLlo21MExh5ZiFZPQvJ6llIVs9i5ACKa0qs36UPYUpLLP/HAVEtL7H97RxmCNta4u/dz1B TLCT+79vODDNxSvdD9gWMnKsYNYpTi8pSi3QNjfWSijLTM0pyEzNzdA0NzPRyU4uLE9NTcxKT ivWS83M3MQIDnAEIdjB+WRZwiFGSg0lJlPcSq2ikEF9SfkplRmJxRnxRaU5q8SFGDQ4Ogb41q y8wSrHk5eelKknwmk4EqhMsSk1PrUjLzAHGIEypBAePkghvF0iat7ggMbc4Mx0idYrRmOPc3H fvmThuLPj6nkkIbJKUOC8/SKkASGlGaR7cIFhquMQoKyXMywh0phBPQWpRbmYJqvwrRnEORiV hXlmQKTyZeSVw+14BncIEdEr/H2GQU0oSEVJSDYx6v7WbLoWI2N7Qy7pZ7n1tYYxpru2MHyek bn3TjDyS/XGjiLPHKt2tcsF745+uP7TVxKSoNTeTuT0ryOGk+4O6bZENC75o+z58L+L4tnjPs oi1v5l2fMsxi3lp+Tz+wobHBit4JknuUPNdffnvhZ1pd8KLlklUH1UzuzPvWn4/Y5+Vk13p5e 9KLMUZiYZazEXFiQD5pIxzCAMAAA== X-Env-Sender: iwj@xenbits.xen.org X-Msg-Ref: server-6.tower-21.messagelabs.com!1494585947!45086562!1 X-Originating-IP: [104.130.215.37] X-SpamReason: No, hits=0.5 required=7.0 tests=BODY_RANDOM_LONG X-StarScan-Received: X-StarScan-Version: 9.4.12; banners=-,-,- X-VirusChecked: Checked Received: (qmail 56650 invoked from network); 12 May 2017 10:45:48 -0000 Received: from mail.xenproject.org (HELO mail.xenproject.org) (104.130.215.37) by server-6.tower-21.messagelabs.com with AES128-GCM-SHA256 encrypted SMTP; 12 May 2017 10:45:48 -0000 Received: from xenbits.xenproject.org ([104.239.192.120]) by mail.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1d984g-0007gd-EM; Fri, 12 May 2017 10:45:30 +0000 Received: from iwj by xenbits.xenproject.org with local (Exim 4.84_2) (envelope-from ) id 1d984g-00074N-Bd; Fri, 12 May 2017 10:45:30 +0000 Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.505 (Entity 5.505) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Message-Id: Date: Fri, 12 May 2017 10:45:30 +0000 Cc: "Xen.org security team" Subject: [Xen-announce] Xen Security Advisory 214 (CVE-2017-8904) - grant transfer allows PV guest to elevate privileges X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Errors-To: xen-announce-bounces@lists.xen.org Sender: "Xen-announce" --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Xen Security Advisory CVE-2017-8904 / XSA-214 version 3 grant transfer allows PV guest to elevate privileges UPDATES IN VERSION 3 ==================== CVE assigned. ISSUE DESCRIPTION ================= The GNTTABOP_transfer operation allows one guest to transfer a page to another guest. The internal processing of this, however, does not include zapping the previous type of the page being transferred. This makes it possible for a PV guest to transfer a page previously used as part of a segment descriptor table to another guest while retaining the "contains segment descriptors" property. If the destination guest is a PV one of different bitness, it may gain access to segment descriptors it is not normally allowed to have, like 64-bit code segments in a 32-bit PV guest. If the destination guest is a HVM one, that guest may freely alter the page contents and then hand the page back to the same or another PV guest. In either case, if the destination PV guest then inserts that page into one of its own descriptor tables, the page still having the designated type results in validation of its contents being skipped. IMPACT ====== A malicious pair of guests may be able to access all of system memory, allowing for all of privilege escalation, host crashes, and information leaks. VULNERABLE SYSTEMS ================== All Xen versions are vulnerable. Only x86 systems are affected. ARM systems are not vulnerable. MITIGATION ========== Running only one out of the three relevant classes of guest (namely: 32-bit PV; 64-bit PV; HVM) on any given host will avoid the vulnerability. (Note that this must also include any nonprivileged service domains such as stub device model domains.) The vulnerability can also be avoided if all guest kernels are controlled by the host rather than guest administrator, provided that further steps are taken to prevent the guest administrator from loading code into the kernel (e.g. by disabling loadable modules etc) or from using other mechanisms which allow them to run code at kernel privilege. CREDITS ======= This issue was discovered by Jann Horn of Google Project Zero. RESOLUTION ========== Applying the attached patch resolves this issue. xsa124.patch xen-unstable, Xen 4.8.x, 4.7.x, 4.6.x, 4.5.x $ sha256sum xsa214* 1c038c3927d08e6abdf3ce320bb8b0b68a106e6ac86b4e8194035dc5e4726d64 xsa214.patch $ DEPLOYMENT DURING EMBARGO ========================= Deployment of the patches and/or mitigations described above (or others which are substantially similar) is permitted during the embargo, even on public-facing systems with untrusted guest users and administrators. But: Distribution of updated software is prohibited (except to other members of the predisclosure list). Predisclosure list members who wish to deploy significantly different patches and/or mitigations, please contact the Xen Project Security Team. (Note: this during-embargo deployment notice is retained in post-embargo publicly released Xen Project advisories, even though it is then no longer applicable. This is to enable the community to have oversight of the Xen Project Security Team's decisionmaking.) For more information about permissible uses of embargoed information, consult the Xen Project community's agreed Security Policy: http://www.xenproject.org/security-policy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEcBAEBCAAGBQJZFZIpAAoJEIP+FMlX6CvZHfsH+wdMlBxYgNB8pf405BLp6Jxy rv/8/cZjOYvIfHL3L4DnwROJ351AC4G3Yja1PqCl6/XFCuMYLIWlYknFAjE4kPTf lvvjYiogMR9SD60odieh5fqZdEBq2jIAD6h0Wn2klb5B3U3T5DdIgOOGnhz+OqX7 /clQEWJsDD9sVmEO46weZxgIiOkTLyBBbrXE3+y4qdwEbo+yhLkFj7nKpA+v8NxZ heOKALALSW7OtYy2Zr2B4+n1FQyeqsyovl3YPK4MKB5BYDBboDUBuPn2YCYCa4JY UBIL4ZsWsqBUouVqccVvOUIF1PMr8lyB7+xopSOTC23/pTrT3gAetKUVxxB6uqI= =CGId -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa214.patch" Content-Disposition: attachment; filename="xsa214.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiB4ODY6IGRpc2NhcmQgdHlwZSBpbmZvcm1hdGlvbiB3aGVuIHN0ZWFsaW5n IHBhZ2VzCgpXaGlsZSBhIHBhZ2UgaGF2aW5nIGp1c3QgYSBzaW5nbGUgZ2Vu ZXJhbCByZWZlcmVuY2UgbGVmdCBuZWNlc3NhcmlseQpoYXMgYSB6ZXJvIHR5 cGUgcmVmZXJlbmNlIGNvdW50IHRvbywgaXRzIHR5cGUgbWF5IHN0aWxsIGJl IHZhbGlkIChhbmQKaW4gdmFsaWRhdGVkIHN0YXRlOyBhdCBwcmVzZW50IHRo aXMgaXMgb25seSBwb3NzaWJsZSBhbmQgcmVsZXZhbnQgZm9yClBHVF9zZWdf ZGVzY19wYWdlLCBhcyBwYWdlIHRhYmxlcyBoYXZlIHRoZWlyIHR5cGUgZm9y Y2libHkgemFwcGVkIHdoZW4KdGhlaXIgdHlwZSByZWZlcmVuY2UgY291bnQg ZHJvcHMgdG8gemVybywgYW5kClBHVF97d3JpdGFibGUsc2hhcmVkfV9wYWdl IHBhZ2VzIGRvbid0IHJlcXVpcmUgYW55IHZhbGlkYXRpb24pLiBJbgpzdWNo IGEgY2FzZSB3aGVuIHRoZSBwYWdlIGlzIGJlaW5nIHJlLXVzZWQgd2l0aCB0 aGUgc2FtZSB0eXBlIGFnYWluLAp2YWxpZGF0aW9uIGlzIGJlaW5nIHNraXBw ZWQuIEFzIHZhbGlkYXRpb24gY3JpdGVyaWEgZGlmZmVyIGJldHdlZW4KMzIt IGFuZCA2NC1iaXQgZ3Vlc3RzLCBwYWdlcyB0byBiZSB0cmFuc2ZlcnJlZCBi ZXR3ZWVuIGd1ZXN0cyBuZWVkIHRvCmhhdmUgdGhlaXIgdmFsaWRhdGlvbiBp bmRpY2F0b3IgemFwcGVkIChhbmQgd2l0aCBpdCB3ZSB6YXAgYWxsIG90aGVy CnR5cGUgaW5mb3JtYXRpb24gYXQgb25jZSkuCgpUaGlzIGlzIFhTQS0yMTQu CgpSZXBvcnRlZC1ieTogSmFubiBIb3JuIDxqYW5uaEBnb29nbGUuY29tPgpT aWduZWQtb2ZmLWJ5OiBKYW4gQmV1bGljaCA8amJldWxpY2hAc3VzZS5jb20+ ClJldmlld2VkLWJ5OiBBbmRyZXcgQ29vcGVyIDxhbmRyZXcuY29vcGVyM0Bj aXRyaXguY29tPgoKLS0tIGEveGVuL2FyY2gveDg2L21tLmMKKysrIGIveGVu L2FyY2gveDg2L21tLmMKQEAgLTQ0NjYsNiArNDQ2NiwxNyBAQCBpbnQgc3Rl YWxfcGFnZSgKICAgICAgICAgeSA9IGNtcHhjaGcoJnBhZ2UtPmNvdW50X2lu Zm8sIHgsIHggJiB+UEdDX2NvdW50X21hc2spOwogICAgIH0gd2hpbGUgKCB5 ICE9IHggKTsKIAorICAgIC8qCisgICAgICogV2l0aCB0aGUgc29sZSByZWZl cmVuY2UgZHJvcHBlZCB0ZW1wb3JhcmlseSwgbm8tb25lIGNhbiB1cGRhdGUg dHlwZQorICAgICAqIGluZm9ybWF0aW9uLiBUeXBlIGNvdW50IGFsc28gbmVl ZHMgdG8gYmUgemVybyBpbiB0aGlzIGNhc2UsIGJ1dCBlLmcuCisgICAgICog UEdUX3NlZ19kZXNjX3BhZ2UgbWF5IHN0aWxsIGhhdmUgUEdUX3ZhbGlkYXRl ZCBzZXQsIHdoaWNoIHdlIG5lZWQgdG8KKyAgICAgKiBjbGVhciBiZWZvcmUg dHJhbnNmZXJyaW5nIG93bmVyc2hpcCAoYXMgdmFsaWRhdGlvbiBjcml0ZXJp YSB2YXJ5CisgICAgICogZGVwZW5kaW5nIG9uIGRvbWFpbiB0eXBlKS4KKyAg ICAgKi8KKyAgICBCVUdfT04ocGFnZS0+dS5pbnVzZS50eXBlX2luZm8gJiAo UEdUX2NvdW50X21hc2sgfCBQR1RfbG9ja2VkIHwKKyAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgUEdUX3Bpbm5lZCkpOworICAgIHBh Z2UtPnUuaW51c2UudHlwZV9pbmZvID0gMDsKKwogICAgIC8qIFN3aXp6bGUg dGhlIG93bmVyIHRoZW4gcmVpbnN0YXRlIHRoZSBQR0NfYWxsb2NhdGVkIHJl ZmVyZW5jZS4gKi8KICAgICBwYWdlX3NldF9vd25lcihwYWdlLCBOVUxMKTsK ICAgICB5ID0gcGFnZS0+Y291bnRfaW5mbzsK --=separator Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KWGVuLWFubm91 bmNlIG1haWxpbmcgbGlzdApYZW4tYW5ub3VuY2VAbGlzdHMueGVuLm9yZwpodHRwczovL2xpc3Rz Lnhlbi5vcmcveGVuLWFubm91bmNl --=separator-- From xen-announce-bounces@lists.xen.org Wed May 17 07:45:59 2017 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Wed, 17 May 2017 07:45:59 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1dAtdb-0002Qa-5D; Wed, 17 May 2017 07:44:51 +0000 Received: from mail6.bemta6.messagelabs.com ([193.109.254.103]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1dAtbA-0002EM-AU; Wed, 17 May 2017 07:42:20 +0000 Received: from [193.109.254.147] by server-4.bemta-6.messagelabs.com id 04/F5-02956-BDEFB195; Wed, 17 May 2017 07:42:19 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFlrEIsWRWlGSWpSXmKPExsVysyfVTffWP+l Ig/3bdCxmb2xjtvi+ZTKTxbt9f5kdmD0Of7jCEsAYxZqZl5RfkcCa8ebAU/aC6SwVR47tY2pg vMbcxcjFISSwmVHi9uV9TBDOUkaJiXcus3QxcnCICBRJTFgV0cXIycEsoCbRdfYTG4jNJqApc efzJyYQW1hARGLP9g8sIDavgJXEt31nGEFsFgFViaNnn7GC2KIC4RJvG49A1QhKnJz5hAVipr rEn3mXmCFseYntb+cwT2DkmYWkbBaSsllIyhYwMq9i1ChOLSpLLdI1NNRLKspMzyjJTczM0TU 0MNPLTS0uTkxPzUlMKtZLzs/dxAgMKQYg2MH4aVnAIUZJDiYlUd79D6QjhfiS8lMqMxKLM+KL SnNSiw8xynBwKEnwdv8FygkWpaanVqRl5gCDGyYtwcGjJMJ7BCTNW1yQmFucmQ6ROsVozPFu6 Yf3TBxz7n19zyTEkpeflyolzhsNUioAUppRmgc3CBZ1lxhlpYR5GYFOE+IpSC3KzSxBlX/FKM 7BqCTMewpkCk9mXgncvldApzABndL8AOyUkkSElFQDo5GmiibXJZHejWtDF06o9V8qcnC5t9D 3KXLSKSUnXd3+nv8s0MTxPTpj6Xn/F31tH7hn9lrfEko4v+Dt7ymTpE8r3WH7YVXwt2BbMUNk 9JmK5mVainOqNF56bKj+xG4mx2Np1bXadL25c2MgC9/ZS44X5n7XutyS3XSlQmDujck3nu4TW 7RjqhJLcUaioRZzUXEiAAjTczK1AgAA X-Env-Sender: julien.grall@arm.com X-Msg-Ref: server-14.tower-27.messagelabs.com!1495006938!90288067!1 X-Originating-IP: [217.140.101.70] X-SpamReason: No, hits=0.0 required=7.0 tests= X-StarScan-Received: X-StarScan-Version: 9.4.12; banners=-,-,- X-VirusChecked: Checked Received: (qmail 759 invoked from network); 17 May 2017 07:42:18 -0000 Received: from foss.arm.com (HELO foss.arm.com) (217.140.101.70) by server-14.tower-27.messagelabs.com with SMTP; 17 May 2017 07:42:18 -0000 Received: from usa-sjc-imap-foss1.foss.arm.com (unknown [10.72.51.249]) by usa-sjc-mx-foss1.foss.arm.com (Postfix) with ESMTP id A25521516; Wed, 17 May 2017 00:42:17 -0700 (PDT) Received: from [10.37.9.246] (unknown [10.37.9.246]) by usa-sjc-imap-foss1.foss.arm.com (Postfix) with ESMTPSA id 909193F575; Wed, 17 May 2017 00:42:16 -0700 (PDT) To: xen-devel , xen-announce@lists.xenproject.org, xen-users@lists.xenproject.org From: Julien Grall Message-ID: <2827b0cd-0e48-0766-658f-1e8f22a0da71@arm.com> Date: Wed, 17 May 2017 08:42:11 +0100 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.8.0 MIME-Version: 1.0 X-Mailman-Approved-At: Wed, 17 May 2017 07:44:49 +0000 Cc: Lars Kurth Subject: [Xen-announce] Xen 4.9 rc5 X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: xen-announce-bounces@lists.xen.org Sender: "Xen-announce" SGkgYWxsLAoKWGVuIDQuOSByYzUgaXMgdGFnZ2VkLiBZb3UgY2FuIGNoZWNrIHRoYXQgb3V0IGZy b20geGVuLmdpdDoKCiBnaXQ6Ly94ZW5iaXRzLnhlbi5vcmcveGVuLmdpdCA0LjkuMC1yYzUKCkZv ciB5b3VyIGNvbnZlbmllbmNlIHRoZXJlIGlzIGFsc28gYSB0YXJiYWxsIGF0OgpodHRwczovL2Rv d25sb2Fkcy54ZW5wcm9qZWN0Lm9yZy9yZWxlYXNlL3hlbi80LjkuMC1yYzUveGVuLTQuOS4wLXJj NS50YXIuZ3oKCkFuZCB0aGUgc2lnbmF0dXJlIGlzIGF0OgpodHRwczovL2Rvd25sb2Fkcy54ZW5w cm9qZWN0Lm9yZy9yZWxlYXNlL3hlbi80LjkuMC1yYzUveGVuLTQuOS4wLXJjNS50YXIuZ3ouc2ln CgpQbGVhc2Ugc2VuZCBidWcgcmVwb3J0cyBhbmQgdGVzdCByZXBvcnRzIHRvCnhlbi1kZXZlbEBs aXN0cy54ZW5wcm9qZWN0Lm9yZy4gV2hlbiBzZW5kaW5nIGJ1ZyByZXBvcnRzLCBwbGVhc2UgQ0MK cmVsZXZhbnQgbWFpbnRhaW5lcnMgYW5kIG1lIChqdWxpZW4uZ3JhbGxAYXJtLmNvbSkuCgpDaGVl cnMsCgotLSAKSnVsaWVuIEdyYWxsCgpfX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19f X19fX19fX19fX19fXwpYZW4tYW5ub3VuY2UgbWFpbGluZyBsaXN0Clhlbi1hbm5vdW5jZUBsaXN0 cy54ZW4ub3JnCmh0dHBzOi8vbGlzdHMueGVuLm9yZy94ZW4tYW5ub3VuY2U= From xen-announce-bounces@lists.xen.org Mon May 22 18:12:47 2017 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Mon, 22 May 2017 18:12:47 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1dCro7-0001H9-IP; Mon, 22 May 2017 18:11:51 +0000 Received: from mail6.bemta3.messagelabs.com ([195.245.230.39]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1dCrmE-0000aY-75; Mon, 22 May 2017 18:09:54 +0000 Received: from [85.158.137.68] by server-17.bemta-3.messagelabs.com id AD/B0-02955-17923295; Mon, 22 May 2017 18:09:53 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFprJIsWRWlGSWpSXmKPExsVysyfVTbdAUzn SYPkOOYvZG9uYLb5vmczkwORx+MMVlgDGKNbMvKT8igTWjEfX3jIVfOasmPluCUsD42WOLkYu DiGBTYwSnR8aGCGc3YwSO5bMZ+9i5ORgE9CUuPP5ExOILSwgInF0Rx8LSJGIQDujxKzvTWBFz ALGEkd2Pgcr4hWwknjZ85cVxGYRUJX4sOE4WI2oQLjE28YjLBA1ghInZz5hgehVl/gz7xIzhC 0vsf3tHOYJjDyzkJTNQlI2C0nZAkbmVYwaxalFZalFuoZGeklFmekZJbmJmTm6hgbGermpxcW J6ak5iUnFesn5uZsYgcHEAAQ7GF91Ox9ilORgUhLlPfpGKVKILyk/pTIjsTgjvqg0J7X4EKMM B4eSBO8pdeVIIcGi1PTUirTMHGBYw6QlOHiURHilNYDSvMUFibnFmekQqVOMuhzvln54zyTEk peflyolztsHMkMApCijNA9uBCzGLjHKSgnzMgIdJcRTkFqUm1mCKv+KUZyDUUmY1xtkFU9mXg ncpldARzABHWH9TB7kiJJEhJRUA+O8L5s/OIQpfixK2hL2JS/U86Dyo1se97Mva6i6zHLMvat 0JlvouWeDsbXYghNzVm+uYj437fL3bx57t3g2cyU56ZY5TXp8rPLEft4ndRe5fnu8XeGxaU+J /66EWOYchg/PlI77ZZiHL9iwPVpvd7at595tufMaZaKDthzZE3za1vjwufXrbhxVYinOSDTUY i4qTgQAFdycdKwCAAA= X-Env-Sender: julien.grall@arm.com X-Msg-Ref: server-2.tower-31.messagelabs.com!1495476591!90190445!1 X-Originating-IP: [217.140.101.70] X-SpamReason: No, hits=0.0 required=7.0 tests= X-StarScan-Received: X-StarScan-Version: 9.4.12; banners=-,-,- X-VirusChecked: Checked Received: (qmail 16433 invoked from network); 22 May 2017 18:09:52 -0000 Received: from foss.arm.com (HELO foss.arm.com) (217.140.101.70) by server-2.tower-31.messagelabs.com with SMTP; 22 May 2017 18:09:52 -0000 Received: from usa-sjc-imap-foss1.foss.arm.com (unknown [10.72.51.249]) by usa-sjc-mx-foss1.foss.arm.com (Postfix) with ESMTP id 5171F80D; Mon, 22 May 2017 11:09:51 -0700 (PDT) Received: from [10.1.206.53] (e108454-lin.cambridge.arm.com [10.1.206.53]) by usa-sjc-imap-foss1.foss.arm.com (Postfix) with ESMTPSA id 82FB33F7D7; Mon, 22 May 2017 11:09:50 -0700 (PDT) From: Julien Grall To: "xen-users@lists.xen.org" , xen-announce@lists.xenproject.org, xen-devel Message-ID: <4742daab-d571-f4e6-3339-ba0b9f16291c@arm.com> Date: Mon, 22 May 2017 19:09:49 +0100 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.8.0 MIME-Version: 1.0 X-Mailman-Approved-At: Mon, 22 May 2017 18:11:50 +0000 Cc: "lars.kurth@citrix.com" Subject: [Xen-announce] Xen 4.9 rc6 X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: xen-announce-bounces@lists.xen.org Sender: "Xen-announce" SGkgYWxsLAoKWGVuIDQuOSByYzYgaXMgdGFnZ2VkLiBZb3UgY2FuIGNoZWNrIHRoYXQgb3V0IGZy b20geGVuLmdpdDoKCiBnaXQ6Ly94ZW5iaXRzLnhlbi5vcmcveGVuLmdpdCA0LjkuMC1yYzYKCkZv ciB5b3VyIGNvbnZlbmllbmNlIHRoZXJlIGlzIGFsc28gYSB0YXJiYWxsIGF0OgpodHRwczovL2Rv d25sb2Fkcy54ZW5wcm9qZWN0Lm9yZy9yZWxlYXNlL3hlbi80LjkuMC1yYzYveGVuLTQuOS4wLXJj Ni50YXIuZ3oKCkFuZCB0aGUgc2lnbmF0dXJlIGlzIGF0OgpodHRwczovL2Rvd25sb2Fkcy54ZW5w cm9qZWN0Lm9yZy9yZWxlYXNlL3hlbi80LjkuMC1yYzYveGVuLTQuOS4wLXJjNi50YXIuZ3ouc2ln CgpQbGVhc2Ugc2VuZCBidWcgcmVwb3J0cyBhbmQgdGVzdCByZXBvcnRzIHRvIHhlbi1kZXZlbEBs aXN0cy54ZW5wcm9qZWN0Lm9yZy4KV2hlbiBzZW5kaW5nIGJ1ZyByZXBvcnRzLCBwbGVhc2UgQ0Mg cmVsZXZhbnQgbWFpbnRhaW5lcnMgYW5kIG1lIChqdWxpZW4uZ3JhbGxAYXJtLmNvbSkuCgpXZSBh cmUgYXdhcmUgb2YgYnVncyBiZWxvdzoKCS0gUmVjZW50IHBhdGNoZXMgaW50cm9kdWNlZCBhIHJl Z3Jlc3Npb24gaW4gdGhlIGJ1aWxkLiBTb21lIHRhcmdldHMKCShlLmcgaW5zdGFsbC10b29scykg d2lsbCBub3QgaW5zdGFsbCB0aGUgaGVhZGVycy4gQSBwYXRjaCBoYXMgYmVlbiBzZW50CglvbiB0 aGUgbWFpbGluZyBsaXN0IChzZWUgWzFdKS4gQSBrbm93biB3b3JrYXJvdW5kIGlzIHRvIGNhbGwg YG1ha2VgLgoJLSBIVk1fc2V0X2h2bV9wYXJhbSBhbmQgSFZNT1BfZmx1c2hfdGxicyBtYXkgZmFp bCBpZiByZXF1aXJpbmcgY29udGludWF0aW9uLgoJQSBwYXRjaCBoYXMgYmVlbiBzZW50IG9uIHRo ZSBtYWlsaW5nIGxpc3QgKHNlZSBbMl0pLgoKCkFzIGEgcmVtaW5kZXIsIHRoZXJlIHdpbGwgYmUg YW5vdGhlciBYZW4gVGVzdCBEYXkgdG9tb3Jyb3cgKFR1ZXNkYXkgMjN0aCBNYXkpLApmb3IgdGhl IGluc3RydWN0aW9ucyBzZWU6CgpodHRwczovL2Jsb2cueGVucHJvamVjdC5vcmcvMjAxNy8wNC8x My9hbm5vdW5jaW5nLXhlbi1wcm9qZWN0LTQtOS1yYy1hbmQtdGVzdC1kYXktc2NoZWR1bGUvCgpD aGVlcnMsCgpbMV0gaHR0cHM6Ly9saXN0cy54ZW5wcm9qZWN0Lm9yZy9hcmNoaXZlcy9odG1sL3hl bi1kZXZlbC8yMDE3LTA1L21zZzAyMTY1Lmh0bWwKWzJdIGh0dHBzOi8vbGlzdHMueGVucHJvamVj dC5vcmcvYXJjaGl2ZXMvaHRtbC94ZW4tZGV2ZWwvMjAxNy0wNS9tc2cwMjEwOC5odG1sCgotLSAK SnVsaWVuIEdyYWxsCgpfX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19f X19fXwpYZW4tYW5ub3VuY2UgbWFpbGluZyBsaXN0Clhlbi1hbm5vdW5jZUBsaXN0cy54ZW4ub3Jn Cmh0dHBzOi8vbGlzdHMueGVuLm9yZy94ZW4tYW5ub3VuY2U= From xen-announce-bounces@lists.xen.org Thu May 25 15:11:25 2017 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Thu, 25 May 2017 15:11:25 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1dDuPD-0005WX-2h; Thu, 25 May 2017 15:10:27 +0000 Received: from mail6.bemta3.messagelabs.com ([195.245.230.39]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1dDuOZ-0004w9-Vp; Thu, 25 May 2017 15:09:48 +0000 Received: from [85.158.137.68] by server-16.bemta-3.messagelabs.com id 31/5F-29088-9B3F6295; Thu, 25 May 2017 15:09:45 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFnrCIsWRWlGSWpSXmKPExsXiVRvkorvjs1q kwfGPChYrey4yW/S23mWx+LM40WL2xjZmi+9bJjNZvNv3l9mBzePwhyssAYxRrJl5SfkVCawZ v/o6WAs28VUsOvuPrYFxLU8XIyeHkECxRM/sK6xdjFwcLAINrBLTu74ygjgSAnNYJXZcWMkKU iUhkCSxcckWRgi7UuL1l7tsEN3qEvcW3WYHaRASmMYkcXDhRmaQBJuAtsSmGw/AbGagoj/zLk HZ2hLLFr5mBmkQFljAKDHlxF52kASvgI3E7DWfwWwWAVWJBe2XwM4QEVjJJHH/1Ec2iCI9iVe 3LkOdJCux+/cjpgmMArOQLJmFZMksJC0LGJlXMWoUpxaVpRbpGpnrJRVlpmeU5CZm5ugaGhjr 5aYWFyemp+YkJhXrJefnbmIEhnU9AwPjDsaWvX6HGCU5mJREecXnqkUK8SXlp1RmJBZnxBeV5 qQWH2KU4eBQkuBt/QSUEyxKTU+tSMvMAUYYTFqCg0dJhNcUJM1bXJCYW5yZDpE6xWjMsWH1+i 9MHJMObP/CJMSSl5+XKiXOuwSkVACkNKM0D24QLPIvMcpKCfMyMjAwCPEUpBblZpagyr9iFOd gVBLm3QEyhSczrwRu3yugU5iATnG9qwxySkkiQkqqgbEhddfmXK9d8iIK79SdeTWj/98KSXyl mlUTwBDof5NH9cD2hOzXFTdXpi57nVjnXpTxYT9fmeSFVL7rz7at3/nt48IH+Q2zT6k3fW49W lVs5vwn9O/C5afvuOetflvvv+VJS5v7unILLe87lldnl18KCV1Tb2cXtfPmigJ+3w/h/bPV/d q1uZVYijMSDbWYi4oTARBRFZ/3AgAA X-Env-Sender: lars.kurth.xen@gmail.com X-Msg-Ref: server-16.tower-31.messagelabs.com!1495724984!94911609!1 X-Originating-IP: [74.125.82.68] X-SpamReason: No, hits=0.0 required=7.0 tests= X-StarScan-Received: X-StarScan-Version: 9.4.12; banners=-,-,- X-VirusChecked: Checked Received: (qmail 11738 invoked from network); 25 May 2017 15:09:44 -0000 Received: from mail-wm0-f68.google.com (HELO mail-wm0-f68.google.com) (74.125.82.68) by server-16.tower-31.messagelabs.com with AES128-GCM-SHA256 encrypted SMTP; 25 May 2017 15:09:44 -0000 Received: by mail-wm0-f68.google.com with SMTP id k15so52556280wmh.3; Thu, 25 May 2017 08:09:44 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:content-transfer-encoding:subject:message-id:date:to :mime-version; bh=LgyaKwLSXAxYW1rnq/omwNV0/e91SM9/n4mEjgkDZKQ=; b=YmuJ58H6/Nj4t3VX1+kalDQ8oBcpDslBOgs5WNW7s9zYLOWt/3bGVUNGl0xFtPPYdE +70tKtDMd87WtiHnDQP3taZsLTULB88G3artT0FqTwJEmZqnLvGNySaLNl60kcOhtv16 qmMjc0maBYMYFnLMMRWtiXlUdnUUntMSsxjCu+8boYr8wg6m+Q/cI2YcqQ2XkYXZ39/C LNf95XLUW+sUi/hM+0YJV92xksfOclwLxDDiVCxUhUaf6J72FFJhJafS4EP8b22tm4tP HJrFugXdd0KqxHhbMFbXF7I4vi25NDZzQK+RXRPXHUx4cs+YXoDvAbYUUwHx4Y9u0s4r epbQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:content-transfer-encoding:subject :message-id:date:to:mime-version; bh=LgyaKwLSXAxYW1rnq/omwNV0/e91SM9/n4mEjgkDZKQ=; b=rpb0N1scWyPSGQe0UrD12AOxcs8Cs1+IAOj9Ph/CdojFYZbriB1eZ8pK4T1qWLeEER J2m3/WyBPXA832QdNhDkIrGjhrG5HZd36YkRu77aY93OKFqtfQWBnbtm5LgyOie1s4sG b7yh7aZpQezIFCnW1cuNkq1boiTn7yTc1hEJDLMfJxBBe70GcTYWsPgJt6xp2TwhszUZ LaFicNo49oCeTX8IdhRT7hCxCZirDDUc4LLDzHuEiimRxPe03ugCNZ0jvspRTQDwvj9B 1luBiqQjgGa3ES7vZUSFqG435wcBkNzFyiKdhMt8TQawZC1GxyBiU0/2YWU7VoidJwzs FKAA== X-Gm-Message-State: AODbwcDJUCwB3oqzaKjS64gkEOY6cZNc/y+e4e2QxDd7mpkLAWNEG1/p xN6eb3It0vIEIv6ja7U= X-Received: by 10.80.151.131 with SMTP id e3mr23641689edb.61.1495724983381; Thu, 25 May 2017 08:09:43 -0700 (PDT) Received: from [10.80.118.233] (default-46-102-197-194.interdsl.co.uk. [46.102.197.194]) by smtp.gmail.com with ESMTPSA id b3sm2708633ede.9.2017.05.25.08.09.41 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Thu, 25 May 2017 08:09:41 -0700 (PDT) From: Lars Kurth Message-Id: Date: Thu, 25 May 2017 16:09:40 +0100 To: xen-devel , xen-users@lists.xenproject.org, xen-announce , embedded-pv-devel , win-pv-devel , mirageos-devel Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2104\)) X-Mailer: Apple Mail (2.2104) X-Mailman-Approved-At: Thu, 25 May 2017 15:10:26 +0000 Subject: [Xen-announce] =?utf-8?q?Schedule_is_live_for_the_Xen_Project?= =?utf-8?q?=E2=80=99s_Annual_Conference_-_Discounted_Registration_closes_b?= =?utf-8?q?y_end_of_May?= X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: xen-announce-bounces@lists.xen.org Sender: "Xen-announce" RGVhciBDb21tdW5pdHkgbWVtYmVycywKIApDb21tdW5pdHksIGVtYmVkZGVkLCBhdXRvbW90aXZl LCBwZXJmb3JtYW5jZSwgaGFyZHdhcmUsIGFuZCBzZWN1cml0eSBhcmUgYSBmZXcgdG9waWNzIHRo YXQgd2lsbCBiZSBjb3ZlcmVkIGR1cmluZyB0aGUgdXBjb21pbmcgWGVuIFByb2plY3QgRGV2ZWxv cGVyIGFuZCBEZXNpZ24gU3VtbWl0IChodHRwOi8vZXZlbnRzLmxpbnV4Zm91bmRhdGlvbi5vcmcv ZXZlbnRzL3hlbi1kZXZlbG9wZXItYW5kLWRlc2lnbi1zdW1taXQpIGhhcHBlbmluZyBKdWx5IDEx LTEzIGluIEJ1ZGFwZXN0LCBIdW5nYXJ5LiAKCllvdSBjYW4gZmluZCB0aGUgZnVsbCBzY2hlZHVs ZSBoZXJlOiBodHRwOi8vZXZlbnRzLmxpbnV4Zm91bmRhdGlvbi5vcmcvZXZlbnRzL3hlbi1kZXZl bG9wZXItYW5kLWRlc2lnbi1zdW1taXQvcHJvZ3JhbS9zY2hlZHVsZQogClRoZSBjb25mZXJlbmNl IGlzIGNvbWJpbmVzIHRoZSBmb3JtYXRzIG9mIHRoZSBYZW4gUHJvamVjdCBEZXZlbG9wZXIgU3Vt bWl0cyB3aXRoIHRoZSBYZW4gUHJvamVjdCBIYWNrYXRob25zLCB3aXRoIHRhbGtzIGluIHRoZSBt b3JuaW5nIGFuZCBEZXNpZ24gU2Vzc2lvbnMgaW4gdGhlIGFmdGVybm9vbi4KCkhlcmXigJlzIGEg c2FtcGxpbmcgb2Ygc29tZSBvZiB0aGUgdGFsa3MgYXQgdGhlIFN1bW1pdDoKKiBEZWRpY2F0ZWQg U2VjdXJlIERvbWFpbiBhcyBhbiBBcHByb2FjaCBmb3IgQ2VydGlmaWNhdGlvbiBvZiBBdXRvbW90 aXZlIFNlY3RvciBTb2x1dGlvbnMgZnJvbSBJdXJpaSBNeWtoYWxza3lpIG9mIEdsb2JhbExvZ2lj CiogVW5pcHJvZjogVHJhbnNwYXJlbnQgVW5pa2VybmVsIFBlcmZvcm1hbmNlIFByb2ZpbGluZyBh bmQgRGVidWdnaW5nIGZyb20gRmxvcmlhbiBTY2htaWR0IG9mIE5FQwoqIEh5cGVydmlzb3ItQmFz ZWQgU2VjdXJpdHk6IEJyaW5naW5nIFZpcnR1YWxpemVkIEV4Y2VwdGlvbnMgSW50byB0aGUgR2Ft ZSBmcm9tIE1paGFpIERvbnR1IG9mIEJpdGRlZmVuZGVyCiogQnJpbmcgdXAgUENJIFBhc3N0aHJv dWdoIG9uIEFSTSBmcm9tIEp1bGllbiBHcmFsbCBvZiBBUk0KKiBTaGFyZWQgQ29wcm9jZXNzb3Ig RnJhbWV3b3JrIG9uIEFSTSAtIE9sZWtzYW5kciBBbmRydXNoY2hlbmtvLCBFUEFNIFN5c3RlbXMK KiBTZWN1cmUgQ29udGFpbmVycyB3aXRoIFhlbiBhbmQgQ29yZU9TIHJrdCAtIFN0ZWZhbm8gU3Rh YmVsbGluaSwgQXBvcmV0bwoqIFRvIEdyYW50IG9yIE5vdCB0byBHcmFudD8gLSBKb8OjbyBNYXJ0 aW5zLCBPcmFjbGUKIApDdXJyZW50bHksIHdlIGhhdmUgYW4gZWFybHkgYmlyZCBzcGVjaWFsICgk MjUwKSwgd2hpY2ggd2lsbCBlbmQgYXQgdGhlIGVuZCBvZiBNYXkgKHNlZSBodHRwOi8vZXZlbnRz LmxpbnV4Zm91bmRhdGlvbi5vcmcvZXZlbnRzL3hlbi1kZXZlbG9wZXItYW5kLWRlc2lnbi1zdW1t aXQvYXR0ZW5kL3JlZ2lzdGVyKS4gTm90ZSB0aGF0IHRoZSBvdmVyYWxsIHRpY2tldCBwcmljZSBp cyBoaWdoZXIgY29tcGFyZWQgdG8gdGhlIHBhc3QsIGFzIHRoZSBldmVudCBpcyAzIGRheXMgbG9u ZyBhbmQgYmFzZWQgb24geW91ciBmZWVkYmFjayBmcm9tIGxhc3QgeWVhciwgd2UgaW5jbHVkZWQg bHVuY2guCgpBbHNvIG5vdGUgdGhhdCB5b3UgY2FuIHN0aWxsIHN1Ym1pdCBkZXNpZ24gc2Vzc2lv bnM6IHNlZSBodHRwOi8vZXZlbnRzLmxpbnV4Zm91bmRhdGlvbi5vcmcvZXZlbnRzL3hlbi1kZXZl bG9wZXItYW5kLWRlc2lnbi1zdW1taXQvcHJvZ3JhbS9jZnAtZGVzaWduLXNlc3Npb24KIApCZXN0 IFJlZ2FyZHMKTGFycwpfX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19f X19fXwpYZW4tYW5ub3VuY2UgbWFpbGluZyBsaXN0Clhlbi1hbm5vdW5jZUBsaXN0cy54ZW4ub3Jn Cmh0dHBzOi8vbGlzdHMueGVuLm9yZy94ZW4tYW5ub3VuY2U= From xen-announce-bounces@lists.xen.org Sat May 27 20:38:09 2017 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Sat, 27 May 2017 20:38:09 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1dEiSV-0000Ai-7E; Sat, 27 May 2017 20:37:11 +0000 Received: from mail6.bemta5.messagelabs.com ([195.245.231.135]) by lists.xenproject.org with esmtp (Exim 4.84_2) (envelope-from ) id 1dEiQt-0008Tw-JF; Sat, 27 May 2017 20:35:31 +0000 Received: from [85.158.139.211] by server-12.bemta-5.messagelabs.com id 39/DC-01735-213E9295; Sat, 27 May 2017 20:35:30 +0000 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFprKIsWRWlGSWpSXmKPExsVysyfVTZf/sWa kwf9mdovZG9uYLb5vmcxk8W7fX2YHZo/DH66wBDBGsWbmJeVXJLBmPGl4wV5wi7XixL0HbA2M LaxdjFwcQgKbGCVuvTrHBOEsZpS4/raHuYuRg0NEoEhiwqqILkZODjYBTYk7nz8xgdjCAiISR w+cYgexeQWsJH596GQBsVkEVCXWvu0Bs0UFwiXeNh5hgagRlDg58wmYzSygLvFn3iVmCFteYv vbOcwTGLlnISmbhaRsFpKyBYzMqxjVi1OLylKLdE30kooy0zNKchMzc3QNDUz1clOLixPTU3M Sk4r1kvNzNzECA4cBCHYw3upzPsQoycGkJMo7fZ16pBBfUn5KZUZicUZ8UWlOavEhRhkODiUJ XpVHmpFCgkWp6akVaZk5wBCGSUtw8CiJ8AaCpHmLCxJzizPTIVKnGI05Nqxe/4WJo+nDli9MQ ix5+XmpUuK8cSClAiClGaV5cINgsXWJUVZKmJcR6DQhnoLUotzMElT5V4ziHIxKwrwVIFN4Mv NK4Pa9AjqFCegU33PqIKeUJCKkpBoYnWsOrvr760gyl9FU7cTSDa/Vbh+w23kx+UvxkrtuumL X+ZNz/dm/xGsEPHzT2yC5T07+1N792afnSUhxBK756XqY1SRkR80GBZXSCXVbjmeeWRV7Sebg qW3tJVt+G+f5nvnDr3bgVd26lPYO5V299v4vcwUa5zsweka4eez7t27Dm8g/XlcjlViKMxINt ZiLihMBTP3KL6gCAAA= X-Env-Sender: julien.grall@arm.com X-Msg-Ref: server-13.tower-206.messagelabs.com!1495917326!85081755!1 X-Originating-IP: [217.140.101.70] X-SpamReason: No, hits=0.0 required=7.0 tests= X-StarScan-Received: X-StarScan-Version: 9.4.19; banners=-,-,- X-VirusChecked: Checked Received: (qmail 9801 invoked from network); 27 May 2017 20:35:26 -0000 Received: from foss.arm.com (HELO foss.arm.com) (217.140.101.70) by server-13.tower-206.messagelabs.com with SMTP; 27 May 2017 20:35:26 -0000 Received: from usa-sjc-imap-foss1.foss.arm.com (unknown [10.72.51.249]) by usa-sjc-mx-foss1.foss.arm.com (Postfix) with ESMTP id 6430880D; Sat, 27 May 2017 13:35:25 -0700 (PDT) Received: from [10.37.8.84] (unknown [10.37.8.84]) by usa-sjc-imap-foss1.foss.arm.com (Postfix) with ESMTPSA id 527223F41F; Sat, 27 May 2017 13:35:24 -0700 (PDT) To: xen-devel , xen-announce@lists.xenproject.org, xen-users@lists.xenproject.org From: Julien Grall Message-ID: <1e37e60d-c761-3324-0eed-dca3bbeb75aa@arm.com> Date: Sat, 27 May 2017 21:35:22 +0100 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.8.0 MIME-Version: 1.0 X-Mailman-Approved-At: Sat, 27 May 2017 20:37:09 +0000 Subject: [Xen-announce] Xen 4.9 rc7 X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: xen-announce-bounces@lists.xen.org Sender: "Xen-announce" SGkgYWxsLAoKWGVuIDQuOSByYzcgaXMgdGFnZ2VkLiBZb3UgY2FuIGNoZWNrIHRoYXQgb3V0IGZy b20geGVuLmdpdDoKCiBnaXQ6Ly94ZW5iaXRzLnhlbi5vcmcveGVuLmdpdCA0LjkuMC1yYzcKCkZv ciB5b3VyIGNvbnZlbmllbmNlIHRoZXJlIGlzIGFsc28gYSB0YXJiYWxsIGF0OgpodHRwczovL2Rv d25sb2Fkcy54ZW5wcm9qZWN0Lm9yZy9yZWxlYXNlL3hlbi80LjkuMC1yYzcveGVuLTQuOS4wLXJj Ny50YXIuZ3oKCkFuZCB0aGUgc2lnbmF0dXJlIGlzIGF0OgpodHRwczovL2Rvd25sb2Fkcy54ZW5w cm9qZWN0Lm9yZy9yZWxlYXNlL3hlbi80LjkuMC1yYzcveGVuLTQuOS4wLXJjNy50YXIuZ3ouc2ln CgpQbGVhc2Ugc2VuZCBidWcgcmVwb3J0cyBhbmQgdGVzdCByZXBvcnRzIHRvCnhlbi1kZXZlbEBs aXN0cy54ZW5wcm9qZWN0Lm9yZy4gV2hlbiBzZW5kaW5nIGJ1ZyByZXBvcnRzLApwbGVhc2UgQ0Mg cmVsZXZhbnQgbWFpbnRhaW5lcnMgYW5kIG1lIChqdWxpZW4uZ3JhbGxAYXJtLmNvbSkuCgpBcyBh IHJlbWluZGVyLCB0aGVyZSB3aWxsIGJlIGFub3RoZXIgWGVuIFRlc3QgRGF5IHRoaXMKVHVlc2Rh eSAoMzB0aCBNYXkpLCBmb3IgdGhlIGluc3RydWN0aW9ucyBzZWU6CgpodHRwczovL2Jsb2cueGVu cHJvamVjdC5vcmcvMjAxNy8wNC8xMy9hbm5vdW5jaW5nLXhlbi1wcm9qZWN0LTQtOS1yYy1hbmQt dGVzdC1kYXktc2NoZWR1bGUvCgpDaGVlcnMsCgotLSAKSnVsaWVuIEdyYWxsCgpfX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fXwpYZW4tYW5ub3VuY2UgbWFpbGlu ZyBsaXN0Clhlbi1hbm5vdW5jZUBsaXN0cy54ZW4ub3JnCmh0dHBzOi8vbGlzdHMueGVuLm9yZy94 ZW4tYW5ub3VuY2U=