From xen-announce-bounces@lists.xenproject.org Wed Jun 13 21:02:25 2018 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Wed, 13 Jun 2018 21:02:25 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.89) (envelope-from ) id 1fTCtI-0007iQ-H8; Wed, 13 Jun 2018 21:01:16 +0000 Received: from all-amaz-eas1.inumbo.com ([34.197.232.57]) by lists.xenproject.org with esmtp (Exim 4.89) (envelope-from ) id 1fTCtH-0007i6-IV for xen-announce@lists.xen.org; Wed, 13 Jun 2018 21:01:15 +0000 X-Inumbo-ID: ebc63b5b-6f4c-11e8-bc1d-65256ead4e3a Received: from mail.xenproject.org (unknown [104.130.215.37]) by us1-amaz-eas1.inumbo.com (Halon) with ESMTPS id ebc63b5b-6f4c-11e8-bc1d-65256ead4e3a; Wed, 13 Jun 2018 21:01:20 +0000 (UTC) Received: from xenbits.xenproject.org ([104.239.192.120]) by mail.xenproject.org with esmtp (Exim 4.89) (envelope-from ) id 1fTCt4-0002BO-Io; Wed, 13 Jun 2018 21:01:02 +0000 Received: from andrewcoop by xenbits.xenproject.org with local (Exim 4.89) (envelope-from ) id 1fTCt4-00012V-G3; Wed, 13 Jun 2018 21:01:02 +0000 Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.508 (Entity 5.508) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Message-Id: Date: Wed, 13 Jun 2018 21:01:02 +0000 Subject: [Xen-announce] Xen Security Advisory 267 (CVE-2018-3665) - Speculative register leakage from lazy FPU context switching X-BeenThere: xen-announce@lists.xenproject.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Cc: "Xen.org security team" Errors-To: xen-announce-bounces@lists.xenproject.org Sender: "Xen-announce" --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Xen Security Advisory CVE-2018-3665 / XSA-267 version 3 Speculative register leakage from lazy FPU context switching UPDATES IN VERSION 3 ==================== Public release. ISSUE DESCRIPTION ================= x86 has a hardware mechanism for lazy FPU context switching. On a task switch, %cr0.ts (Task Switched) gets set, and the next instruction to touch floating point state raises an #NM (No Math, later known as Device Not Available) exception. Traditionally, FPU state has been large in comparison to available bandwidth (and therefore slow to switch) and not used as frequently as cpu tasks tend to switch. This mechanism allows the OS to only switch FPU when necessary, which in turn increases performance. Some CPUs however speculate past an #NM exception, allowing register content to be leaked by a side-channel. For more details, see: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00145.html IMPACT ====== An attacker can read x87/MMX/SSE/AVX/AVX-512 register state belonging to another vCPU previously scheduled on the same processor. This can be state belonging a different guest, or state belonging to a different thread inside the same guest. Furthermore, similar changes are expected for OS kernels. Consult your operating system provider for more information. VULNERABLE SYSTEMS ================== Systems running all versions of Xen are affected. Only x86 processors are vulnerable. ARM processors are not known to be affected. Only Intel Core based processors (from at least Nehalem onwards) are potentially affected. Other processor designs (Intel Atom/Knights range), and other manufacturers (AMD) are not known to be affected. MITIGATION ========== Depending on the availability of host resources, leakage can be prevented between VMs by using cpupools or cpu pinning to isolate the vCPUs from different VMs to separate pCPUs. CREDITS ======= This issue was discovered by Julian Stecklina (jsteckli@amazon.de) from Amazon and Thomas Prescher (thomas.prescher@cyberus-technology.de) from Cyberus Technology. It was also independenty discovered by Zdenek Sojka from SYSGO (http://sysgo.com) and by Colin Percival. RESOLUTION ========== Applying the appropriate attached patch resolves this issue. xsa267-[12].patch xen-unstable xsa267-4.10-[12].patch Xen 4.10.x xsa267-4.9-[12].patch Xen 4.9.x, 4.8.x xsa267-4.7-[12].patch Xen 4.7.x xsa267-4.6-[12].patch Xen 4.6.x Alternatively, the following patches can be used to create livepatches for running hypervisors. xsa267-livepatch.patch xen-unstable, Xen 4.10.x, 4.9.x xsa267-4.8-livepatch.patch Xen 4.8.x $ sha256sum xsa267* d126e57ac6151e661294da9211a9d556845255a9d1909d73ec58a28c81b4a79d xsa267-1.patch 00ec30c3738c3fcac8ca24a03308fc2d2dacab78640c17e5bb078e474b263719 xsa267-2.patch 9172c51e3652498740aa54c7953fb70c6df3902b382a9e9fa25a82943f70849d xsa267-4.6-1.patch 8579fa847aea19b3666db39c9c844c32b543e5504f49074e48600c4958fa9eba xsa267-4.6-2.patch 0fb7c123947a95963537ddeb156718d93a3d04b42486009fc520eaaeeba8aad6 xsa267-4.7-1.patch 418a71f8fc5b3ff1a5eb5cf4d161dea9c88697b50d84d8b8eec1ecf594f798f1 xsa267-4.7-2.patch 488f769e19acfe4ca59c731f58c5d464ec694e3c1923fbb3a26e6ed85afa68f8 xsa267-4.8-livepatch.patch b4d1712b48c71ca541b6a39c182c3a134ff4d36cbf52ef6d65444ce84729c4b3 xsa267-4.9-1.patch 5ab13ae9ea070b2eee6ecf31324518f8315b7c0e523295d7892e5263fccb9d1f xsa267-4.9-2.patch 9703a2e661f67408a108b540d296439cd349027a322b2e360780319897386753 xsa267-4.10-1.patch d30dcb4887cb1963b460f850f34f0cd179704a2cdc8cdaf72bd16e495a0d63f1 xsa267-4.10-2.patch 7832229d987ac9b7292eb815d54b78e9884b892795d9ac3f11f0752f6c59d312 xsa267-livepatch.patch $ DEPLOYMENT DURING EMBARGO ========================= Deployment of the patches and/or mitigations described above (or others which are substantially similar) is permitted during the embargo, even on public-facing systems with untrusted guest users and administrators. But: Distribution of updated software is prohibited (except to other members of the predisclosure list). Predisclosure list members who wish to deploy significantly different patches and/or mitigations, please contact the Xen Project Security Team. (Note: this during-embargo deployment notice is retained in post-embargo publicly released Xen Project advisories, even though it is then no longer applicable. This is to enable the community to have oversight of the Xen Project Security Team's decisionmaking.) For more information about permissible uses of embargoed information, consult the Xen Project community's agreed Security Policy: http://www.xenproject.org/security-policy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEcBAEBCAAGBQJbIX1aAAoJEIP+FMlX6CvZiA4H/iwQn5aa+9+iE6wVNhfI3XX4 YvogEPGW4Zp3Brq5ATDoyanIdabWU+5Tq4MtAyR3IyaFrnoevLFfumKIQjnqI3sk ef4PuxEYtVyiqwC+01o0Uk1+1K83xA4dG2wukuJbOtEF44d4X5fq9RWqdLprBADx FW7MrFeXcoQsbbRLfZzUZpjtQQ1Lys8gHbU+Un9l9yZjRUErxUFLhhsrpIwkYFF9 6zhlYGPdpZQ1s7W6OclD/Tm5ZpauggjJfLWSAckAuobNaR6bKh6iwr3AMWH0w+2w H7U2oKHQPw3kpiEz42cEEN9FDm/9mGNgNYkC+aPtn40zYuKhyBnORBMgssmA0Tk= =By/q -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa267-1.patch" Content-Disposition: attachment; filename="xsa267-1.patch" Content-Transfer-Encoding: base64 RnJvbTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNv bT4KU3ViamVjdDogeDg2OiBTdXBwb3J0IGZ1bGx5IGVhZ2VyIEZQVSBjb250 ZXh0IHN3aXRjaGluZwoKVGhpcyBpcyBjb250cm9sbGVkIG9uIGEgcGVyLXZj cHUgYmFzZXMgZm9yIGZsZXhpYmlsaXR5LgoKVGhpcyBpcyBwYXJ0IG9mIFhT QS0yNjcgLyBDVkUtMjAxOC0zNjY1CgpTaWduZWQtb2ZmLWJ5OiBBbmRyZXcg Q29vcGVyIDxhbmRyZXcuY29vcGVyM0BjaXRyaXguY29tPgpSZXZpZXdlZC1i eTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgoKZGlmZiAtLWdp dCBhL3hlbi9hcmNoL3g4Ni9pMzg3LmMgYi94ZW4vYXJjaC94ODYvaTM4Ny5j CmluZGV4IDg4NDUyNTIuLjUwMTE2ZDUgMTAwNjQ0Ci0tLSBhL3hlbi9hcmNo L3g4Ni9pMzg3LmMKKysrIGIveGVuL2FyY2gveDg2L2kzODcuYwpAQCAtMjEw LDcgKzIxMCw3IEBAIHZvaWQgdmNwdV9yZXN0b3JlX2ZwdV9lYWdlcihzdHJ1 Y3QgdmNwdSAqdikKICAgICBBU1NFUlQoIWlzX2lkbGVfdmNwdSh2KSk7CiAg ICAgCiAgICAgLyogUmVzdG9yZSBub25sYXp5IGV4dGVuZGVkIHN0YXRlIChp LmUuIHBhcnRzIG5vdCB0cmFja2VkIGJ5IENSMC5UUykuICovCi0gICAgaWYg KCAhdi0+YXJjaC5ub25sYXp5X3hzdGF0ZV91c2VkICkKKyAgICBpZiAoICF2 LT5hcmNoLmZ1bGx5X2VhZ2VyX2ZwdSAmJiAhdi0+YXJjaC5ub25sYXp5X3hz dGF0ZV91c2VkICkKICAgICAgICAgcmV0dXJuOwogCiAgICAgLyogQXZvaWQg cmVjdXJzaW9uICovCkBAIC0yMjEsMTEgKzIyMSwxOSBAQCB2b2lkIHZjcHVf cmVzdG9yZV9mcHVfZWFnZXIoc3RydWN0IHZjcHUgKnYpCiAgICAgICogYWJv dmUpIHdlIGFsc28gbmVlZCB0byByZXN0b3JlIGZ1bGwgc3RhdGUsIHRvIHBy ZXZlbnQgc3Vic2VxdWVudGx5CiAgICAgICogc2F2aW5nIHN0YXRlIGJlbG9u Z2luZyB0byBhbm90aGVyIHZDUFUuCiAgICAgICovCi0gICAgaWYgKCB4c3Rh dGVfYWxsKHYpICkKKyAgICBpZiAoIHYtPmFyY2guZnVsbHlfZWFnZXJfZnB1 IHx8ICh2LT5hcmNoLnhzYXZlX2FyZWEgJiYgeHN0YXRlX2FsbCh2KSkgKQog ICAgIHsKLSAgICAgICAgZnB1X3hyc3Rvcih2LCBYU1RBVEVfQUxMKTsKKyAg ICAgICAgaWYgKCBjcHVfaGFzX3hzYXZlICkKKyAgICAgICAgICAgIGZwdV94 cnN0b3IodiwgWFNUQVRFX0FMTCk7CisgICAgICAgIGVsc2UKKyAgICAgICAg ICAgIGZwdV9meHJzdG9yKHYpOworCiAgICAgICAgIHYtPmZwdV9pbml0aWFs aXNlZCA9IDE7CiAgICAgICAgIHYtPmZwdV9kaXJ0aWVkID0gMTsKKworICAg ICAgICAvKiBYZW4gZG9lc24ndCBuZWVkIFRTIHNldCwgYnV0IHRoZSBndWVz dCBtaWdodC4gKi8KKyAgICAgICAgaWYgKCBpc19wdl92Y3B1KHYpICYmICh2 LT5hcmNoLnB2X3ZjcHUuY3RybHJlZ1swXSAmIFg4Nl9DUjBfVFMpICkKKyAg ICAgICAgICAgIHN0dHMoKTsKICAgICB9CiAgICAgZWxzZQogICAgIHsKQEAg LTI0Nyw2ICsyNTUsOCBAQCB2b2lkIHZjcHVfcmVzdG9yZV9mcHVfbGF6eShz dHJ1Y3QgdmNwdSAqdikKICAgICBpZiAoIHYtPmZwdV9kaXJ0aWVkICkKICAg ICAgICAgcmV0dXJuOwogCisgICAgQVNTRVJUKCF2LT5hcmNoLmZ1bGx5X2Vh Z2VyX2ZwdSk7CisKICAgICBpZiAoIGNwdV9oYXNfeHNhdmUgKQogICAgICAg ICBmcHVfeHJzdG9yKHYsIFhTVEFURV9MQVpZKTsKICAgICBlbHNlCmRpZmYg LS1naXQgYS94ZW4vaW5jbHVkZS9hc20teDg2L2RvbWFpbi5oIGIveGVuL2lu Y2x1ZGUvYXNtLXg4Ni9kb21haW4uaAppbmRleCAxOTdmOGQ2Li5lMGQ0MTNj IDEwMDY0NAotLS0gYS94ZW4vaW5jbHVkZS9hc20teDg2L2RvbWFpbi5oCisr KyBiL3hlbi9pbmNsdWRlL2FzbS14ODYvZG9tYWluLmgKQEAgLTU2Myw2ICs1 NjMsOSBAQCBzdHJ1Y3QgYXJjaF92Y3B1CiAgICAgICogYW5kIHRodXMgc2hv dWxkIGJlIHNhdmVkL3Jlc3RvcmVkLiAqLwogICAgIGJvb2xfdCBub25sYXp5 X3hzdGF0ZV91c2VkOwogCisgICAgLyogUmVzdG9yZSBhbGwgRlBVIHN0YXRl IChsYXp5IGFuZCBub24tbGF6eSBzdGF0ZSkgb24gY29udGV4dCBzd2l0Y2g/ ICovCisgICAgYm9vbCBmdWxseV9lYWdlcl9mcHU7CisKICAgICBzdHJ1Y3Qg dm1jZSB2bWNlOwogCiAgICAgc3RydWN0IHBhZ2luZ192Y3B1IHBhZ2luZzsK --=separator Content-Type: application/octet-stream; name="xsa267-2.patch" Content-Disposition: attachment; filename="xsa267-2.patch" Content-Transfer-Encoding: base64 RnJvbTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNv bT4KU3ViamVjdDogeDg2L3NwZWMtY3RybDogTWl0aWdhdGlvbnMgZm9yIExh enlGUFUKCkludGVsIENvcmUgcHJvY2Vzc29ycyBzaW5jZSBhdCBsZWFzdCBO ZWhhbGVtIHNwZWN1bGF0ZSBwYXN0ICNOTSwgd2hpY2ggaXMgdGhlCm1lY2hh bmlzbSBieSB3aGljaCBsYXp5IEZQVSBjb250ZXh0IHN3aXRjaGluZyBpcyBp bXBsZW1lbnRlZC4KCk9uIGFmZmVjdGVkIHByb2Nlc3NvcnMsIFhlbiBtdXN0 IHVzZSBmdWxseSBlYWdlciBGUFUgY29udGV4dCBzd2l0Y2hpbmcgdG8KcHJl dmVudCBndWVzdHMgZnJvbSBiZWluZyBhYmxlIHRvIHJlYWQgRlBVIHN0YXRl IChTU0UvQVZYL2V0YykgZnJvbSBwcmV2aW91c2x5CnNjaGVkdWxlZCB2Y3B1 cy4KClRoaXMgaXMgcGFydCBvZiBYU0EtMjY3IC8gQ1ZFLTIwMTgtMzY2NQoK U2lnbmVkLW9mZi1ieTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNA Y2l0cml4LmNvbT4KUmV2aWV3ZWQtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGlj aEBzdXNlLmNvbT4KCmRpZmYgLS1naXQgYS9kb2NzL21pc2MveGVuLWNvbW1h bmQtbGluZS5tYXJrZG93biBiL2RvY3MvbWlzYy94ZW4tY29tbWFuZC1saW5l Lm1hcmtkb3duCmluZGV4IDg3MTJhODMuLjA3NWU1ZWEgMTAwNjQ0Ci0tLSBh L2RvY3MvbWlzYy94ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCisrKyBiL2Rv Y3MvbWlzYy94ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCkBAIC0xNzU4LDcg KzE3NTgsNyBAQCBmYWxzZSBkaXNhYmxlIHRoZSBxdWlyayB3b3JrYXJvdW5k LCB3aGljaCBpcyBhbHNvIHRoZSBkZWZhdWx0LgogCiAjIyMgc3BlYy1jdHJs ICh4ODYpCiA+IGA9IExpc3Qgb2YgWyA8Ym9vbD4sIHhlbj08Ym9vbD4sIHtw dixodm0sbXNyLXNjLHJzYn09PGJvb2w+LAotPiAgICAgICAgICAgICAgYnRp LXRodW5rPXJldHBvbGluZXxsZmVuY2V8am1wLCB7aWJycyxpYnBiLHNzYmR9 PTxib29sPiBdYAorPiAgICAgICAgICAgICAgYnRpLXRodW5rPXJldHBvbGlu ZXxsZmVuY2V8am1wLCB7aWJycyxpYnBiLHNzYmQsZWFnZXItZnB1fT08Ym9v bD4gXWAKIAogQ29udHJvbHMgZm9yIHNwZWN1bGF0aXZlIGV4ZWN1dGlvbiBz aWRlY2hhbm5lbCBtaXRpZ2F0aW9ucy4gIEJ5IGRlZmF1bHQsIFhlbgogd2ls bCBwaWNrIHRoZSBtb3N0IGFwcHJvcHJpYXRlIG1pdGlnYXRpb25zIGJhc2Vk IG9uIGNvbXBpbGVkIGluIHN1cHBvcnQsCkBAIC0xODA4LDYgKzE4MDgsMTEg QEAgaGFyZHdhcmUsIHRoaXMgaXMgYSBnbG9iYWwgb3B0aW9uIGFwcGxpZWQg YXQgYm9vdCwgYW5kIG5vdCB2aXJ0dWFsaXNlZCBmb3IKIGd1ZXN0IHVzZS4g IE9uIEludGVsIGhhcmR3YXJlLCB0aGUgZmVhdHVyZSBpcyB2aXJ0dWFsaXNl ZCBmb3IgZ3Vlc3RzLAogaW5kZXBlbmRlbnRseSBvZiBYZW4ncyBjaG9pY2Ug b2Ygc2V0dGluZy4KIAorT24gYWxsIGhhcmR3YXJlLCB0aGUgYGVhZ2VyLWZw dT1gIG9wdGlvbiBjYW4gYmUgdXNlZCB0byBmb3JjZSBvciBwcmV2ZW50IFhl bgorZnJvbSB1c2luZyBmdWxseSBlYWdlciBGUFUgY29udGV4dCBzd2l0Y2hl cy4gIFRoaXMgaXMgY3VycmVudGx5IGltcGxlbWVudGVkIGFzCithIGdsb2Jh bCBjb250cm9sLiAgQnkgZGVmYXVsdCwgWGVuIHdpbGwgY2hvb3NlIHRvIHVz ZSBmdWxseSBlYWdlciBjb250ZXh0Citzd2l0Y2hlcyBvbiBoYXJkd2FyZSBi ZWxpZXZlZCB0byBzcGVjdWxhdGUgcGFzdCAjTk0gZXhjZXB0aW9ucy4KKwog IyMjIHN5bmNcX2NvbnNvbGUKID4gYD0gPGJvb2xlYW4+YAogCmRpZmYgLS1n aXQgYS94ZW4vYXJjaC94ODYvaTM4Ny5jIGIveGVuL2FyY2gveDg2L2kzODcu YwppbmRleCA1MDExNmQ1Li5kYmRmMWI0IDEwMDY0NAotLS0gYS94ZW4vYXJj aC94ODYvaTM4Ny5jCisrKyBiL3hlbi9hcmNoL3g4Ni9pMzg3LmMKQEAgLTE1 LDYgKzE1LDcgQEAKICNpbmNsdWRlIDxhc20vaTM4Ny5oPgogI2luY2x1ZGUg PGFzbS94c3RhdGUuaD4KICNpbmNsdWRlIDxhc20vYXNtX2RlZm5zLmg+Cisj aW5jbHVkZSA8YXNtL3NwZWNfY3RybC5oPgogCiAvKioqKioqKioqKioqKioq KioqKioqKioqKioqKioqKi8KIC8qICAgICBGUFUgUmVzdG9yZSBGdW5jdGlv bnMgICAqLwpAQCAtMzA3LDYgKzMwOCw4IEBAIGludCB2Y3B1X2luaXRfZnB1 KHN0cnVjdCB2Y3B1ICp2KQogewogICAgIGludCByYzsKICAgICAKKyAgICB2 LT5hcmNoLmZ1bGx5X2VhZ2VyX2ZwdSA9IG9wdF9lYWdlcl9mcHU7CisKICAg ICBpZiAoIChyYyA9IHhzdGF0ZV9hbGxvY19zYXZlX2FyZWEodikpICE9IDAg KQogICAgICAgICByZXR1cm4gcmM7CiAKZGlmZiAtLWdpdCBhL3hlbi9hcmNo L3g4Ni9zcGVjX2N0cmwuYyBiL3hlbi9hcmNoL3g4Ni9zcGVjX2N0cmwuYwpp bmRleCBmZDkzOGMzLi4wOGU2Nzg0IDEwMDY0NAotLS0gYS94ZW4vYXJjaC94 ODYvc3BlY19jdHJsLmMKKysrIGIveGVuL2FyY2gveDg2L3NwZWNfY3RybC5j CkBAIC00NCw2ICs0NCw3IEBAIHN0YXRpYyBlbnVtIGluZF90aHVuayB7CiBz dGF0aWMgaW50OF90IF9faW5pdGRhdGEgb3B0X2licnMgPSAtMTsKIGJvb2wg X19yZWFkX21vc3RseSBvcHRfaWJwYiA9IHRydWU7CiBib29sIF9fcmVhZF9t b3N0bHkgb3B0X3NzYmQgPSBmYWxzZTsKK2ludDhfdCBfX3JlYWRfbW9zdGx5 IG9wdF9lYWdlcl9mcHUgPSAtMTsKIAogYm9vbCBfX2luaXRkYXRhIGJzcF9k ZWxheV9zcGVjX2N0cmw7CiB1aW50OF90IF9fcmVhZF9tb3N0bHkgZGVmYXVs dF94ZW5fc3BlY19jdHJsOwpAQCAtMTMwLDYgKzEzMSw3IEBAIHN0YXRpYyBp bnQgX19pbml0IHBhcnNlX3NwZWNfY3RybChjb25zdCBjaGFyICpzKQogICAg ICAgICAgICAgb3B0X3RodW5rID0gVEhVTktfSk1QOwogICAgICAgICAgICAg b3B0X2licnMgPSAwOwogICAgICAgICAgICAgb3B0X2licGIgPSBmYWxzZTsK KyAgICAgICAgICAgIG9wdF9lYWdlcl9mcHUgPSAwOwogICAgICAgICB9CiAg ICAgICAgIGVsc2UgaWYgKCB2YWwgPiAwICkKICAgICAgICAgICAgIHJjID0g LUVJTlZBTDsKQEAgLTE4Myw2ICsxODUsOCBAQCBzdGF0aWMgaW50IF9faW5p dCBwYXJzZV9zcGVjX2N0cmwoY29uc3QgY2hhciAqcykKICAgICAgICAgICAg IG9wdF9pYnBiID0gdmFsOwogICAgICAgICBlbHNlIGlmICggKHZhbCA9IHBh cnNlX2Jvb2xlYW4oInNzYmQiLCBzLCBzcykpID49IDAgKQogICAgICAgICAg ICAgb3B0X3NzYmQgPSB2YWw7CisgICAgICAgIGVsc2UgaWYgKCAodmFsID0g cGFyc2VfYm9vbGVhbigiZWFnZXItZnB1Iiwgcywgc3MpKSA+PSAwICkKKyAg ICAgICAgICAgIG9wdF9lYWdlcl9mcHUgPSB2YWw7CiAgICAgICAgIGVsc2UK ICAgICAgICAgICAgIHJjID0gLUVJTlZBTDsKIApAQCAtMjM2LDE1ICsyNDAs MTkgQEAgc3RhdGljIHZvaWQgX19pbml0IHByaW50X2RldGFpbHMoZW51bSBp bmRfdGh1bmsgdGh1bmssIHVpbnQ2NF90IGNhcHMpCiAgICAgICogQWx0ZXJu YXRpdmVzIGJsb2NrcyBmb3IgcHJvdGVjdGluZyBhZ2FpbnN0IGFuZC9vciB2 aXJ0dWFsaXNpbmcKICAgICAgKiBtaXRpZ2F0aW9uIHN1cHBvcnQgZm9yIGd1 ZXN0cy4KICAgICAgKi8KLSAgICBwcmludGsoIiAgU3VwcG9ydCBmb3IgVk1z OiBQVjolcyVzJXMsIEhWTTolcyVzJXNcbiIsCisgICAgcHJpbnRrKCIgIFN1 cHBvcnQgZm9yIFZNczogUFY6JXMlcyVzJXMsIEhWTTolcyVzJXMlc1xuIiwK ICAgICAgICAgICAgKGJvb3RfY3B1X2hhcyhYODZfRkVBVFVSRV9TQ19NU1Jf UFYpIHx8Ci0gICAgICAgICAgICBib290X2NwdV9oYXMoWDg2X0ZFQVRVUkVf U0NfUlNCX1BWKSkgICAgID8gIiIgICAgICAgICAgICAgICA6ICIgTm9uZSIs CisgICAgICAgICAgICBib290X2NwdV9oYXMoWDg2X0ZFQVRVUkVfU0NfUlNC X1BWKSB8fAorICAgICAgICAgICAgb3B0X2VhZ2VyX2ZwdSkgICAgICAgICAg ICAgICAgICAgICAgICAgICA/ICIiICAgICAgICAgICAgICAgOiAiIE5vbmUi LAogICAgICAgICAgICBib290X2NwdV9oYXMoWDg2X0ZFQVRVUkVfU0NfTVNS X1BWKSAgICAgICA/ICIgTVNSX1NQRUNfQ1RSTCIgOiAiIiwKICAgICAgICAg ICAgYm9vdF9jcHVfaGFzKFg4Nl9GRUFUVVJFX1NDX1JTQl9QVikgICAgICAg PyAiIFJTQiIgICAgICAgICAgIDogIiIsCisgICAgICAgICAgIG9wdF9lYWdl cl9mcHUgICAgICAgICAgICAgICAgICAgICAgICAgICAgID8gIiBFQUdFUl9G UFUiICAgICA6ICIiLAogICAgICAgICAgICAoYm9vdF9jcHVfaGFzKFg4Nl9G RUFUVVJFX1NDX01TUl9IVk0pIHx8Ci0gICAgICAgICAgICBib290X2NwdV9o YXMoWDg2X0ZFQVRVUkVfU0NfUlNCX0hWTSkpICAgID8gIiIgICAgICAgICAg ICAgICA6ICIgTm9uZSIsCisgICAgICAgICAgICBib290X2NwdV9oYXMoWDg2 X0ZFQVRVUkVfU0NfUlNCX0hWTSkgfHwKKyAgICAgICAgICAgIG9wdF9lYWdl cl9mcHUpICAgICAgICAgICAgICAgICAgICAgICAgICAgPyAiIiAgICAgICAg ICAgICAgIDogIiBOb25lIiwKICAgICAgICAgICAgYm9vdF9jcHVfaGFzKFg4 Nl9GRUFUVVJFX1NDX01TUl9IVk0pICAgICAgPyAiIE1TUl9TUEVDX0NUUkwi IDogIiIsCi0gICAgICAgICAgIGJvb3RfY3B1X2hhcyhYODZfRkVBVFVSRV9T Q19SU0JfSFZNKSAgICAgID8gIiBSU0IiICAgICAgICAgICA6ICIiKTsKKyAg ICAgICAgICAgYm9vdF9jcHVfaGFzKFg4Nl9GRUFUVVJFX1NDX1JTQl9IVk0p ICAgICAgPyAiIFJTQiIgICAgICAgICAgIDogIiIsCisgICAgICAgICAgIG9w dF9lYWdlcl9mcHUgICAgICAgICAgICAgICAgICAgICAgICAgICAgID8gIiBF QUdFUl9GUFUiICAgICA6ICIiKTsKIAogICAgIHByaW50aygiICBYUFRJICg2 NC1iaXQgUFYgb25seSk6IERvbTAgJXMsIERvbVUgJXNcbiIsCiAgICAgICAg ICAgIG9wdF94cHRpICYgT1BUX1hQVElfRE9NMCA/ICJlbmFibGVkIiA6ICJk aXNhYmxlZCIsCkBAIC0zMzQsNiArMzQyLDgyIEBAIHN0YXRpYyBib29sIF9f aW5pdCByZXRwb2xpbmVfc2FmZSh1aW50NjRfdCBjYXBzKQogICAgIH0KIH0K IAorLyogQ2FsY3VsYXRlIHdoZXRoZXIgdGhpcyBDUFUgc3BlY3VsYXRlcyBw YXN0ICNOTSAqLworc3RhdGljIGJvb2wgX19pbml0IHNob3VsZF91c2VfZWFn ZXJfZnB1KHZvaWQpCit7CisgICAgLyoKKyAgICAgKiBBc3N1bWUgYWxsIHVu cmVjb2duaXNlZCBwcm9jZXNzb3JzIGFyZSBvay4gIFRoaXMgaXMgb25seSBr bm93biB0bworICAgICAqIGFmZmVjdCBJbnRlbCBGYW1pbHkgNiBwcm9jZXNz b3JzLgorICAgICAqLworICAgIGlmICggYm9vdF9jcHVfZGF0YS54ODZfdmVu ZG9yICE9IFg4Nl9WRU5ET1JfSU5URUwgfHwKKyAgICAgICAgIGJvb3RfY3B1 X2RhdGEueDg2ICE9IDYgKQorICAgICAgICByZXR1cm4gZmFsc2U7CisKKyAg ICBzd2l0Y2ggKCBib290X2NwdV9kYXRhLng4Nl9tb2RlbCApCisgICAgewor ICAgICAgICAvKgorICAgICAgICAgKiBDb3JlIHByb2Nlc3NvcnMgc2luY2Ug YXQgbGVhc3QgTmVoYWxlbSBhcmUgdnVsbmVyYWJsZS4KKyAgICAgICAgICov CisgICAgY2FzZSAweDFlOiAvKiBOZWhhbGVtICovCisgICAgY2FzZSAweDFm OiAvKiBBdWJ1cm5kYWxlIC8gSGF2ZW5kYWxlICovCisgICAgY2FzZSAweDFh OiAvKiBOZWhhbGVtIEVQICovCisgICAgY2FzZSAweDJlOiAvKiBOZWhhbGVt IEVYICovCisgICAgY2FzZSAweDI1OiAvKiBXZXN0bWVyZSAqLworICAgIGNh c2UgMHgyYzogLyogV2VzdG1lcmUgRVAgKi8KKyAgICBjYXNlIDB4MmY6IC8q IFdlc3RtZXJlIEVYICovCisgICAgY2FzZSAweDJhOiAvKiBTYW5keUJyaWRn ZSAqLworICAgIGNhc2UgMHgyZDogLyogU2FuZHlCcmlkZ2UgRVAvRVggKi8K KyAgICBjYXNlIDB4M2E6IC8qIEl2eUJyaWRnZSAqLworICAgIGNhc2UgMHgz ZTogLyogSXZ5QnJpZGdlIEVQL0VYICovCisgICAgY2FzZSAweDNjOiAvKiBI YXN3ZWxsICovCisgICAgY2FzZSAweDNmOiAvKiBIYXN3ZWxsIEVYL0VQICov CisgICAgY2FzZSAweDQ1OiAvKiBIYXN3ZWxsIEQgKi8KKyAgICBjYXNlIDB4 NDY6IC8qIEhhc3dlbGwgSCAqLworICAgIGNhc2UgMHgzZDogLyogQnJvYWR3 ZWxsICovCisgICAgY2FzZSAweDQ3OiAvKiBCcm9hZHdlbGwgSCAqLworICAg IGNhc2UgMHg0ZjogLyogQnJvYWR3ZWxsIEVQL0VYICovCisgICAgY2FzZSAw eDU2OiAvKiBCcm9hZHdlbGwgRCAqLworICAgIGNhc2UgMHg0ZTogLyogU2t5 bGFrZSBNICovCisgICAgY2FzZSAweDU1OiAvKiBTa3lsYWtlIFggKi8KKyAg ICBjYXNlIDB4NWU6IC8qIFNreWxha2UgRCAqLworICAgIGNhc2UgMHg2Njog LyogQ2Fubm9ubGFrZSAqLworICAgIGNhc2UgMHg2NzogLyogQ2Fubm9ubGFr ZT8gKi8KKyAgICBjYXNlIDB4OGU6IC8qIEthYnlsYWtlIE0gKi8KKyAgICBj YXNlIDB4OWU6IC8qIEthYnlsYWtlIEQgKi8KKyAgICAgICAgcmV0dXJuIHRy dWU7CisKKyAgICAgICAgLyoKKyAgICAgICAgICogQXRvbSBwcm9jZXNzb3Jz IGFyZSBub3QgdnVsbmVyYWJsZS4KKyAgICAgICAgICovCisgICAgY2FzZSAw eDFjOiAvKiBQaW5ldmlldyAqLworICAgIGNhc2UgMHgyNjogLyogTGluY3Jv ZnQgKi8KKyAgICBjYXNlIDB4Mjc6IC8qIFBlbndlbGwgKi8KKyAgICBjYXNl IDB4MzU6IC8qIENsb3ZlcnZpZXcgKi8KKyAgICBjYXNlIDB4MzY6IC8qIENl ZGFydmlldyAqLworICAgIGNhc2UgMHgzNzogLyogQmF5dHJhaWwgLyBWYWxs ZXl2aWV3IChTaWx2ZXJtb250KSAqLworICAgIGNhc2UgMHg0ZDogLyogQXZh dG9uIC8gUmFuZ2VseSAoU2lsdmVybW9udCkgKi8KKyAgICBjYXNlIDB4NGM6 IC8qIENoZXJyeXRyYWlsIC8gQnJhc3N3ZWxsICovCisgICAgY2FzZSAweDRh OiAvKiBNZXJyaWZpZWxkICovCisgICAgY2FzZSAweDVhOiAvKiBNb29yZWZp ZWxkICovCisgICAgY2FzZSAweDVjOiAvKiBHb2xkbW9udCAqLworICAgIGNh c2UgMHg1ZjogLyogRGVudmVydG9uICovCisgICAgY2FzZSAweDdhOiAvKiBH ZW1pbmkgTGFrZSAqLworICAgICAgICByZXR1cm4gZmFsc2U7CisKKyAgICAg ICAgLyoKKyAgICAgICAgICogS25pZ2h0cyBwcm9jZXNzb3JzIGFyZSBub3Qg dnVsbmVyYWJsZS4KKyAgICAgICAgICovCisgICAgY2FzZSAweDU3OiAvKiBL bmlnaHRzIExhbmRpbmcgKi8KKyAgICBjYXNlIDB4ODU6IC8qIEtuaWdodHMg TWlsbCAqLworICAgICAgICByZXR1cm4gZmFsc2U7CisKKyAgICBkZWZhdWx0 OgorICAgICAgICBwcmludGsoIlVucmVjb2duaXNlZCBDUFUgbW9kZWwgJSN4 IC0gYXNzdW1pbmcgdnVsbmVyYWJsZSB0byBMYXp5RlBVXG4iLAorICAgICAg ICAgICAgICAgYm9vdF9jcHVfZGF0YS54ODZfbW9kZWwpOworICAgICAgICBy ZXR1cm4gdHJ1ZTsKKyAgICB9Cit9CisKICNkZWZpbmUgT1BUX1hQVElfREVG QVVMVCAgMHhmZgogdWludDhfdCBfX3JlYWRfbW9zdGx5IG9wdF94cHRpID0g T1BUX1hQVElfREVGQVVMVDsKIApAQCAtNTMwLDYgKzYxNCwxMCBAQCB2b2lk IF9faW5pdCBpbml0X3NwZWN1bGF0aW9uX21pdGlnYXRpb25zKHZvaWQpCiAg ICAgaWYgKCAhYm9vdF9jcHVfaGFzKFg4Nl9GRUFUVVJFX0lCUlNCKSAmJiAh Ym9vdF9jcHVfaGFzKFg4Nl9GRUFUVVJFX0lCUEIpICkKICAgICAgICAgb3B0 X2licGIgPSBmYWxzZTsKIAorICAgIC8qIENoZWNrIHdoZXRoZXIgRWFnZXIg RlBVIHNob3VsZCBiZSBlbmFibGVkIGJ5IGRlZmF1bHQuICovCisgICAgaWYg KCBvcHRfZWFnZXJfZnB1ID09IC0xICkKKyAgICAgICAgb3B0X2VhZ2VyX2Zw dSA9IHNob3VsZF91c2VfZWFnZXJfZnB1KCk7CisKICAgICAvKiAoUmUpaW5p dCBCU1Agc3RhdGUgbm93IHRoYXQgZGVmYXVsdF9zcGVjX2N0cmxfZmxhZ3Mg aGFzIGJlZW4gY2FsY3VsYXRlZC4gKi8KICAgICBpbml0X3NoYWRvd19zcGVj X2N0cmxfc3RhdGUoKTsKIApkaWZmIC0tZ2l0IGEveGVuL2luY2x1ZGUvYXNt LXg4Ni9zcGVjX2N0cmwuaCBiL3hlbi9pbmNsdWRlL2FzbS14ODYvc3BlY19j dHJsLmgKaW5kZXggOTFiZWQxYi4uNWI0MGFmYiAxMDA2NDQKLS0tIGEveGVu L2luY2x1ZGUvYXNtLXg4Ni9zcGVjX2N0cmwuaAorKysgYi94ZW4vaW5jbHVk ZS9hc20teDg2L3NwZWNfY3RybC5oCkBAIC0yOCw2ICsyOCw3IEBAIHZvaWQg aW5pdF9zcGVjdWxhdGlvbl9taXRpZ2F0aW9ucyh2b2lkKTsKIAogZXh0ZXJu IGJvb2wgb3B0X2licGI7CiBleHRlcm4gYm9vbCBvcHRfc3NiZDsKK2V4dGVy biBpbnQ4X3Qgb3B0X2VhZ2VyX2ZwdTsKIAogZXh0ZXJuIGJvb2wgYnNwX2Rl bGF5X3NwZWNfY3RybDsKIGV4dGVybiB1aW50OF90IGRlZmF1bHRfeGVuX3Nw ZWNfY3RybDsK --=separator Content-Type: application/octet-stream; name="xsa267-4.6-1.patch" Content-Disposition: attachment; filename="xsa267-4.6-1.patch" Content-Transfer-Encoding: base64 RnJvbTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNv bT4KU3ViamVjdDogeDg2OiBTdXBwb3J0IGZ1bGx5IGVhZ2VyIEZQVSBjb250 ZXh0IHN3aXRjaGluZwoKVGhpcyBpcyBjb250cm9sbGVkIG9uIGEgcGVyLXZj cHUgYmFzZXMgZm9yIGZsZXhpYmlsaXR5LgoKVGhpcyBpcyBwYXJ0IG9mIFhT QS0yNjcgLyBDVkUtMjAxOC0zNjY1CgpTaWduZWQtb2ZmLWJ5OiBBbmRyZXcg Q29vcGVyIDxhbmRyZXcuY29vcGVyM0BjaXRyaXguY29tPgpSZXZpZXdlZC1i eTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgoKZGlmZiAtLWdp dCBhL3hlbi9hcmNoL3g4Ni9pMzg3LmMgYi94ZW4vYXJjaC94ODYvaTM4Ny5j CmluZGV4IDU1ODQ1MzUuLmY5Y2YwNTkgMTAwNjQ0Ci0tLSBhL3hlbi9hcmNo L3g4Ni9pMzg3LmMKKysrIGIveGVuL2FyY2gveDg2L2kzODcuYwpAQCAtMjE1 LDggKzIxNSwyNSBAQCB2b2lkIHZjcHVfcmVzdG9yZV9mcHVfZWFnZXIoc3Ry dWN0IHZjcHUgKnYpCiB7CiAgICAgQVNTRVJUKCFpc19pZGxlX3ZjcHUodikp OwogICAgIAorICAgIGlmICggdi0+YXJjaC5mdWxseV9lYWdlcl9mcHUgKQor ICAgIHsKKyAgICAgICAgLyogQXZvaWQgcmVjdXJzaW9uICovCisgICAgICAg IGNsdHMoKTsKKworICAgICAgICBpZiAoIGNwdV9oYXNfeHNhdmUgKQorICAg ICAgICAgICAgZnB1X3hyc3Rvcih2LCBYU1RBVEVfQUxMKTsKKyAgICAgICAg ZWxzZQorICAgICAgICAgICAgZnB1X2Z4cnN0b3Iodik7CisKKyAgICAgICAg di0+ZnB1X2luaXRpYWxpc2VkID0gMTsKKyAgICAgICAgdi0+ZnB1X2RpcnRp ZWQgPSAxOworCisgICAgICAgIC8qIFhlbiBkb2Vzbid0IG5lZWQgVFMgc2V0 LCBidXQgdGhlIGd1ZXN0IG1pZ2h0LiAqLworICAgICAgICBpZiAoIGlzX3B2 X3ZjcHUodikgJiYgKHYtPmFyY2gucHZfdmNwdS5jdHJscmVnWzBdICYgWDg2 X0NSMF9UUykgKQorICAgICAgICAgICAgc3R0cygpOworICAgIH0KICAgICAv KiBzYXZlIHRoZSBub25sYXp5IGV4dGVuZGVkIHN0YXRlIHdoaWNoIGlzIG5v dCB0cmFja2VkIGJ5IENSMC5UUyBiaXQgKi8KLSAgICBpZiAoIHYtPmFyY2gu bm9ubGF6eV94c3RhdGVfdXNlZCApCisgICAgZWxzZSBpZiAoIHYtPmFyY2gu bm9ubGF6eV94c3RhdGVfdXNlZCApCiAgICAgewogICAgICAgICAvKiBBdm9p ZCByZWN1cnNpb24gKi8KICAgICAgICAgY2x0cygpOyAgICAgICAgCkBAIC0y MzgsNiArMjU1LDggQEAgdm9pZCB2Y3B1X3Jlc3RvcmVfZnB1X2xhenkoc3Ry dWN0IHZjcHUgKnYpCiAgICAgaWYgKCB2LT5mcHVfZGlydGllZCApCiAgICAg ICAgIHJldHVybjsKIAorICAgIEFTU0VSVCghdi0+YXJjaC5mdWxseV9lYWdl cl9mcHUpOworCiAgICAgaWYgKCBjcHVfaGFzX3hzYXZlICkKICAgICAgICAg ZnB1X3hyc3Rvcih2LCBYU1RBVEVfTEFaWSk7CiAgICAgZWxzZQpkaWZmIC0t Z2l0IGEveGVuL2luY2x1ZGUvYXNtLXg4Ni9kb21haW4uaCBiL3hlbi9pbmNs dWRlL2FzbS14ODYvZG9tYWluLmgKaW5kZXggZjkxN2I0Ni4uMjA3MTVlMyAx MDA2NDQKLS0tIGEveGVuL2luY2x1ZGUvYXNtLXg4Ni9kb21haW4uaAorKysg Yi94ZW4vaW5jbHVkZS9hc20teDg2L2RvbWFpbi5oCkBAIC01NzQsNiArNTc0 LDkgQEAgc3RydWN0IGFyY2hfdmNwdQogICAgICAqIGFuZCB0aHVzIHNob3Vs ZCBiZSBzYXZlZC9yZXN0b3JlZC4gKi8KICAgICBib29sX3Qgbm9ubGF6eV94 c3RhdGVfdXNlZDsKIAorICAgIC8qIFJlc3RvcmUgYWxsIEZQVSBzdGF0ZSAo bGF6eSBhbmQgbm9uLWxhenkgc3RhdGUpIG9uIGNvbnRleHQgc3dpdGNoPyAq LworICAgIGJvb2xfdCBmdWxseV9lYWdlcl9mcHU7CisKICAgICAvKgogICAg ICAqIFRoZSBTTUFQIGNoZWNrIHBvbGljeSB3aGVuIHVwZGF0aW5nIHJ1bnN0 YXRlX2d1ZXN0KHYpIGFuZCB0aGUKICAgICAgKiBzZWNvbmRhcnkgc3lzdGVt IHRpbWUuCg== --=separator Content-Type: application/octet-stream; name="xsa267-4.6-2.patch" Content-Disposition: attachment; filename="xsa267-4.6-2.patch" Content-Transfer-Encoding: base64 RnJvbTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNv bT4KU3ViamVjdDogeDg2L3NwZWMtY3RybDogTWl0aWdhdGlvbnMgZm9yIExh enlGUFUKCkludGVsIENvcmUgcHJvY2Vzc29ycyBzaW5jZSBhdCBsZWFzdCBO ZWhhbGVtIHNwZWN1bGF0ZSBwYXN0ICNOTSwgd2hpY2ggaXMgdGhlCm1lY2hh bmlzbSBieSB3aGljaCBsYXp5IEZQVSBjb250ZXh0IHN3aXRjaGluZyBpcyBp bXBsZW1lbnRlZC4KCk9uIGFmZmVjdGVkIHByb2Nlc3NvcnMsIFhlbiBtdXN0 IHVzZSBmdWxseSBlYWdlciBGUFUgY29udGV4dCBzd2l0Y2hpbmcgdG8KcHJl dmVudCBndWVzdHMgZnJvbSBiZWluZyBhYmxlIHRvIHJlYWQgRlBVIHN0YXRl IChTU0UvQVZYL2V0YykgZnJvbSBwcmV2aW91c2x5CnNjaGVkdWxlZCB2Y3B1 cy4KClRoaXMgaXMgcGFydCBvZiBYU0EtMjY3IC8gQ1ZFLTIwMTgtMzY2NQoK U2lnbmVkLW9mZi1ieTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNA Y2l0cml4LmNvbT4KUmV2aWV3ZWQtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGlj aEBzdXNlLmNvbT4KCmRpZmYgLS1naXQgYS9kb2NzL21pc2MveGVuLWNvbW1h bmQtbGluZS5tYXJrZG93biBiL2RvY3MvbWlzYy94ZW4tY29tbWFuZC1saW5l Lm1hcmtkb3duCmluZGV4IGVjZTJjZWMuLmI3NDJlZTQgMTAwNjQ0Ci0tLSBh L2RvY3MvbWlzYy94ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCisrKyBiL2Rv Y3MvbWlzYy94ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCkBAIC0xNDIzLDcg KzE0MjMsNyBAQCBmYWxzZSBkaXNhYmxlIHRoZSBxdWlyayB3b3JrYXJvdW5k LCB3aGljaCBpcyBhbHNvIHRoZSBkZWZhdWx0LgogCiAjIyMgc3BlYy1jdHJs ICh4ODYpCiA+IGA9IExpc3Qgb2YgWyA8Ym9vbD4sIHhlbj08Ym9vbD4sIHtw dixodm0sbXNyLXNjLHJzYn09PGJvb2w+LAotPiAgICAgICAgICAgICAgYnRp LXRodW5rPXJldHBvbGluZXxsZmVuY2V8am1wLCB7aWJycyxpYnBiLHNzYmR9 PTxib29sPiBdYAorPiAgICAgICAgICAgICAgYnRpLXRodW5rPXJldHBvbGlu ZXxsZmVuY2V8am1wLCB7aWJycyxpYnBiLHNzYmQsZWFnZXItZnB1fT08Ym9v bD4gXWAKIAogQ29udHJvbHMgZm9yIHNwZWN1bGF0aXZlIGV4ZWN1dGlvbiBz aWRlY2hhbm5lbCBtaXRpZ2F0aW9ucy4gIEJ5IGRlZmF1bHQsIFhlbgogd2ls bCBwaWNrIHRoZSBtb3N0IGFwcHJvcHJpYXRlIG1pdGlnYXRpb25zIGJhc2Vk IG9uIGNvbXBpbGVkIGluIHN1cHBvcnQsCkBAIC0xNDczLDYgKzE0NzMsMTEg QEAgaGFyZHdhcmUsIHRoaXMgaXMgYSBnbG9iYWwgb3B0aW9uIGFwcGxpZWQg YXQgYm9vdCwgYW5kIG5vdCB2aXJ0dWFsaXNlZCBmb3IKIGd1ZXN0IHVzZS4g IE9uIEludGVsIGhhcmR3YXJlLCB0aGUgZmVhdHVyZSBpcyB2aXJ0dWFsaXNl ZCBmb3IgZ3Vlc3RzLAogaW5kZXBlbmRlbnRseSBvZiBYZW4ncyBjaG9pY2Ug b2Ygc2V0dGluZy4KIAorT24gYWxsIGhhcmR3YXJlLCB0aGUgYGVhZ2VyLWZw dT1gIG9wdGlvbiBjYW4gYmUgdXNlZCB0byBmb3JjZSBvciBwcmV2ZW50IFhl bgorZnJvbSB1c2luZyBmdWxseSBlYWdlciBGUFUgY29udGV4dCBzd2l0Y2hl cy4gIFRoaXMgaXMgY3VycmVudGx5IGltcGxlbWVudGVkIGFzCithIGdsb2Jh bCBjb250cm9sLiAgQnkgZGVmYXVsdCwgWGVuIHdpbGwgY2hvb3NlIHRvIHVz ZSBmdWxseSBlYWdlciBjb250ZXh0Citzd2l0Y2hlcyBvbiBoYXJkd2FyZSBi ZWxpZXZlZCB0byBzcGVjdWxhdGUgcGFzdCAjTk0gZXhjZXB0aW9ucy4KKwog IyMjIHN5bmNcX2NvbnNvbGUKID4gYD0gPGJvb2xlYW4+YAogCmRpZmYgLS1n aXQgYS94ZW4vYXJjaC94ODYvaTM4Ny5jIGIveGVuL2FyY2gveDg2L2kzODcu YwppbmRleCBmOWNmMDU5Li44NzNlYWI4IDEwMDY0NAotLS0gYS94ZW4vYXJj aC94ODYvaTM4Ny5jCisrKyBiL3hlbi9hcmNoL3g4Ni9pMzg3LmMKQEAgLTE2 LDYgKzE2LDcgQEAKICNpbmNsdWRlIDxhc20vaTM4Ny5oPgogI2luY2x1ZGUg PGFzbS94c3RhdGUuaD4KICNpbmNsdWRlIDxhc20vYXNtX2RlZm5zLmg+Cisj aW5jbHVkZSA8YXNtL3NwZWNfY3RybC5oPgogCiAvKioqKioqKioqKioqKioq KioqKioqKioqKioqKioqKi8KIC8qICAgICBGUFUgUmVzdG9yZSBGdW5jdGlv bnMgICAqLwpAQCAtMzA5LDYgKzMxMCw4IEBAIGludCB2Y3B1X2luaXRfZnB1 KHN0cnVjdCB2Y3B1ICp2KQogewogICAgIGludCByYzsKICAgICAKKyAgICB2 LT5hcmNoLmZ1bGx5X2VhZ2VyX2ZwdSA9IG9wdF9lYWdlcl9mcHU7CisKICAg ICBpZiAoIChyYyA9IHhzdGF0ZV9hbGxvY19zYXZlX2FyZWEodikpICE9IDAg KQogICAgICAgICByZXR1cm4gcmM7CiAKZGlmZiAtLWdpdCBhL3hlbi9hcmNo L3g4Ni9zcGVjX2N0cmwuYyBiL3hlbi9hcmNoL3g4Ni9zcGVjX2N0cmwuYwpp bmRleCA3OTAwYWNkLi44MzY4OTcyIDEwMDY0NAotLS0gYS94ZW4vYXJjaC94 ODYvc3BlY19jdHJsLmMKKysrIGIveGVuL2FyY2gveDg2L3NwZWNfY3RybC5j CkBAIC00NCw2ICs0NCw3IEBAIHN0YXRpYyBlbnVtIGluZF90aHVuayB7CiBz dGF0aWMgaW50OF90IF9faW5pdGRhdGEgb3B0X2licnMgPSAtMTsKIGJvb2xf dCBfX3JlYWRfbW9zdGx5IG9wdF9pYnBiID0gMTsKIGJvb2xfdCBfX3JlYWRf bW9zdGx5IG9wdF9zc2JkID0gMDsKK2ludDhfdCBfX3JlYWRfbW9zdGx5IG9w dF9lYWdlcl9mcHUgPSAtMTsKIAogYm9vbF90IF9faW5pdGRhdGEgYnNwX2Rl bGF5X3NwZWNfY3RybDsKIHVpbnQ4X3QgX19yZWFkX21vc3RseSBkZWZhdWx0 X3hlbl9zcGVjX2N0cmw7CkBAIC0xMTQsNiArMTE1LDcgQEAgc3RhdGljIGlu dCBfX2luaXQgcGFyc2Vfc3BlY19jdHJsKGNoYXIgKnMpCiAgICAgICAgICAg ICBvcHRfdGh1bmsgPSBUSFVOS19KTVA7CiAgICAgICAgICAgICBvcHRfaWJy cyA9IDA7CiAgICAgICAgICAgICBvcHRfaWJwYiA9IDA7CisgICAgICAgICAg ICBvcHRfZWFnZXJfZnB1ID0gMDsKICAgICAgICAgfQogICAgICAgICBlbHNl IGlmICggdmFsID4gMCApCiAgICAgICAgICAgICByYyA9IC1FSU5WQUw7CkBA IC0xNjcsNiArMTY5LDggQEAgc3RhdGljIGludCBfX2luaXQgcGFyc2Vfc3Bl Y19jdHJsKGNoYXIgKnMpCiAgICAgICAgICAgICBvcHRfaWJwYiA9IHZhbDsK ICAgICAgICAgZWxzZSBpZiAoICh2YWwgPSBwYXJzZV9ib29sZWFuKCJzc2Jk Iiwgcywgc3MpKSA+PSAwICkKICAgICAgICAgICAgIG9wdF9zc2JkID0gdmFs OworICAgICAgICBlbHNlIGlmICggKHZhbCA9IHBhcnNlX2Jvb2xlYW4oImVh Z2VyLWZwdSIsIHMsIHNzKSkgPj0gMCApCisgICAgICAgICAgICBvcHRfZWFn ZXJfZnB1ID0gdmFsOwogICAgICAgICBlbHNlCiAgICAgICAgICAgICByYyA9 IC1FSU5WQUw7CiAKQEAgLTIyNCwxNSArMjI4LDE5IEBAIHN0YXRpYyB2b2lk IF9faW5pdCBwcmludF9kZXRhaWxzKGVudW0gaW5kX3RodW5rIHRodW5rLCB1 aW50NjRfdCBjYXBzKQogICAgICAqIEFsdGVybmF0aXZlcyBibG9ja3MgZm9y IHByb3RlY3RpbmcgYWdhaW5zdCBhbmQvb3IgdmlydHVhbGlzaW5nCiAgICAg ICogbWl0aWdhdGlvbiBzdXBwb3J0IGZvciBndWVzdHMuCiAgICAgICovCi0g ICAgcHJpbnRrKCIgIFN1cHBvcnQgZm9yIFZNczogUFY6JXMlcyVzLCBIVk06 JXMlcyVzXG4iLAorICAgIHByaW50aygiICBTdXBwb3J0IGZvciBWTXM6IFBW OiVzJXMlcyVzLCBIVk06JXMlcyVzJXNcbiIsCiAgICAgICAgICAgIChib290 X2NwdV9oYXMoWDg2X0ZFQVRVUkVfU0NfTVNSX1BWKSB8fAotICAgICAgICAg ICAgYm9vdF9jcHVfaGFzKFg4Nl9GRUFUVVJFX1NDX1JTQl9QVikpICAgICA/ ICIiICAgICAgICAgICAgICAgOiAiIE5vbmUiLAorICAgICAgICAgICAgYm9v dF9jcHVfaGFzKFg4Nl9GRUFUVVJFX1NDX1JTQl9QVikgfHwKKyAgICAgICAg ICAgIG9wdF9lYWdlcl9mcHUpICAgICAgICAgICAgICAgICAgICAgICAgICAg PyAiIiAgICAgICAgICAgICAgIDogIiBOb25lIiwKICAgICAgICAgICAgYm9v dF9jcHVfaGFzKFg4Nl9GRUFUVVJFX1NDX01TUl9QVikgICAgICAgPyAiIE1T Ul9TUEVDX0NUUkwiIDogIiIsCiAgICAgICAgICAgIGJvb3RfY3B1X2hhcyhY ODZfRkVBVFVSRV9TQ19SU0JfUFYpICAgICAgID8gIiBSU0IiICAgICAgICAg ICA6ICIiLAorICAgICAgICAgICBvcHRfZWFnZXJfZnB1ICAgICAgICAgICAg ICAgICAgICAgICAgICAgICA/ICIgRUFHRVJfRlBVIiAgICAgOiAiIiwKICAg ICAgICAgICAgKGJvb3RfY3B1X2hhcyhYODZfRkVBVFVSRV9TQ19NU1JfSFZN KSB8fAotICAgICAgICAgICAgYm9vdF9jcHVfaGFzKFg4Nl9GRUFUVVJFX1ND X1JTQl9IVk0pKSAgICA/ICIiICAgICAgICAgICAgICAgOiAiIE5vbmUiLAor ICAgICAgICAgICAgYm9vdF9jcHVfaGFzKFg4Nl9GRUFUVVJFX1NDX1JTQl9I Vk0pIHx8CisgICAgICAgICAgICBvcHRfZWFnZXJfZnB1KSAgICAgICAgICAg ICAgICAgICAgICAgICAgID8gIiIgICAgICAgICAgICAgICA6ICIgTm9uZSIs CiAgICAgICAgICAgIGJvb3RfY3B1X2hhcyhYODZfRkVBVFVSRV9TQ19NU1Jf SFZNKSAgICAgID8gIiBNU1JfU1BFQ19DVFJMIiA6ICIiLAotICAgICAgICAg ICBib290X2NwdV9oYXMoWDg2X0ZFQVRVUkVfU0NfUlNCX0hWTSkgICAgICA/ ICIgUlNCIiAgICAgICAgICAgOiAiIik7CisgICAgICAgICAgIGJvb3RfY3B1 X2hhcyhYODZfRkVBVFVSRV9TQ19SU0JfSFZNKSAgICAgID8gIiBSU0IiICAg ICAgICAgICA6ICIiLAorICAgICAgICAgICBvcHRfZWFnZXJfZnB1ICAgICAg ICAgICAgICAgICAgICAgICAgICAgICA/ICIgRUFHRVJfRlBVIiAgICAgOiAi Iik7CiAKICAgICBwcmludGsoIiAgWFBUSSAoNjQtYml0IFBWIG9ubHkpOiBE b20wICVzLCBEb21VICVzXG4iLAogICAgICAgICAgICBvcHRfeHB0aSAmIE9Q VF9YUFRJX0RPTTAgPyAiZW5hYmxlZCIgOiAiZGlzYWJsZWQiLApAQCAtMzIy LDYgKzMzMCw4MiBAQCBzdGF0aWMgYm9vbF90IF9faW5pdCBfX21heWJlX3Vu dXNlZCByZXRwb2xpbmVfc2FmZSh1aW50NjRfdCBjYXBzKQogICAgIH0KIH0K IAorLyogQ2FsY3VsYXRlIHdoZXRoZXIgdGhpcyBDUFUgc3BlY3VsYXRlcyBw YXN0ICNOTSAqLworc3RhdGljIGJvb2xfdCBfX2luaXQgc2hvdWxkX3VzZV9l YWdlcl9mcHUodm9pZCkKK3sKKyAgICAvKgorICAgICAqIEFzc3VtZSBhbGwg dW5yZWNvZ25pc2VkIHByb2Nlc3NvcnMgYXJlIG9rLiAgVGhpcyBpcyBvbmx5 IGtub3duIHRvCisgICAgICogYWZmZWN0IEludGVsIEZhbWlseSA2IHByb2Nl c3NvcnMuCisgICAgICovCisgICAgaWYgKCBib290X2NwdV9kYXRhLng4Nl92 ZW5kb3IgIT0gWDg2X1ZFTkRPUl9JTlRFTCB8fAorICAgICAgICAgYm9vdF9j cHVfZGF0YS54ODYgIT0gNiApCisgICAgICAgIHJldHVybiAwOworCisgICAg c3dpdGNoICggYm9vdF9jcHVfZGF0YS54ODZfbW9kZWwgKQorICAgIHsKKyAg ICAgICAgLyoKKyAgICAgICAgICogQ29yZSBwcm9jZXNzb3JzIHNpbmNlIGF0 IGxlYXN0IE5laGFsZW0gYXJlIHZ1bG5lcmFibGUuCisgICAgICAgICAqLwor ICAgIGNhc2UgMHgxZTogLyogTmVoYWxlbSAqLworICAgIGNhc2UgMHgxZjog LyogQXVidXJuZGFsZSAvIEhhdmVuZGFsZSAqLworICAgIGNhc2UgMHgxYTog LyogTmVoYWxlbSBFUCAqLworICAgIGNhc2UgMHgyZTogLyogTmVoYWxlbSBF WCAqLworICAgIGNhc2UgMHgyNTogLyogV2VzdG1lcmUgKi8KKyAgICBjYXNl IDB4MmM6IC8qIFdlc3RtZXJlIEVQICovCisgICAgY2FzZSAweDJmOiAvKiBX ZXN0bWVyZSBFWCAqLworICAgIGNhc2UgMHgyYTogLyogU2FuZHlCcmlkZ2Ug Ki8KKyAgICBjYXNlIDB4MmQ6IC8qIFNhbmR5QnJpZGdlIEVQL0VYICovCisg ICAgY2FzZSAweDNhOiAvKiBJdnlCcmlkZ2UgKi8KKyAgICBjYXNlIDB4M2U6 IC8qIEl2eUJyaWRnZSBFUC9FWCAqLworICAgIGNhc2UgMHgzYzogLyogSGFz d2VsbCAqLworICAgIGNhc2UgMHgzZjogLyogSGFzd2VsbCBFWC9FUCAqLwor ICAgIGNhc2UgMHg0NTogLyogSGFzd2VsbCBEICovCisgICAgY2FzZSAweDQ2 OiAvKiBIYXN3ZWxsIEggKi8KKyAgICBjYXNlIDB4M2Q6IC8qIEJyb2Fkd2Vs bCAqLworICAgIGNhc2UgMHg0NzogLyogQnJvYWR3ZWxsIEggKi8KKyAgICBj YXNlIDB4NGY6IC8qIEJyb2Fkd2VsbCBFUC9FWCAqLworICAgIGNhc2UgMHg1 NjogLyogQnJvYWR3ZWxsIEQgKi8KKyAgICBjYXNlIDB4NGU6IC8qIFNreWxh a2UgTSAqLworICAgIGNhc2UgMHg1NTogLyogU2t5bGFrZSBYICovCisgICAg Y2FzZSAweDVlOiAvKiBTa3lsYWtlIEQgKi8KKyAgICBjYXNlIDB4NjY6IC8q IENhbm5vbmxha2UgKi8KKyAgICBjYXNlIDB4Njc6IC8qIENhbm5vbmxha2U/ ICovCisgICAgY2FzZSAweDhlOiAvKiBLYWJ5bGFrZSBNICovCisgICAgY2Fz ZSAweDllOiAvKiBLYWJ5bGFrZSBEICovCisgICAgICAgIHJldHVybiAxOwor CisgICAgICAgIC8qCisgICAgICAgICAqIEF0b20gcHJvY2Vzc29ycyBhcmUg bm90IHZ1bG5lcmFibGUuCisgICAgICAgICAqLworICAgIGNhc2UgMHgxYzog LyogUGluZXZpZXcgKi8KKyAgICBjYXNlIDB4MjY6IC8qIExpbmNyb2Z0ICov CisgICAgY2FzZSAweDI3OiAvKiBQZW53ZWxsICovCisgICAgY2FzZSAweDM1 OiAvKiBDbG92ZXJ2aWV3ICovCisgICAgY2FzZSAweDM2OiAvKiBDZWRhcnZp ZXcgKi8KKyAgICBjYXNlIDB4Mzc6IC8qIEJheXRyYWlsIC8gVmFsbGV5dmll dyAoU2lsdmVybW9udCkgKi8KKyAgICBjYXNlIDB4NGQ6IC8qIEF2YXRvbiAv IFJhbmdlbHkgKFNpbHZlcm1vbnQpICovCisgICAgY2FzZSAweDRjOiAvKiBD aGVycnl0cmFpbCAvIEJyYXNzd2VsbCAqLworICAgIGNhc2UgMHg0YTogLyog TWVycmlmaWVsZCAqLworICAgIGNhc2UgMHg1YTogLyogTW9vcmVmaWVsZCAq LworICAgIGNhc2UgMHg1YzogLyogR29sZG1vbnQgKi8KKyAgICBjYXNlIDB4 NWY6IC8qIERlbnZlcnRvbiAqLworICAgIGNhc2UgMHg3YTogLyogR2VtaW5p IExha2UgKi8KKyAgICAgICAgcmV0dXJuIDA7CisKKyAgICAgICAgLyoKKyAg ICAgICAgICogS25pZ2h0cyBwcm9jZXNzb3JzIGFyZSBub3QgdnVsbmVyYWJs ZS4KKyAgICAgICAgICovCisgICAgY2FzZSAweDU3OiAvKiBLbmlnaHRzIExh bmRpbmcgKi8KKyAgICBjYXNlIDB4ODU6IC8qIEtuaWdodHMgTWlsbCAqLwor ICAgICAgICByZXR1cm4gMDsKKworICAgIGRlZmF1bHQ6CisgICAgICAgIHBy aW50aygiVW5yZWNvZ25pc2VkIENQVSBtb2RlbCAlI3ggLSBhc3N1bWluZyB2 dWxuZXJhYmxlIHRvIExhenlGUFVcbiIsCisgICAgICAgICAgICAgICBib290 X2NwdV9kYXRhLng4Nl9tb2RlbCk7CisgICAgICAgIHJldHVybiAxOworICAg IH0KK30KKwogI2RlZmluZSBPUFRfWFBUSV9ERUZBVUxUICAweGZmCiB1aW50 OF90IF9fcmVhZF9tb3N0bHkgb3B0X3hwdGkgPSBPUFRfWFBUSV9ERUZBVUxU OwogCkBAIC01MTEsNiArNTk1LDEwIEBAIHZvaWQgX19pbml0IGluaXRfc3Bl Y3VsYXRpb25fbWl0aWdhdGlvbnModm9pZCkKICAgICBpZiAoICFib290X2Nw dV9oYXMoWDg2X0ZFQVRVUkVfSUJSU0IpICYmICFib290X2NwdV9oYXMoWDg2 X0ZFQVRVUkVfSUJQQikgKQogICAgICAgICBvcHRfaWJwYiA9IDA7CiAKKyAg ICAvKiBDaGVjayB3aGV0aGVyIEVhZ2VyIEZQVSBzaG91bGQgYmUgZW5hYmxl ZCBieSBkZWZhdWx0LiAqLworICAgIGlmICggb3B0X2VhZ2VyX2ZwdSA9PSAt MSApCisgICAgICAgIG9wdF9lYWdlcl9mcHUgPSBzaG91bGRfdXNlX2VhZ2Vy X2ZwdSgpOworCiAgICAgLyogKFJlKWluaXQgQlNQIHN0YXRlIG5vdyB0aGF0 IGRlZmF1bHRfc3BlY19jdHJsX2ZsYWdzIGhhcyBiZWVuIGNhbGN1bGF0ZWQu ICovCiAgICAgaW5pdF9zaGFkb3dfc3BlY19jdHJsX3N0YXRlKCk7CiAKZGlm ZiAtLWdpdCBhL3hlbi9pbmNsdWRlL2FzbS14ODYvc3BlY19jdHJsLmggYi94 ZW4vaW5jbHVkZS9hc20teDg2L3NwZWNfY3RybC5oCmluZGV4IDQ1YWMyMDAu LmQ4MWM4NTUgMTAwNjQ0Ci0tLSBhL3hlbi9pbmNsdWRlL2FzbS14ODYvc3Bl Y19jdHJsLmgKKysrIGIveGVuL2luY2x1ZGUvYXNtLXg4Ni9zcGVjX2N0cmwu aApAQCAtMjgsNiArMjgsNyBAQCB2b2lkIGluaXRfc3BlY3VsYXRpb25fbWl0 aWdhdGlvbnModm9pZCk7CiAKIGV4dGVybiBib29sX3Qgb3B0X2licGI7CiBl eHRlcm4gYm9vbF90IG9wdF9zc2JkOworZXh0ZXJuIGludDhfdCBvcHRfZWFn ZXJfZnB1OwogCiBleHRlcm4gYm9vbF90IGJzcF9kZWxheV9zcGVjX2N0cmw7 CiBleHRlcm4gdWludDhfdCBkZWZhdWx0X3hlbl9zcGVjX2N0cmw7Cg== --=separator Content-Type: application/octet-stream; name="xsa267-4.7-1.patch" Content-Disposition: attachment; filename="xsa267-4.7-1.patch" Content-Transfer-Encoding: base64 RnJvbTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNv bT4KU3ViamVjdDogeDg2OiBTdXBwb3J0IGZ1bGx5IGVhZ2VyIEZQVSBjb250 ZXh0IHN3aXRjaGluZwoKVGhpcyBpcyBjb250cm9sbGVkIG9uIGEgcGVyLXZj cHUgYmFzZXMgZm9yIGZsZXhpYmlsaXR5LgoKVGhpcyBpcyBwYXJ0IG9mIFhT QS0yNjcgLyBDVkUtMjAxOC0zNjY1CgpTaWduZWQtb2ZmLWJ5OiBBbmRyZXcg Q29vcGVyIDxhbmRyZXcuY29vcGVyM0BjaXRyaXguY29tPgpSZXZpZXdlZC1i eTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgoKZGlmZiAtLWdp dCBhL3hlbi9hcmNoL3g4Ni9pMzg3LmMgYi94ZW4vYXJjaC94ODYvaTM4Ny5j CmluZGV4IDg2YjA5OGQuLjQxMTA1NTUgMTAwNjQ0Ci0tLSBhL3hlbi9hcmNo L3g4Ni9pMzg3LmMKKysrIGIveGVuL2FyY2gveDg2L2kzODcuYwpAQCAtMjEx LDcgKzIxMSw3IEBAIHZvaWQgdmNwdV9yZXN0b3JlX2ZwdV9lYWdlcihzdHJ1 Y3QgdmNwdSAqdikKICAgICBBU1NFUlQoIWlzX2lkbGVfdmNwdSh2KSk7CiAg ICAgCiAgICAgLyogUmVzdG9yZSBub25sYXp5IGV4dGVuZGVkIHN0YXRlIChp LmUuIHBhcnRzIG5vdCB0cmFja2VkIGJ5IENSMC5UUykuICovCi0gICAgaWYg KCAhdi0+YXJjaC5ub25sYXp5X3hzdGF0ZV91c2VkICkKKyAgICBpZiAoICF2 LT5hcmNoLmZ1bGx5X2VhZ2VyX2ZwdSAmJiAhdi0+YXJjaC5ub25sYXp5X3hz dGF0ZV91c2VkICkKICAgICAgICAgcmV0dXJuOwogCiAgICAgLyogQXZvaWQg cmVjdXJzaW9uICovCkBAIC0yMjIsMTEgKzIyMiwxOSBAQCB2b2lkIHZjcHVf cmVzdG9yZV9mcHVfZWFnZXIoc3RydWN0IHZjcHUgKnYpCiAgICAgICogYWJv dmUpIHdlIGFsc28gbmVlZCB0byByZXN0b3JlIGZ1bGwgc3RhdGUsIHRvIHBy ZXZlbnQgc3Vic2VxdWVudGx5CiAgICAgICogc2F2aW5nIHN0YXRlIGJlbG9u Z2luZyB0byBhbm90aGVyIHZDUFUuCiAgICAgICovCi0gICAgaWYgKCB4c3Rh dGVfYWxsKHYpICkKKyAgICBpZiAoIHYtPmFyY2guZnVsbHlfZWFnZXJfZnB1 IHx8ICh2LT5hcmNoLnhzYXZlX2FyZWEgJiYgeHN0YXRlX2FsbCh2KSkgKQog ICAgIHsKLSAgICAgICAgZnB1X3hyc3Rvcih2LCBYU1RBVEVfQUxMKTsKKyAg ICAgICAgaWYgKCBjcHVfaGFzX3hzYXZlICkKKyAgICAgICAgICAgIGZwdV94 cnN0b3IodiwgWFNUQVRFX0FMTCk7CisgICAgICAgIGVsc2UKKyAgICAgICAg ICAgIGZwdV9meHJzdG9yKHYpOworCiAgICAgICAgIHYtPmZwdV9pbml0aWFs aXNlZCA9IDE7CiAgICAgICAgIHYtPmZwdV9kaXJ0aWVkID0gMTsKKworICAg ICAgICAvKiBYZW4gZG9lc24ndCBuZWVkIFRTIHNldCwgYnV0IHRoZSBndWVz dCBtaWdodC4gKi8KKyAgICAgICAgaWYgKCBpc19wdl92Y3B1KHYpICYmICh2 LT5hcmNoLnB2X3ZjcHUuY3RybHJlZ1swXSAmIFg4Nl9DUjBfVFMpICkKKyAg ICAgICAgICAgIHN0dHMoKTsKICAgICB9CiAgICAgZWxzZQogICAgIHsKQEAg LTI0OCw2ICsyNTYsOCBAQCB2b2lkIHZjcHVfcmVzdG9yZV9mcHVfbGF6eShz dHJ1Y3QgdmNwdSAqdikKICAgICBpZiAoIHYtPmZwdV9kaXJ0aWVkICkKICAg ICAgICAgcmV0dXJuOwogCisgICAgQVNTRVJUKCF2LT5hcmNoLmZ1bGx5X2Vh Z2VyX2ZwdSk7CisKICAgICBpZiAoIGNwdV9oYXNfeHNhdmUgKQogICAgICAg ICBmcHVfeHJzdG9yKHYsIFhTVEFURV9MQVpZKTsKICAgICBlbHNlCmRpZmYg LS1naXQgYS94ZW4vaW5jbHVkZS9hc20teDg2L2RvbWFpbi5oIGIveGVuL2lu Y2x1ZGUvYXNtLXg4Ni9kb21haW4uaAppbmRleCA2MTlhOThkLi5lNzlhZjU1 IDEwMDY0NAotLS0gYS94ZW4vaW5jbHVkZS9hc20teDg2L2RvbWFpbi5oCisr KyBiL3hlbi9pbmNsdWRlL2FzbS14ODYvZG9tYWluLmgKQEAgLTU5NSw2ICs1 OTUsOSBAQCBzdHJ1Y3QgYXJjaF92Y3B1CiAgICAgICogYW5kIHRodXMgc2hv dWxkIGJlIHNhdmVkL3Jlc3RvcmVkLiAqLwogICAgIGJvb2xfdCBub25sYXp5 X3hzdGF0ZV91c2VkOwogCisgICAgLyogUmVzdG9yZSBhbGwgRlBVIHN0YXRl IChsYXp5IGFuZCBub24tbGF6eSBzdGF0ZSkgb24gY29udGV4dCBzd2l0Y2g/ ICovCisgICAgYm9vbF90IGZ1bGx5X2VhZ2VyX2ZwdTsKKwogICAgIC8qCiAg ICAgICogVGhlIFNNQVAgY2hlY2sgcG9saWN5IHdoZW4gdXBkYXRpbmcgcnVu c3RhdGVfZ3Vlc3QodikgYW5kIHRoZQogICAgICAqIHNlY29uZGFyeSBzeXN0 ZW0gdGltZS4K --=separator Content-Type: application/octet-stream; name="xsa267-4.7-2.patch" Content-Disposition: attachment; filename="xsa267-4.7-2.patch" Content-Transfer-Encoding: base64 RnJvbTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNv bT4KU3ViamVjdDogeDg2L3NwZWMtY3RybDogTWl0aWdhdGlvbnMgZm9yIExh enlGUFUKCkludGVsIENvcmUgcHJvY2Vzc29ycyBzaW5jZSBhdCBsZWFzdCBO ZWhhbGVtIHNwZWN1bGF0ZSBwYXN0ICNOTSwgd2hpY2ggaXMgdGhlCm1lY2hh bmlzbSBieSB3aGljaCBsYXp5IEZQVSBjb250ZXh0IHN3aXRjaGluZyBpcyBp bXBsZW1lbnRlZC4KCk9uIGFmZmVjdGVkIHByb2Nlc3NvcnMsIFhlbiBtdXN0 IHVzZSBmdWxseSBlYWdlciBGUFUgY29udGV4dCBzd2l0Y2hpbmcgdG8KcHJl dmVudCBndWVzdHMgZnJvbSBiZWluZyBhYmxlIHRvIHJlYWQgRlBVIHN0YXRl IChTU0UvQVZYL2V0YykgZnJvbSBwcmV2aW91c2x5CnNjaGVkdWxlZCB2Y3B1 cy4KClRoaXMgaXMgcGFydCBvZiBYU0EtMjY3IC8gQ1ZFLTIwMTgtMzY2NQoK U2lnbmVkLW9mZi1ieTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNA Y2l0cml4LmNvbT4KUmV2aWV3ZWQtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGlj aEBzdXNlLmNvbT4KCmRpZmYgLS1naXQgYS9kb2NzL21pc2MveGVuLWNvbW1h bmQtbGluZS5tYXJrZG93biBiL2RvY3MvbWlzYy94ZW4tY29tbWFuZC1saW5l Lm1hcmtkb3duCmluZGV4IDAzOWJjNmIuLjBjMjQ0NDAgMTAwNjQ0Ci0tLSBh L2RvY3MvbWlzYy94ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCisrKyBiL2Rv Y3MvbWlzYy94ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCkBAIC0xNDcyLDcg KzE0NzIsNyBAQCBmYWxzZSBkaXNhYmxlIHRoZSBxdWlyayB3b3JrYXJvdW5k LCB3aGljaCBpcyBhbHNvIHRoZSBkZWZhdWx0LgogCiAjIyMgc3BlYy1jdHJs ICh4ODYpCiA+IGA9IExpc3Qgb2YgWyA8Ym9vbD4sIHhlbj08Ym9vbD4sIHtw dixodm0sbXNyLXNjLHJzYn09PGJvb2w+LAotPiAgICAgICAgICAgICAgYnRp LXRodW5rPXJldHBvbGluZXxsZmVuY2V8am1wLCB7aWJycyxpYnBiLHNzYmR9 PTxib29sPiBdYAorPiAgICAgICAgICAgICAgYnRpLXRodW5rPXJldHBvbGlu ZXxsZmVuY2V8am1wLCB7aWJycyxpYnBiLHNzYmQsZWFnZXItZnB1fT08Ym9v bD4gXWAKIAogQ29udHJvbHMgZm9yIHNwZWN1bGF0aXZlIGV4ZWN1dGlvbiBz aWRlY2hhbm5lbCBtaXRpZ2F0aW9ucy4gIEJ5IGRlZmF1bHQsIFhlbgogd2ls bCBwaWNrIHRoZSBtb3N0IGFwcHJvcHJpYXRlIG1pdGlnYXRpb25zIGJhc2Vk IG9uIGNvbXBpbGVkIGluIHN1cHBvcnQsCkBAIC0xNTIyLDYgKzE1MjIsMTEg QEAgaGFyZHdhcmUsIHRoaXMgaXMgYSBnbG9iYWwgb3B0aW9uIGFwcGxpZWQg YXQgYm9vdCwgYW5kIG5vdCB2aXJ0dWFsaXNlZCBmb3IKIGd1ZXN0IHVzZS4g IE9uIEludGVsIGhhcmR3YXJlLCB0aGUgZmVhdHVyZSBpcyB2aXJ0dWFsaXNl ZCBmb3IgZ3Vlc3RzLAogaW5kZXBlbmRlbnRseSBvZiBYZW4ncyBjaG9pY2Ug b2Ygc2V0dGluZy4KIAorT24gYWxsIGhhcmR3YXJlLCB0aGUgYGVhZ2VyLWZw dT1gIG9wdGlvbiBjYW4gYmUgdXNlZCB0byBmb3JjZSBvciBwcmV2ZW50IFhl bgorZnJvbSB1c2luZyBmdWxseSBlYWdlciBGUFUgY29udGV4dCBzd2l0Y2hl cy4gIFRoaXMgaXMgY3VycmVudGx5IGltcGxlbWVudGVkIGFzCithIGdsb2Jh bCBjb250cm9sLiAgQnkgZGVmYXVsdCwgWGVuIHdpbGwgY2hvb3NlIHRvIHVz ZSBmdWxseSBlYWdlciBjb250ZXh0Citzd2l0Y2hlcyBvbiBoYXJkd2FyZSBi ZWxpZXZlZCB0byBzcGVjdWxhdGUgcGFzdCAjTk0gZXhjZXB0aW9ucy4KKwog IyMjIHN5bmNcX2NvbnNvbGUKID4gYD0gPGJvb2xlYW4+YAogCmRpZmYgLS1n aXQgYS94ZW4vYXJjaC94ODYvaTM4Ny5jIGIveGVuL2FyY2gveDg2L2kzODcu YwppbmRleCA0MTEwNTU1Li4yNzk4NzhmIDEwMDY0NAotLS0gYS94ZW4vYXJj aC94ODYvaTM4Ny5jCisrKyBiL3hlbi9hcmNoL3g4Ni9pMzg3LmMKQEAgLTE2 LDYgKzE2LDcgQEAKICNpbmNsdWRlIDxhc20vaTM4Ny5oPgogI2luY2x1ZGUg PGFzbS94c3RhdGUuaD4KICNpbmNsdWRlIDxhc20vYXNtX2RlZm5zLmg+Cisj aW5jbHVkZSA8YXNtL3NwZWNfY3RybC5oPgogCiAvKioqKioqKioqKioqKioq KioqKioqKioqKioqKioqKi8KIC8qICAgICBGUFUgUmVzdG9yZSBGdW5jdGlv bnMgICAqLwpAQCAtMzA4LDYgKzMwOSw4IEBAIGludCB2Y3B1X2luaXRfZnB1 KHN0cnVjdCB2Y3B1ICp2KQogewogICAgIGludCByYzsKICAgICAKKyAgICB2 LT5hcmNoLmZ1bGx5X2VhZ2VyX2ZwdSA9IG9wdF9lYWdlcl9mcHU7CisKICAg ICBpZiAoIChyYyA9IHhzdGF0ZV9hbGxvY19zYXZlX2FyZWEodikpICE9IDAg KQogICAgICAgICByZXR1cm4gcmM7CiAKZGlmZiAtLWdpdCBhL3hlbi9hcmNo L3g4Ni9zcGVjX2N0cmwuYyBiL3hlbi9hcmNoL3g4Ni9zcGVjX2N0cmwuYwpp bmRleCBkODUyOGUzLi43ZjNmZDI2IDEwMDY0NAotLS0gYS94ZW4vYXJjaC94 ODYvc3BlY19jdHJsLmMKKysrIGIveGVuL2FyY2gveDg2L3NwZWNfY3RybC5j CkBAIC00NCw2ICs0NCw3IEBAIHN0YXRpYyBlbnVtIGluZF90aHVuayB7CiBz dGF0aWMgaW50OF90IF9faW5pdGRhdGEgb3B0X2licnMgPSAtMTsKIGJvb2xf dCBfX3JlYWRfbW9zdGx5IG9wdF9pYnBiID0gMTsKIGJvb2xfdCBfX3JlYWRf bW9zdGx5IG9wdF9zc2JkID0gMDsKK2ludDhfdCBfX3JlYWRfbW9zdGx5IG9w dF9lYWdlcl9mcHUgPSAtMTsKIAogYm9vbF90IF9faW5pdGRhdGEgYnNwX2Rl bGF5X3NwZWNfY3RybDsKIHVpbnQ4X3QgX19yZWFkX21vc3RseSBkZWZhdWx0 X3hlbl9zcGVjX2N0cmw7CkBAIC0xMTQsNiArMTE1LDcgQEAgc3RhdGljIGlu dCBfX2luaXQgcGFyc2Vfc3BlY19jdHJsKGNoYXIgKnMpCiAgICAgICAgICAg ICBvcHRfdGh1bmsgPSBUSFVOS19KTVA7CiAgICAgICAgICAgICBvcHRfaWJy cyA9IDA7CiAgICAgICAgICAgICBvcHRfaWJwYiA9IDA7CisgICAgICAgICAg ICBvcHRfZWFnZXJfZnB1ID0gMDsKICAgICAgICAgfQogICAgICAgICBlbHNl IGlmICggdmFsID4gMCApCiAgICAgICAgICAgICByYyA9IC1FSU5WQUw7CkBA IC0xNjcsNiArMTY5LDggQEAgc3RhdGljIGludCBfX2luaXQgcGFyc2Vfc3Bl Y19jdHJsKGNoYXIgKnMpCiAgICAgICAgICAgICBvcHRfaWJwYiA9IHZhbDsK ICAgICAgICAgZWxzZSBpZiAoICh2YWwgPSBwYXJzZV9ib29sZWFuKCJzc2Jk Iiwgcywgc3MpKSA+PSAwICkKICAgICAgICAgICAgIG9wdF9zc2JkID0gdmFs OworICAgICAgICBlbHNlIGlmICggKHZhbCA9IHBhcnNlX2Jvb2xlYW4oImVh Z2VyLWZwdSIsIHMsIHNzKSkgPj0gMCApCisgICAgICAgICAgICBvcHRfZWFn ZXJfZnB1ID0gdmFsOwogICAgICAgICBlbHNlCiAgICAgICAgICAgICByYyA9 IC1FSU5WQUw7CiAKQEAgLTIyMywxNSArMjI3LDE5IEBAIHN0YXRpYyB2b2lk IF9faW5pdCBwcmludF9kZXRhaWxzKGVudW0gaW5kX3RodW5rIHRodW5rLCB1 aW50NjRfdCBjYXBzKQogICAgICAqIEFsdGVybmF0aXZlcyBibG9ja3MgZm9y IHByb3RlY3RpbmcgYWdhaW5zdCBhbmQvb3IgdmlydHVhbGlzaW5nCiAgICAg ICogbWl0aWdhdGlvbiBzdXBwb3J0IGZvciBndWVzdHMuCiAgICAgICovCi0g ICAgcHJpbnRrKCIgIFN1cHBvcnQgZm9yIFZNczogUFY6JXMlcyVzLCBIVk06 JXMlcyVzXG4iLAorICAgIHByaW50aygiICBTdXBwb3J0IGZvciBWTXM6IFBW OiVzJXMlcyVzLCBIVk06JXMlcyVzJXNcbiIsCiAgICAgICAgICAgIChib290 X2NwdV9oYXMoWDg2X0ZFQVRVUkVfU0NfTVNSX1BWKSB8fAotICAgICAgICAg ICAgYm9vdF9jcHVfaGFzKFg4Nl9GRUFUVVJFX1NDX1JTQl9QVikpICAgICA/ ICIiICAgICAgICAgICAgICAgOiAiIE5vbmUiLAorICAgICAgICAgICAgYm9v dF9jcHVfaGFzKFg4Nl9GRUFUVVJFX1NDX1JTQl9QVikgfHwKKyAgICAgICAg ICAgIG9wdF9lYWdlcl9mcHUpICAgICAgICAgICAgICAgICAgICAgICAgICAg PyAiIiAgICAgICAgICAgICAgIDogIiBOb25lIiwKICAgICAgICAgICAgYm9v dF9jcHVfaGFzKFg4Nl9GRUFUVVJFX1NDX01TUl9QVikgICAgICAgPyAiIE1T Ul9TUEVDX0NUUkwiIDogIiIsCiAgICAgICAgICAgIGJvb3RfY3B1X2hhcyhY ODZfRkVBVFVSRV9TQ19SU0JfUFYpICAgICAgID8gIiBSU0IiICAgICAgICAg ICA6ICIiLAorICAgICAgICAgICBvcHRfZWFnZXJfZnB1ICAgICAgICAgICAg ICAgICAgICAgICAgICAgICA/ICIgRUFHRVJfRlBVIiAgICAgOiAiIiwKICAg ICAgICAgICAgKGJvb3RfY3B1X2hhcyhYODZfRkVBVFVSRV9TQ19NU1JfSFZN KSB8fAotICAgICAgICAgICAgYm9vdF9jcHVfaGFzKFg4Nl9GRUFUVVJFX1ND X1JTQl9IVk0pKSAgICA/ICIiICAgICAgICAgICAgICAgOiAiIE5vbmUiLAor ICAgICAgICAgICAgYm9vdF9jcHVfaGFzKFg4Nl9GRUFUVVJFX1NDX1JTQl9I Vk0pIHx8CisgICAgICAgICAgICBvcHRfZWFnZXJfZnB1KSAgICAgICAgICAg ICAgICAgICAgICAgICAgID8gIiIgICAgICAgICAgICAgICA6ICIgTm9uZSIs CiAgICAgICAgICAgIGJvb3RfY3B1X2hhcyhYODZfRkVBVFVSRV9TQ19NU1Jf SFZNKSAgICAgID8gIiBNU1JfU1BFQ19DVFJMIiA6ICIiLAotICAgICAgICAg ICBib290X2NwdV9oYXMoWDg2X0ZFQVRVUkVfU0NfUlNCX0hWTSkgICAgICA/ ICIgUlNCIiAgICAgICAgICAgOiAiIik7CisgICAgICAgICAgIGJvb3RfY3B1 X2hhcyhYODZfRkVBVFVSRV9TQ19SU0JfSFZNKSAgICAgID8gIiBSU0IiICAg ICAgICAgICA6ICIiLAorICAgICAgICAgICBvcHRfZWFnZXJfZnB1ICAgICAg ICAgICAgICAgICAgICAgICAgICAgICA/ICIgRUFHRVJfRlBVIiAgICAgOiAi Iik7CiAKICAgICBwcmludGsoIiAgWFBUSSAoNjQtYml0IFBWIG9ubHkpOiBE b20wICVzLCBEb21VICVzXG4iLAogICAgICAgICAgICBvcHRfeHB0aSAmIE9Q VF9YUFRJX0RPTTAgPyAiZW5hYmxlZCIgOiAiZGlzYWJsZWQiLApAQCAtMzIx LDYgKzMyOSw4MiBAQCBzdGF0aWMgYm9vbF90IF9faW5pdCByZXRwb2xpbmVf c2FmZSh1aW50NjRfdCBjYXBzKQogICAgIH0KIH0KIAorLyogQ2FsY3VsYXRl IHdoZXRoZXIgdGhpcyBDUFUgc3BlY3VsYXRlcyBwYXN0ICNOTSAqLworc3Rh dGljIGJvb2xfdCBfX2luaXQgc2hvdWxkX3VzZV9lYWdlcl9mcHUodm9pZCkK K3sKKyAgICAvKgorICAgICAqIEFzc3VtZSBhbGwgdW5yZWNvZ25pc2VkIHBy b2Nlc3NvcnMgYXJlIG9rLiAgVGhpcyBpcyBvbmx5IGtub3duIHRvCisgICAg ICogYWZmZWN0IEludGVsIEZhbWlseSA2IHByb2Nlc3NvcnMuCisgICAgICov CisgICAgaWYgKCBib290X2NwdV9kYXRhLng4Nl92ZW5kb3IgIT0gWDg2X1ZF TkRPUl9JTlRFTCB8fAorICAgICAgICAgYm9vdF9jcHVfZGF0YS54ODYgIT0g NiApCisgICAgICAgIHJldHVybiAwOworCisgICAgc3dpdGNoICggYm9vdF9j cHVfZGF0YS54ODZfbW9kZWwgKQorICAgIHsKKyAgICAgICAgLyoKKyAgICAg ICAgICogQ29yZSBwcm9jZXNzb3JzIHNpbmNlIGF0IGxlYXN0IE5laGFsZW0g YXJlIHZ1bG5lcmFibGUuCisgICAgICAgICAqLworICAgIGNhc2UgMHgxZTog LyogTmVoYWxlbSAqLworICAgIGNhc2UgMHgxZjogLyogQXVidXJuZGFsZSAv IEhhdmVuZGFsZSAqLworICAgIGNhc2UgMHgxYTogLyogTmVoYWxlbSBFUCAq LworICAgIGNhc2UgMHgyZTogLyogTmVoYWxlbSBFWCAqLworICAgIGNhc2Ug MHgyNTogLyogV2VzdG1lcmUgKi8KKyAgICBjYXNlIDB4MmM6IC8qIFdlc3Rt ZXJlIEVQICovCisgICAgY2FzZSAweDJmOiAvKiBXZXN0bWVyZSBFWCAqLwor ICAgIGNhc2UgMHgyYTogLyogU2FuZHlCcmlkZ2UgKi8KKyAgICBjYXNlIDB4 MmQ6IC8qIFNhbmR5QnJpZGdlIEVQL0VYICovCisgICAgY2FzZSAweDNhOiAv KiBJdnlCcmlkZ2UgKi8KKyAgICBjYXNlIDB4M2U6IC8qIEl2eUJyaWRnZSBF UC9FWCAqLworICAgIGNhc2UgMHgzYzogLyogSGFzd2VsbCAqLworICAgIGNh c2UgMHgzZjogLyogSGFzd2VsbCBFWC9FUCAqLworICAgIGNhc2UgMHg0NTog LyogSGFzd2VsbCBEICovCisgICAgY2FzZSAweDQ2OiAvKiBIYXN3ZWxsIEgg Ki8KKyAgICBjYXNlIDB4M2Q6IC8qIEJyb2Fkd2VsbCAqLworICAgIGNhc2Ug MHg0NzogLyogQnJvYWR3ZWxsIEggKi8KKyAgICBjYXNlIDB4NGY6IC8qIEJy b2Fkd2VsbCBFUC9FWCAqLworICAgIGNhc2UgMHg1NjogLyogQnJvYWR3ZWxs IEQgKi8KKyAgICBjYXNlIDB4NGU6IC8qIFNreWxha2UgTSAqLworICAgIGNh c2UgMHg1NTogLyogU2t5bGFrZSBYICovCisgICAgY2FzZSAweDVlOiAvKiBT a3lsYWtlIEQgKi8KKyAgICBjYXNlIDB4NjY6IC8qIENhbm5vbmxha2UgKi8K KyAgICBjYXNlIDB4Njc6IC8qIENhbm5vbmxha2U/ICovCisgICAgY2FzZSAw eDhlOiAvKiBLYWJ5bGFrZSBNICovCisgICAgY2FzZSAweDllOiAvKiBLYWJ5 bGFrZSBEICovCisgICAgICAgIHJldHVybiAxOworCisgICAgICAgIC8qCisg ICAgICAgICAqIEF0b20gcHJvY2Vzc29ycyBhcmUgbm90IHZ1bG5lcmFibGUu CisgICAgICAgICAqLworICAgIGNhc2UgMHgxYzogLyogUGluZXZpZXcgKi8K KyAgICBjYXNlIDB4MjY6IC8qIExpbmNyb2Z0ICovCisgICAgY2FzZSAweDI3 OiAvKiBQZW53ZWxsICovCisgICAgY2FzZSAweDM1OiAvKiBDbG92ZXJ2aWV3 ICovCisgICAgY2FzZSAweDM2OiAvKiBDZWRhcnZpZXcgKi8KKyAgICBjYXNl IDB4Mzc6IC8qIEJheXRyYWlsIC8gVmFsbGV5dmlldyAoU2lsdmVybW9udCkg Ki8KKyAgICBjYXNlIDB4NGQ6IC8qIEF2YXRvbiAvIFJhbmdlbHkgKFNpbHZl cm1vbnQpICovCisgICAgY2FzZSAweDRjOiAvKiBDaGVycnl0cmFpbCAvIEJy YXNzd2VsbCAqLworICAgIGNhc2UgMHg0YTogLyogTWVycmlmaWVsZCAqLwor ICAgIGNhc2UgMHg1YTogLyogTW9vcmVmaWVsZCAqLworICAgIGNhc2UgMHg1 YzogLyogR29sZG1vbnQgKi8KKyAgICBjYXNlIDB4NWY6IC8qIERlbnZlcnRv biAqLworICAgIGNhc2UgMHg3YTogLyogR2VtaW5pIExha2UgKi8KKyAgICAg ICAgcmV0dXJuIDA7CisKKyAgICAgICAgLyoKKyAgICAgICAgICogS25pZ2h0 cyBwcm9jZXNzb3JzIGFyZSBub3QgdnVsbmVyYWJsZS4KKyAgICAgICAgICov CisgICAgY2FzZSAweDU3OiAvKiBLbmlnaHRzIExhbmRpbmcgKi8KKyAgICBj YXNlIDB4ODU6IC8qIEtuaWdodHMgTWlsbCAqLworICAgICAgICByZXR1cm4g MDsKKworICAgIGRlZmF1bHQ6CisgICAgICAgIHByaW50aygiVW5yZWNvZ25p c2VkIENQVSBtb2RlbCAlI3ggLSBhc3N1bWluZyB2dWxuZXJhYmxlIHRvIExh enlGUFVcbiIsCisgICAgICAgICAgICAgICBib290X2NwdV9kYXRhLng4Nl9t b2RlbCk7CisgICAgICAgIHJldHVybiAxOworICAgIH0KK30KKwogI2RlZmlu ZSBPUFRfWFBUSV9ERUZBVUxUICAweGZmCiB1aW50OF90IF9fcmVhZF9tb3N0 bHkgb3B0X3hwdGkgPSBPUFRfWFBUSV9ERUZBVUxUOwogCkBAIC01MTksNiAr NjAzLDEwIEBAIHZvaWQgX19pbml0IGluaXRfc3BlY3VsYXRpb25fbWl0aWdh dGlvbnModm9pZCkKICAgICBpZiAoICFib290X2NwdV9oYXMoWDg2X0ZFQVRV UkVfSUJSU0IpICYmICFib290X2NwdV9oYXMoWDg2X0ZFQVRVUkVfSUJQQikg KQogICAgICAgICBvcHRfaWJwYiA9IDA7CiAKKyAgICAvKiBDaGVjayB3aGV0 aGVyIEVhZ2VyIEZQVSBzaG91bGQgYmUgZW5hYmxlZCBieSBkZWZhdWx0LiAq LworICAgIGlmICggb3B0X2VhZ2VyX2ZwdSA9PSAtMSApCisgICAgICAgIG9w dF9lYWdlcl9mcHUgPSBzaG91bGRfdXNlX2VhZ2VyX2ZwdSgpOworCiAgICAg LyogKFJlKWluaXQgQlNQIHN0YXRlIG5vdyB0aGF0IGRlZmF1bHRfc3BlY19j dHJsX2ZsYWdzIGhhcyBiZWVuIGNhbGN1bGF0ZWQuICovCiAgICAgaW5pdF9z aGFkb3dfc3BlY19jdHJsX3N0YXRlKCk7CiAKZGlmZiAtLWdpdCBhL3hlbi9p bmNsdWRlL2FzbS14ODYvc3BlY19jdHJsLmggYi94ZW4vaW5jbHVkZS9hc20t eDg2L3NwZWNfY3RybC5oCmluZGV4IDQ1YWMyMDAuLmQ4MWM4NTUgMTAwNjQ0 Ci0tLSBhL3hlbi9pbmNsdWRlL2FzbS14ODYvc3BlY19jdHJsLmgKKysrIGIv eGVuL2luY2x1ZGUvYXNtLXg4Ni9zcGVjX2N0cmwuaApAQCAtMjgsNiArMjgs NyBAQCB2b2lkIGluaXRfc3BlY3VsYXRpb25fbWl0aWdhdGlvbnModm9pZCk7 CiAKIGV4dGVybiBib29sX3Qgb3B0X2licGI7CiBleHRlcm4gYm9vbF90IG9w dF9zc2JkOworZXh0ZXJuIGludDhfdCBvcHRfZWFnZXJfZnB1OwogCiBleHRl cm4gYm9vbF90IGJzcF9kZWxheV9zcGVjX2N0cmw7CiBleHRlcm4gdWludDhf dCBkZWZhdWx0X3hlbl9zcGVjX2N0cmw7Cg== --=separator Content-Type: application/octet-stream; name="xsa267-4.8-livepatch.patch" Content-Disposition: attachment; filename="xsa267-4.8-livepatch.patch" Content-Transfer-Encoding: base64 RnJvbTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNv bT4KU3ViamVjdDogeDg2OiBMaXZlcGF0Y2ggbWl0aWdhdGlvbnMgZm9yIExh enlGUFUKClRoaXMgaXMgcGFydCBvZiBYU0EtMjY3IC8gQ1ZFLTIwMTgtMzY2 NQoKU2lnbmVkLW9mZi1ieTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3Bl cjNAY2l0cml4LmNvbT4KCmRpZmYgLS1naXQgYS94ZW4vYXJjaC94ODYvaTM4 Ny5jIGIveGVuL2FyY2gveDg2L2kzODcuYwppbmRleCA4NmIwOThkLi44NTli ZTRkIDEwMDY0NAotLS0gYS94ZW4vYXJjaC94ODYvaTM4Ny5jCisrKyBiL3hl bi9hcmNoL3g4Ni9pMzg3LmMKQEAgLTEwLDYgKzEwLDcgQEAKIAogI2luY2x1 ZGUgPHhlbi9jb25maWcuaD4KICNpbmNsdWRlIDx4ZW4vc2NoZWQuaD4KKyNp bmNsdWRlIDx4ZW4vbGl2ZXBhdGNoX3BheWxvYWQuaD4KICNpbmNsdWRlIDxh c20vY3VycmVudC5oPgogI2luY2x1ZGUgPGFzbS9wcm9jZXNzb3IuaD4KICNp bmNsdWRlIDxhc20vaHZtL3N1cHBvcnQuaD4KQEAgLTIwMiw2ICsyMDMsOTQg QEAgc3RhdGljIGlubGluZSB2b2lkIGZwdV9meHNhdmUoc3RydWN0IHZjcHUg KnYpCiAgICAgZnB1X2N0eHQtPnhbRlBVX1dPUkRfU0laRV9PRkZTRVRdID0g ZmlwX3dpZHRoOwogfQogCisvKiBDYWxjdWxhdGUgd2hldGhlciB0aGlzIENQ VSBzcGVjdWxhdGVzIHBhc3QgI05NICovCitzdGF0aWMgYm9vbCBzaG91bGRf dXNlX2VhZ2VyX2ZwdSh2b2lkKQoreworICAgIC8qCisgICAgICogQXNzdW1l IGFsbCB1bnJlY29nbmlzZWQgcHJvY2Vzc29ycyBhcmUgb2suICBUaGlzIGlz IG9ubHkga25vd24gdG8KKyAgICAgKiBhZmZlY3QgSW50ZWwgRmFtaWx5IDYg cHJvY2Vzc29ycy4KKyAgICAgKi8KKyAgICBpZiAoIGJvb3RfY3B1X2RhdGEu eDg2X3ZlbmRvciAhPSBYODZfVkVORE9SX0lOVEVMIHx8CisgICAgICAgICBi b290X2NwdV9kYXRhLng4NiAhPSA2ICkKKyAgICAgICAgcmV0dXJuIGZhbHNl OworCisgICAgc3dpdGNoICggYm9vdF9jcHVfZGF0YS54ODZfbW9kZWwgKQor ICAgIHsKKyAgICAgICAgLyoKKyAgICAgICAgICogQ29yZSBwcm9jZXNzb3Jz IHNpbmNlIGF0IGxlYXN0IE5laGFsZW0gYXJlIHZ1bG5lcmFibGUuCisgICAg ICAgICAqLworICAgIGNhc2UgMHgxZTogLyogTmVoYWxlbSAqLworICAgIGNh c2UgMHgxZjogLyogQXVidXJuZGFsZSAvIEhhdmVuZGFsZSAqLworICAgIGNh c2UgMHgxYTogLyogTmVoYWxlbSBFUCAqLworICAgIGNhc2UgMHgyZTogLyog TmVoYWxlbSBFWCAqLworICAgIGNhc2UgMHgyNTogLyogV2VzdG1lcmUgKi8K KyAgICBjYXNlIDB4MmM6IC8qIFdlc3RtZXJlIEVQICovCisgICAgY2FzZSAw eDJmOiAvKiBXZXN0bWVyZSBFWCAqLworICAgIGNhc2UgMHgyYTogLyogU2Fu ZHlCcmlkZ2UgKi8KKyAgICBjYXNlIDB4MmQ6IC8qIFNhbmR5QnJpZGdlIEVQ L0VYICovCisgICAgY2FzZSAweDNhOiAvKiBJdnlCcmlkZ2UgKi8KKyAgICBj YXNlIDB4M2U6IC8qIEl2eUJyaWRnZSBFUC9FWCAqLworICAgIGNhc2UgMHgz YzogLyogSGFzd2VsbCAqLworICAgIGNhc2UgMHgzZjogLyogSGFzd2VsbCBF WC9FUCAqLworICAgIGNhc2UgMHg0NTogLyogSGFzd2VsbCBEICovCisgICAg Y2FzZSAweDQ2OiAvKiBIYXN3ZWxsIEggKi8KKyAgICBjYXNlIDB4M2Q6IC8q IEJyb2Fkd2VsbCAqLworICAgIGNhc2UgMHg0NzogLyogQnJvYWR3ZWxsIEgg Ki8KKyAgICBjYXNlIDB4NGY6IC8qIEJyb2Fkd2VsbCBFUC9FWCAqLworICAg IGNhc2UgMHg1NjogLyogQnJvYWR3ZWxsIEQgKi8KKyAgICBjYXNlIDB4NGU6 IC8qIFNreWxha2UgTSAqLworICAgIGNhc2UgMHg1NTogLyogU2t5bGFrZSBY ICovCisgICAgY2FzZSAweDVlOiAvKiBTa3lsYWtlIEQgKi8KKyAgICBjYXNl IDB4NjY6IC8qIENhbm5vbmxha2UgKi8KKyAgICBjYXNlIDB4Njc6IC8qIENh bm5vbmxha2U/ICovCisgICAgY2FzZSAweDhlOiAvKiBLYWJ5bGFrZSBNICov CisgICAgY2FzZSAweDllOiAvKiBLYWJ5bGFrZSBEICovCisgICAgICAgIHJl dHVybiB0cnVlOworCisgICAgICAgIC8qCisgICAgICAgICAqIEF0b20gcHJv Y2Vzc29ycyBhcmUgbm90IHZ1bG5lcmFibGUuCisgICAgICAgICAqLworICAg IGNhc2UgMHgxYzogLyogUGluZXZpZXcgKi8KKyAgICBjYXNlIDB4MjY6IC8q IExpbmNyb2Z0ICovCisgICAgY2FzZSAweDI3OiAvKiBQZW53ZWxsICovCisg ICAgY2FzZSAweDM1OiAvKiBDbG92ZXJ2aWV3ICovCisgICAgY2FzZSAweDM2 OiAvKiBDZWRhcnZpZXcgKi8KKyAgICBjYXNlIDB4Mzc6IC8qIEJheXRyYWls IC8gVmFsbGV5dmlldyAoU2lsdmVybW9udCkgKi8KKyAgICBjYXNlIDB4NGQ6 IC8qIEF2YXRvbiAvIFJhbmdlbHkgKFNpbHZlcm1vbnQpICovCisgICAgY2Fz ZSAweDRjOiAvKiBDaGVycnl0cmFpbCAvIEJyYXNzd2VsbCAqLworICAgIGNh c2UgMHg0YTogLyogTWVycmlmaWVsZCAqLworICAgIGNhc2UgMHg1YTogLyog TW9vcmVmaWVsZCAqLworICAgIGNhc2UgMHg1YzogLyogR29sZG1vbnQgKi8K KyAgICBjYXNlIDB4NWY6IC8qIERlbnZlcnRvbiAqLworICAgIGNhc2UgMHg3 YTogLyogR2VtaW5pIExha2UgKi8KKyAgICAgICAgcmV0dXJuIGZhbHNlOwor CisgICAgICAgIC8qCisgICAgICAgICAqIEtuaWdodHMgcHJvY2Vzc29ycyBh cmUgbm90IHZ1bG5lcmFibGUuCisgICAgICAgICAqLworICAgIGNhc2UgMHg1 NzogLyogS25pZ2h0cyBMYW5kaW5nICovCisgICAgY2FzZSAweDg1OiAvKiBL bmlnaHRzIE1pbGwgKi8KKyAgICAgICAgcmV0dXJuIGZhbHNlOworCisgICAg ZGVmYXVsdDoKKyAgICAgICAgcHJpbnRrKCJVbnJlY29nbmlzZWQgQ1BVIG1v ZGVsICUjeCAtIGFzc3VtaW5nIHZ1bG5lcmFibGUgdG8gTGF6eUZQVVxuIiwK KyAgICAgICAgICAgICAgIGJvb3RfY3B1X2RhdGEueDg2X21vZGVsKTsKKyAg ICAgICAgcmV0dXJuIHRydWU7CisgICAgfQorfQorCitzdGF0aWMgYm9vbCBm dWxseV9lYWdlcl9mcHU7CisKK3ZvaWQgbGF6eWZwdV9hcHBseV9ob29rKHZv aWQpCit7CisgICAgZnVsbHlfZWFnZXJfZnB1ID0gc2hvdWxkX3VzZV9lYWdl cl9mcHUoKTsKKworICAgIHByaW50aygiTGF6eUZQVSBMaXZlcGF0Y2g6IEZh bSAldSwgTW9kZWwgJXUgPT4gRnVsbHkgRWFnZXIgJXVcbiIsCisgICAgICAg ICAgIGJvb3RfY3B1X2RhdGEueDg2LCBib290X2NwdV9kYXRhLng4Nl9tb2Rl bCwgZnVsbHlfZWFnZXJfZnB1KTsKK30KKworTElWRVBBVENIX0xPQURfSE9P SyhsYXp5ZnB1X2FwcGx5X2hvb2spOworCiAvKioqKioqKioqKioqKioqKioq KioqKioqKioqKioqKi8KIC8qICAgICAgIFZDUFUgRlBVIEZ1bmN0aW9ucyAg ICAqLwogLyoqKioqKioqKioqKioqKioqKioqKioqKioqKioqKiovCkBAIC0y MTEsNyArMzAwLDcgQEAgdm9pZCB2Y3B1X3Jlc3RvcmVfZnB1X2VhZ2VyKHN0 cnVjdCB2Y3B1ICp2KQogICAgIEFTU0VSVCghaXNfaWRsZV92Y3B1KHYpKTsK ICAgICAKICAgICAvKiBSZXN0b3JlIG5vbmxhenkgZXh0ZW5kZWQgc3RhdGUg KGkuZS4gcGFydHMgbm90IHRyYWNrZWQgYnkgQ1IwLlRTKS4gKi8KLSAgICBp ZiAoICF2LT5hcmNoLm5vbmxhenlfeHN0YXRlX3VzZWQgKQorICAgIGlmICgg IWZ1bGx5X2VhZ2VyX2ZwdSAmJiAhdi0+YXJjaC5ub25sYXp5X3hzdGF0ZV91 c2VkICkKICAgICAgICAgcmV0dXJuOwogCiAgICAgLyogQXZvaWQgcmVjdXJz aW9uICovCkBAIC0yMjIsMTEgKzMxMSwxOSBAQCB2b2lkIHZjcHVfcmVzdG9y ZV9mcHVfZWFnZXIoc3RydWN0IHZjcHUgKnYpCiAgICAgICogYWJvdmUpIHdl IGFsc28gbmVlZCB0byByZXN0b3JlIGZ1bGwgc3RhdGUsIHRvIHByZXZlbnQg c3Vic2VxdWVudGx5CiAgICAgICogc2F2aW5nIHN0YXRlIGJlbG9uZ2luZyB0 byBhbm90aGVyIHZDUFUuCiAgICAgICovCi0gICAgaWYgKCB4c3RhdGVfYWxs KHYpICkKKyAgICBpZiAoIGZ1bGx5X2VhZ2VyX2ZwdSB8fCAodi0+YXJjaC54 c2F2ZV9hcmVhICYmIHhzdGF0ZV9hbGwodikpICkKICAgICB7Ci0gICAgICAg IGZwdV94cnN0b3IodiwgWFNUQVRFX0FMTCk7CisgICAgICAgIGlmICggY3B1 X2hhc194c2F2ZSApCisgICAgICAgICAgICBmcHVfeHJzdG9yKHYsIFhTVEFU RV9BTEwpOworICAgICAgICBlbHNlCisgICAgICAgICAgICBmcHVfZnhyc3Rv cih2KTsKKwogICAgICAgICB2LT5mcHVfaW5pdGlhbGlzZWQgPSAxOwogICAg ICAgICB2LT5mcHVfZGlydGllZCA9IDE7CisKKyAgICAgICAgLyogWGVuIGRv ZXNuJ3QgbmVlZCBUUyBzZXQsIGJ1dCB0aGUgZ3Vlc3QgbWlnaHQuICovCisg ICAgICAgIGlmICggaXNfcHZfdmNwdSh2KSAmJiAodi0+YXJjaC5wdl92Y3B1 LmN0cmxyZWdbMF0gJiBYODZfQ1IwX1RTKSApCisgICAgICAgICAgICBzdHRz KCk7CiAgICAgfQogICAgIGVsc2UKICAgICB7Cg== --=separator Content-Type: application/octet-stream; name="xsa267-4.9-1.patch" Content-Disposition: attachment; filename="xsa267-4.9-1.patch" Content-Transfer-Encoding: base64 RnJvbTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNv bT4KU3ViamVjdDogeDg2OiBTdXBwb3J0IGZ1bGx5IGVhZ2VyIEZQVSBjb250 ZXh0IHN3aXRjaGluZwoKVGhpcyBpcyBjb250cm9sbGVkIG9uIGEgcGVyLXZj cHUgYmFzZXMgZm9yIGZsZXhpYmlsaXR5LgoKVGhpcyBpcyBwYXJ0IG9mIFhT QS0yNjcgLyBDVkUtMjAxOC0zNjY1CgpTaWduZWQtb2ZmLWJ5OiBBbmRyZXcg Q29vcGVyIDxhbmRyZXcuY29vcGVyM0BjaXRyaXguY29tPgpSZXZpZXdlZC1i eTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgoKZGlmZiAtLWdp dCBhL3hlbi9hcmNoL3g4Ni9pMzg3LmMgYi94ZW4vYXJjaC94ODYvaTM4Ny5j CmluZGV4IDlhMTcyZGIuLjFkYTMxYWYgMTAwNjQ0Ci0tLSBhL3hlbi9hcmNo L3g4Ni9pMzg3LmMKKysrIGIveGVuL2FyY2gveDg2L2kzODcuYwpAQCAtMjEw LDcgKzIxMCw3IEBAIHZvaWQgdmNwdV9yZXN0b3JlX2ZwdV9lYWdlcihzdHJ1 Y3QgdmNwdSAqdikKICAgICBBU1NFUlQoIWlzX2lkbGVfdmNwdSh2KSk7CiAg ICAgCiAgICAgLyogUmVzdG9yZSBub25sYXp5IGV4dGVuZGVkIHN0YXRlIChp LmUuIHBhcnRzIG5vdCB0cmFja2VkIGJ5IENSMC5UUykuICovCi0gICAgaWYg KCAhdi0+YXJjaC5ub25sYXp5X3hzdGF0ZV91c2VkICkKKyAgICBpZiAoICF2 LT5hcmNoLmZ1bGx5X2VhZ2VyX2ZwdSAmJiAhdi0+YXJjaC5ub25sYXp5X3hz dGF0ZV91c2VkICkKICAgICAgICAgcmV0dXJuOwogCiAgICAgLyogQXZvaWQg cmVjdXJzaW9uICovCkBAIC0yMjEsMTEgKzIyMSwxOSBAQCB2b2lkIHZjcHVf cmVzdG9yZV9mcHVfZWFnZXIoc3RydWN0IHZjcHUgKnYpCiAgICAgICogYWJv dmUpIHdlIGFsc28gbmVlZCB0byByZXN0b3JlIGZ1bGwgc3RhdGUsIHRvIHBy ZXZlbnQgc3Vic2VxdWVudGx5CiAgICAgICogc2F2aW5nIHN0YXRlIGJlbG9u Z2luZyB0byBhbm90aGVyIHZDUFUuCiAgICAgICovCi0gICAgaWYgKCB4c3Rh dGVfYWxsKHYpICkKKyAgICBpZiAoIHYtPmFyY2guZnVsbHlfZWFnZXJfZnB1 IHx8ICh2LT5hcmNoLnhzYXZlX2FyZWEgJiYgeHN0YXRlX2FsbCh2KSkgKQog ICAgIHsKLSAgICAgICAgZnB1X3hyc3Rvcih2LCBYU1RBVEVfQUxMKTsKKyAg ICAgICAgaWYgKCBjcHVfaGFzX3hzYXZlICkKKyAgICAgICAgICAgIGZwdV94 cnN0b3IodiwgWFNUQVRFX0FMTCk7CisgICAgICAgIGVsc2UKKyAgICAgICAg ICAgIGZwdV9meHJzdG9yKHYpOworCiAgICAgICAgIHYtPmZwdV9pbml0aWFs aXNlZCA9IDE7CiAgICAgICAgIHYtPmZwdV9kaXJ0aWVkID0gMTsKKworICAg ICAgICAvKiBYZW4gZG9lc24ndCBuZWVkIFRTIHNldCwgYnV0IHRoZSBndWVz dCBtaWdodC4gKi8KKyAgICAgICAgaWYgKCBpc19wdl92Y3B1KHYpICYmICh2 LT5hcmNoLnB2X3ZjcHUuY3RybHJlZ1swXSAmIFg4Nl9DUjBfVFMpICkKKyAg ICAgICAgICAgIHN0dHMoKTsKICAgICB9CiAgICAgZWxzZQogICAgIHsKQEAg LTI0Nyw2ICsyNTUsOCBAQCB2b2lkIHZjcHVfcmVzdG9yZV9mcHVfbGF6eShz dHJ1Y3QgdmNwdSAqdikKICAgICBpZiAoIHYtPmZwdV9kaXJ0aWVkICkKICAg ICAgICAgcmV0dXJuOwogCisgICAgQVNTRVJUKCF2LT5hcmNoLmZ1bGx5X2Vh Z2VyX2ZwdSk7CisKICAgICBpZiAoIGNwdV9oYXNfeHNhdmUgKQogICAgICAg ICBmcHVfeHJzdG9yKHYsIFhTVEFURV9MQVpZKTsKICAgICBlbHNlCmRpZmYg LS1naXQgYS94ZW4vaW5jbHVkZS9hc20teDg2L2RvbWFpbi5oIGIveGVuL2lu Y2x1ZGUvYXNtLXg4Ni9kb21haW4uaAppbmRleCBjMDhkZGMwLi43MDJlYzY0 IDEwMDY0NAotLS0gYS94ZW4vaW5jbHVkZS9hc20teDg2L2RvbWFpbi5oCisr KyBiL3hlbi9pbmNsdWRlL2FzbS14ODYvZG9tYWluLmgKQEAgLTU5Myw2ICs1 OTMsOSBAQCBzdHJ1Y3QgYXJjaF92Y3B1CiAgICAgICogYW5kIHRodXMgc2hv dWxkIGJlIHNhdmVkL3Jlc3RvcmVkLiAqLwogICAgIGJvb2xfdCBub25sYXp5 X3hzdGF0ZV91c2VkOwogCisgICAgLyogUmVzdG9yZSBhbGwgRlBVIHN0YXRl IChsYXp5IGFuZCBub24tbGF6eSBzdGF0ZSkgb24gY29udGV4dCBzd2l0Y2g/ ICovCisgICAgYm9vbCBmdWxseV9lYWdlcl9mcHU7CisKICAgICAvKiBIYXMg dGhlIGd1ZXN0IGVuYWJsZWQgQ1BVSUQgZmF1bHRpbmc/ICovCiAgICAgYm9v bCBjcHVpZF9mYXVsdGluZzsKIAo= --=separator Content-Type: application/octet-stream; name="xsa267-4.9-2.patch" Content-Disposition: attachment; filename="xsa267-4.9-2.patch" Content-Transfer-Encoding: base64 RnJvbTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNv bT4KU3ViamVjdDogeDg2L3NwZWMtY3RybDogTWl0aWdhdGlvbnMgZm9yIExh enlGUFUKCkludGVsIENvcmUgcHJvY2Vzc29ycyBzaW5jZSBhdCBsZWFzdCBO ZWhhbGVtIHNwZWN1bGF0ZSBwYXN0ICNOTSwgd2hpY2ggaXMgdGhlCm1lY2hh bmlzbSBieSB3aGljaCBsYXp5IEZQVSBjb250ZXh0IHN3aXRjaGluZyBpcyBp bXBsZW1lbnRlZC4KCk9uIGFmZmVjdGVkIHByb2Nlc3NvcnMsIFhlbiBtdXN0 IHVzZSBmdWxseSBlYWdlciBGUFUgY29udGV4dCBzd2l0Y2hpbmcgdG8KcHJl dmVudCBndWVzdHMgZnJvbSBiZWluZyBhYmxlIHRvIHJlYWQgRlBVIHN0YXRl IChTU0UvQVZYL2V0YykgZnJvbSBwcmV2aW91c2x5CnNjaGVkdWxlZCB2Y3B1 cy4KClRoaXMgaXMgcGFydCBvZiBYU0EtMjY3IC8gQ1ZFLTIwMTgtMzY2NQoK U2lnbmVkLW9mZi1ieTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNA Y2l0cml4LmNvbT4KUmV2aWV3ZWQtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGlj aEBzdXNlLmNvbT4KCmRpZmYgLS1naXQgYS9kb2NzL21pc2MveGVuLWNvbW1h bmQtbGluZS5tYXJrZG93biBiL2RvY3MvbWlzYy94ZW4tY29tbWFuZC1saW5l Lm1hcmtkb3duCmluZGV4IDYzMDBmNjkuLjUyZWQwNTEgMTAwNjQ0Ci0tLSBh L2RvY3MvbWlzYy94ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCisrKyBiL2Rv Y3MvbWlzYy94ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCkBAIC0xNjM1LDcg KzE2MzUsNyBAQCBmYWxzZSBkaXNhYmxlIHRoZSBxdWlyayB3b3JrYXJvdW5k LCB3aGljaCBpcyBhbHNvIHRoZSBkZWZhdWx0LgogCiAjIyMgc3BlYy1jdHJs ICh4ODYpCiA+IGA9IExpc3Qgb2YgWyA8Ym9vbD4sIHhlbj08Ym9vbD4sIHtw dixodm0sbXNyLXNjLHJzYn09PGJvb2w+LAotPiAgICAgICAgICAgICAgYnRp LXRodW5rPXJldHBvbGluZXxsZmVuY2V8am1wLCB7aWJycyxpYnBiLHNzYmR9 PTxib29sPiBdYAorPiAgICAgICAgICAgICAgYnRpLXRodW5rPXJldHBvbGlu ZXxsZmVuY2V8am1wLCB7aWJycyxpYnBiLHNzYmQsZWFnZXItZnB1fT08Ym9v bD4gXWAKIAogQ29udHJvbHMgZm9yIHNwZWN1bGF0aXZlIGV4ZWN1dGlvbiBz aWRlY2hhbm5lbCBtaXRpZ2F0aW9ucy4gIEJ5IGRlZmF1bHQsIFhlbgogd2ls bCBwaWNrIHRoZSBtb3N0IGFwcHJvcHJpYXRlIG1pdGlnYXRpb25zIGJhc2Vk IG9uIGNvbXBpbGVkIGluIHN1cHBvcnQsCkBAIC0xNjg1LDYgKzE2ODUsMTEg QEAgaGFyZHdhcmUsIHRoaXMgaXMgYSBnbG9iYWwgb3B0aW9uIGFwcGxpZWQg YXQgYm9vdCwgYW5kIG5vdCB2aXJ0dWFsaXNlZCBmb3IKIGd1ZXN0IHVzZS4g IE9uIEludGVsIGhhcmR3YXJlLCB0aGUgZmVhdHVyZSBpcyB2aXJ0dWFsaXNl ZCBmb3IgZ3Vlc3RzLAogaW5kZXBlbmRlbnRseSBvZiBYZW4ncyBjaG9pY2Ug b2Ygc2V0dGluZy4KIAorT24gYWxsIGhhcmR3YXJlLCB0aGUgYGVhZ2VyLWZw dT1gIG9wdGlvbiBjYW4gYmUgdXNlZCB0byBmb3JjZSBvciBwcmV2ZW50IFhl bgorZnJvbSB1c2luZyBmdWxseSBlYWdlciBGUFUgY29udGV4dCBzd2l0Y2hl cy4gIFRoaXMgaXMgY3VycmVudGx5IGltcGxlbWVudGVkIGFzCithIGdsb2Jh bCBjb250cm9sLiAgQnkgZGVmYXVsdCwgWGVuIHdpbGwgY2hvb3NlIHRvIHVz ZSBmdWxseSBlYWdlciBjb250ZXh0Citzd2l0Y2hlcyBvbiBoYXJkd2FyZSBi ZWxpZXZlZCB0byBzcGVjdWxhdGUgcGFzdCAjTk0gZXhjZXB0aW9ucy4KKwog IyMjIHN5bmNcX2NvbnNvbGUKID4gYD0gPGJvb2xlYW4+YAogCmRpZmYgLS1n aXQgYS94ZW4vYXJjaC94ODYvaTM4Ny5jIGIveGVuL2FyY2gveDg2L2kzODcu YwppbmRleCAxZGEzMWFmLi5jM2ZkYTg3IDEwMDY0NAotLS0gYS94ZW4vYXJj aC94ODYvaTM4Ny5jCisrKyBiL3hlbi9hcmNoL3g4Ni9pMzg3LmMKQEAgLTE1 LDYgKzE1LDcgQEAKICNpbmNsdWRlIDxhc20vaTM4Ny5oPgogI2luY2x1ZGUg PGFzbS94c3RhdGUuaD4KICNpbmNsdWRlIDxhc20vYXNtX2RlZm5zLmg+Cisj aW5jbHVkZSA8YXNtL3NwZWNfY3RybC5oPgogCiAvKioqKioqKioqKioqKioq KioqKioqKioqKioqKioqKi8KIC8qICAgICBGUFUgUmVzdG9yZSBGdW5jdGlv bnMgICAqLwpAQCAtMzA3LDYgKzMwOCw4IEBAIGludCB2Y3B1X2luaXRfZnB1 KHN0cnVjdCB2Y3B1ICp2KQogewogICAgIGludCByYzsKICAgICAKKyAgICB2 LT5hcmNoLmZ1bGx5X2VhZ2VyX2ZwdSA9IG9wdF9lYWdlcl9mcHU7CisKICAg ICBpZiAoIChyYyA9IHhzdGF0ZV9hbGxvY19zYXZlX2FyZWEodikpICE9IDAg KQogICAgICAgICByZXR1cm4gcmM7CiAKZGlmZiAtLWdpdCBhL3hlbi9hcmNo L3g4Ni9zcGVjX2N0cmwuYyBiL3hlbi9hcmNoL3g4Ni9zcGVjX2N0cmwuYwpp bmRleCA4MDc3MDAwLi5hZGE0YWFjIDEwMDY0NAotLS0gYS94ZW4vYXJjaC94 ODYvc3BlY19jdHJsLmMKKysrIGIveGVuL2FyY2gveDg2L3NwZWNfY3RybC5j CkBAIC00NCw2ICs0NCw3IEBAIHN0YXRpYyBlbnVtIGluZF90aHVuayB7CiBz dGF0aWMgaW50OF90IF9faW5pdGRhdGEgb3B0X2licnMgPSAtMTsKIGJvb2wg X19yZWFkX21vc3RseSBvcHRfaWJwYiA9IHRydWU7CiBib29sIF9fcmVhZF9t b3N0bHkgb3B0X3NzYmQgPSBmYWxzZTsKK2ludDhfdCBfX3JlYWRfbW9zdGx5 IG9wdF9lYWdlcl9mcHUgPSAtMTsKIAogYm9vbCBfX2luaXRkYXRhIGJzcF9k ZWxheV9zcGVjX2N0cmw7CiB1aW50OF90IF9fcmVhZF9tb3N0bHkgZGVmYXVs dF94ZW5fc3BlY19jdHJsOwpAQCAtMTE0LDYgKzExNSw3IEBAIHN0YXRpYyBp bnQgX19pbml0IHBhcnNlX3NwZWNfY3RybChjaGFyICpzKQogICAgICAgICAg ICAgb3B0X3RodW5rID0gVEhVTktfSk1QOwogICAgICAgICAgICAgb3B0X2li cnMgPSAwOwogICAgICAgICAgICAgb3B0X2licGIgPSBmYWxzZTsKKyAgICAg ICAgICAgIG9wdF9lYWdlcl9mcHUgPSAwOwogICAgICAgICB9CiAgICAgICAg IGVsc2UgaWYgKCB2YWwgPiAwICkKICAgICAgICAgICAgIHJjID0gLUVJTlZB TDsKQEAgLTE2Nyw2ICsxNjksOCBAQCBzdGF0aWMgaW50IF9faW5pdCBwYXJz ZV9zcGVjX2N0cmwoY2hhciAqcykKICAgICAgICAgICAgIG9wdF9pYnBiID0g dmFsOwogICAgICAgICBlbHNlIGlmICggKHZhbCA9IHBhcnNlX2Jvb2xlYW4o InNzYmQiLCBzLCBzcykpID49IDAgKQogICAgICAgICAgICAgb3B0X3NzYmQg PSB2YWw7CisgICAgICAgIGVsc2UgaWYgKCAodmFsID0gcGFyc2VfYm9vbGVh bigiZWFnZXItZnB1Iiwgcywgc3MpKSA+PSAwICkKKyAgICAgICAgICAgIG9w dF9lYWdlcl9mcHUgPSB2YWw7CiAgICAgICAgIGVsc2UKICAgICAgICAgICAg IHJjID0gLUVJTlZBTDsKIApAQCAtMjIzLDE1ICsyMjcsMTkgQEAgc3RhdGlj IHZvaWQgX19pbml0IHByaW50X2RldGFpbHMoZW51bSBpbmRfdGh1bmsgdGh1 bmssIHVpbnQ2NF90IGNhcHMpCiAgICAgICogQWx0ZXJuYXRpdmVzIGJsb2Nr cyBmb3IgcHJvdGVjdGluZyBhZ2FpbnN0IGFuZC9vciB2aXJ0dWFsaXNpbmcK ICAgICAgKiBtaXRpZ2F0aW9uIHN1cHBvcnQgZm9yIGd1ZXN0cy4KICAgICAg Ki8KLSAgICBwcmludGsoIiAgU3VwcG9ydCBmb3IgVk1zOiBQVjolcyVzJXMs IEhWTTolcyVzJXNcbiIsCisgICAgcHJpbnRrKCIgIFN1cHBvcnQgZm9yIFZN czogUFY6JXMlcyVzJXMsIEhWTTolcyVzJXMlc1xuIiwKICAgICAgICAgICAg KGJvb3RfY3B1X2hhcyhYODZfRkVBVFVSRV9TQ19NU1JfUFYpIHx8Ci0gICAg ICAgICAgICBib290X2NwdV9oYXMoWDg2X0ZFQVRVUkVfU0NfUlNCX1BWKSkg ICAgID8gIiIgICAgICAgICAgICAgICA6ICIgTm9uZSIsCisgICAgICAgICAg ICBib290X2NwdV9oYXMoWDg2X0ZFQVRVUkVfU0NfUlNCX1BWKSB8fAorICAg ICAgICAgICAgb3B0X2VhZ2VyX2ZwdSkgICAgICAgICAgICAgICAgICAgICAg ICAgICA/ICIiICAgICAgICAgICAgICAgOiAiIE5vbmUiLAogICAgICAgICAg ICBib290X2NwdV9oYXMoWDg2X0ZFQVRVUkVfU0NfTVNSX1BWKSAgICAgICA/ ICIgTVNSX1NQRUNfQ1RSTCIgOiAiIiwKICAgICAgICAgICAgYm9vdF9jcHVf aGFzKFg4Nl9GRUFUVVJFX1NDX1JTQl9QVikgICAgICAgPyAiIFJTQiIgICAg ICAgICAgIDogIiIsCisgICAgICAgICAgIG9wdF9lYWdlcl9mcHUgICAgICAg ICAgICAgICAgICAgICAgICAgICAgID8gIiBFQUdFUl9GUFUiICAgICA6ICIi LAogICAgICAgICAgICAoYm9vdF9jcHVfaGFzKFg4Nl9GRUFUVVJFX1NDX01T Ul9IVk0pIHx8Ci0gICAgICAgICAgICBib290X2NwdV9oYXMoWDg2X0ZFQVRV UkVfU0NfUlNCX0hWTSkpICAgID8gIiIgICAgICAgICAgICAgICA6ICIgTm9u ZSIsCisgICAgICAgICAgICBib290X2NwdV9oYXMoWDg2X0ZFQVRVUkVfU0Nf UlNCX0hWTSkgfHwKKyAgICAgICAgICAgIG9wdF9lYWdlcl9mcHUpICAgICAg ICAgICAgICAgICAgICAgICAgICAgPyAiIiAgICAgICAgICAgICAgIDogIiBO b25lIiwKICAgICAgICAgICAgYm9vdF9jcHVfaGFzKFg4Nl9GRUFUVVJFX1ND X01TUl9IVk0pICAgICAgPyAiIE1TUl9TUEVDX0NUUkwiIDogIiIsCi0gICAg ICAgICAgIGJvb3RfY3B1X2hhcyhYODZfRkVBVFVSRV9TQ19SU0JfSFZNKSAg ICAgID8gIiBSU0IiICAgICAgICAgICA6ICIiKTsKKyAgICAgICAgICAgYm9v dF9jcHVfaGFzKFg4Nl9GRUFUVVJFX1NDX1JTQl9IVk0pICAgICAgPyAiIFJT QiIgICAgICAgICAgIDogIiIsCisgICAgICAgICAgIG9wdF9lYWdlcl9mcHUg ICAgICAgICAgICAgICAgICAgICAgICAgICAgID8gIiBFQUdFUl9GUFUiICAg ICA6ICIiKTsKIAogICAgIHByaW50aygiICBYUFRJICg2NC1iaXQgUFYgb25s eSk6IERvbTAgJXMsIERvbVUgJXNcbiIsCiAgICAgICAgICAgIG9wdF94cHRp ICYgT1BUX1hQVElfRE9NMCA/ICJlbmFibGVkIiA6ICJkaXNhYmxlZCIsCkBA IC0zMjEsNiArMzI5LDgyIEBAIHN0YXRpYyBib29sIF9faW5pdCByZXRwb2xp bmVfc2FmZSh1aW50NjRfdCBjYXBzKQogICAgIH0KIH0KIAorLyogQ2FsY3Vs YXRlIHdoZXRoZXIgdGhpcyBDUFUgc3BlY3VsYXRlcyBwYXN0ICNOTSAqLwor c3RhdGljIGJvb2wgX19pbml0IHNob3VsZF91c2VfZWFnZXJfZnB1KHZvaWQp Cit7CisgICAgLyoKKyAgICAgKiBBc3N1bWUgYWxsIHVucmVjb2duaXNlZCBw cm9jZXNzb3JzIGFyZSBvay4gIFRoaXMgaXMgb25seSBrbm93biB0bworICAg ICAqIGFmZmVjdCBJbnRlbCBGYW1pbHkgNiBwcm9jZXNzb3JzLgorICAgICAq LworICAgIGlmICggYm9vdF9jcHVfZGF0YS54ODZfdmVuZG9yICE9IFg4Nl9W RU5ET1JfSU5URUwgfHwKKyAgICAgICAgIGJvb3RfY3B1X2RhdGEueDg2ICE9 IDYgKQorICAgICAgICByZXR1cm4gZmFsc2U7CisKKyAgICBzd2l0Y2ggKCBi b290X2NwdV9kYXRhLng4Nl9tb2RlbCApCisgICAgeworICAgICAgICAvKgor ICAgICAgICAgKiBDb3JlIHByb2Nlc3NvcnMgc2luY2UgYXQgbGVhc3QgTmVo YWxlbSBhcmUgdnVsbmVyYWJsZS4KKyAgICAgICAgICovCisgICAgY2FzZSAw eDFlOiAvKiBOZWhhbGVtICovCisgICAgY2FzZSAweDFmOiAvKiBBdWJ1cm5k YWxlIC8gSGF2ZW5kYWxlICovCisgICAgY2FzZSAweDFhOiAvKiBOZWhhbGVt IEVQICovCisgICAgY2FzZSAweDJlOiAvKiBOZWhhbGVtIEVYICovCisgICAg Y2FzZSAweDI1OiAvKiBXZXN0bWVyZSAqLworICAgIGNhc2UgMHgyYzogLyog V2VzdG1lcmUgRVAgKi8KKyAgICBjYXNlIDB4MmY6IC8qIFdlc3RtZXJlIEVY ICovCisgICAgY2FzZSAweDJhOiAvKiBTYW5keUJyaWRnZSAqLworICAgIGNh c2UgMHgyZDogLyogU2FuZHlCcmlkZ2UgRVAvRVggKi8KKyAgICBjYXNlIDB4 M2E6IC8qIEl2eUJyaWRnZSAqLworICAgIGNhc2UgMHgzZTogLyogSXZ5QnJp ZGdlIEVQL0VYICovCisgICAgY2FzZSAweDNjOiAvKiBIYXN3ZWxsICovCisg ICAgY2FzZSAweDNmOiAvKiBIYXN3ZWxsIEVYL0VQICovCisgICAgY2FzZSAw eDQ1OiAvKiBIYXN3ZWxsIEQgKi8KKyAgICBjYXNlIDB4NDY6IC8qIEhhc3dl bGwgSCAqLworICAgIGNhc2UgMHgzZDogLyogQnJvYWR3ZWxsICovCisgICAg Y2FzZSAweDQ3OiAvKiBCcm9hZHdlbGwgSCAqLworICAgIGNhc2UgMHg0Zjog LyogQnJvYWR3ZWxsIEVQL0VYICovCisgICAgY2FzZSAweDU2OiAvKiBCcm9h ZHdlbGwgRCAqLworICAgIGNhc2UgMHg0ZTogLyogU2t5bGFrZSBNICovCisg ICAgY2FzZSAweDU1OiAvKiBTa3lsYWtlIFggKi8KKyAgICBjYXNlIDB4NWU6 IC8qIFNreWxha2UgRCAqLworICAgIGNhc2UgMHg2NjogLyogQ2Fubm9ubGFr ZSAqLworICAgIGNhc2UgMHg2NzogLyogQ2Fubm9ubGFrZT8gKi8KKyAgICBj YXNlIDB4OGU6IC8qIEthYnlsYWtlIE0gKi8KKyAgICBjYXNlIDB4OWU6IC8q IEthYnlsYWtlIEQgKi8KKyAgICAgICAgcmV0dXJuIHRydWU7CisKKyAgICAg ICAgLyoKKyAgICAgICAgICogQXRvbSBwcm9jZXNzb3JzIGFyZSBub3QgdnVs bmVyYWJsZS4KKyAgICAgICAgICovCisgICAgY2FzZSAweDFjOiAvKiBQaW5l dmlldyAqLworICAgIGNhc2UgMHgyNjogLyogTGluY3JvZnQgKi8KKyAgICBj YXNlIDB4Mjc6IC8qIFBlbndlbGwgKi8KKyAgICBjYXNlIDB4MzU6IC8qIENs b3ZlcnZpZXcgKi8KKyAgICBjYXNlIDB4MzY6IC8qIENlZGFydmlldyAqLwor ICAgIGNhc2UgMHgzNzogLyogQmF5dHJhaWwgLyBWYWxsZXl2aWV3IChTaWx2 ZXJtb250KSAqLworICAgIGNhc2UgMHg0ZDogLyogQXZhdG9uIC8gUmFuZ2Vs eSAoU2lsdmVybW9udCkgKi8KKyAgICBjYXNlIDB4NGM6IC8qIENoZXJyeXRy YWlsIC8gQnJhc3N3ZWxsICovCisgICAgY2FzZSAweDRhOiAvKiBNZXJyaWZp ZWxkICovCisgICAgY2FzZSAweDVhOiAvKiBNb29yZWZpZWxkICovCisgICAg Y2FzZSAweDVjOiAvKiBHb2xkbW9udCAqLworICAgIGNhc2UgMHg1ZjogLyog RGVudmVydG9uICovCisgICAgY2FzZSAweDdhOiAvKiBHZW1pbmkgTGFrZSAq LworICAgICAgICByZXR1cm4gZmFsc2U7CisKKyAgICAgICAgLyoKKyAgICAg ICAgICogS25pZ2h0cyBwcm9jZXNzb3JzIGFyZSBub3QgdnVsbmVyYWJsZS4K KyAgICAgICAgICovCisgICAgY2FzZSAweDU3OiAvKiBLbmlnaHRzIExhbmRp bmcgKi8KKyAgICBjYXNlIDB4ODU6IC8qIEtuaWdodHMgTWlsbCAqLworICAg ICAgICByZXR1cm4gZmFsc2U7CisKKyAgICBkZWZhdWx0OgorICAgICAgICBw cmludGsoIlVucmVjb2duaXNlZCBDUFUgbW9kZWwgJSN4IC0gYXNzdW1pbmcg dnVsbmVyYWJsZSB0byBMYXp5RlBVXG4iLAorICAgICAgICAgICAgICAgYm9v dF9jcHVfZGF0YS54ODZfbW9kZWwpOworICAgICAgICByZXR1cm4gdHJ1ZTsK KyAgICB9Cit9CisKICNkZWZpbmUgT1BUX1hQVElfREVGQVVMVCAgMHhmZgog dWludDhfdCBfX3JlYWRfbW9zdGx5IG9wdF94cHRpID0gT1BUX1hQVElfREVG QVVMVDsKIApAQCAtNTE5LDYgKzYwMywxMCBAQCB2b2lkIF9faW5pdCBpbml0 X3NwZWN1bGF0aW9uX21pdGlnYXRpb25zKHZvaWQpCiAgICAgaWYgKCAhYm9v dF9jcHVfaGFzKFg4Nl9GRUFUVVJFX0lCUlNCKSAmJiAhYm9vdF9jcHVfaGFz KFg4Nl9GRUFUVVJFX0lCUEIpICkKICAgICAgICAgb3B0X2licGIgPSBmYWxz ZTsKIAorICAgIC8qIENoZWNrIHdoZXRoZXIgRWFnZXIgRlBVIHNob3VsZCBi ZSBlbmFibGVkIGJ5IGRlZmF1bHQuICovCisgICAgaWYgKCBvcHRfZWFnZXJf ZnB1ID09IC0xICkKKyAgICAgICAgb3B0X2VhZ2VyX2ZwdSA9IHNob3VsZF91 c2VfZWFnZXJfZnB1KCk7CisKICAgICAvKiAoUmUpaW5pdCBCU1Agc3RhdGUg bm93IHRoYXQgZGVmYXVsdF9zcGVjX2N0cmxfZmxhZ3MgaGFzIGJlZW4gY2Fs Y3VsYXRlZC4gKi8KICAgICBpbml0X3NoYWRvd19zcGVjX2N0cmxfc3RhdGUo KTsKIApkaWZmIC0tZ2l0IGEveGVuL2luY2x1ZGUvYXNtLXg4Ni9zcGVjX2N0 cmwuaCBiL3hlbi9pbmNsdWRlL2FzbS14ODYvc3BlY19jdHJsLmgKaW5kZXgg OTFiZWQxYi4uNWI0MGFmYiAxMDA2NDQKLS0tIGEveGVuL2luY2x1ZGUvYXNt LXg4Ni9zcGVjX2N0cmwuaAorKysgYi94ZW4vaW5jbHVkZS9hc20teDg2L3Nw ZWNfY3RybC5oCkBAIC0yOCw2ICsyOCw3IEBAIHZvaWQgaW5pdF9zcGVjdWxh dGlvbl9taXRpZ2F0aW9ucyh2b2lkKTsKIAogZXh0ZXJuIGJvb2wgb3B0X2li cGI7CiBleHRlcm4gYm9vbCBvcHRfc3NiZDsKK2V4dGVybiBpbnQ4X3Qgb3B0 X2VhZ2VyX2ZwdTsKIAogZXh0ZXJuIGJvb2wgYnNwX2RlbGF5X3NwZWNfY3Ry bDsKIGV4dGVybiB1aW50OF90IGRlZmF1bHRfeGVuX3NwZWNfY3RybDsK --=separator Content-Type: application/octet-stream; name="xsa267-4.10-1.patch" Content-Disposition: attachment; filename="xsa267-4.10-1.patch" Content-Transfer-Encoding: base64 RnJvbTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNv bT4KU3ViamVjdDogeDg2OiBTdXBwb3J0IGZ1bGx5IGVhZ2VyIEZQVSBjb250 ZXh0IHN3aXRjaGluZwoKVGhpcyBpcyBjb250cm9sbGVkIG9uIGEgcGVyLXZj cHUgYmFzZXMgZm9yIGZsZXhpYmlsaXR5LgoKVGhpcyBpcyBwYXJ0IG9mIFhT QS0yNjcgLyBDVkUtMjAxOC0zNjY1CgpTaWduZWQtb2ZmLWJ5OiBBbmRyZXcg Q29vcGVyIDxhbmRyZXcuY29vcGVyM0BjaXRyaXguY29tPgpSZXZpZXdlZC1i eTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgoKZGlmZiAtLWdp dCBhL3hlbi9hcmNoL3g4Ni9pMzg3LmMgYi94ZW4vYXJjaC94ODYvaTM4Ny5j CmluZGV4IDg4NDUyNTIuLjUwMTE2ZDUgMTAwNjQ0Ci0tLSBhL3hlbi9hcmNo L3g4Ni9pMzg3LmMKKysrIGIveGVuL2FyY2gveDg2L2kzODcuYwpAQCAtMjEw LDcgKzIxMCw3IEBAIHZvaWQgdmNwdV9yZXN0b3JlX2ZwdV9lYWdlcihzdHJ1 Y3QgdmNwdSAqdikKICAgICBBU1NFUlQoIWlzX2lkbGVfdmNwdSh2KSk7CiAg ICAgCiAgICAgLyogUmVzdG9yZSBub25sYXp5IGV4dGVuZGVkIHN0YXRlIChp LmUuIHBhcnRzIG5vdCB0cmFja2VkIGJ5IENSMC5UUykuICovCi0gICAgaWYg KCAhdi0+YXJjaC5ub25sYXp5X3hzdGF0ZV91c2VkICkKKyAgICBpZiAoICF2 LT5hcmNoLmZ1bGx5X2VhZ2VyX2ZwdSAmJiAhdi0+YXJjaC5ub25sYXp5X3hz dGF0ZV91c2VkICkKICAgICAgICAgcmV0dXJuOwogCiAgICAgLyogQXZvaWQg cmVjdXJzaW9uICovCkBAIC0yMjEsMTEgKzIyMSwxOSBAQCB2b2lkIHZjcHVf cmVzdG9yZV9mcHVfZWFnZXIoc3RydWN0IHZjcHUgKnYpCiAgICAgICogYWJv dmUpIHdlIGFsc28gbmVlZCB0byByZXN0b3JlIGZ1bGwgc3RhdGUsIHRvIHBy ZXZlbnQgc3Vic2VxdWVudGx5CiAgICAgICogc2F2aW5nIHN0YXRlIGJlbG9u Z2luZyB0byBhbm90aGVyIHZDUFUuCiAgICAgICovCi0gICAgaWYgKCB4c3Rh dGVfYWxsKHYpICkKKyAgICBpZiAoIHYtPmFyY2guZnVsbHlfZWFnZXJfZnB1 IHx8ICh2LT5hcmNoLnhzYXZlX2FyZWEgJiYgeHN0YXRlX2FsbCh2KSkgKQog ICAgIHsKLSAgICAgICAgZnB1X3hyc3Rvcih2LCBYU1RBVEVfQUxMKTsKKyAg ICAgICAgaWYgKCBjcHVfaGFzX3hzYXZlICkKKyAgICAgICAgICAgIGZwdV94 cnN0b3IodiwgWFNUQVRFX0FMTCk7CisgICAgICAgIGVsc2UKKyAgICAgICAg ICAgIGZwdV9meHJzdG9yKHYpOworCiAgICAgICAgIHYtPmZwdV9pbml0aWFs aXNlZCA9IDE7CiAgICAgICAgIHYtPmZwdV9kaXJ0aWVkID0gMTsKKworICAg ICAgICAvKiBYZW4gZG9lc24ndCBuZWVkIFRTIHNldCwgYnV0IHRoZSBndWVz dCBtaWdodC4gKi8KKyAgICAgICAgaWYgKCBpc19wdl92Y3B1KHYpICYmICh2 LT5hcmNoLnB2X3ZjcHUuY3RybHJlZ1swXSAmIFg4Nl9DUjBfVFMpICkKKyAg ICAgICAgICAgIHN0dHMoKTsKICAgICB9CiAgICAgZWxzZQogICAgIHsKQEAg LTI0Nyw2ICsyNTUsOCBAQCB2b2lkIHZjcHVfcmVzdG9yZV9mcHVfbGF6eShz dHJ1Y3QgdmNwdSAqdikKICAgICBpZiAoIHYtPmZwdV9kaXJ0aWVkICkKICAg ICAgICAgcmV0dXJuOwogCisgICAgQVNTRVJUKCF2LT5hcmNoLmZ1bGx5X2Vh Z2VyX2ZwdSk7CisKICAgICBpZiAoIGNwdV9oYXNfeHNhdmUgKQogICAgICAg ICBmcHVfeHJzdG9yKHYsIFhTVEFURV9MQVpZKTsKICAgICBlbHNlCmRpZmYg LS1naXQgYS94ZW4vaW5jbHVkZS9hc20teDg2L2RvbWFpbi5oIGIveGVuL2lu Y2x1ZGUvYXNtLXg4Ni9kb21haW4uaAppbmRleCAyYmEyMWUxLi43NzU5MzMy IDEwMDY0NAotLS0gYS94ZW4vaW5jbHVkZS9hc20teDg2L2RvbWFpbi5oCisr KyBiL3hlbi9pbmNsdWRlL2FzbS14ODYvZG9tYWluLmgKQEAgLTU2OSw2ICs1 NjksOSBAQCBzdHJ1Y3QgYXJjaF92Y3B1CiAgICAgICogYW5kIHRodXMgc2hv dWxkIGJlIHNhdmVkL3Jlc3RvcmVkLiAqLwogICAgIGJvb2xfdCBub25sYXp5 X3hzdGF0ZV91c2VkOwogCisgICAgLyogUmVzdG9yZSBhbGwgRlBVIHN0YXRl IChsYXp5IGFuZCBub24tbGF6eSBzdGF0ZSkgb24gY29udGV4dCBzd2l0Y2g/ ICovCisgICAgYm9vbCBmdWxseV9lYWdlcl9mcHU7CisKICAgICAvKgogICAg ICAqIFRoZSBTTUFQIGNoZWNrIHBvbGljeSB3aGVuIHVwZGF0aW5nIHJ1bnN0 YXRlX2d1ZXN0KHYpIGFuZCB0aGUKICAgICAgKiBzZWNvbmRhcnkgc3lzdGVt IHRpbWUuCg== --=separator Content-Type: application/octet-stream; name="xsa267-4.10-2.patch" Content-Disposition: attachment; filename="xsa267-4.10-2.patch" Content-Transfer-Encoding: base64 RnJvbTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNv bT4KU3ViamVjdDogeDg2L3NwZWMtY3RybDogTWl0aWdhdGlvbnMgZm9yIExh enlGUFUKCkludGVsIENvcmUgcHJvY2Vzc29ycyBzaW5jZSBhdCBsZWFzdCBO ZWhhbGVtIHNwZWN1bGF0ZSBwYXN0ICNOTSwgd2hpY2ggaXMgdGhlCm1lY2hh bmlzbSBieSB3aGljaCBsYXp5IEZQVSBjb250ZXh0IHN3aXRjaGluZyBpcyBp bXBsZW1lbnRlZC4KCk9uIGFmZmVjdGVkIHByb2Nlc3NvcnMsIFhlbiBtdXN0 IHVzZSBmdWxseSBlYWdlciBGUFUgY29udGV4dCBzd2l0Y2hpbmcgdG8KcHJl dmVudCBndWVzdHMgZnJvbSBiZWluZyBhYmxlIHRvIHJlYWQgRlBVIHN0YXRl IChTU0UvQVZYL2V0YykgZnJvbSBwcmV2aW91c2x5CnNjaGVkdWxlZCB2Y3B1 cy4KClRoaXMgaXMgcGFydCBvZiBYU0EtMjY3IC8gQ1ZFLTIwMTgtMzY2NQoK U2lnbmVkLW9mZi1ieTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNA Y2l0cml4LmNvbT4KUmV2aWV3ZWQtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGlj aEBzdXNlLmNvbT4KCmRpZmYgLS1naXQgYS9kb2NzL21pc2MveGVuLWNvbW1h bmQtbGluZS5tYXJrZG93biBiL2RvY3MvbWlzYy94ZW4tY29tbWFuZC1saW5l Lm1hcmtkb3duCmluZGV4IDVjMTNmNmYuLmNiODFhOWMgMTAwNjQ0Ci0tLSBh L2RvY3MvbWlzYy94ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCisrKyBiL2Rv Y3MvbWlzYy94ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCkBAIC0xNzI3LDcg KzE3MjcsNyBAQCBmYWxzZSBkaXNhYmxlIHRoZSBxdWlyayB3b3JrYXJvdW5k LCB3aGljaCBpcyBhbHNvIHRoZSBkZWZhdWx0LgogCiAjIyMgc3BlYy1jdHJs ICh4ODYpCiA+IGA9IExpc3Qgb2YgWyA8Ym9vbD4sIHhlbj08Ym9vbD4sIHtw dixodm0sbXNyLXNjLHJzYn09PGJvb2w+LAotPiAgICAgICAgICAgICAgYnRp LXRodW5rPXJldHBvbGluZXxsZmVuY2V8am1wLCB7aWJycyxpYnBiLHNzYmR9 PTxib29sPiBdYAorPiAgICAgICAgICAgICAgYnRpLXRodW5rPXJldHBvbGlu ZXxsZmVuY2V8am1wLCB7aWJycyxpYnBiLHNzYmQsZWFnZXItZnB1fT08Ym9v bD4gXWAKIAogQ29udHJvbHMgZm9yIHNwZWN1bGF0aXZlIGV4ZWN1dGlvbiBz aWRlY2hhbm5lbCBtaXRpZ2F0aW9ucy4gIEJ5IGRlZmF1bHQsIFhlbgogd2ls bCBwaWNrIHRoZSBtb3N0IGFwcHJvcHJpYXRlIG1pdGlnYXRpb25zIGJhc2Vk IG9uIGNvbXBpbGVkIGluIHN1cHBvcnQsCkBAIC0xNzc3LDYgKzE3NzcsMTEg QEAgaGFyZHdhcmUsIHRoaXMgaXMgYSBnbG9iYWwgb3B0aW9uIGFwcGxpZWQg YXQgYm9vdCwgYW5kIG5vdCB2aXJ0dWFsaXNlZCBmb3IKIGd1ZXN0IHVzZS4g IE9uIEludGVsIGhhcmR3YXJlLCB0aGUgZmVhdHVyZSBpcyB2aXJ0dWFsaXNl ZCBmb3IgZ3Vlc3RzLAogaW5kZXBlbmRlbnRseSBvZiBYZW4ncyBjaG9pY2Ug b2Ygc2V0dGluZy4KIAorT24gYWxsIGhhcmR3YXJlLCB0aGUgYGVhZ2VyLWZw dT1gIG9wdGlvbiBjYW4gYmUgdXNlZCB0byBmb3JjZSBvciBwcmV2ZW50IFhl bgorZnJvbSB1c2luZyBmdWxseSBlYWdlciBGUFUgY29udGV4dCBzd2l0Y2hl cy4gIFRoaXMgaXMgY3VycmVudGx5IGltcGxlbWVudGVkIGFzCithIGdsb2Jh bCBjb250cm9sLiAgQnkgZGVmYXVsdCwgWGVuIHdpbGwgY2hvb3NlIHRvIHVz ZSBmdWxseSBlYWdlciBjb250ZXh0Citzd2l0Y2hlcyBvbiBoYXJkd2FyZSBi ZWxpZXZlZCB0byBzcGVjdWxhdGUgcGFzdCAjTk0gZXhjZXB0aW9ucy4KKwog IyMjIHN5bmNcX2NvbnNvbGUKID4gYD0gPGJvb2xlYW4+YAogCmRpZmYgLS1n aXQgYS94ZW4vYXJjaC94ODYvaTM4Ny5jIGIveGVuL2FyY2gveDg2L2kzODcu YwppbmRleCA1MDExNmQ1Li5kYmRmMWI0IDEwMDY0NAotLS0gYS94ZW4vYXJj aC94ODYvaTM4Ny5jCisrKyBiL3hlbi9hcmNoL3g4Ni9pMzg3LmMKQEAgLTE1 LDYgKzE1LDcgQEAKICNpbmNsdWRlIDxhc20vaTM4Ny5oPgogI2luY2x1ZGUg PGFzbS94c3RhdGUuaD4KICNpbmNsdWRlIDxhc20vYXNtX2RlZm5zLmg+Cisj aW5jbHVkZSA8YXNtL3NwZWNfY3RybC5oPgogCiAvKioqKioqKioqKioqKioq KioqKioqKioqKioqKioqKi8KIC8qICAgICBGUFUgUmVzdG9yZSBGdW5jdGlv bnMgICAqLwpAQCAtMzA3LDYgKzMwOCw4IEBAIGludCB2Y3B1X2luaXRfZnB1 KHN0cnVjdCB2Y3B1ICp2KQogewogICAgIGludCByYzsKICAgICAKKyAgICB2 LT5hcmNoLmZ1bGx5X2VhZ2VyX2ZwdSA9IG9wdF9lYWdlcl9mcHU7CisKICAg ICBpZiAoIChyYyA9IHhzdGF0ZV9hbGxvY19zYXZlX2FyZWEodikpICE9IDAg KQogICAgICAgICByZXR1cm4gcmM7CiAKZGlmZiAtLWdpdCBhL3hlbi9hcmNo L3g4Ni9zcGVjX2N0cmwuYyBiL3hlbi9hcmNoL3g4Ni9zcGVjX2N0cmwuYwpp bmRleCBiNWE3ZjljLi5jZjI1NWFjIDEwMDY0NAotLS0gYS94ZW4vYXJjaC94 ODYvc3BlY19jdHJsLmMKKysrIGIveGVuL2FyY2gveDg2L3NwZWNfY3RybC5j CkBAIC00NCw2ICs0NCw3IEBAIHN0YXRpYyBlbnVtIGluZF90aHVuayB7CiBz dGF0aWMgaW50OF90IF9faW5pdGRhdGEgb3B0X2licnMgPSAtMTsKIGJvb2wg X19yZWFkX21vc3RseSBvcHRfaWJwYiA9IHRydWU7CiBib29sIF9fcmVhZF9t b3N0bHkgb3B0X3NzYmQgPSBmYWxzZTsKK2ludDhfdCBfX3JlYWRfbW9zdGx5 IG9wdF9lYWdlcl9mcHUgPSAtMTsKIAogYm9vbCBfX2luaXRkYXRhIGJzcF9k ZWxheV9zcGVjX2N0cmw7CiB1aW50OF90IF9fcmVhZF9tb3N0bHkgZGVmYXVs dF94ZW5fc3BlY19jdHJsOwpAQCAtMTE0LDYgKzExNSw3IEBAIHN0YXRpYyBp bnQgX19pbml0IHBhcnNlX3NwZWNfY3RybChjb25zdCBjaGFyICpzKQogICAg ICAgICAgICAgb3B0X3RodW5rID0gVEhVTktfSk1QOwogICAgICAgICAgICAg b3B0X2licnMgPSAwOwogICAgICAgICAgICAgb3B0X2licGIgPSBmYWxzZTsK KyAgICAgICAgICAgIG9wdF9lYWdlcl9mcHUgPSAwOwogICAgICAgICB9CiAg ICAgICAgIGVsc2UgaWYgKCB2YWwgPiAwICkKICAgICAgICAgICAgIHJjID0g LUVJTlZBTDsKQEAgLTE2Nyw2ICsxNjksOCBAQCBzdGF0aWMgaW50IF9faW5p dCBwYXJzZV9zcGVjX2N0cmwoY29uc3QgY2hhciAqcykKICAgICAgICAgICAg IG9wdF9pYnBiID0gdmFsOwogICAgICAgICBlbHNlIGlmICggKHZhbCA9IHBh cnNlX2Jvb2xlYW4oInNzYmQiLCBzLCBzcykpID49IDAgKQogICAgICAgICAg ICAgb3B0X3NzYmQgPSB2YWw7CisgICAgICAgIGVsc2UgaWYgKCAodmFsID0g cGFyc2VfYm9vbGVhbigiZWFnZXItZnB1Iiwgcywgc3MpKSA+PSAwICkKKyAg ICAgICAgICAgIG9wdF9lYWdlcl9mcHUgPSB2YWw7CiAgICAgICAgIGVsc2UK ICAgICAgICAgICAgIHJjID0gLUVJTlZBTDsKIApAQCAtMjIzLDE1ICsyMjcs MTkgQEAgc3RhdGljIHZvaWQgX19pbml0IHByaW50X2RldGFpbHMoZW51bSBp bmRfdGh1bmsgdGh1bmssIHVpbnQ2NF90IGNhcHMpCiAgICAgICogQWx0ZXJu YXRpdmVzIGJsb2NrcyBmb3IgcHJvdGVjdGluZyBhZ2FpbnN0IGFuZC9vciB2 aXJ0dWFsaXNpbmcKICAgICAgKiBtaXRpZ2F0aW9uIHN1cHBvcnQgZm9yIGd1 ZXN0cy4KICAgICAgKi8KLSAgICBwcmludGsoIiAgU3VwcG9ydCBmb3IgVk1z OiBQVjolcyVzJXMsIEhWTTolcyVzJXNcbiIsCisgICAgcHJpbnRrKCIgIFN1 cHBvcnQgZm9yIFZNczogUFY6JXMlcyVzJXMsIEhWTTolcyVzJXMlc1xuIiwK ICAgICAgICAgICAgKGJvb3RfY3B1X2hhcyhYODZfRkVBVFVSRV9TQ19NU1Jf UFYpIHx8Ci0gICAgICAgICAgICBib290X2NwdV9oYXMoWDg2X0ZFQVRVUkVf U0NfUlNCX1BWKSkgICAgID8gIiIgICAgICAgICAgICAgICA6ICIgTm9uZSIs CisgICAgICAgICAgICBib290X2NwdV9oYXMoWDg2X0ZFQVRVUkVfU0NfUlNC X1BWKSB8fAorICAgICAgICAgICAgb3B0X2VhZ2VyX2ZwdSkgICAgICAgICAg ICAgICAgICAgICAgICAgICA/ICIiICAgICAgICAgICAgICAgOiAiIE5vbmUi LAogICAgICAgICAgICBib290X2NwdV9oYXMoWDg2X0ZFQVRVUkVfU0NfTVNS X1BWKSAgICAgICA/ICIgTVNSX1NQRUNfQ1RSTCIgOiAiIiwKICAgICAgICAg ICAgYm9vdF9jcHVfaGFzKFg4Nl9GRUFUVVJFX1NDX1JTQl9QVikgICAgICAg PyAiIFJTQiIgICAgICAgICAgIDogIiIsCisgICAgICAgICAgIG9wdF9lYWdl cl9mcHUgICAgICAgICAgICAgICAgICAgICAgICAgICAgID8gIiBFQUdFUl9G UFUiICAgICA6ICIiLAogICAgICAgICAgICAoYm9vdF9jcHVfaGFzKFg4Nl9G RUFUVVJFX1NDX01TUl9IVk0pIHx8Ci0gICAgICAgICAgICBib290X2NwdV9o YXMoWDg2X0ZFQVRVUkVfU0NfUlNCX0hWTSkpICAgID8gIiIgICAgICAgICAg ICAgICA6ICIgTm9uZSIsCisgICAgICAgICAgICBib290X2NwdV9oYXMoWDg2 X0ZFQVRVUkVfU0NfUlNCX0hWTSkgfHwKKyAgICAgICAgICAgIG9wdF9lYWdl cl9mcHUpICAgICAgICAgICAgICAgICAgICAgICAgICAgPyAiIiAgICAgICAg ICAgICAgIDogIiBOb25lIiwKICAgICAgICAgICAgYm9vdF9jcHVfaGFzKFg4 Nl9GRUFUVVJFX1NDX01TUl9IVk0pICAgICAgPyAiIE1TUl9TUEVDX0NUUkwi IDogIiIsCi0gICAgICAgICAgIGJvb3RfY3B1X2hhcyhYODZfRkVBVFVSRV9T Q19SU0JfSFZNKSAgICAgID8gIiBSU0IiICAgICAgICAgICA6ICIiKTsKKyAg ICAgICAgICAgYm9vdF9jcHVfaGFzKFg4Nl9GRUFUVVJFX1NDX1JTQl9IVk0p ICAgICAgPyAiIFJTQiIgICAgICAgICAgIDogIiIsCisgICAgICAgICAgIG9w dF9lYWdlcl9mcHUgICAgICAgICAgICAgICAgICAgICAgICAgICAgID8gIiBF QUdFUl9GUFUiICAgICA6ICIiKTsKIAogICAgIHByaW50aygiICBYUFRJICg2 NC1iaXQgUFYgb25seSk6IERvbTAgJXMsIERvbVUgJXNcbiIsCiAgICAgICAg ICAgIG9wdF94cHRpICYgT1BUX1hQVElfRE9NMCA/ICJlbmFibGVkIiA6ICJk aXNhYmxlZCIsCkBAIC0zMjEsNiArMzI5LDgyIEBAIHN0YXRpYyBib29sIF9f aW5pdCByZXRwb2xpbmVfc2FmZSh1aW50NjRfdCBjYXBzKQogICAgIH0KIH0K IAorLyogQ2FsY3VsYXRlIHdoZXRoZXIgdGhpcyBDUFUgc3BlY3VsYXRlcyBw YXN0ICNOTSAqLworc3RhdGljIGJvb2wgX19pbml0IHNob3VsZF91c2VfZWFn ZXJfZnB1KHZvaWQpCit7CisgICAgLyoKKyAgICAgKiBBc3N1bWUgYWxsIHVu cmVjb2duaXNlZCBwcm9jZXNzb3JzIGFyZSBvay4gIFRoaXMgaXMgb25seSBr bm93biB0bworICAgICAqIGFmZmVjdCBJbnRlbCBGYW1pbHkgNiBwcm9jZXNz b3JzLgorICAgICAqLworICAgIGlmICggYm9vdF9jcHVfZGF0YS54ODZfdmVu ZG9yICE9IFg4Nl9WRU5ET1JfSU5URUwgfHwKKyAgICAgICAgIGJvb3RfY3B1 X2RhdGEueDg2ICE9IDYgKQorICAgICAgICByZXR1cm4gZmFsc2U7CisKKyAg ICBzd2l0Y2ggKCBib290X2NwdV9kYXRhLng4Nl9tb2RlbCApCisgICAgewor ICAgICAgICAvKgorICAgICAgICAgKiBDb3JlIHByb2Nlc3NvcnMgc2luY2Ug YXQgbGVhc3QgTmVoYWxlbSBhcmUgdnVsbmVyYWJsZS4KKyAgICAgICAgICov CisgICAgY2FzZSAweDFlOiAvKiBOZWhhbGVtICovCisgICAgY2FzZSAweDFm OiAvKiBBdWJ1cm5kYWxlIC8gSGF2ZW5kYWxlICovCisgICAgY2FzZSAweDFh OiAvKiBOZWhhbGVtIEVQICovCisgICAgY2FzZSAweDJlOiAvKiBOZWhhbGVt IEVYICovCisgICAgY2FzZSAweDI1OiAvKiBXZXN0bWVyZSAqLworICAgIGNh c2UgMHgyYzogLyogV2VzdG1lcmUgRVAgKi8KKyAgICBjYXNlIDB4MmY6IC8q IFdlc3RtZXJlIEVYICovCisgICAgY2FzZSAweDJhOiAvKiBTYW5keUJyaWRn ZSAqLworICAgIGNhc2UgMHgyZDogLyogU2FuZHlCcmlkZ2UgRVAvRVggKi8K KyAgICBjYXNlIDB4M2E6IC8qIEl2eUJyaWRnZSAqLworICAgIGNhc2UgMHgz ZTogLyogSXZ5QnJpZGdlIEVQL0VYICovCisgICAgY2FzZSAweDNjOiAvKiBI YXN3ZWxsICovCisgICAgY2FzZSAweDNmOiAvKiBIYXN3ZWxsIEVYL0VQICov CisgICAgY2FzZSAweDQ1OiAvKiBIYXN3ZWxsIEQgKi8KKyAgICBjYXNlIDB4 NDY6IC8qIEhhc3dlbGwgSCAqLworICAgIGNhc2UgMHgzZDogLyogQnJvYWR3 ZWxsICovCisgICAgY2FzZSAweDQ3OiAvKiBCcm9hZHdlbGwgSCAqLworICAg IGNhc2UgMHg0ZjogLyogQnJvYWR3ZWxsIEVQL0VYICovCisgICAgY2FzZSAw eDU2OiAvKiBCcm9hZHdlbGwgRCAqLworICAgIGNhc2UgMHg0ZTogLyogU2t5 bGFrZSBNICovCisgICAgY2FzZSAweDU1OiAvKiBTa3lsYWtlIFggKi8KKyAg ICBjYXNlIDB4NWU6IC8qIFNreWxha2UgRCAqLworICAgIGNhc2UgMHg2Njog LyogQ2Fubm9ubGFrZSAqLworICAgIGNhc2UgMHg2NzogLyogQ2Fubm9ubGFr ZT8gKi8KKyAgICBjYXNlIDB4OGU6IC8qIEthYnlsYWtlIE0gKi8KKyAgICBj YXNlIDB4OWU6IC8qIEthYnlsYWtlIEQgKi8KKyAgICAgICAgcmV0dXJuIHRy dWU7CisKKyAgICAgICAgLyoKKyAgICAgICAgICogQXRvbSBwcm9jZXNzb3Jz IGFyZSBub3QgdnVsbmVyYWJsZS4KKyAgICAgICAgICovCisgICAgY2FzZSAw eDFjOiAvKiBQaW5ldmlldyAqLworICAgIGNhc2UgMHgyNjogLyogTGluY3Jv ZnQgKi8KKyAgICBjYXNlIDB4Mjc6IC8qIFBlbndlbGwgKi8KKyAgICBjYXNl IDB4MzU6IC8qIENsb3ZlcnZpZXcgKi8KKyAgICBjYXNlIDB4MzY6IC8qIENl ZGFydmlldyAqLworICAgIGNhc2UgMHgzNzogLyogQmF5dHJhaWwgLyBWYWxs ZXl2aWV3IChTaWx2ZXJtb250KSAqLworICAgIGNhc2UgMHg0ZDogLyogQXZh dG9uIC8gUmFuZ2VseSAoU2lsdmVybW9udCkgKi8KKyAgICBjYXNlIDB4NGM6 IC8qIENoZXJyeXRyYWlsIC8gQnJhc3N3ZWxsICovCisgICAgY2FzZSAweDRh OiAvKiBNZXJyaWZpZWxkICovCisgICAgY2FzZSAweDVhOiAvKiBNb29yZWZp ZWxkICovCisgICAgY2FzZSAweDVjOiAvKiBHb2xkbW9udCAqLworICAgIGNh c2UgMHg1ZjogLyogRGVudmVydG9uICovCisgICAgY2FzZSAweDdhOiAvKiBH ZW1pbmkgTGFrZSAqLworICAgICAgICByZXR1cm4gZmFsc2U7CisKKyAgICAg ICAgLyoKKyAgICAgICAgICogS25pZ2h0cyBwcm9jZXNzb3JzIGFyZSBub3Qg dnVsbmVyYWJsZS4KKyAgICAgICAgICovCisgICAgY2FzZSAweDU3OiAvKiBL bmlnaHRzIExhbmRpbmcgKi8KKyAgICBjYXNlIDB4ODU6IC8qIEtuaWdodHMg TWlsbCAqLworICAgICAgICByZXR1cm4gZmFsc2U7CisKKyAgICBkZWZhdWx0 OgorICAgICAgICBwcmludGsoIlVucmVjb2duaXNlZCBDUFUgbW9kZWwgJSN4 IC0gYXNzdW1pbmcgdnVsbmVyYWJsZSB0byBMYXp5RlBVXG4iLAorICAgICAg ICAgICAgICAgYm9vdF9jcHVfZGF0YS54ODZfbW9kZWwpOworICAgICAgICBy ZXR1cm4gdHJ1ZTsKKyAgICB9Cit9CisKICNkZWZpbmUgT1BUX1hQVElfREVG QVVMVCAgMHhmZgogdWludDhfdCBfX3JlYWRfbW9zdGx5IG9wdF94cHRpID0g T1BUX1hQVElfREVGQVVMVDsKIApAQCAtNTE5LDYgKzYwMywxMCBAQCB2b2lk IF9faW5pdCBpbml0X3NwZWN1bGF0aW9uX21pdGlnYXRpb25zKHZvaWQpCiAg ICAgaWYgKCAhYm9vdF9jcHVfaGFzKFg4Nl9GRUFUVVJFX0lCUlNCKSAmJiAh Ym9vdF9jcHVfaGFzKFg4Nl9GRUFUVVJFX0lCUEIpICkKICAgICAgICAgb3B0 X2licGIgPSBmYWxzZTsKIAorICAgIC8qIENoZWNrIHdoZXRoZXIgRWFnZXIg RlBVIHNob3VsZCBiZSBlbmFibGVkIGJ5IGRlZmF1bHQuICovCisgICAgaWYg KCBvcHRfZWFnZXJfZnB1ID09IC0xICkKKyAgICAgICAgb3B0X2VhZ2VyX2Zw dSA9IHNob3VsZF91c2VfZWFnZXJfZnB1KCk7CisKICAgICAvKiAoUmUpaW5p dCBCU1Agc3RhdGUgbm93IHRoYXQgZGVmYXVsdF9zcGVjX2N0cmxfZmxhZ3Mg aGFzIGJlZW4gY2FsY3VsYXRlZC4gKi8KICAgICBpbml0X3NoYWRvd19zcGVj X2N0cmxfc3RhdGUoKTsKIApkaWZmIC0tZ2l0IGEveGVuL2luY2x1ZGUvYXNt LXg4Ni9zcGVjX2N0cmwuaCBiL3hlbi9pbmNsdWRlL2FzbS14ODYvc3BlY19j dHJsLmgKaW5kZXggOTFiZWQxYi4uNWI0MGFmYiAxMDA2NDQKLS0tIGEveGVu L2luY2x1ZGUvYXNtLXg4Ni9zcGVjX2N0cmwuaAorKysgYi94ZW4vaW5jbHVk ZS9hc20teDg2L3NwZWNfY3RybC5oCkBAIC0yOCw2ICsyOCw3IEBAIHZvaWQg aW5pdF9zcGVjdWxhdGlvbl9taXRpZ2F0aW9ucyh2b2lkKTsKIAogZXh0ZXJu IGJvb2wgb3B0X2licGI7CiBleHRlcm4gYm9vbCBvcHRfc3NiZDsKK2V4dGVy biBpbnQ4X3Qgb3B0X2VhZ2VyX2ZwdTsKIAogZXh0ZXJuIGJvb2wgYnNwX2Rl bGF5X3NwZWNfY3RybDsKIGV4dGVybiB1aW50OF90IGRlZmF1bHRfeGVuX3Nw ZWNfY3RybDsK --=separator Content-Type: application/octet-stream; name="xsa267-livepatch.patch" Content-Disposition: attachment; filename="xsa267-livepatch.patch" Content-Transfer-Encoding: base64 RnJvbTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNv bT4KU3ViamVjdDogeDg2OiBMaXZlcGF0Y2ggbWl0aWdhdGlvbnMgZm9yIExh enlGUFUKClRoaXMgaXMgcGFydCBvZiBYU0EtMjY3IC8gQ1ZFLTIwMTgtMzY2 NQoKU2lnbmVkLW9mZi1ieTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3Bl cjNAY2l0cml4LmNvbT4KCmRpZmYgLS1naXQgYS94ZW4vYXJjaC94ODYvaTM4 Ny5jIGIveGVuL2FyY2gveDg2L2kzODcuYwppbmRleCA4ODQ1MjUyLi4wOTYx YmZlIDEwMDY0NAotLS0gYS94ZW4vYXJjaC94ODYvaTM4Ny5jCisrKyBiL3hl bi9hcmNoL3g4Ni9pMzg3LmMKQEAgLTksNiArOSw3IEBACiAgKi8KIAogI2lu Y2x1ZGUgPHhlbi9zY2hlZC5oPgorI2luY2x1ZGUgPHhlbi9saXZlcGF0Y2hf cGF5bG9hZC5oPgogI2luY2x1ZGUgPGFzbS9jdXJyZW50Lmg+CiAjaW5jbHVk ZSA8YXNtL3Byb2Nlc3Nvci5oPgogI2luY2x1ZGUgPGFzbS9odm0vc3VwcG9y dC5oPgpAQCAtMjAxLDYgKzIwMiw5NCBAQCBzdGF0aWMgaW5saW5lIHZvaWQg ZnB1X2Z4c2F2ZShzdHJ1Y3QgdmNwdSAqdikKICAgICBmcHVfY3R4dC0+eFtG UFVfV09SRF9TSVpFX09GRlNFVF0gPSBmaXBfd2lkdGg7CiB9CiAKKy8qIENh bGN1bGF0ZSB3aGV0aGVyIHRoaXMgQ1BVIHNwZWN1bGF0ZXMgcGFzdCAjTk0g Ki8KK3N0YXRpYyBib29sIHNob3VsZF91c2VfZWFnZXJfZnB1KHZvaWQpCit7 CisgICAgLyoKKyAgICAgKiBBc3N1bWUgYWxsIHVucmVjb2duaXNlZCBwcm9j ZXNzb3JzIGFyZSBvay4gIFRoaXMgaXMgb25seSBrbm93biB0bworICAgICAq IGFmZmVjdCBJbnRlbCBGYW1pbHkgNiBwcm9jZXNzb3JzLgorICAgICAqLwor ICAgIGlmICggYm9vdF9jcHVfZGF0YS54ODZfdmVuZG9yICE9IFg4Nl9WRU5E T1JfSU5URUwgfHwKKyAgICAgICAgIGJvb3RfY3B1X2RhdGEueDg2ICE9IDYg KQorICAgICAgICByZXR1cm4gZmFsc2U7CisKKyAgICBzd2l0Y2ggKCBib290 X2NwdV9kYXRhLng4Nl9tb2RlbCApCisgICAgeworICAgICAgICAvKgorICAg ICAgICAgKiBDb3JlIHByb2Nlc3NvcnMgc2luY2UgYXQgbGVhc3QgTmVoYWxl bSBhcmUgdnVsbmVyYWJsZS4KKyAgICAgICAgICovCisgICAgY2FzZSAweDFl OiAvKiBOZWhhbGVtICovCisgICAgY2FzZSAweDFmOiAvKiBBdWJ1cm5kYWxl IC8gSGF2ZW5kYWxlICovCisgICAgY2FzZSAweDFhOiAvKiBOZWhhbGVtIEVQ ICovCisgICAgY2FzZSAweDJlOiAvKiBOZWhhbGVtIEVYICovCisgICAgY2Fz ZSAweDI1OiAvKiBXZXN0bWVyZSAqLworICAgIGNhc2UgMHgyYzogLyogV2Vz dG1lcmUgRVAgKi8KKyAgICBjYXNlIDB4MmY6IC8qIFdlc3RtZXJlIEVYICov CisgICAgY2FzZSAweDJhOiAvKiBTYW5keUJyaWRnZSAqLworICAgIGNhc2Ug MHgyZDogLyogU2FuZHlCcmlkZ2UgRVAvRVggKi8KKyAgICBjYXNlIDB4M2E6 IC8qIEl2eUJyaWRnZSAqLworICAgIGNhc2UgMHgzZTogLyogSXZ5QnJpZGdl IEVQL0VYICovCisgICAgY2FzZSAweDNjOiAvKiBIYXN3ZWxsICovCisgICAg Y2FzZSAweDNmOiAvKiBIYXN3ZWxsIEVYL0VQICovCisgICAgY2FzZSAweDQ1 OiAvKiBIYXN3ZWxsIEQgKi8KKyAgICBjYXNlIDB4NDY6IC8qIEhhc3dlbGwg SCAqLworICAgIGNhc2UgMHgzZDogLyogQnJvYWR3ZWxsICovCisgICAgY2Fz ZSAweDQ3OiAvKiBCcm9hZHdlbGwgSCAqLworICAgIGNhc2UgMHg0ZjogLyog QnJvYWR3ZWxsIEVQL0VYICovCisgICAgY2FzZSAweDU2OiAvKiBCcm9hZHdl bGwgRCAqLworICAgIGNhc2UgMHg0ZTogLyogU2t5bGFrZSBNICovCisgICAg Y2FzZSAweDU1OiAvKiBTa3lsYWtlIFggKi8KKyAgICBjYXNlIDB4NWU6IC8q IFNreWxha2UgRCAqLworICAgIGNhc2UgMHg2NjogLyogQ2Fubm9ubGFrZSAq LworICAgIGNhc2UgMHg2NzogLyogQ2Fubm9ubGFrZT8gKi8KKyAgICBjYXNl IDB4OGU6IC8qIEthYnlsYWtlIE0gKi8KKyAgICBjYXNlIDB4OWU6IC8qIEth YnlsYWtlIEQgKi8KKyAgICAgICAgcmV0dXJuIHRydWU7CisKKyAgICAgICAg LyoKKyAgICAgICAgICogQXRvbSBwcm9jZXNzb3JzIGFyZSBub3QgdnVsbmVy YWJsZS4KKyAgICAgICAgICovCisgICAgY2FzZSAweDFjOiAvKiBQaW5ldmll dyAqLworICAgIGNhc2UgMHgyNjogLyogTGluY3JvZnQgKi8KKyAgICBjYXNl IDB4Mjc6IC8qIFBlbndlbGwgKi8KKyAgICBjYXNlIDB4MzU6IC8qIENsb3Zl cnZpZXcgKi8KKyAgICBjYXNlIDB4MzY6IC8qIENlZGFydmlldyAqLworICAg IGNhc2UgMHgzNzogLyogQmF5dHJhaWwgLyBWYWxsZXl2aWV3IChTaWx2ZXJt b250KSAqLworICAgIGNhc2UgMHg0ZDogLyogQXZhdG9uIC8gUmFuZ2VseSAo U2lsdmVybW9udCkgKi8KKyAgICBjYXNlIDB4NGM6IC8qIENoZXJyeXRyYWls IC8gQnJhc3N3ZWxsICovCisgICAgY2FzZSAweDRhOiAvKiBNZXJyaWZpZWxk ICovCisgICAgY2FzZSAweDVhOiAvKiBNb29yZWZpZWxkICovCisgICAgY2Fz ZSAweDVjOiAvKiBHb2xkbW9udCAqLworICAgIGNhc2UgMHg1ZjogLyogRGVu dmVydG9uICovCisgICAgY2FzZSAweDdhOiAvKiBHZW1pbmkgTGFrZSAqLwor ICAgICAgICByZXR1cm4gZmFsc2U7CisKKyAgICAgICAgLyoKKyAgICAgICAg ICogS25pZ2h0cyBwcm9jZXNzb3JzIGFyZSBub3QgdnVsbmVyYWJsZS4KKyAg ICAgICAgICovCisgICAgY2FzZSAweDU3OiAvKiBLbmlnaHRzIExhbmRpbmcg Ki8KKyAgICBjYXNlIDB4ODU6IC8qIEtuaWdodHMgTWlsbCAqLworICAgICAg ICByZXR1cm4gZmFsc2U7CisKKyAgICBkZWZhdWx0OgorICAgICAgICBwcmlu dGsoIlVucmVjb2duaXNlZCBDUFUgbW9kZWwgJSN4IC0gYXNzdW1pbmcgdnVs bmVyYWJsZSB0byBMYXp5RlBVXG4iLAorICAgICAgICAgICAgICAgYm9vdF9j cHVfZGF0YS54ODZfbW9kZWwpOworICAgICAgICByZXR1cm4gdHJ1ZTsKKyAg ICB9Cit9CisKK3N0YXRpYyBib29sIGZ1bGx5X2VhZ2VyX2ZwdTsKKwordm9p ZCBsYXp5ZnB1X2FwcGx5X2hvb2sodm9pZCkKK3sKKyAgICBmdWxseV9lYWdl cl9mcHUgPSBzaG91bGRfdXNlX2VhZ2VyX2ZwdSgpOworCisgICAgcHJpbnRr KCJMYXp5RlBVIExpdmVwYXRjaDogRmFtICV1LCBNb2RlbCAldSA9PiBGdWxs eSBFYWdlciAldVxuIiwKKyAgICAgICAgICAgYm9vdF9jcHVfZGF0YS54ODYs IGJvb3RfY3B1X2RhdGEueDg2X21vZGVsLCBmdWxseV9lYWdlcl9mcHUpOwor fQorCitMSVZFUEFUQ0hfTE9BRF9IT09LKGxhenlmcHVfYXBwbHlfaG9vayk7 CisKIC8qKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqLwogLyogICAg ICAgVkNQVSBGUFUgRnVuY3Rpb25zICAgICovCiAvKioqKioqKioqKioqKioq KioqKioqKioqKioqKioqKi8KQEAgLTIxMCw3ICsyOTksNyBAQCB2b2lkIHZj cHVfcmVzdG9yZV9mcHVfZWFnZXIoc3RydWN0IHZjcHUgKnYpCiAgICAgQVNT RVJUKCFpc19pZGxlX3ZjcHUodikpOwogICAgIAogICAgIC8qIFJlc3RvcmUg bm9ubGF6eSBleHRlbmRlZCBzdGF0ZSAoaS5lLiBwYXJ0cyBub3QgdHJhY2tl ZCBieSBDUjAuVFMpLiAqLwotICAgIGlmICggIXYtPmFyY2gubm9ubGF6eV94 c3RhdGVfdXNlZCApCisgICAgaWYgKCAhZnVsbHlfZWFnZXJfZnB1ICYmICF2 LT5hcmNoLm5vbmxhenlfeHN0YXRlX3VzZWQgKQogICAgICAgICByZXR1cm47 CiAKICAgICAvKiBBdm9pZCByZWN1cnNpb24gKi8KQEAgLTIyMSwxMSArMzEw LDE5IEBAIHZvaWQgdmNwdV9yZXN0b3JlX2ZwdV9lYWdlcihzdHJ1Y3QgdmNw dSAqdikKICAgICAgKiBhYm92ZSkgd2UgYWxzbyBuZWVkIHRvIHJlc3RvcmUg ZnVsbCBzdGF0ZSwgdG8gcHJldmVudCBzdWJzZXF1ZW50bHkKICAgICAgKiBz YXZpbmcgc3RhdGUgYmVsb25naW5nIHRvIGFub3RoZXIgdkNQVS4KICAgICAg Ki8KLSAgICBpZiAoIHhzdGF0ZV9hbGwodikgKQorICAgIGlmICggZnVsbHlf ZWFnZXJfZnB1IHx8ICh2LT5hcmNoLnhzYXZlX2FyZWEgJiYgeHN0YXRlX2Fs bCh2KSkgKQogICAgIHsKLSAgICAgICAgZnB1X3hyc3Rvcih2LCBYU1RBVEVf QUxMKTsKKyAgICAgICAgaWYgKCBjcHVfaGFzX3hzYXZlICkKKyAgICAgICAg ICAgIGZwdV94cnN0b3IodiwgWFNUQVRFX0FMTCk7CisgICAgICAgIGVsc2UK KyAgICAgICAgICAgIGZwdV9meHJzdG9yKHYpOworCiAgICAgICAgIHYtPmZw dV9pbml0aWFsaXNlZCA9IDE7CiAgICAgICAgIHYtPmZwdV9kaXJ0aWVkID0g MTsKKworICAgICAgICAvKiBYZW4gZG9lc24ndCBuZWVkIFRTIHNldCwgYnV0 IHRoZSBndWVzdCBtaWdodC4gKi8KKyAgICAgICAgaWYgKCBpc19wdl92Y3B1 KHYpICYmICh2LT5hcmNoLnB2X3ZjcHUuY3RybHJlZ1swXSAmIFg4Nl9DUjBf VFMpICkKKyAgICAgICAgICAgIHN0dHMoKTsKICAgICB9CiAgICAgZWxzZQog ICAgIHsK --=separator Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KWGVuLWFubm91 bmNlIG1haWxpbmcgbGlzdApYZW4tYW5ub3VuY2VAbGlzdHMueGVucHJvamVjdC5vcmcKaHR0cHM6 Ly9saXN0cy54ZW5wcm9qZWN0Lm9yZy9tYWlsbWFuL2xpc3RpbmZvL3hlbi1hbm5vdW5jZQ== --=separator-- From xen-announce-bounces@lists.xenproject.org Wed Jun 27 21:05:13 2018 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Wed, 27 Jun 2018 21:05:13 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.89) (envelope-from ) id 1fYHbs-0003p7-Ac; Wed, 27 Jun 2018 21:04:16 +0000 Received: from all-amaz-eas1.inumbo.com ([34.197.232.57]) by lists.xenproject.org with esmtp (Exim 4.89) (envelope-from ) id 1fYHbq-0003oF-Fv for xen-announce@lists.xen.org; Wed, 27 Jun 2018 21:04:14 +0000 X-Inumbo-ID: af2977f7-7a4d-11e8-bc1d-65256ead4e3a Received: from mail.xenproject.org (unknown [104.130.215.37]) by us1-amaz-eas1.inumbo.com (Halon) with ESMTPS id af2977f7-7a4d-11e8-bc1d-65256ead4e3a; Wed, 27 Jun 2018 21:04:30 +0000 (UTC) Received: from xenbits.xenproject.org ([104.239.192.120]) by mail.xenproject.org with esmtp (Exim 4.89) (envelope-from ) id 1fYHbf-00016S-7m; Wed, 27 Jun 2018 21:04:03 +0000 Received: from iwj by xenbits.xenproject.org with local (Exim 4.89) (envelope-from ) id 1fYHbf-0005MU-57; Wed, 27 Jun 2018 21:04:03 +0000 Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.508 (Entity 5.508) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Message-Id: Date: Wed, 27 Jun 2018 21:04:03 +0000 Subject: [Xen-announce] Xen Security Advisory 266 (CVE-2018-12892) - libxl fails to honour readonly flag on HVM emulated SCSI disks X-BeenThere: xen-announce@lists.xenproject.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Cc: "Xen.org security team" Errors-To: xen-announce-bounces@lists.xenproject.org Sender: "Xen-announce" --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Xen Security Advisory CVE-2018-12892 / XSA-266 version 3 libxl fails to honour readonly flag on HVM emulated SCSI disks UPDATES IN VERSION 3 ==================== Public release. ISSUE DESCRIPTION ================= libxl fails to pass the readonly flag to qemu when setting up a SCSI disk, due to what was probably an erroneous merge conflict resolution. IMPACT ====== Malicious guest administrators or (in some situations) users may be able to write to supposedly read-only disk images. VULNERABLE SYSTEMS ================== Only emulated SCSI disks (specified as "sd" in the libxl disk configuration, or an equivalent) are affected. IDE disks ("hd") are not affected (because attempts to make them readonly are rejected). Additionally, CDROM devices (that is, devices specified to be presented to the guest as CDROMs, regardless of the nature of the backing storage on the host) are not affected; they are always readonly. Only systems using qemu-xen (rather than qemu-xen-traditional) as the device model version are vulnerable. Only systems using libxl or libxl-based toolstacks are vulnerable. (This includes xl, and libvirt with the libxl driver.) The vulnerability is present in Xen versions 4.7 and later. (In earlier versions, provided that the patch for XSA-142 has been applied, attempts to create readonly disks are rejected.) If the host and guest together usually support PVHVM, the issue is exploitable only if the malicious guest administrator has control of the guest kernel or guest kernel command line. MITIGATION ========== Switching to qemu-xen-traditional will avoid this vulnerability. This can be done with device_model_version="qemu-xen-traditional" in the xl configuration file. Using stub domain device models (which necessarily involves switching to qemu-xen-traditional) will also avoid this vulnerability. This can be done with device_model_stubdomain_override=true in the xl configuration file. All of these mitigations are liable to have other guest-visible effects or even regressions. It may be possible, depending on the configuration, to make the underlying storage object readonly, or to make it reject writes. CREDITS ======= This issue was discovered by Andrew Reimers of OrionVM. RESOLUTION ========== Applying the appropriate attached patch resolves this issue. xsa266/*.patch xen-unstable xsa266-4.10/*.patch Xen 4.10.x xsa266-4.9/*.patch Xen 4.9.x xsa266-4.8/*.patch Xen 4.8.x xsa266-4.7/*.patch Xen 4.7.x xsa266-4.6/*.patch Xen 4.6.x $ sha256sum xsa266* xsa266*/* d0d998bb3c2f36b0795cdf86d52aa2da3eee72218f9073f398fc6fd2cf5719cd xsa266.meta 0e5634c9b730e2e022bfef9ded2bb81b7740d05911dae6499671db5cb90663c0 xsa266-4.7/0001-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch e6dcef1bdd890a245cb9181266fc1378d77b08cf06c063f35a0835ab3b99cf91 xsa266-4.7/0002-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch 19ce6f236702219eb4831ed597f82dc81122fd517131e826643cee95b53d9f1c xsa266-4.8/0001-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch e0a4c616218bc42abada75aa5fa0c3e35da6b6334fe50d6104a5892ffebcdb04 xsa266-4.8/0002-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch 9fd48f20da140731bb71dde07035b938cf0966339449a0b6833787767c588c0a xsa266-4.9/0001-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch f23d0e76f15b1f6af487adc36a84cf2591197548ca7cab8ee84be72a87424cf7 xsa266-4.9/0002-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch 3d857f38d11b5531a651a45c2f151ac1493260524d4f49ead6833b5f1d599e64 xsa266-4.10/0001-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch e380976abd77b5b46d69c9564aca3acf9bf467b36645ac34e035aba89d081591 xsa266-4.10/0002-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch 160dc8c8a918cae7259c252af098206f9eff357e52bdfc0b15553e9c31c587e6 xsa266/0001-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch 2b44fd6baac094c82145667a16d9b1530b97fa342d0e635c831425b53a336266 xsa266/0002-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch $ DEPLOYMENT DURING EMBARGO ========================= Deployment of patches or mitigations is NOT permitted (except where all the affected systems and VMs are administered and used only by organisations which are members of the Xen Project Security Issues Predisclosure List). Specifically, deployment on public cloud systems is NOT permitted. This is because all of the patches and mitigations make significant guest-visible changes. In particular, applying the patch will cause the emulated SCSI disk object to be reported to the guest as readonly, when previously it was reported as writeable. Deployment is permitted only AFTER the embargo ends. (Note: this during-embargo deployment notice is retained in post-embargo publicly released Xen Project advisories, even though it is then no longer applicable. This is to enable the community to have oversight of the Xen Project Security Team's decisionmaking.) For more information about permissible uses of embargoed information, consult the Xen Project community's agreed Security Policy: http://www.xenproject.org/security-policy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEcBAEBCAAGBQJbM+5LAAoJEIP+FMlX6CvZ60YH/i11vnbKl2aKf8e+xchv3Ouf 9egSbsy9T8DfvQLZuXQJ4pXoIR8aRrpbZBK5G6HrK3N+eyVnOoRGR+c5nR4k6QFi kG+huw1xogN1TJyf1ln1zpy4sTJt7jmw5ZQEVqoHgsiwgifJiLKVMClQAsvNRkgq su+k4zii863l+2KJdrnsQUlSiO0rHxIgJOs6txSNKHuyJmasHata7O20fcbZ2eNY g+SMK3QinOTSGTK8gDJQcsBGm3XdmC3OOoXt3DjLvl2/NwAB51oSFr+wdDHl0k8s jVzRvBwauOelMyteH80lENJLVej52NVMhWDufWu7iGhoh9fZvD3xubO9zFeCtOY= =UpOb -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa266.meta" Content-Disposition: attachment; filename="xsa266.meta" Content-Transfer-Encoding: base64 ewogICJYU0EiOiAyNjYsCiAgIlN1cHBvcnRlZFZlcnNpb25zIjogWwogICAg Im1hc3RlciIsCiAgICAiNC4xMCIsCiAgICAiNC45IiwKICAgICI0LjgiLAog ICAgIjQuNyIsCiAgICAiNC42IgogIF0sCiAgIlRyZWVzIjogWwogICAgInhl biIKICBdLAogICJSZWNpcGVzIjogewogICAgIjQuMTAiOiB7CiAgICAgICJS ZWNpcGVzIjogewogICAgICAgICJ4ZW4iOiB7CiAgICAgICAgICAiU3RhYmxl UmVmIjogIjdiMzVlNzgwN2M5ZWZiYTBmNzRlNjY2M2E3MjA1YmQ5NzYwMmM4 ZDEiLAogICAgICAgICAgIlByZXJlcXMiOiBbXSwKICAgICAgICAgICJQYXRj aGVzIjogWwogICAgICAgICAgICAieHNhMjY2LTQuMTAvKi5wYXRjaCIKICAg ICAgICAgIF0KICAgICAgICB9CiAgICAgIH0KICAgIH0sCiAgICAiNC42Ijog ewogICAgICAiUmVjaXBlcyI6IHsKICAgICAgICAieGVuIjogewogICAgICAg ICAgIlN0YWJsZVJlZiI6ICI2MWE5ZmM1ZTU2ZWNmNTliZTk1MWFmMmNjNTVk MTVhMTEzZTkyMzMzIiwKICAgICAgICAgICJQcmVyZXFzIjogW10sCiAgICAg ICAgICAiUGF0Y2hlcyI6IFtdCiAgICAgICAgfQogICAgICB9CiAgICB9LAog ICAgIjQuNyI6IHsKICAgICAgIlJlY2lwZXMiOiB7CiAgICAgICAgInhlbiI6 IHsKICAgICAgICAgICJTdGFibGVSZWYiOiAiMTk2OTMyYWRiMjVhNmUyNjY4 MDc4OGRiNDM5Nzg1MGJiZDMwNzcwZiIsCiAgICAgICAgICAiUHJlcmVxcyI6 IFtdLAogICAgICAgICAgIlBhdGNoZXMiOiBbCiAgICAgICAgICAgICJ4c2Ey NjYtNC43LyoucGF0Y2giCiAgICAgICAgICBdCiAgICAgICAgfQogICAgICB9 CiAgICB9LAogICAgIjQuOCI6IHsKICAgICAgIlJlY2lwZXMiOiB7CiAgICAg ICAgInhlbiI6IHsKICAgICAgICAgICJTdGFibGVSZWYiOiAiMTUyMmE4MWFj ZWE1YzYxMDlmNmY3OTFkNTI4ZmQ4NzI0MTE3ZmI2MyIsCiAgICAgICAgICAi UHJlcmVxcyI6IFtdLAogICAgICAgICAgIlBhdGNoZXMiOiBbCiAgICAgICAg ICAgICJ4c2EyNjYtNC44LyoucGF0Y2giCiAgICAgICAgICBdCiAgICAgICAg fQogICAgICB9CiAgICB9LAogICAgIjQuOSI6IHsKICAgICAgIlJlY2lwZXMi OiB7CiAgICAgICAgInhlbiI6IHsKICAgICAgICAgICJTdGFibGVSZWYiOiAi MWM2YjhmMjNiOWM1MDk5Y2RmOWE1MzBlMGQwNDRiMWFiNWE4MzUxMSIsCiAg ICAgICAgICAiUHJlcmVxcyI6IFtdLAogICAgICAgICAgIlBhdGNoZXMiOiBb CiAgICAgICAgICAgICJ4c2EyNjYtNC45LyoucGF0Y2giCiAgICAgICAgICBd CiAgICAgICAgfQogICAgICB9CiAgICB9LAogICAgIm1hc3RlciI6IHsKICAg ICAgIlJlY2lwZXMiOiB7CiAgICAgICAgInhlbiI6IHsKICAgICAgICAgICJT dGFibGVSZWYiOiAiNDEzMzllY2I1ZjE4Y2E3ZWM3YjBjOTE0Yzk1MmEwZTE3 MTVhZTUxMSIsCiAgICAgICAgICAiUHJlcmVxcyI6IFtdLAogICAgICAgICAg IlBhdGNoZXMiOiBbCiAgICAgICAgICAgICJ4c2EyNjYvKi5wYXRjaCIKICAg ICAgICAgIF0KICAgICAgICB9CiAgICAgIH0KICAgIH0KICB9Cn0= --=separator Content-Type: application/octet-stream; name="xsa266-4.7/0001-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch" Content-Disposition: attachment; filename="xsa266-4.7/0001-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch" Content-Transfer-Encoding: base64 RnJvbSBlYmRmN2IzNWUwNDc4ZDdhN2FmMzM3NGYyYjMyYWQ5YjhjYjAyYTcz IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBJYW4gSmFja3NvbiA8 aWFuLmphY2tzb25AZXUuY2l0cml4LmNvbT4KRGF0ZTogV2VkLCAxMyBKdW4g MjAxOCAxNTo1MTozNiArMDEwMApTdWJqZWN0OiBbUEFUQ0ggMS8yXSBsaWJ4 bDogcWVtdV9kaXNrX3Njc2lfZHJpdmVfc3RyaW5nOiBCcmVhayBvdXQgY29t bW9uCiBwYXJ0cyBvZiBkaXNrIGNvbmZpZwoKVGhlIGdlbmVyYXRlZCBjb25m aWd1cmF0aW9ucyBhcmUgaWRlbnRpY2FsIGFwYXJ0IGZyb20sIGluIHNvbWUg Y2FzZXMsCnJlb3JkZXJpbmcgb2YgdGhlIGlkPSVzIGVsZW1lbnQuICBTbywg b3ZlcmFsbCwgbm8gZnVuY3Rpb25hbCBjaGFuZ2UuCgpUaGlzIGlzIHBhcnQg b2YgWFNBLTI2Ni4KClJlcG9ydGVkLWJ5OiBBbmRyZXcgUmVpbWVycyA8YW5k cmV3LnJlaW1lcnNAb3Jpb252bS5jb20+ClNpZ25lZC1vZmYtYnk6IEphbiBC ZXVsaWNoIDxqYmV1bGljaEBzdXNlLmNvbT4KU2lnbmVkLW9mZi1ieTogSWFu IEphY2tzb24gPElhbi5KYWNrc29uQGV1LmNpdHJpeC5jb20+Ci0tLQogdG9v bHMvbGlieGwvbGlieGxfZG0uYyB8IDEzICsrKysrKystLS0tLS0KIDEgZmls ZSBjaGFuZ2VkLCA3IGluc2VydGlvbnMoKyksIDYgZGVsZXRpb25zKC0pCgpk aWZmIC0tZ2l0IGEvdG9vbHMvbGlieGwvbGlieGxfZG0uYyBiL3Rvb2xzL2xp YnhsL2xpYnhsX2RtLmMKaW5kZXggNmNiYmMzYy4uNjYwYzAxZSAxMDA2NDQK LS0tIGEvdG9vbHMvbGlieGwvbGlieGxfZG0uYworKysgYi90b29scy9saWJ4 bC9saWJ4bF9kbS5jCkBAIC03NzEsNiArNzcxLDcgQEAgc3RhdGljIGNoYXIg KnFlbXVfZGlza19zY3NpX2RyaXZlX3N0cmluZyhsaWJ4bF9fZ2MgKmdjLCBj b25zdCBjaGFyICp0YXJnZXRfcGF0aCwKICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgaW50IGNvbG9fbW9kZSkKIHsKICAgICBj aGFyICpkcml2ZSA9IE5VTEw7CisgICAgY2hhciAqY29tbW9uID0gR0NTUFJJ TlRGKCJjYWNoZT13cml0ZWJhY2siKTsKICAgICBjb25zdCBjaGFyICpleHBv cnRuYW1lID0gZGlzay0+Y29sb19leHBvcnQ7CiAgICAgY29uc3QgY2hhciAq YWN0aXZlX2Rpc2sgPSBkaXNrLT5hY3RpdmVfZGlzazsKICAgICBjb25zdCBj aGFyICpoaWRkZW5fZGlzayA9IGRpc2stPmhpZGRlbl9kaXNrOwpAQCAtNzc4 LDggKzc3OSw4IEBAIHN0YXRpYyBjaGFyICpxZW11X2Rpc2tfc2NzaV9kcml2 ZV9zdHJpbmcobGlieGxfX2djICpnYywgY29uc3QgY2hhciAqdGFyZ2V0X3Bh dGgsCiAgICAgc3dpdGNoIChjb2xvX21vZGUpIHsKICAgICBjYXNlIExJQlhM X19DT0xPX05PTkU6CiAgICAgICAgIGRyaXZlID0gbGlieGxfX3NwcmludGYK LSAgICAgICAgICAgIChnYywgImZpbGU9JXMsaWY9c2NzaSxidXM9MCx1bml0 PSVkLGZvcm1hdD0lcyxjYWNoZT13cml0ZWJhY2siLAotICAgICAgICAgICAg IHRhcmdldF9wYXRoLCB1bml0LCBmb3JtYXQpOworICAgICAgICAgICAgKGdj LCAiJXMsZmlsZT0lcyxpZj1zY3NpLGJ1cz0wLHVuaXQ9JWQsZm9ybWF0PSVz IiwKKyAgICAgICAgICAgICBjb21tb24sIHRhcmdldF9wYXRoLCB1bml0LCBm b3JtYXQpOwogICAgICAgICBicmVhazsKICAgICBjYXNlIExJQlhMX19DT0xP X1BSSU1BUlk6CiAgICAgICAgIC8qCkBAIC03OTIsMTMgKzc5MywxMyBAQCBz dGF0aWMgY2hhciAqcWVtdV9kaXNrX3Njc2lfZHJpdmVfc3RyaW5nKGxpYnhs X19nYyAqZ2MsIGNvbnN0IGNoYXIgKnRhcmdldF9wYXRoLAogICAgICAgICAg KiAgdm90ZS10aHJlc2hvbGQ9MQogICAgICAgICAgKi8KICAgICAgICAgZHJp dmUgPSBHQ1NQUklOVEYoCi0gICAgICAgICAgICAiaWY9c2NzaSxidXM9MCx1 bml0PSVkLGNhY2hlPXdyaXRlYmFjayxkcml2ZXI9cXVvcnVtLCIKKyAgICAg ICAgICAgICIlcyxpZj1zY3NpLGJ1cz0wLHVuaXQ9JWQsLGRyaXZlcj1xdW9y dW0sIgogICAgICAgICAgICAgImlkPSVzLCIKICAgICAgICAgICAgICJjaGls ZHJlbi4wLmZpbGUuZmlsZW5hbWU9JXMsIgogICAgICAgICAgICAgImNoaWxk cmVuLjAuZHJpdmVyPSVzLCIKICAgICAgICAgICAgICJyZWFkLXBhdHRlcm49 ZmlmbywiCiAgICAgICAgICAgICAidm90ZS10aHJlc2hvbGQ9MSIsCi0gICAg ICAgICAgICB1bml0LCBleHBvcnRuYW1lLCB0YXJnZXRfcGF0aCwgZm9ybWF0 KTsKKyAgICAgICAgICAgIGNvbW1vbiwgdW5pdCwgZXhwb3J0bmFtZSwgdGFy Z2V0X3BhdGgsIGZvcm1hdCk7CiAgICAgICAgIGJyZWFrOwogICAgIGNhc2Ug TElCWExfX0NPTE9fU0VDT05EQVJZOgogICAgICAgICAvKgpAQCAtODEyLDE0 ICs4MTMsMTQgQEAgc3RhdGljIGNoYXIgKnFlbXVfZGlza19zY3NpX2RyaXZl X3N0cmluZyhsaWJ4bF9fZ2MgKmdjLCBjb25zdCBjaGFyICp0YXJnZXRfcGF0 aCwKICAgICAgICAgICogIGZpbGUuYmFja2luZy5iYWNraW5nPWV4cG9ydG5h bWUsCiAgICAgICAgICAqLwogICAgICAgICBkcml2ZSA9IEdDU1BSSU5URigK LSAgICAgICAgICAgICJpZj1zY3NpLGJ1cz0wLHVuaXQ9JWQsY2FjaGU9d3Jp dGViYWNrLGRyaXZlcj1yZXBsaWNhdGlvbiwiCisgICAgICAgICAgICAiJXMs aWY9c2NzaSxidXM9MCx1bml0PSVkLGRyaXZlcj1yZXBsaWNhdGlvbiwiCiAg ICAgICAgICAgICAibW9kZT1zZWNvbmRhcnksIgogICAgICAgICAgICAgImZp bGUuZHJpdmVyPXFjb3cyLCIKICAgICAgICAgICAgICJmaWxlLmZpbGUuZmls ZW5hbWU9JXMsIgogICAgICAgICAgICAgImZpbGUuYmFja2luZy5kcml2ZXI9 cWNvdzIsIgogICAgICAgICAgICAgImZpbGUuYmFja2luZy5maWxlLmZpbGVu YW1lPSVzLCIKICAgICAgICAgICAgICJmaWxlLmJhY2tpbmcuYmFja2luZz0l cyIsCi0gICAgICAgICAgICB1bml0LCBhY3RpdmVfZGlzaywgaGlkZGVuX2Rp c2ssIGV4cG9ydG5hbWUpOworICAgICAgICAgICAgY29tbW9uLCB1bml0LCBh Y3RpdmVfZGlzaywgaGlkZGVuX2Rpc2ssIGV4cG9ydG5hbWUpOwogICAgICAg ICBicmVhazsKICAgICBkZWZhdWx0OgogICAgICAgICBhYm9ydCgpOwotLSAK Mi4xLjQKCg== --=separator Content-Type: application/octet-stream; name="xsa266-4.7/0002-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch" Content-Disposition: attachment; filename="xsa266-4.7/0002-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch" Content-Transfer-Encoding: base64 RnJvbSBjNWMyNmRlOGU5NDk4YTA4ODdiZTI0OWNhYzQyMThmZTQ2OThkZTIz IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBJYW4gSmFja3NvbiA8 aWFuLmphY2tzb25AZXUuY2l0cml4LmNvbT4KRGF0ZTogV2VkLCAxMyBKdW4g MjAxOCAxNTo1NDo1MyArMDEwMApTdWJqZWN0OiBbUEFUQ0ggMi8yXSBsaWJ4 bDogcmVzdG9yZSBwYXNzaW5nICJyZWFkb25seT0iIHRvIHFlbXUgZm9yIFND U0kgZGlza3MKCkEgcmVhZC1vbmx5IGNoZWNrIHdhcyBpbnRyb2R1Y2VkIGZv ciBYU0EtMTQyLCBjb21taXQgZWY2Y2I3NjAyNiAoImxpYnhsOgpyZWxheCBy ZWFkb25seSBjaGVjayBpbnRyb2R1Y2VkIGJ5IFhTQS0xNDIgZml4IikgYWRk ZWQgdGhlIHBhc3Npbmcgb2YKdGhlIGV4dHJhIHNldHRpbmcsIGJ1dCBjb21t aXQgZGFiMDUzOTU2OCAoIkludHJvZHVjZSBDT0xPIG1vZGUgYW5kCnJlZmFj dG9yIHJlbGV2YW50IGZ1bmN0aW9uIikgZHJvcHBlZCB0aGUgcGFzc2luZyBv ZiB0aGUgc2V0dGluZyBhZ2FpbiwKcXVpdGUgbGlrZWx5IGR1ZSB0byBpbXBy b3BlciByZS1iYXNpbmcuCgpSZXN0b3JlIHRoZSByZWFkb25seT0gcGFyYW1l dGVyIHRvIFNDU0kgZGlza3MuICBGb3IgSURFIGRpc2tzIHRoaXMgaXMKc3Vw cG9zZWQgdG8gYmUgcmVqZWN0ZWQ7IGFkZCBhbiBhc3NlcnQuICBBbmQgdGhl cmUgaXMgYSBiYXJlIGFkLWhvYwpkaXNrIGRyaXZlIHN0cmluZyBpbiBsaWJ4 bF9fYnVpbGRfZGV2aWNlX21vZGVsX2FyZ3NfbmV3LCB3aGljaCB3ZSBhbHNv CnVwZGF0ZS4KClRoaXMgaXMgWFNBLTI2Ni4KClJlcG9ydGVkLWJ5OiBBbmRy ZXcgUmVpbWVycyA8YW5kcmV3LnJlaW1lcnNAb3Jpb252bS5jb20+ClNpZ25l ZC1vZmYtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGljaEBzdXNlLmNvbT4KU2ln bmVkLW9mZi1ieTogSWFuIEphY2tzb24gPElhbi5KYWNrc29uQGV1LmNpdHJp eC5jb20+Ci0tLQogdG9vbHMvbGlieGwvbGlieGxfZG0uYyB8IDEwICsrKysr KystLS0KIDEgZmlsZSBjaGFuZ2VkLCA3IGluc2VydGlvbnMoKyksIDMgZGVs ZXRpb25zKC0pCgpkaWZmIC0tZ2l0IGEvdG9vbHMvbGlieGwvbGlieGxfZG0u YyBiL3Rvb2xzL2xpYnhsL2xpYnhsX2RtLmMKaW5kZXggNjYwYzAxZS4uNzJk NWU2NCAxMDA2NDQKLS0tIGEvdG9vbHMvbGlieGwvbGlieGxfZG0uYworKysg Yi90b29scy9saWJ4bC9saWJ4bF9kbS5jCkBAIC03NzEsNyArNzcxLDggQEAg c3RhdGljIGNoYXIgKnFlbXVfZGlza19zY3NpX2RyaXZlX3N0cmluZyhsaWJ4 bF9fZ2MgKmdjLCBjb25zdCBjaGFyICp0YXJnZXRfcGF0aCwKICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgaW50IGNvbG9fbW9k ZSkKIHsKICAgICBjaGFyICpkcml2ZSA9IE5VTEw7Ci0gICAgY2hhciAqY29t bW9uID0gR0NTUFJJTlRGKCJjYWNoZT13cml0ZWJhY2siKTsKKyAgICBjaGFy ICpjb21tb24gPSBHQ1NQUklOVEYoImNhY2hlPXdyaXRlYmFjayxyZWFkb25s eT0lcyIsCisgICAgICAgICAgICAgICAgICAgICAgICAgICAgIGRpc2stPnJl YWR3cml0ZSA/ICJvZmYiIDogIm9uIik7CiAgICAgY29uc3QgY2hhciAqZXhw b3J0bmFtZSA9IGRpc2stPmNvbG9fZXhwb3J0OwogICAgIGNvbnN0IGNoYXIg KmFjdGl2ZV9kaXNrID0gZGlzay0+YWN0aXZlX2Rpc2s7CiAgICAgY29uc3Qg Y2hhciAqaGlkZGVuX2Rpc2sgPSBkaXNrLT5oaWRkZW5fZGlzazsKQEAgLTgz OCw2ICs4MzksOCBAQCBzdGF0aWMgY2hhciAqcWVtdV9kaXNrX2lkZV9kcml2 ZV9zdHJpbmcobGlieGxfX2djICpnYywgY29uc3QgY2hhciAqdGFyZ2V0X3Bh dGgsCiAgICAgY29uc3QgY2hhciAqZXhwb3J0bmFtZSA9IGRpc2stPmNvbG9f ZXhwb3J0OwogICAgIGNvbnN0IGNoYXIgKmFjdGl2ZV9kaXNrID0gZGlzay0+ YWN0aXZlX2Rpc2s7CiAgICAgY29uc3QgY2hhciAqaGlkZGVuX2Rpc2sgPSBk aXNrLT5oaWRkZW5fZGlzazsKKyAgICAKKyAgICBhc3NlcnQoZGlzay0+cmVh ZHdyaXRlKTsgLyogc2hvdWxkIGhhdmUgYmVlbiBjaGVja2VkIGVhcmxpZXIg Ki8KIAogICAgIHN3aXRjaCAoY29sb19tb2RlKSB7CiAgICAgY2FzZSBMSUJY TF9fQ09MT19OT05FOgpAQCAtMTQwMSw4ICsxNDA0LDkgQEAgc3RhdGljIGlu dCBsaWJ4bF9fYnVpbGRfZGV2aWNlX21vZGVsX2FyZ3NfbmV3KGxpYnhsX19n YyAqZ2MsCiAgICAgICAgICAgICAgICAgaWYgKHN0cm5jbXAoZGlza3NbaV0u dmRldiwgInNkIiwgMikgPT0gMCkgewogICAgICAgICAgICAgICAgICAgICBp ZiAoY29sb19tb2RlID09IExJQlhMX19DT0xPX1NFQ09OREFSWSkgewogICAg ICAgICAgICAgICAgICAgICAgICAgZHJpdmUgPSBsaWJ4bF9fc3ByaW50Zgot ICAgICAgICAgICAgICAgICAgICAgICAgICAgIChnYywgImlmPW5vbmUsZHJp dmVyPSVzLGZpbGU9JXMsaWQ9JXMiLAotICAgICAgICAgICAgICAgICAgICAg ICAgICAgICBmb3JtYXQsIHRhcmdldF9wYXRoLCBkaXNrc1tpXS5jb2xvX2V4 cG9ydCk7CisgICAgICAgICAgICAgICAgICAgICAgICAgICAgKGdjLCAiaWY9 bm9uZSxkcml2ZXI9JXMsZmlsZT0lcyxpZD0lcyxyZWFkb25seT0lcyIsCisg ICAgICAgICAgICAgICAgICAgICAgICAgICAgIGZvcm1hdCwgdGFyZ2V0X3Bh dGgsIGRpc2tzW2ldLmNvbG9fZXhwb3J0LAorICAgICAgICAgICAgICAgICAg ICAgICAgICAgICBkaXNrc1tpXS5yZWFkd3JpdGUgPyAib2ZmIiA6ICJvbiIp OwogCiAgICAgICAgICAgICAgICAgICAgICAgICBmbGV4YXJyYXlfYXBwZW5k KGRtX2FyZ3MsICItZHJpdmUiKTsKICAgICAgICAgICAgICAgICAgICAgICAg IGZsZXhhcnJheV9hcHBlbmQoZG1fYXJncywgZHJpdmUpOwotLSAKMi4xLjQK Cg== --=separator Content-Type: application/octet-stream; name="xsa266-4.8/0001-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch" Content-Disposition: attachment; filename="xsa266-4.8/0001-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch" Content-Transfer-Encoding: base64 RnJvbSAzZTBjNzI0MzU0ZjkzZmM4NWZmYWZhYzcyYzY4Y2QyOGU0NjgxNDZm IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBJYW4gSmFja3NvbiA8 aWFuLmphY2tzb25AZXUuY2l0cml4LmNvbT4KRGF0ZTogV2VkLCAxMyBKdW4g MjAxOCAxNTo1MTozNiArMDEwMApTdWJqZWN0OiBbUEFUQ0ggMS8yXSBsaWJ4 bDogcWVtdV9kaXNrX3Njc2lfZHJpdmVfc3RyaW5nOiBCcmVhayBvdXQgY29t bW9uCiBwYXJ0cyBvZiBkaXNrIGNvbmZpZwoKVGhlIGdlbmVyYXRlZCBjb25m aWd1cmF0aW9ucyBhcmUgaWRlbnRpY2FsIGFwYXJ0IGZyb20sIGluIHNvbWUg Y2FzZXMsCnJlb3JkZXJpbmcgb2YgdGhlIGlkPSVzIGVsZW1lbnQuICBTbywg b3ZlcmFsbCwgbm8gZnVuY3Rpb25hbCBjaGFuZ2UuCgpUaGlzIGlzIHBhcnQg b2YgWFNBLTI2Ni4KClJlcG9ydGVkLWJ5OiBBbmRyZXcgUmVpbWVycyA8YW5k cmV3LnJlaW1lcnNAb3Jpb252bS5jb20+ClNpZ25lZC1vZmYtYnk6IEphbiBC ZXVsaWNoIDxqYmV1bGljaEBzdXNlLmNvbT4KU2lnbmVkLW9mZi1ieTogSWFu IEphY2tzb24gPElhbi5KYWNrc29uQGV1LmNpdHJpeC5jb20+Ci0tLQogdG9v bHMvbGlieGwvbGlieGxfZG0uYyB8IDEzICsrKysrKystLS0tLS0KIDEgZmls ZSBjaGFuZ2VkLCA3IGluc2VydGlvbnMoKyksIDYgZGVsZXRpb25zKC0pCgpk aWZmIC0tZ2l0IGEvdG9vbHMvbGlieGwvbGlieGxfZG0uYyBiL3Rvb2xzL2xp YnhsL2xpYnhsX2RtLmMKaW5kZXggYjZiYzQwNy4uZTlkNGNjNiAxMDA2NDQK LS0tIGEvdG9vbHMvbGlieGwvbGlieGxfZG0uYworKysgYi90b29scy9saWJ4 bC9saWJ4bF9kbS5jCkBAIC03NzMsNiArNzczLDcgQEAgc3RhdGljIGNoYXIg KnFlbXVfZGlza19zY3NpX2RyaXZlX3N0cmluZyhsaWJ4bF9fZ2MgKmdjLCBj b25zdCBjaGFyICp0YXJnZXRfcGF0aCwKICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgaW50IGNvbG9fbW9kZSkKIHsKICAgICBj aGFyICpkcml2ZSA9IE5VTEw7CisgICAgY2hhciAqY29tbW9uID0gR0NTUFJJ TlRGKCJjYWNoZT13cml0ZWJhY2siKTsKICAgICBjb25zdCBjaGFyICpleHBv cnRuYW1lID0gZGlzay0+Y29sb19leHBvcnQ7CiAgICAgY29uc3QgY2hhciAq YWN0aXZlX2Rpc2sgPSBkaXNrLT5hY3RpdmVfZGlzazsKICAgICBjb25zdCBj aGFyICpoaWRkZW5fZGlzayA9IGRpc2stPmhpZGRlbl9kaXNrOwpAQCAtNzgw LDggKzc4MSw4IEBAIHN0YXRpYyBjaGFyICpxZW11X2Rpc2tfc2NzaV9kcml2 ZV9zdHJpbmcobGlieGxfX2djICpnYywgY29uc3QgY2hhciAqdGFyZ2V0X3Bh dGgsCiAgICAgc3dpdGNoIChjb2xvX21vZGUpIHsKICAgICBjYXNlIExJQlhM X19DT0xPX05PTkU6CiAgICAgICAgIGRyaXZlID0gbGlieGxfX3NwcmludGYK LSAgICAgICAgICAgIChnYywgImZpbGU9JXMsaWY9c2NzaSxidXM9MCx1bml0 PSVkLGZvcm1hdD0lcyxjYWNoZT13cml0ZWJhY2siLAotICAgICAgICAgICAg IHRhcmdldF9wYXRoLCB1bml0LCBmb3JtYXQpOworICAgICAgICAgICAgKGdj LCAiJXMsZmlsZT0lcyxpZj1zY3NpLGJ1cz0wLHVuaXQ9JWQsZm9ybWF0PSVz IiwKKyAgICAgICAgICAgICBjb21tb24sIHRhcmdldF9wYXRoLCB1bml0LCBm b3JtYXQpOwogICAgICAgICBicmVhazsKICAgICBjYXNlIExJQlhMX19DT0xP X1BSSU1BUlk6CiAgICAgICAgIC8qCkBAIC03OTQsMTMgKzc5NSwxMyBAQCBz dGF0aWMgY2hhciAqcWVtdV9kaXNrX3Njc2lfZHJpdmVfc3RyaW5nKGxpYnhs X19nYyAqZ2MsIGNvbnN0IGNoYXIgKnRhcmdldF9wYXRoLAogICAgICAgICAg KiAgdm90ZS10aHJlc2hvbGQ9MQogICAgICAgICAgKi8KICAgICAgICAgZHJp dmUgPSBHQ1NQUklOVEYoCi0gICAgICAgICAgICAiaWY9c2NzaSxidXM9MCx1 bml0PSVkLGNhY2hlPXdyaXRlYmFjayxkcml2ZXI9cXVvcnVtLCIKKyAgICAg ICAgICAgICIlcyxpZj1zY3NpLGJ1cz0wLHVuaXQ9JWQsLGRyaXZlcj1xdW9y dW0sIgogICAgICAgICAgICAgImlkPSVzLCIKICAgICAgICAgICAgICJjaGls ZHJlbi4wLmZpbGUuZmlsZW5hbWU9JXMsIgogICAgICAgICAgICAgImNoaWxk cmVuLjAuZHJpdmVyPSVzLCIKICAgICAgICAgICAgICJyZWFkLXBhdHRlcm49 ZmlmbywiCiAgICAgICAgICAgICAidm90ZS10aHJlc2hvbGQ9MSIsCi0gICAg ICAgICAgICB1bml0LCBleHBvcnRuYW1lLCB0YXJnZXRfcGF0aCwgZm9ybWF0 KTsKKyAgICAgICAgICAgIGNvbW1vbiwgdW5pdCwgZXhwb3J0bmFtZSwgdGFy Z2V0X3BhdGgsIGZvcm1hdCk7CiAgICAgICAgIGJyZWFrOwogICAgIGNhc2Ug TElCWExfX0NPTE9fU0VDT05EQVJZOgogICAgICAgICAvKgpAQCAtODE0LDE0 ICs4MTUsMTQgQEAgc3RhdGljIGNoYXIgKnFlbXVfZGlza19zY3NpX2RyaXZl X3N0cmluZyhsaWJ4bF9fZ2MgKmdjLCBjb25zdCBjaGFyICp0YXJnZXRfcGF0 aCwKICAgICAgICAgICogIGZpbGUuYmFja2luZy5iYWNraW5nPWV4cG9ydG5h bWUsCiAgICAgICAgICAqLwogICAgICAgICBkcml2ZSA9IEdDU1BSSU5URigK LSAgICAgICAgICAgICJpZj1zY3NpLGJ1cz0wLHVuaXQ9JWQsY2FjaGU9d3Jp dGViYWNrLGRyaXZlcj1yZXBsaWNhdGlvbiwiCisgICAgICAgICAgICAiJXMs aWY9c2NzaSxidXM9MCx1bml0PSVkLGRyaXZlcj1yZXBsaWNhdGlvbiwiCiAg ICAgICAgICAgICAibW9kZT1zZWNvbmRhcnksIgogICAgICAgICAgICAgImZp bGUuZHJpdmVyPXFjb3cyLCIKICAgICAgICAgICAgICJmaWxlLmZpbGUuZmls ZW5hbWU9JXMsIgogICAgICAgICAgICAgImZpbGUuYmFja2luZy5kcml2ZXI9 cWNvdzIsIgogICAgICAgICAgICAgImZpbGUuYmFja2luZy5maWxlLmZpbGVu YW1lPSVzLCIKICAgICAgICAgICAgICJmaWxlLmJhY2tpbmcuYmFja2luZz0l cyIsCi0gICAgICAgICAgICB1bml0LCBhY3RpdmVfZGlzaywgaGlkZGVuX2Rp c2ssIGV4cG9ydG5hbWUpOworICAgICAgICAgICAgY29tbW9uLCB1bml0LCBh Y3RpdmVfZGlzaywgaGlkZGVuX2Rpc2ssIGV4cG9ydG5hbWUpOwogICAgICAg ICBicmVhazsKICAgICBkZWZhdWx0OgogICAgICAgICBhYm9ydCgpOwotLSAK Mi4xLjQKCg== --=separator Content-Type: application/octet-stream; name="xsa266-4.8/0002-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch" Content-Disposition: attachment; filename="xsa266-4.8/0002-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch" Content-Transfer-Encoding: base64 RnJvbSBhZWRmZjUyYWE5MDY0NjMyYWMzN2NiZTJiOGUwMmQ3Zjg4MWFjMzM4 IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBJYW4gSmFja3NvbiA8 aWFuLmphY2tzb25AZXUuY2l0cml4LmNvbT4KRGF0ZTogV2VkLCAxMyBKdW4g MjAxOCAxNTo1NDo1MyArMDEwMApTdWJqZWN0OiBbUEFUQ0ggMi8yXSBsaWJ4 bDogcmVzdG9yZSBwYXNzaW5nICJyZWFkb25seT0iIHRvIHFlbXUgZm9yIFND U0kgZGlza3MKCkEgcmVhZC1vbmx5IGNoZWNrIHdhcyBpbnRyb2R1Y2VkIGZv ciBYU0EtMTQyLCBjb21taXQgZWY2Y2I3NjAyNiAoImxpYnhsOgpyZWxheCBy ZWFkb25seSBjaGVjayBpbnRyb2R1Y2VkIGJ5IFhTQS0xNDIgZml4IikgYWRk ZWQgdGhlIHBhc3Npbmcgb2YKdGhlIGV4dHJhIHNldHRpbmcsIGJ1dCBjb21t aXQgZGFiMDUzOTU2OCAoIkludHJvZHVjZSBDT0xPIG1vZGUgYW5kCnJlZmFj dG9yIHJlbGV2YW50IGZ1bmN0aW9uIikgZHJvcHBlZCB0aGUgcGFzc2luZyBv ZiB0aGUgc2V0dGluZyBhZ2FpbiwKcXVpdGUgbGlrZWx5IGR1ZSB0byBpbXBy b3BlciByZS1iYXNpbmcuCgpSZXN0b3JlIHRoZSByZWFkb25seT0gcGFyYW1l dGVyIHRvIFNDU0kgZGlza3MuICBGb3IgSURFIGRpc2tzIHRoaXMgaXMKc3Vw cG9zZWQgdG8gYmUgcmVqZWN0ZWQ7IGFkZCBhbiBhc3NlcnQuICBBbmQgdGhl cmUgaXMgYSBiYXJlIGFkLWhvYwpkaXNrIGRyaXZlIHN0cmluZyBpbiBsaWJ4 bF9fYnVpbGRfZGV2aWNlX21vZGVsX2FyZ3NfbmV3LCB3aGljaCB3ZSBhbHNv CnVwZGF0ZS4KClRoaXMgaXMgWFNBLTI2Ni4KClJlcG9ydGVkLWJ5OiBBbmRy ZXcgUmVpbWVycyA8YW5kcmV3LnJlaW1lcnNAb3Jpb252bS5jb20+ClNpZ25l ZC1vZmYtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGljaEBzdXNlLmNvbT4KU2ln bmVkLW9mZi1ieTogSWFuIEphY2tzb24gPElhbi5KYWNrc29uQGV1LmNpdHJp eC5jb20+Ci0tLQogdG9vbHMvbGlieGwvbGlieGxfZG0uYyB8IDEwICsrKysr KystLS0KIDEgZmlsZSBjaGFuZ2VkLCA3IGluc2VydGlvbnMoKyksIDMgZGVs ZXRpb25zKC0pCgpkaWZmIC0tZ2l0IGEvdG9vbHMvbGlieGwvbGlieGxfZG0u YyBiL3Rvb2xzL2xpYnhsL2xpYnhsX2RtLmMKaW5kZXggZTlkNGNjNi4uZmUz MjkyMyAxMDA2NDQKLS0tIGEvdG9vbHMvbGlieGwvbGlieGxfZG0uYworKysg Yi90b29scy9saWJ4bC9saWJ4bF9kbS5jCkBAIC03NzMsNyArNzczLDggQEAg c3RhdGljIGNoYXIgKnFlbXVfZGlza19zY3NpX2RyaXZlX3N0cmluZyhsaWJ4 bF9fZ2MgKmdjLCBjb25zdCBjaGFyICp0YXJnZXRfcGF0aCwKICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgaW50IGNvbG9fbW9k ZSkKIHsKICAgICBjaGFyICpkcml2ZSA9IE5VTEw7Ci0gICAgY2hhciAqY29t bW9uID0gR0NTUFJJTlRGKCJjYWNoZT13cml0ZWJhY2siKTsKKyAgICBjaGFy ICpjb21tb24gPSBHQ1NQUklOVEYoImNhY2hlPXdyaXRlYmFjayxyZWFkb25s eT0lcyIsCisgICAgICAgICAgICAgICAgICAgICAgICAgICAgIGRpc2stPnJl YWR3cml0ZSA/ICJvZmYiIDogIm9uIik7CiAgICAgY29uc3QgY2hhciAqZXhw b3J0bmFtZSA9IGRpc2stPmNvbG9fZXhwb3J0OwogICAgIGNvbnN0IGNoYXIg KmFjdGl2ZV9kaXNrID0gZGlzay0+YWN0aXZlX2Rpc2s7CiAgICAgY29uc3Qg Y2hhciAqaGlkZGVuX2Rpc2sgPSBkaXNrLT5oaWRkZW5fZGlzazsKQEAgLTg0 MCw2ICs4NDEsOCBAQCBzdGF0aWMgY2hhciAqcWVtdV9kaXNrX2lkZV9kcml2 ZV9zdHJpbmcobGlieGxfX2djICpnYywgY29uc3QgY2hhciAqdGFyZ2V0X3Bh dGgsCiAgICAgY29uc3QgY2hhciAqZXhwb3J0bmFtZSA9IGRpc2stPmNvbG9f ZXhwb3J0OwogICAgIGNvbnN0IGNoYXIgKmFjdGl2ZV9kaXNrID0gZGlzay0+ YWN0aXZlX2Rpc2s7CiAgICAgY29uc3QgY2hhciAqaGlkZGVuX2Rpc2sgPSBk aXNrLT5oaWRkZW5fZGlzazsKKyAgICAKKyAgICBhc3NlcnQoZGlzay0+cmVh ZHdyaXRlKTsgLyogc2hvdWxkIGhhdmUgYmVlbiBjaGVja2VkIGVhcmxpZXIg Ki8KIAogICAgIHN3aXRjaCAoY29sb19tb2RlKSB7CiAgICAgY2FzZSBMSUJY TF9fQ09MT19OT05FOgpAQCAtMTQwMyw4ICsxNDA2LDkgQEAgc3RhdGljIGlu dCBsaWJ4bF9fYnVpbGRfZGV2aWNlX21vZGVsX2FyZ3NfbmV3KGxpYnhsX19n YyAqZ2MsCiAgICAgICAgICAgICAgICAgaWYgKHN0cm5jbXAoZGlza3NbaV0u dmRldiwgInNkIiwgMikgPT0gMCkgewogICAgICAgICAgICAgICAgICAgICBp ZiAoY29sb19tb2RlID09IExJQlhMX19DT0xPX1NFQ09OREFSWSkgewogICAg ICAgICAgICAgICAgICAgICAgICAgZHJpdmUgPSBsaWJ4bF9fc3ByaW50Zgot ICAgICAgICAgICAgICAgICAgICAgICAgICAgIChnYywgImlmPW5vbmUsZHJp dmVyPSVzLGZpbGU9JXMsaWQ9JXMiLAotICAgICAgICAgICAgICAgICAgICAg ICAgICAgICBmb3JtYXQsIHRhcmdldF9wYXRoLCBkaXNrc1tpXS5jb2xvX2V4 cG9ydCk7CisgICAgICAgICAgICAgICAgICAgICAgICAgICAgKGdjLCAiaWY9 bm9uZSxkcml2ZXI9JXMsZmlsZT0lcyxpZD0lcyxyZWFkb25seT0lcyIsCisg ICAgICAgICAgICAgICAgICAgICAgICAgICAgIGZvcm1hdCwgdGFyZ2V0X3Bh dGgsIGRpc2tzW2ldLmNvbG9fZXhwb3J0LAorICAgICAgICAgICAgICAgICAg ICAgICAgICAgICBkaXNrc1tpXS5yZWFkd3JpdGUgPyAib2ZmIiA6ICJvbiIp OwogCiAgICAgICAgICAgICAgICAgICAgICAgICBmbGV4YXJyYXlfYXBwZW5k KGRtX2FyZ3MsICItZHJpdmUiKTsKICAgICAgICAgICAgICAgICAgICAgICAg IGZsZXhhcnJheV9hcHBlbmQoZG1fYXJncywgZHJpdmUpOwotLSAKMi4xLjQK Cg== --=separator Content-Type: application/octet-stream; name="xsa266-4.9/0001-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch" Content-Disposition: attachment; filename="xsa266-4.9/0001-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch" Content-Transfer-Encoding: base64 RnJvbSAzYWJmMGZlZWQ1MGJkMGMzNDUwYjZiMTY4NDI0NjkzYmFmMGY3MDM5 IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBJYW4gSmFja3NvbiA8 aWFuLmphY2tzb25AZXUuY2l0cml4LmNvbT4KRGF0ZTogV2VkLCAxMyBKdW4g MjAxOCAxNTo1MTozNiArMDEwMApTdWJqZWN0OiBbUEFUQ0ggMS8yXSBsaWJ4 bDogcWVtdV9kaXNrX3Njc2lfZHJpdmVfc3RyaW5nOiBCcmVhayBvdXQgY29t bW9uCiBwYXJ0cyBvZiBkaXNrIGNvbmZpZwoKVGhlIGdlbmVyYXRlZCBjb25m aWd1cmF0aW9ucyBhcmUgaWRlbnRpY2FsIGFwYXJ0IGZyb20sIGluIHNvbWUg Y2FzZXMsCnJlb3JkZXJpbmcgb2YgdGhlIGlkPSVzIGVsZW1lbnQuICBTbywg b3ZlcmFsbCwgbm8gZnVuY3Rpb25hbCBjaGFuZ2UuCgpUaGlzIGlzIHBhcnQg b2YgWFNBLTI2Ni4KClJlcG9ydGVkLWJ5OiBBbmRyZXcgUmVpbWVycyA8YW5k cmV3LnJlaW1lcnNAb3Jpb252bS5jb20+ClNpZ25lZC1vZmYtYnk6IEphbiBC ZXVsaWNoIDxqYmV1bGljaEBzdXNlLmNvbT4KU2lnbmVkLW9mZi1ieTogSWFu IEphY2tzb24gPElhbi5KYWNrc29uQGV1LmNpdHJpeC5jb20+Ci0tLQogdG9v bHMvbGlieGwvbGlieGxfZG0uYyB8IDEzICsrKysrKystLS0tLS0KIDEgZmls ZSBjaGFuZ2VkLCA3IGluc2VydGlvbnMoKyksIDYgZGVsZXRpb25zKC0pCgpk aWZmIC0tZ2l0IGEvdG9vbHMvbGlieGwvbGlieGxfZG0uYyBiL3Rvb2xzL2xp YnhsL2xpYnhsX2RtLmMKaW5kZXggNDBmOWRjNy4uOTZkNTcwMiAxMDA2NDQK LS0tIGEvdG9vbHMvbGlieGwvbGlieGxfZG0uYworKysgYi90b29scy9saWJ4 bC9saWJ4bF9kbS5jCkBAIC03NzMsNiArNzczLDcgQEAgc3RhdGljIGNoYXIg KnFlbXVfZGlza19zY3NpX2RyaXZlX3N0cmluZyhsaWJ4bF9fZ2MgKmdjLCBj b25zdCBjaGFyICp0YXJnZXRfcGF0aCwKICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgaW50IGNvbG9fbW9kZSkKIHsKICAgICBj aGFyICpkcml2ZSA9IE5VTEw7CisgICAgY2hhciAqY29tbW9uID0gR0NTUFJJ TlRGKCJjYWNoZT13cml0ZWJhY2siKTsKICAgICBjb25zdCBjaGFyICpleHBv cnRuYW1lID0gZGlzay0+Y29sb19leHBvcnQ7CiAgICAgY29uc3QgY2hhciAq YWN0aXZlX2Rpc2sgPSBkaXNrLT5hY3RpdmVfZGlzazsKICAgICBjb25zdCBj aGFyICpoaWRkZW5fZGlzayA9IGRpc2stPmhpZGRlbl9kaXNrOwpAQCAtNzgw LDggKzc4MSw4IEBAIHN0YXRpYyBjaGFyICpxZW11X2Rpc2tfc2NzaV9kcml2 ZV9zdHJpbmcobGlieGxfX2djICpnYywgY29uc3QgY2hhciAqdGFyZ2V0X3Bh dGgsCiAgICAgc3dpdGNoIChjb2xvX21vZGUpIHsKICAgICBjYXNlIExJQlhM X19DT0xPX05PTkU6CiAgICAgICAgIGRyaXZlID0gbGlieGxfX3NwcmludGYK LSAgICAgICAgICAgIChnYywgImZpbGU9JXMsaWY9c2NzaSxidXM9MCx1bml0 PSVkLGZvcm1hdD0lcyxjYWNoZT13cml0ZWJhY2siLAotICAgICAgICAgICAg IHRhcmdldF9wYXRoLCB1bml0LCBmb3JtYXQpOworICAgICAgICAgICAgKGdj LCAiJXMsZmlsZT0lcyxpZj1zY3NpLGJ1cz0wLHVuaXQ9JWQsZm9ybWF0PSVz IiwKKyAgICAgICAgICAgICBjb21tb24sIHRhcmdldF9wYXRoLCB1bml0LCBm b3JtYXQpOwogICAgICAgICBicmVhazsKICAgICBjYXNlIExJQlhMX19DT0xP X1BSSU1BUlk6CiAgICAgICAgIC8qCkBAIC03OTQsMTMgKzc5NSwxMyBAQCBz dGF0aWMgY2hhciAqcWVtdV9kaXNrX3Njc2lfZHJpdmVfc3RyaW5nKGxpYnhs X19nYyAqZ2MsIGNvbnN0IGNoYXIgKnRhcmdldF9wYXRoLAogICAgICAgICAg KiAgdm90ZS10aHJlc2hvbGQ9MQogICAgICAgICAgKi8KICAgICAgICAgZHJp dmUgPSBHQ1NQUklOVEYoCi0gICAgICAgICAgICAiaWY9c2NzaSxidXM9MCx1 bml0PSVkLGNhY2hlPXdyaXRlYmFjayxkcml2ZXI9cXVvcnVtLCIKKyAgICAg ICAgICAgICIlcyxpZj1zY3NpLGJ1cz0wLHVuaXQ9JWQsLGRyaXZlcj1xdW9y dW0sIgogICAgICAgICAgICAgImlkPSVzLCIKICAgICAgICAgICAgICJjaGls ZHJlbi4wLmZpbGUuZmlsZW5hbWU9JXMsIgogICAgICAgICAgICAgImNoaWxk cmVuLjAuZHJpdmVyPSVzLCIKICAgICAgICAgICAgICJyZWFkLXBhdHRlcm49 ZmlmbywiCiAgICAgICAgICAgICAidm90ZS10aHJlc2hvbGQ9MSIsCi0gICAg ICAgICAgICB1bml0LCBleHBvcnRuYW1lLCB0YXJnZXRfcGF0aCwgZm9ybWF0 KTsKKyAgICAgICAgICAgIGNvbW1vbiwgdW5pdCwgZXhwb3J0bmFtZSwgdGFy Z2V0X3BhdGgsIGZvcm1hdCk7CiAgICAgICAgIGJyZWFrOwogICAgIGNhc2Ug TElCWExfX0NPTE9fU0VDT05EQVJZOgogICAgICAgICAvKgpAQCAtODE0LDcg KzgxNSw3IEBAIHN0YXRpYyBjaGFyICpxZW11X2Rpc2tfc2NzaV9kcml2ZV9z dHJpbmcobGlieGxfX2djICpnYywgY29uc3QgY2hhciAqdGFyZ2V0X3BhdGgs CiAgICAgICAgICAqICBmaWxlLmJhY2tpbmcuYmFja2luZz1leHBvcnRuYW1l LAogICAgICAgICAgKi8KICAgICAgICAgZHJpdmUgPSBHQ1NQUklOVEYoCi0g ICAgICAgICAgICAiaWY9c2NzaSxpZD10b3AtY29sbyxidXM9MCx1bml0PSVk LGNhY2hlPXdyaXRlYmFjaywiCisgICAgICAgICAgICAiJXMsaWY9c2NzaSxp ZD10b3AtY29sbyxidXM9MCx1bml0PSVkLCIKICAgICAgICAgICAgICJkcml2 ZXI9cmVwbGljYXRpb24sIgogICAgICAgICAgICAgIm1vZGU9c2Vjb25kYXJ5 LCIKICAgICAgICAgICAgICJ0b3AtaWQ9dG9wLWNvbG8sIgpAQCAtODIzLDcg KzgyNCw3IEBAIHN0YXRpYyBjaGFyICpxZW11X2Rpc2tfc2NzaV9kcml2ZV9z dHJpbmcobGlieGxfX2djICpnYywgY29uc3QgY2hhciAqdGFyZ2V0X3BhdGgs CiAgICAgICAgICAgICAiZmlsZS5iYWNraW5nLmRyaXZlcj1xY293MiwiCiAg ICAgICAgICAgICAiZmlsZS5iYWNraW5nLmZpbGUuZmlsZW5hbWU9JXMsIgog ICAgICAgICAgICAgImZpbGUuYmFja2luZy5iYWNraW5nPSVzIiwKLSAgICAg ICAgICAgIHVuaXQsIGFjdGl2ZV9kaXNrLCBoaWRkZW5fZGlzaywgZXhwb3J0 bmFtZSk7CisgICAgICAgICAgICBjb21tb24sIHVuaXQsIGFjdGl2ZV9kaXNr LCBoaWRkZW5fZGlzaywgZXhwb3J0bmFtZSk7CiAgICAgICAgIGJyZWFrOwog ICAgIGRlZmF1bHQ6CiAgICAgICAgIGFib3J0KCk7Ci0tIAoyLjEuNAoK --=separator Content-Type: application/octet-stream; name="xsa266-4.9/0002-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch" Content-Disposition: attachment; filename="xsa266-4.9/0002-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch" Content-Transfer-Encoding: base64 RnJvbSA0NDExMGIwNDZiZTkzN2ZhNzVmODgyMmE5OWMyMTQxOGEyOTlhYmIz IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBJYW4gSmFja3NvbiA8 aWFuLmphY2tzb25AZXUuY2l0cml4LmNvbT4KRGF0ZTogV2VkLCAxMyBKdW4g MjAxOCAxNTo1NDo1MyArMDEwMApTdWJqZWN0OiBbUEFUQ0ggMi8yXSBsaWJ4 bDogcmVzdG9yZSBwYXNzaW5nICJyZWFkb25seT0iIHRvIHFlbXUgZm9yIFND U0kgZGlza3MKCkEgcmVhZC1vbmx5IGNoZWNrIHdhcyBpbnRyb2R1Y2VkIGZv ciBYU0EtMTQyLCBjb21taXQgZWY2Y2I3NjAyNiAoImxpYnhsOgpyZWxheCBy ZWFkb25seSBjaGVjayBpbnRyb2R1Y2VkIGJ5IFhTQS0xNDIgZml4IikgYWRk ZWQgdGhlIHBhc3Npbmcgb2YKdGhlIGV4dHJhIHNldHRpbmcsIGJ1dCBjb21t aXQgZGFiMDUzOTU2OCAoIkludHJvZHVjZSBDT0xPIG1vZGUgYW5kCnJlZmFj dG9yIHJlbGV2YW50IGZ1bmN0aW9uIikgZHJvcHBlZCB0aGUgcGFzc2luZyBv ZiB0aGUgc2V0dGluZyBhZ2FpbiwKcXVpdGUgbGlrZWx5IGR1ZSB0byBpbXBy b3BlciByZS1iYXNpbmcuCgpSZXN0b3JlIHRoZSByZWFkb25seT0gcGFyYW1l dGVyIHRvIFNDU0kgZGlza3MuICBGb3IgSURFIGRpc2tzIHRoaXMgaXMKc3Vw cG9zZWQgdG8gYmUgcmVqZWN0ZWQ7IGFkZCBhbiBhc3NlcnQuICBBbmQgdGhl cmUgaXMgYSBiYXJlIGFkLWhvYwpkaXNrIGRyaXZlIHN0cmluZyBpbiBsaWJ4 bF9fYnVpbGRfZGV2aWNlX21vZGVsX2FyZ3NfbmV3LCB3aGljaCB3ZSBhbHNv CnVwZGF0ZS4KClRoaXMgaXMgWFNBLTI2Ni4KClJlcG9ydGVkLWJ5OiBBbmRy ZXcgUmVpbWVycyA8YW5kcmV3LnJlaW1lcnNAb3Jpb252bS5jb20+ClNpZ25l ZC1vZmYtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGljaEBzdXNlLmNvbT4KU2ln bmVkLW9mZi1ieTogSWFuIEphY2tzb24gPElhbi5KYWNrc29uQGV1LmNpdHJp eC5jb20+Ci0tLQogdG9vbHMvbGlieGwvbGlieGxfZG0uYyB8IDEwICsrKysr KystLS0KIDEgZmlsZSBjaGFuZ2VkLCA3IGluc2VydGlvbnMoKyksIDMgZGVs ZXRpb25zKC0pCgpkaWZmIC0tZ2l0IGEvdG9vbHMvbGlieGwvbGlieGxfZG0u YyBiL3Rvb2xzL2xpYnhsL2xpYnhsX2RtLmMKaW5kZXggOTZkNTcwMi4uYjA0 OWI0NCAxMDA2NDQKLS0tIGEvdG9vbHMvbGlieGwvbGlieGxfZG0uYworKysg Yi90b29scy9saWJ4bC9saWJ4bF9kbS5jCkBAIC03NzMsNyArNzczLDggQEAg c3RhdGljIGNoYXIgKnFlbXVfZGlza19zY3NpX2RyaXZlX3N0cmluZyhsaWJ4 bF9fZ2MgKmdjLCBjb25zdCBjaGFyICp0YXJnZXRfcGF0aCwKICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgaW50IGNvbG9fbW9k ZSkKIHsKICAgICBjaGFyICpkcml2ZSA9IE5VTEw7Ci0gICAgY2hhciAqY29t bW9uID0gR0NTUFJJTlRGKCJjYWNoZT13cml0ZWJhY2siKTsKKyAgICBjaGFy ICpjb21tb24gPSBHQ1NQUklOVEYoImNhY2hlPXdyaXRlYmFjayxyZWFkb25s eT0lcyIsCisgICAgICAgICAgICAgICAgICAgICAgICAgICAgIGRpc2stPnJl YWR3cml0ZSA/ICJvZmYiIDogIm9uIik7CiAgICAgY29uc3QgY2hhciAqZXhw b3J0bmFtZSA9IGRpc2stPmNvbG9fZXhwb3J0OwogICAgIGNvbnN0IGNoYXIg KmFjdGl2ZV9kaXNrID0gZGlzay0+YWN0aXZlX2Rpc2s7CiAgICAgY29uc3Qg Y2hhciAqaGlkZGVuX2Rpc2sgPSBkaXNrLT5oaWRkZW5fZGlzazsKQEAgLTg0 Miw2ICs4NDMsOCBAQCBzdGF0aWMgY2hhciAqcWVtdV9kaXNrX2lkZV9kcml2 ZV9zdHJpbmcobGlieGxfX2djICpnYywgY29uc3QgY2hhciAqdGFyZ2V0X3Bh dGgsCiAgICAgY29uc3QgY2hhciAqZXhwb3J0bmFtZSA9IGRpc2stPmNvbG9f ZXhwb3J0OwogICAgIGNvbnN0IGNoYXIgKmFjdGl2ZV9kaXNrID0gZGlzay0+ YWN0aXZlX2Rpc2s7CiAgICAgY29uc3QgY2hhciAqaGlkZGVuX2Rpc2sgPSBk aXNrLT5oaWRkZW5fZGlzazsKKyAgICAKKyAgICBhc3NlcnQoZGlzay0+cmVh ZHdyaXRlKTsgLyogc2hvdWxkIGhhdmUgYmVlbiBjaGVja2VkIGVhcmxpZXIg Ki8KIAogICAgIHN3aXRjaCAoY29sb19tb2RlKSB7CiAgICAgY2FzZSBMSUJY TF9fQ09MT19OT05FOgpAQCAtMTU0Niw4ICsxNTQ5LDkgQEAgc3RhdGljIGlu dCBsaWJ4bF9fYnVpbGRfZGV2aWNlX21vZGVsX2FyZ3NfbmV3KGxpYnhsX19n YyAqZ2MsCiAgICAgICAgICAgICAgICAgaWYgKHN0cm5jbXAoZGlza3NbaV0u dmRldiwgInNkIiwgMikgPT0gMCkgewogICAgICAgICAgICAgICAgICAgICBp ZiAoY29sb19tb2RlID09IExJQlhMX19DT0xPX1NFQ09OREFSWSkgewogICAg ICAgICAgICAgICAgICAgICAgICAgZHJpdmUgPSBsaWJ4bF9fc3ByaW50Zgot ICAgICAgICAgICAgICAgICAgICAgICAgICAgIChnYywgImlmPW5vbmUsZHJp dmVyPSVzLGZpbGU9JXMsaWQ9JXMiLAotICAgICAgICAgICAgICAgICAgICAg ICAgICAgICBmb3JtYXQsIHRhcmdldF9wYXRoLCBkaXNrc1tpXS5jb2xvX2V4 cG9ydCk7CisgICAgICAgICAgICAgICAgICAgICAgICAgICAgKGdjLCAiaWY9 bm9uZSxkcml2ZXI9JXMsZmlsZT0lcyxpZD0lcyxyZWFkb25seT0lcyIsCisg ICAgICAgICAgICAgICAgICAgICAgICAgICAgIGZvcm1hdCwgdGFyZ2V0X3Bh dGgsIGRpc2tzW2ldLmNvbG9fZXhwb3J0LAorICAgICAgICAgICAgICAgICAg ICAgICAgICAgICBkaXNrc1tpXS5yZWFkd3JpdGUgPyAib2ZmIiA6ICJvbiIp OwogCiAgICAgICAgICAgICAgICAgICAgICAgICBmbGV4YXJyYXlfYXBwZW5k KGRtX2FyZ3MsICItZHJpdmUiKTsKICAgICAgICAgICAgICAgICAgICAgICAg IGZsZXhhcnJheV9hcHBlbmQoZG1fYXJncywgZHJpdmUpOwotLSAKMi4xLjQK Cg== --=separator Content-Type: application/octet-stream; name="xsa266-4.10/0001-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch" Content-Disposition: attachment; filename="xsa266-4.10/0001-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch" Content-Transfer-Encoding: base64 RnJvbSA4MmY5OGY4NDg0ZjQ3MTYzYTA2ZTRkNTYxMGRiYTZlNWZjNDU5ZTc4 IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBJYW4gSmFja3NvbiA8 aWFuLmphY2tzb25AZXUuY2l0cml4LmNvbT4KRGF0ZTogV2VkLCAxMyBKdW4g MjAxOCAxNTo1MTozNiArMDEwMApTdWJqZWN0OiBbUEFUQ0ggMS8yXSBsaWJ4 bDogcWVtdV9kaXNrX3Njc2lfZHJpdmVfc3RyaW5nOiBCcmVhayBvdXQgY29t bW9uCiBwYXJ0cyBvZiBkaXNrIGNvbmZpZwoKVGhlIGdlbmVyYXRlZCBjb25m aWd1cmF0aW9ucyBhcmUgaWRlbnRpY2FsIGFwYXJ0IGZyb20sIGluIHNvbWUg Y2FzZXMsCnJlb3JkZXJpbmcgb2YgdGhlIGlkPSVzIGVsZW1lbnQuICBTbywg b3ZlcmFsbCwgbm8gZnVuY3Rpb25hbCBjaGFuZ2UuCgpUaGlzIGlzIHBhcnQg b2YgWFNBLTI2Ni4KClJlcG9ydGVkLWJ5OiBBbmRyZXcgUmVpbWVycyA8YW5k cmV3LnJlaW1lcnNAb3Jpb252bS5jb20+ClNpZ25lZC1vZmYtYnk6IEphbiBC ZXVsaWNoIDxqYmV1bGljaEBzdXNlLmNvbT4KU2lnbmVkLW9mZi1ieTogSWFu IEphY2tzb24gPElhbi5KYWNrc29uQGV1LmNpdHJpeC5jb20+Ci0tLQogdG9v bHMvbGlieGwvbGlieGxfZG0uYyB8IDEzICsrKysrKystLS0tLS0KIDEgZmls ZSBjaGFuZ2VkLCA3IGluc2VydGlvbnMoKyksIDYgZGVsZXRpb25zKC0pCgpk aWZmIC0tZ2l0IGEvdG9vbHMvbGlieGwvbGlieGxfZG0uYyBiL3Rvb2xzL2xp YnhsL2xpYnhsX2RtLmMKaW5kZXggYjUxMTc4Yi4uMjhiYmViNiAxMDA2NDQK LS0tIGEvdG9vbHMvbGlieGwvbGlieGxfZG0uYworKysgYi90b29scy9saWJ4 bC9saWJ4bF9kbS5jCkBAIC03OTgsNiArNzk4LDcgQEAgc3RhdGljIGNoYXIg KnFlbXVfZGlza19zY3NpX2RyaXZlX3N0cmluZyhsaWJ4bF9fZ2MgKmdjLCBj b25zdCBjaGFyICp0YXJnZXRfcGF0aCwKICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgaW50IGNvbG9fbW9kZSkKIHsKICAgICBj aGFyICpkcml2ZSA9IE5VTEw7CisgICAgY2hhciAqY29tbW9uID0gR0NTUFJJ TlRGKCJjYWNoZT13cml0ZWJhY2siKTsKICAgICBjb25zdCBjaGFyICpleHBv cnRuYW1lID0gZGlzay0+Y29sb19leHBvcnQ7CiAgICAgY29uc3QgY2hhciAq YWN0aXZlX2Rpc2sgPSBkaXNrLT5hY3RpdmVfZGlzazsKICAgICBjb25zdCBj aGFyICpoaWRkZW5fZGlzayA9IGRpc2stPmhpZGRlbl9kaXNrOwpAQCAtODA1 LDggKzgwNiw4IEBAIHN0YXRpYyBjaGFyICpxZW11X2Rpc2tfc2NzaV9kcml2 ZV9zdHJpbmcobGlieGxfX2djICpnYywgY29uc3QgY2hhciAqdGFyZ2V0X3Bh dGgsCiAgICAgc3dpdGNoIChjb2xvX21vZGUpIHsKICAgICBjYXNlIExJQlhM X19DT0xPX05PTkU6CiAgICAgICAgIGRyaXZlID0gbGlieGxfX3NwcmludGYK LSAgICAgICAgICAgIChnYywgImZpbGU9JXMsaWY9c2NzaSxidXM9MCx1bml0 PSVkLGZvcm1hdD0lcyxjYWNoZT13cml0ZWJhY2siLAotICAgICAgICAgICAg IHRhcmdldF9wYXRoLCB1bml0LCBmb3JtYXQpOworICAgICAgICAgICAgKGdj LCAiJXMsZmlsZT0lcyxpZj1zY3NpLGJ1cz0wLHVuaXQ9JWQsZm9ybWF0PSVz IiwKKyAgICAgICAgICAgICBjb21tb24sIHRhcmdldF9wYXRoLCB1bml0LCBm b3JtYXQpOwogICAgICAgICBicmVhazsKICAgICBjYXNlIExJQlhMX19DT0xP X1BSSU1BUlk6CiAgICAgICAgIC8qCkBAIC04MTksMTMgKzgyMCwxMyBAQCBz dGF0aWMgY2hhciAqcWVtdV9kaXNrX3Njc2lfZHJpdmVfc3RyaW5nKGxpYnhs X19nYyAqZ2MsIGNvbnN0IGNoYXIgKnRhcmdldF9wYXRoLAogICAgICAgICAg KiAgdm90ZS10aHJlc2hvbGQ9MQogICAgICAgICAgKi8KICAgICAgICAgZHJp dmUgPSBHQ1NQUklOVEYoCi0gICAgICAgICAgICAiaWY9c2NzaSxidXM9MCx1 bml0PSVkLGNhY2hlPXdyaXRlYmFjayxkcml2ZXI9cXVvcnVtLCIKKyAgICAg ICAgICAgICIlcyxpZj1zY3NpLGJ1cz0wLHVuaXQ9JWQsLGRyaXZlcj1xdW9y dW0sIgogICAgICAgICAgICAgImlkPSVzLCIKICAgICAgICAgICAgICJjaGls ZHJlbi4wLmZpbGUuZmlsZW5hbWU9JXMsIgogICAgICAgICAgICAgImNoaWxk cmVuLjAuZHJpdmVyPSVzLCIKICAgICAgICAgICAgICJyZWFkLXBhdHRlcm49 ZmlmbywiCiAgICAgICAgICAgICAidm90ZS10aHJlc2hvbGQ9MSIsCi0gICAg ICAgICAgICB1bml0LCBleHBvcnRuYW1lLCB0YXJnZXRfcGF0aCwgZm9ybWF0 KTsKKyAgICAgICAgICAgIGNvbW1vbiwgdW5pdCwgZXhwb3J0bmFtZSwgdGFy Z2V0X3BhdGgsIGZvcm1hdCk7CiAgICAgICAgIGJyZWFrOwogICAgIGNhc2Ug TElCWExfX0NPTE9fU0VDT05EQVJZOgogICAgICAgICAvKgpAQCAtODM5LDcg Kzg0MCw3IEBAIHN0YXRpYyBjaGFyICpxZW11X2Rpc2tfc2NzaV9kcml2ZV9z dHJpbmcobGlieGxfX2djICpnYywgY29uc3QgY2hhciAqdGFyZ2V0X3BhdGgs CiAgICAgICAgICAqICBmaWxlLmJhY2tpbmcuYmFja2luZz1leHBvcnRuYW1l LAogICAgICAgICAgKi8KICAgICAgICAgZHJpdmUgPSBHQ1NQUklOVEYoCi0g ICAgICAgICAgICAiaWY9c2NzaSxpZD10b3AtY29sbyxidXM9MCx1bml0PSVk LGNhY2hlPXdyaXRlYmFjaywiCisgICAgICAgICAgICAiJXMsaWY9c2NzaSxp ZD10b3AtY29sbyxidXM9MCx1bml0PSVkLCIKICAgICAgICAgICAgICJkcml2 ZXI9cmVwbGljYXRpb24sIgogICAgICAgICAgICAgIm1vZGU9c2Vjb25kYXJ5 LCIKICAgICAgICAgICAgICJ0b3AtaWQ9dG9wLWNvbG8sIgpAQCAtODQ4LDcg Kzg0OSw3IEBAIHN0YXRpYyBjaGFyICpxZW11X2Rpc2tfc2NzaV9kcml2ZV9z dHJpbmcobGlieGxfX2djICpnYywgY29uc3QgY2hhciAqdGFyZ2V0X3BhdGgs CiAgICAgICAgICAgICAiZmlsZS5iYWNraW5nLmRyaXZlcj1xY293MiwiCiAg ICAgICAgICAgICAiZmlsZS5iYWNraW5nLmZpbGUuZmlsZW5hbWU9JXMsIgog ICAgICAgICAgICAgImZpbGUuYmFja2luZy5iYWNraW5nPSVzIiwKLSAgICAg ICAgICAgIHVuaXQsIGFjdGl2ZV9kaXNrLCBoaWRkZW5fZGlzaywgZXhwb3J0 bmFtZSk7CisgICAgICAgICAgICBjb21tb24sIHVuaXQsIGFjdGl2ZV9kaXNr LCBoaWRkZW5fZGlzaywgZXhwb3J0bmFtZSk7CiAgICAgICAgIGJyZWFrOwog ICAgIGRlZmF1bHQ6CiAgICAgICAgIGFib3J0KCk7Ci0tIAoyLjEuNAoK --=separator Content-Type: application/octet-stream; name="xsa266-4.10/0002-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch" Content-Disposition: attachment; filename="xsa266-4.10/0002-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch" Content-Transfer-Encoding: base64 RnJvbSBiYTNmMWZhMWFiNmU4Mzc0NTY4MmNhYzc4NGU2ODBhMWFiZjdkYTdk IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBJYW4gSmFja3NvbiA8 aWFuLmphY2tzb25AZXUuY2l0cml4LmNvbT4KRGF0ZTogV2VkLCAxMyBKdW4g MjAxOCAxNTo1NDo1MyArMDEwMApTdWJqZWN0OiBbUEFUQ0ggMi8yXSBsaWJ4 bDogcmVzdG9yZSBwYXNzaW5nICJyZWFkb25seT0iIHRvIHFlbXUgZm9yIFND U0kgZGlza3MKCkEgcmVhZC1vbmx5IGNoZWNrIHdhcyBpbnRyb2R1Y2VkIGZv ciBYU0EtMTQyLCBjb21taXQgZWY2Y2I3NjAyNiAoImxpYnhsOgpyZWxheCBy ZWFkb25seSBjaGVjayBpbnRyb2R1Y2VkIGJ5IFhTQS0xNDIgZml4IikgYWRk ZWQgdGhlIHBhc3Npbmcgb2YKdGhlIGV4dHJhIHNldHRpbmcsIGJ1dCBjb21t aXQgZGFiMDUzOTU2OCAoIkludHJvZHVjZSBDT0xPIG1vZGUgYW5kCnJlZmFj dG9yIHJlbGV2YW50IGZ1bmN0aW9uIikgZHJvcHBlZCB0aGUgcGFzc2luZyBv ZiB0aGUgc2V0dGluZyBhZ2FpbiwKcXVpdGUgbGlrZWx5IGR1ZSB0byBpbXBy b3BlciByZS1iYXNpbmcuCgpSZXN0b3JlIHRoZSByZWFkb25seT0gcGFyYW1l dGVyIHRvIFNDU0kgZGlza3MuICBGb3IgSURFIGRpc2tzIHRoaXMgaXMKc3Vw cG9zZWQgdG8gYmUgcmVqZWN0ZWQ7IGFkZCBhbiBhc3NlcnQuICBBbmQgdGhl cmUgaXMgYSBiYXJlIGFkLWhvYwpkaXNrIGRyaXZlIHN0cmluZyBpbiBsaWJ4 bF9fYnVpbGRfZGV2aWNlX21vZGVsX2FyZ3NfbmV3LCB3aGljaCB3ZSBhbHNv CnVwZGF0ZS4KClRoaXMgaXMgWFNBLTI2Ni4KClJlcG9ydGVkLWJ5OiBBbmRy ZXcgUmVpbWVycyA8YW5kcmV3LnJlaW1lcnNAb3Jpb252bS5jb20+ClNpZ25l ZC1vZmYtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGljaEBzdXNlLmNvbT4KU2ln bmVkLW9mZi1ieTogSWFuIEphY2tzb24gPElhbi5KYWNrc29uQGV1LmNpdHJp eC5jb20+Ci0tLQogdG9vbHMvbGlieGwvbGlieGxfZG0uYyB8IDEwICsrKysr KystLS0KIDEgZmlsZSBjaGFuZ2VkLCA3IGluc2VydGlvbnMoKyksIDMgZGVs ZXRpb25zKC0pCgpkaWZmIC0tZ2l0IGEvdG9vbHMvbGlieGwvbGlieGxfZG0u YyBiL3Rvb2xzL2xpYnhsL2xpYnhsX2RtLmMKaW5kZXggMjhiYmViNi4uM2Rj MzE3YSAxMDA2NDQKLS0tIGEvdG9vbHMvbGlieGwvbGlieGxfZG0uYworKysg Yi90b29scy9saWJ4bC9saWJ4bF9kbS5jCkBAIC03OTgsNyArNzk4LDggQEAg c3RhdGljIGNoYXIgKnFlbXVfZGlza19zY3NpX2RyaXZlX3N0cmluZyhsaWJ4 bF9fZ2MgKmdjLCBjb25zdCBjaGFyICp0YXJnZXRfcGF0aCwKICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgaW50IGNvbG9fbW9k ZSkKIHsKICAgICBjaGFyICpkcml2ZSA9IE5VTEw7Ci0gICAgY2hhciAqY29t bW9uID0gR0NTUFJJTlRGKCJjYWNoZT13cml0ZWJhY2siKTsKKyAgICBjaGFy ICpjb21tb24gPSBHQ1NQUklOVEYoImNhY2hlPXdyaXRlYmFjayxyZWFkb25s eT0lcyIsCisgICAgICAgICAgICAgICAgICAgICAgICAgICAgIGRpc2stPnJl YWR3cml0ZSA/ICJvZmYiIDogIm9uIik7CiAgICAgY29uc3QgY2hhciAqZXhw b3J0bmFtZSA9IGRpc2stPmNvbG9fZXhwb3J0OwogICAgIGNvbnN0IGNoYXIg KmFjdGl2ZV9kaXNrID0gZGlzay0+YWN0aXZlX2Rpc2s7CiAgICAgY29uc3Qg Y2hhciAqaGlkZGVuX2Rpc2sgPSBkaXNrLT5oaWRkZW5fZGlzazsKQEAgLTg2 Nyw2ICs4NjgsOCBAQCBzdGF0aWMgY2hhciAqcWVtdV9kaXNrX2lkZV9kcml2 ZV9zdHJpbmcobGlieGxfX2djICpnYywgY29uc3QgY2hhciAqdGFyZ2V0X3Bh dGgsCiAgICAgY29uc3QgY2hhciAqZXhwb3J0bmFtZSA9IGRpc2stPmNvbG9f ZXhwb3J0OwogICAgIGNvbnN0IGNoYXIgKmFjdGl2ZV9kaXNrID0gZGlzay0+ YWN0aXZlX2Rpc2s7CiAgICAgY29uc3QgY2hhciAqaGlkZGVuX2Rpc2sgPSBk aXNrLT5oaWRkZW5fZGlzazsKKyAgICAKKyAgICBhc3NlcnQoZGlzay0+cmVh ZHdyaXRlKTsgLyogc2hvdWxkIGhhdmUgYmVlbiBjaGVja2VkIGVhcmxpZXIg Ki8KIAogICAgIHN3aXRjaCAoY29sb19tb2RlKSB7CiAgICAgY2FzZSBMSUJY TF9fQ09MT19OT05FOgpAQCAtMTU3Niw4ICsxNTc5LDkgQEAgc3RhdGljIGlu dCBsaWJ4bF9fYnVpbGRfZGV2aWNlX21vZGVsX2FyZ3NfbmV3KGxpYnhsX19n YyAqZ2MsCiAgICAgICAgICAgICAgICAgaWYgKHN0cm5jbXAoZGlza3NbaV0u dmRldiwgInNkIiwgMikgPT0gMCkgewogICAgICAgICAgICAgICAgICAgICBp ZiAoY29sb19tb2RlID09IExJQlhMX19DT0xPX1NFQ09OREFSWSkgewogICAg ICAgICAgICAgICAgICAgICAgICAgZHJpdmUgPSBsaWJ4bF9fc3ByaW50Zgot ICAgICAgICAgICAgICAgICAgICAgICAgICAgIChnYywgImlmPW5vbmUsZHJp dmVyPSVzLGZpbGU9JXMsaWQ9JXMiLAotICAgICAgICAgICAgICAgICAgICAg ICAgICAgICBmb3JtYXQsIHRhcmdldF9wYXRoLCBkaXNrc1tpXS5jb2xvX2V4 cG9ydCk7CisgICAgICAgICAgICAgICAgICAgICAgICAgICAgKGdjLCAiaWY9 bm9uZSxkcml2ZXI9JXMsZmlsZT0lcyxpZD0lcyxyZWFkb25seT0lcyIsCisg ICAgICAgICAgICAgICAgICAgICAgICAgICAgIGZvcm1hdCwgdGFyZ2V0X3Bh dGgsIGRpc2tzW2ldLmNvbG9fZXhwb3J0LAorICAgICAgICAgICAgICAgICAg ICAgICAgICAgICBkaXNrc1tpXS5yZWFkd3JpdGUgPyAib2ZmIiA6ICJvbiIp OwogCiAgICAgICAgICAgICAgICAgICAgICAgICBmbGV4YXJyYXlfYXBwZW5k KGRtX2FyZ3MsICItZHJpdmUiKTsKICAgICAgICAgICAgICAgICAgICAgICAg IGZsZXhhcnJheV9hcHBlbmQoZG1fYXJncywgZHJpdmUpOwotLSAKMi4xLjQK Cg== --=separator Content-Type: application/octet-stream; name="xsa266/0001-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch" Content-Disposition: attachment; filename="xsa266/0001-libxl-qemu_disk_scsi_drive_string-Break-out-common-p.patch" Content-Transfer-Encoding: base64 RnJvbSBkNzliZTg4ZGE3ZjdiMmNlODc4NGY3YzdmM2Q0Y2VlNjFmZTNjMjcw IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBJYW4gSmFja3NvbiA8 aWFuLmphY2tzb25AZXUuY2l0cml4LmNvbT4KRGF0ZTogV2VkLCAxMyBKdW4g MjAxOCAxNTo1MTozNiArMDEwMApTdWJqZWN0OiBbUEFUQ0ggMS8yXSBsaWJ4 bDogcWVtdV9kaXNrX3Njc2lfZHJpdmVfc3RyaW5nOiBCcmVhayBvdXQgY29t bW9uCiBwYXJ0cyBvZiBkaXNrIGNvbmZpZwoKVGhlIGdlbmVyYXRlZCBjb25m aWd1cmF0aW9ucyBhcmUgaWRlbnRpY2FsIGFwYXJ0IGZyb20sIGluIHNvbWUg Y2FzZXMsCnJlb3JkZXJpbmcgb2YgdGhlIGlkPSVzIGVsZW1lbnQuICBTbywg b3ZlcmFsbCwgbm8gZnVuY3Rpb25hbCBjaGFuZ2UuCgpUaGlzIGlzIHBhcnQg b2YgWFNBLTI2Ni4KClJlcG9ydGVkLWJ5OiBBbmRyZXcgUmVpbWVycyA8YW5k cmV3LnJlaW1lcnNAb3Jpb252bS5jb20+ClNpZ25lZC1vZmYtYnk6IEphbiBC ZXVsaWNoIDxqYmV1bGljaEBzdXNlLmNvbT4KU2lnbmVkLW9mZi1ieTogSWFu IEphY2tzb24gPElhbi5KYWNrc29uQGV1LmNpdHJpeC5jb20+Ci0tLQogdG9v bHMvbGlieGwvbGlieGxfZG0uYyB8IDE1ICsrKysrKystLS0tLS0tLQogMSBm aWxlIGNoYW5nZWQsIDcgaW5zZXJ0aW9ucygrKSwgOCBkZWxldGlvbnMoLSkK CmRpZmYgLS1naXQgYS90b29scy9saWJ4bC9saWJ4bF9kbS5jIGIvdG9vbHMv bGlieGwvbGlieGxfZG0uYwppbmRleCAxOGFkYTY5Li5kZWFiMzcxIDEwMDY0 NAotLS0gYS90b29scy9saWJ4bC9saWJ4bF9kbS5jCisrKyBiL3Rvb2xzL2xp YnhsL2xpYnhsX2RtLmMKQEAgLTc5OCw2ICs3OTgsNyBAQCBzdGF0aWMgY2hh ciAqcWVtdV9kaXNrX3Njc2lfZHJpdmVfc3RyaW5nKGxpYnhsX19nYyAqZ2Ms IGNvbnN0IGNoYXIgKnRhcmdldF9wYXRoLAogICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICBpbnQgY29sb19tb2RlLCBjb25zdCBj aGFyICoqaWRfcHRyKQogewogICAgIGNoYXIgKmRyaXZlID0gTlVMTDsKKyAg ICBjaGFyICpjb21tb24gPSBHQ1NQUklOVEYoImlmPW5vbmUsY2FjaGU9d3Jp dGViYWNrIik7CiAgICAgY29uc3QgY2hhciAqZXhwb3J0bmFtZSA9IGRpc2st PmNvbG9fZXhwb3J0OwogICAgIGNvbnN0IGNoYXIgKmFjdGl2ZV9kaXNrID0g ZGlzay0+YWN0aXZlX2Rpc2s7CiAgICAgY29uc3QgY2hhciAqaGlkZGVuX2Rp c2sgPSBkaXNrLT5oaWRkZW5fZGlzazsKQEAgLTgwNiwyNSArODA3LDIzIEBA IHN0YXRpYyBjaGFyICpxZW11X2Rpc2tfc2NzaV9kcml2ZV9zdHJpbmcobGli eGxfX2djICpnYywgY29uc3QgY2hhciAqdGFyZ2V0X3BhdGgsCiAgICAgc3dp dGNoIChjb2xvX21vZGUpIHsKICAgICBjYXNlIExJQlhMX19DT0xPX05PTkU6 CiAgICAgICAgIGlkID0gR0NTUFJJTlRGKCJzY3NpMC1oZCVkIiwgdW5pdCk7 Ci0gICAgICAgIGRyaXZlID0gR0NTUFJJTlRGKCJmaWxlPSVzLGlmPW5vbmUs aWQ9JXMsZm9ybWF0PSVzLGNhY2hlPXdyaXRlYmFjayIsCi0gICAgICAgICAg ICAgICAgICAgICAgICAgIHRhcmdldF9wYXRoLCBpZCwgZm9ybWF0KTsKKyAg ICAgICAgZHJpdmUgPSBHQ1NQUklOVEYoImZpbGU9JXMsaWQ9JXMsZm9ybWF0 PSVzLCVzIiwKKyAgICAgICAgICAgICAgICAgICAgICAgICAgdGFyZ2V0X3Bh dGgsIGlkLCBmb3JtYXQsIGNvbW1vbik7CiAgICAgICAgIGJyZWFrOwogICAg IGNhc2UgTElCWExfX0NPTE9fUFJJTUFSWToKICAgICAgICAgaWQgPSBleHBv cnRuYW1lOwogICAgICAgICBkcml2ZSA9IEdDU1BSSU5URigKLSAgICAgICAg ICAgICJpZj1ub25lLGNhY2hlPXdyaXRlYmFjayxkcml2ZXI9cXVvcnVtLCIK LSAgICAgICAgICAgICJpZD0lcywiCisgICAgICAgICAgICAiJXMsaWQ9JXMs ZHJpdmVyPXF1b3J1bSwiCiAgICAgICAgICAgICAiY2hpbGRyZW4uMC5maWxl LmZpbGVuYW1lPSVzLCIKICAgICAgICAgICAgICJjaGlsZHJlbi4wLmRyaXZl cj0lcywiCiAgICAgICAgICAgICAicmVhZC1wYXR0ZXJuPWZpZm8sIgogICAg ICAgICAgICAgInZvdGUtdGhyZXNob2xkPTEiLAotICAgICAgICAgICAgaWQs IHRhcmdldF9wYXRoLCBmb3JtYXQpOworICAgICAgICAgICAgY29tbW9uLCBp ZCwgdGFyZ2V0X3BhdGgsIGZvcm1hdCk7CiAgICAgICAgIGJyZWFrOwogICAg IGNhc2UgTElCWExfX0NPTE9fU0VDT05EQVJZOgogICAgICAgICBpZCA9ICJ0 b3AtY29sbyI7CiAgICAgICAgIGRyaXZlID0gR0NTUFJJTlRGKAotICAgICAg ICAgICAgImlmPW5vbmUsaWQ9JXMsY2FjaGU9d3JpdGViYWNrLCIKLSAgICAg ICAgICAgICJkcml2ZXI9cmVwbGljYXRpb24sIgorICAgICAgICAgICAgIiVz LGlkPSVzLGRyaXZlcj1yZXBsaWNhdGlvbiwiCiAgICAgICAgICAgICAibW9k ZT1zZWNvbmRhcnksIgogICAgICAgICAgICAgInRvcC1pZD10b3AtY29sbywi CiAgICAgICAgICAgICAiZmlsZS5kcml2ZXI9cWNvdzIsIgpAQCAtODMyLDcg KzgzMSw3IEBAIHN0YXRpYyBjaGFyICpxZW11X2Rpc2tfc2NzaV9kcml2ZV9z dHJpbmcobGlieGxfX2djICpnYywgY29uc3QgY2hhciAqdGFyZ2V0X3BhdGgs CiAgICAgICAgICAgICAiZmlsZS5iYWNraW5nLmRyaXZlcj1xY293MiwiCiAg ICAgICAgICAgICAiZmlsZS5iYWNraW5nLmZpbGUuZmlsZW5hbWU9JXMsIgog ICAgICAgICAgICAgImZpbGUuYmFja2luZy5iYWNraW5nPSVzIiwKLSAgICAg ICAgICAgIGlkLCBhY3RpdmVfZGlzaywgaGlkZGVuX2Rpc2ssIGV4cG9ydG5h bWUpOworICAgICAgICAgICAgY29tbW9uLCBpZCwgYWN0aXZlX2Rpc2ssIGhp ZGRlbl9kaXNrLCBleHBvcnRuYW1lKTsKICAgICAgICAgYnJlYWs7CiAgICAg ZGVmYXVsdDoKICAgICAgICAgYWJvcnQoKTsKLS0gCjIuMS40Cgo= --=separator Content-Type: application/octet-stream; name="xsa266/0002-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch" Content-Disposition: attachment; filename="xsa266/0002-libxl-restore-passing-readonly-to-qemu-for-SCSI-disk.patch" Content-Transfer-Encoding: base64 RnJvbSBiY2M1ODZjYmMwNWZmYWFmNWVmOGZhYWU3NGRjM2Q0NzQzYmY5N2Y4 IE1vbiBTZXAgMTcgMDA6MDA6MDAgMjAwMQpGcm9tOiBJYW4gSmFja3NvbiA8 aWFuLmphY2tzb25AZXUuY2l0cml4LmNvbT4KRGF0ZTogV2VkLCAxMyBKdW4g MjAxOCAxNTo1NDo1MyArMDEwMApTdWJqZWN0OiBbUEFUQ0ggMi8yXSBsaWJ4 bDogcmVzdG9yZSBwYXNzaW5nICJyZWFkb25seT0iIHRvIHFlbXUgZm9yIFND U0kgZGlza3MKCkEgcmVhZC1vbmx5IGNoZWNrIHdhcyBpbnRyb2R1Y2VkIGZv ciBYU0EtMTQyLCBjb21taXQgZWY2Y2I3NjAyNiAoImxpYnhsOgpyZWxheCBy ZWFkb25seSBjaGVjayBpbnRyb2R1Y2VkIGJ5IFhTQS0xNDIgZml4IikgYWRk ZWQgdGhlIHBhc3Npbmcgb2YKdGhlIGV4dHJhIHNldHRpbmcsIGJ1dCBjb21t aXQgZGFiMDUzOTU2OCAoIkludHJvZHVjZSBDT0xPIG1vZGUgYW5kCnJlZmFj dG9yIHJlbGV2YW50IGZ1bmN0aW9uIikgZHJvcHBlZCB0aGUgcGFzc2luZyBv ZiB0aGUgc2V0dGluZyBhZ2FpbiwKcXVpdGUgbGlrZWx5IGR1ZSB0byBpbXBy b3BlciByZS1iYXNpbmcuCgpSZXN0b3JlIHRoZSByZWFkb25seT0gcGFyYW1l dGVyIHRvIFNDU0kgZGlza3MuICBGb3IgSURFIGRpc2tzIHRoaXMgaXMKc3Vw cG9zZWQgdG8gYmUgcmVqZWN0ZWQ7IGFkZCBhbiBhc3NlcnQuICBBbmQgdGhl cmUgaXMgYSBiYXJlIGFkLWhvYwpkaXNrIGRyaXZlIHN0cmluZyBpbiBsaWJ4 bF9fYnVpbGRfZGV2aWNlX21vZGVsX2FyZ3NfbmV3LCB3aGljaCB3ZSBhbHNv CnVwZGF0ZS4KClRoaXMgaXMgWFNBLTI2Ni4KClJlcG9ydGVkLWJ5OiBBbmRy ZXcgUmVpbWVycyA8YW5kcmV3LnJlaW1lcnNAb3Jpb252bS5jb20+ClNpZ25l ZC1vZmYtYnk6IEphbiBCZXVsaWNoIDxqYmV1bGljaEBzdXNlLmNvbT4KU2ln bmVkLW9mZi1ieTogSWFuIEphY2tzb24gPElhbi5KYWNrc29uQGV1LmNpdHJp eC5jb20+Ci0tLQogdG9vbHMvbGlieGwvbGlieGxfZG0uYyB8IDEwICsrKysr KystLS0KIDEgZmlsZSBjaGFuZ2VkLCA3IGluc2VydGlvbnMoKyksIDMgZGVs ZXRpb25zKC0pCgpkaWZmIC0tZ2l0IGEvdG9vbHMvbGlieGwvbGlieGxfZG0u YyBiL3Rvb2xzL2xpYnhsL2xpYnhsX2RtLmMKaW5kZXggZGVhYjM3MS4uYmFk M2VmNSAxMDA2NDQKLS0tIGEvdG9vbHMvbGlieGwvbGlieGxfZG0uYworKysg Yi90b29scy9saWJ4bC9saWJ4bF9kbS5jCkBAIC03OTgsNyArNzk4LDggQEAg c3RhdGljIGNoYXIgKnFlbXVfZGlza19zY3NpX2RyaXZlX3N0cmluZyhsaWJ4 bF9fZ2MgKmdjLCBjb25zdCBjaGFyICp0YXJnZXRfcGF0aCwKICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgaW50IGNvbG9fbW9k ZSwgY29uc3QgY2hhciAqKmlkX3B0cikKIHsKICAgICBjaGFyICpkcml2ZSA9 IE5VTEw7Ci0gICAgY2hhciAqY29tbW9uID0gR0NTUFJJTlRGKCJpZj1ub25l LGNhY2hlPXdyaXRlYmFjayIpOworICAgIGNoYXIgKmNvbW1vbiA9IEdDU1BS SU5URigiaWY9bm9uZSxyZWFkb25seT0lcyxjYWNoZT13cml0ZWJhY2siLAor ICAgICAgICAgICAgICAgICAgICAgICAgICAgICBkaXNrLT5yZWFkd3JpdGUg PyAib2ZmIiA6ICJvbiIpOwogICAgIGNvbnN0IGNoYXIgKmV4cG9ydG5hbWUg PSBkaXNrLT5jb2xvX2V4cG9ydDsKICAgICBjb25zdCBjaGFyICphY3RpdmVf ZGlzayA9IGRpc2stPmFjdGl2ZV9kaXNrOwogICAgIGNvbnN0IGNoYXIgKmhp ZGRlbl9kaXNrID0gZGlzay0+aGlkZGVuX2Rpc2s7CkBAIC04NTIsNiArODUz LDggQEAgc3RhdGljIGNoYXIgKnFlbXVfZGlza19pZGVfZHJpdmVfc3RyaW5n KGxpYnhsX19nYyAqZ2MsIGNvbnN0IGNoYXIgKnRhcmdldF9wYXRoLAogICAg IGNvbnN0IGNoYXIgKmFjdGl2ZV9kaXNrID0gZGlzay0+YWN0aXZlX2Rpc2s7 CiAgICAgY29uc3QgY2hhciAqaGlkZGVuX2Rpc2sgPSBkaXNrLT5oaWRkZW5f ZGlzazsKIAorICAgIGFzc2VydChkaXNrLT5yZWFkd3JpdGUpOyAvKiBzaG91 bGQgaGF2ZSBiZWVuIGNoZWNrZWQgZWFybGllciAqLworCiAgICAgc3dpdGNo IChjb2xvX21vZGUpIHsKICAgICBjYXNlIExJQlhMX19DT0xPX05PTkU6CiAg ICAgICAgIGRyaXZlID0gR0NTUFJJTlRGCkBAIC0xNTc0LDggKzE1NzcsOSBA QCBzdGF0aWMgaW50IGxpYnhsX19idWlsZF9kZXZpY2VfbW9kZWxfYXJnc19u ZXcobGlieGxfX2djICpnYywKICAgICAgICAgICAgICAgICAgICAgY29uc3Qg Y2hhciAqZHJpdmVfaWQ7CiAgICAgICAgICAgICAgICAgICAgIGlmIChjb2xv X21vZGUgPT0gTElCWExfX0NPTE9fU0VDT05EQVJZKSB7CiAgICAgICAgICAg ICAgICAgICAgICAgICBkcml2ZSA9IGxpYnhsX19zcHJpbnRmCi0gICAgICAg ICAgICAgICAgICAgICAgICAgICAgKGdjLCAiaWY9bm9uZSxkcml2ZXI9JXMs ZmlsZT0lcyxpZD0lcyIsCi0gICAgICAgICAgICAgICAgICAgICAgICAgICAg IGZvcm1hdCwgdGFyZ2V0X3BhdGgsIGRpc2tzW2ldLmNvbG9fZXhwb3J0KTsK KyAgICAgICAgICAgICAgICAgICAgICAgICAgICAoZ2MsICJpZj1ub25lLGRy aXZlcj0lcyxmaWxlPSVzLGlkPSVzLHJlYWRvbmx5PSVzIiwKKyAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgZm9ybWF0LCB0YXJnZXRfcGF0aCwgZGlz a3NbaV0uY29sb19leHBvcnQsCisgICAgICAgICAgICAgICAgICAgICAgICAg ICAgIGRpc2tzW2ldLnJlYWR3cml0ZSA/ICJvZmYiIDogIm9uIik7CiAKICAg ICAgICAgICAgICAgICAgICAgICAgIGZsZXhhcnJheV9hcHBlbmQoZG1fYXJn cywgIi1kcml2ZSIpOwogICAgICAgICAgICAgICAgICAgICAgICAgZmxleGFy cmF5X2FwcGVuZChkbV9hcmdzLCBkcml2ZSk7Ci0tIAoyLjEuNAoK --=separator Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KWGVuLWFubm91 bmNlIG1haWxpbmcgbGlzdApYZW4tYW5ub3VuY2VAbGlzdHMueGVucHJvamVjdC5vcmcKaHR0cHM6 Ly9saXN0cy54ZW5wcm9qZWN0Lm9yZy9tYWlsbWFuL2xpc3RpbmZvL3hlbi1hbm5vdW5jZQ== --=separator-- From xen-announce-bounces@lists.xenproject.org Wed Jun 27 21:07:01 2018 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Wed, 27 Jun 2018 21:07:01 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.89) (envelope-from ) id 1fYHdN-0004No-IG; Wed, 27 Jun 2018 21:05:49 +0000 Received: from all-amaz-eas1.inumbo.com ([34.197.232.57]) by lists.xenproject.org with esmtp (Exim 4.89) (envelope-from ) id 1fYHdM-0004NV-72 for xen-announce@lists.xen.org; Wed, 27 Jun 2018 21:05:48 +0000 X-Inumbo-ID: aa626948-7a4d-11e8-bc1d-65256ead4e3a Received: from mail.xenproject.org (unknown [104.130.215.37]) by us1-amaz-eas1.inumbo.com (Halon) with ESMTPS id aa626948-7a4d-11e8-bc1d-65256ead4e3a; Wed, 27 Jun 2018 21:04:22 +0000 (UTC) Received: from xenbits.xenproject.org ([104.239.192.120]) by mail.xenproject.org with esmtp (Exim 4.89) (envelope-from ) id 1fYHbW-00015o-Vm; Wed, 27 Jun 2018 21:03:54 +0000 Received: from iwj by xenbits.xenproject.org with local (Exim 4.89) (envelope-from ) id 1fYHbW-0005EC-T0; Wed, 27 Jun 2018 21:03:54 +0000 Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.508 (Entity 5.508) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Message-Id: Date: Wed, 27 Jun 2018 21:03:54 +0000 Subject: [Xen-announce] Xen Security Advisory 264 (CVE-2018-12891) - preemption checks bypassed in x86 PV MM handling X-BeenThere: xen-announce@lists.xenproject.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Cc: "Xen.org security team" Errors-To: xen-announce-bounces@lists.xenproject.org Sender: "Xen-announce" --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Xen Security Advisory CVE-2018-12891 / XSA-264 version 3 preemption checks bypassed in x86 PV MM handling UPDATES IN VERSION 3 ==================== Public release. ISSUE DESCRIPTION ================= Certain PV MMU operations may take a long time to process. For that reason Xen explicitly checks for the need to preempt the current vCPU at certain points. A few rarely taken code paths did bypass such checks. By suitably enforcing the conditions through its own page table contents, a malicious guest may cause such bypasses to be used for an unbounded number of iterations. IMPACT ====== A malicious or buggy PV guest may cause a Denial of Service (DoS) affecting the entire host. Specifically, it may prevent use of a physical CPU for an indeterminate period of time. VULNERABLE SYSTEMS ================== All Xen versions from 3.4 onwards are vulnerable. Xen versions 3.3 and earlier are vulnerable to an even wider class of attacks, due to them lacking preemption checks altogether in the affected code paths. Only x86 systems are affected. ARM systems are not affected. Only multi-vCPU x86 PV guests can leverage the vulnerability. x86 HVM or PVH guests as well as x86 single-vCPU PV ones cannot leverage the vulnerability. MITIGATION ========== Running only HVM, PVH, or single-vCPU PV guests will avoid this vulnerability. For PV guests, the vulnerability can be avoided if the guest kernel is controlled by the host rather than guest administrator, provided that further steps are taken to prevent the guest administrator from loading code into the kernel (e.g. by disabling loadable modules etc) or from using other mechanisms which allow them to run code at kernel privilege. CREDITS ======= This issue was discovered by Jan Beulich of SUSE. RESOLUTION ========== Applying the appropriate attached patch resolves this issue. xsa264.patch xen-unstable xsa264-4.10.patch Xen 4.10.x ... 4.6.x $ sha256sum xsa264* a7d2edf219af3375ac0d49bff9e64628c70e704fcf131ea21684694517aa9210 xsa264.patch 66aca234b168abc01f28fe131b7e07645a73fd5d0f1d141d68343f31914d96cc xsa264-4.10.patch $ DEPLOYMENT DURING EMBARGO ========================= Deployment of the patches and/or mitigations described above (or others which are substantially similar) is permitted during the embargo, even on public-facing systems with untrusted guest users and administrators. But: Distribution of updated software is prohibited (except to other members of the predisclosure list). Predisclosure list members who wish to deploy significantly different patches and/or mitigations, please contact the Xen Project Security Team. (Note: this during-embargo deployment notice is retained in post-embargo publicly released Xen Project advisories, even though it is then no longer applicable. This is to enable the community to have oversight of the Xen Project Security Team's decisionmaking.) For more information about permissible uses of embargoed information, consult the Xen Project community's agreed Security Policy: http://www.xenproject.org/security-policy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEcBAEBCAAGBQJbM+5GAAoJEIP+FMlX6CvZy7cIALkEoEQnHw5O8vYC5KpDA24X P320Gh0OppT2qtQfKtAF7MaCc7VF9Tnhf3CrtNtolXMryM4vrh7KyOn8wk7jbRBy tp28e6ppO8ons9x1kBAmAZrno8LXwOa2t22hQpUv1mYksRkZotViAXS72t4HkOVl SEQVVLElWAIfPbGJwtu1/qgS8dCckA2MeLeN/dKHRm8gD63XsYt37nQnBa2iraKX yN5sdih+WLgXCf55mubFlQfE6+7qgn27khZpMeJAwGk6N+Rz/Q3q1zSFX9YB+P6d 9ppgoRFVxYpekwtCrLkVLxSAoEwCKi6sdYFnvIngHIMlLiVHjNsLd5YKTAsZcEE= =zTq5 -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa264.patch" Content-Disposition: attachment; filename="xsa264.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiB4ODYvbW06IGRvbid0IGJ5cGFzcyBwcmVlbXB0aW9uIGNoZWNrcwoKV2hp bGUgdW5saWtlbHksIGl0IGlzIG5vdCBpbXBvc3NpYmxlIGZvciBhIG11bHRp LXZDUFUgZ3Vlc3QgdG8gbGV2ZXJhZ2UKYnlwYXNzZXMgb2YgcHJlZW1wdGlv biBjaGVja3MgdG8gZHJpdmUgWGVuIGludG8gYW4gdW5ib3VuZGVkIGxvb3Au CgpUaGlzIGlzIFhTQS0yNjQuCgpTaWduZWQtb2ZmLWJ5OiBKYW4gQmV1bGlj aCA8amJldWxpY2hAc3VzZS5jb20+ClJldmlld2VkLWJ5OiBBbmRyZXcgQ29v cGVyIDxhbmRyZXcuY29vcGVyM0BjaXRyaXguY29tPgotLS0KQm90aCBhcmNo aXRlY3R1cmUncyByZWxpbnF1aXNoX21lbW9yeSgpIGFzIHdlbGwgYXMgbGl2 ZXBhdGNoX2xpc3QoKSBoYXZlCmEgc2ltaWxhciBpc3N1ZSwgYnV0IHRoZSBm dW5jdGlvbnMgY2FuJ3QgYmUgaW52b2tlZCBieSAibm9ybWFsIiBndWVzdHMu CgotLS0gYS94ZW4vYXJjaC94ODYvbW0uYworKysgYi94ZW4vYXJjaC94ODYv bW0uYwpAQCAtMjU1MSw3ICsyNTUxLDcgQEAgc3RhdGljIGludCBfcHV0X3Bh Z2VfdHlwZShzdHJ1Y3QgcGFnZV9pbgogICAgICAgICAgICAgICAgIG54ID0g eCAmIH4oUEdUX3ZhbGlkYXRlZHxQR1RfcGFydGlhbCk7CiAgICAgICAgICAg ICAgICAgaWYgKCB1bmxpa2VseSgoeSA9IGNtcHhjaGcoJnBhZ2UtPnUuaW51 c2UudHlwZV9pbmZvLAogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgIHgsIG54KSkgIT0geCkgKQotICAgICAgICAgICAgICAg ICAgICBjb250aW51ZTsKKyAgICAgICAgICAgICAgICAgICAgYnJlYWs7CiAg ICAgICAgICAgICAgICAgLyogV2UgY2xlYXJlZCB0aGUgJ3ZhbGlkIGJpdCcg c28gd2UgZG8gdGhlIGNsZWFuIHVwLiAqLwogICAgICAgICAgICAgICAgIHJj ID0gX3B1dF9maW5hbF9wYWdlX3R5cGUocGFnZSwgeCwgcHJlZW1wdGlibGUs IHB0cGcpOwogICAgICAgICAgICAgICAgIGlmICggeCAmIFBHVF9wYXJ0aWFs ICkKQEAgLTI1NzQsNyArMjU4NzQsMTggQEAgc3RhdGljIGludCBfcHV0X3Bh Z2VfdHlwZShzdHJ1Y3QgcGFnZV9pbgogICAgICAgICAgICAgZWxzZQogICAg ICAgICAgICAgICAgIEJVR19PTighSVNfRU5BQkxFRChDT05GSUdfUFZfTElO RUFSX1BUKSk7CiAKLSAgICAgICAgICAgIGJyZWFrOworICAgICAgICAgICAg LyogZmFsbCB0aHJvdWdoICovCisgICAgICAgIGRlZmF1bHQ6CisgICAgICAg ICAgICBpZiAoIHVubGlrZWx5KCh5ID0gY21weGNoZygmcGFnZS0+dS5pbnVz ZS50eXBlX2luZm8sIHgsIG54KSkgIT0geCkgKQorICAgICAgICAgICAgICAg IGJyZWFrOworCisgICAgICAgICAgICBpZiAoIHB0cGcgJiYgUEdUX3R5cGVf ZXF1YWwoeCwgcHRwZy0+dS5pbnVzZS50eXBlX2luZm8pICkKKyAgICAgICAg ICAgIHsKKyAgICAgICAgICAgICAgICBkZWNfbGluZWFyX3VzZXMocGFnZSk7 CisgICAgICAgICAgICAgICAgZGVjX2xpbmVhcl9lbnRyaWVzKHB0cGcpOwor ICAgICAgICAgICAgfQorCisgICAgICAgICAgICByZXR1cm4gMDsKIAogICAg ICAgICBjYXNlIFBHVF9sb2NrZWQ6CiAgICAgICAgICAgICBBU1NFUlRfVU5S RUFDSEFCTEUoKTsKQEAgLTI1ODcsMjMgKzI1OTgsMTIgQEAgc3RhdGljIGlu dCBfcHV0X3BhZ2VfdHlwZShzdHJ1Y3QgcGFnZV9pbgogICAgICAgICAgICAg ICovCiAgICAgICAgICAgICBjcHVfcmVsYXgoKTsKICAgICAgICAgICAgIHkg PSBwYWdlLT51LmludXNlLnR5cGVfaW5mbzsKLSAgICAgICAgICAgIGNvbnRp bnVlOwotICAgICAgICB9Ci0KLSAgICAgICAgaWYgKCBsaWtlbHkoKHkgPSBj bXB4Y2hnKCZwYWdlLT51LmludXNlLnR5cGVfaW5mbywgeCwgbngpKSA9PSB4 KSApCiAgICAgICAgICAgICBicmVhazsKKyAgICAgICAgfQogCiAgICAgICAg IGlmICggcHJlZW1wdGlibGUgJiYgaHlwZXJjYWxsX3ByZWVtcHRfY2hlY2so KSApCiAgICAgICAgICAgICByZXR1cm4gLUVJTlRSOwogICAgIH0KLQotICAg IGlmICggcHRwZyAmJiBQR1RfdHlwZV9lcXVhbCh4LCBwdHBnLT51LmludXNl LnR5cGVfaW5mbykgKQotICAgIHsKLSAgICAgICAgZGVjX2xpbmVhcl91c2Vz KHBhZ2UpOwotICAgICAgICBkZWNfbGluZWFyX2VudHJpZXMocHRwZyk7Ci0g ICAgfQotCi0gICAgcmV0dXJuIDA7CiB9CiAKIApAQCAtMjcwNCwxMiArMjcw NCwxMSBAQCBzdGF0aWMgaW50IF9nZXRfcGFnZV90eXBlKHN0cnVjdCBwYWdl X2luCiAgICAgICAgICAgICBpZiAoICEoeCAmIFBHVF9wYXJ0aWFsKSApCiAg ICAgICAgICAgICB7CiAgICAgICAgICAgICAgICAgLyogU29tZW9uZSBlbHNl IGlzIHVwZGF0aW5nIHZhbGlkYXRpb24gb2YgdGhpcyBwYWdlLiBXYWl0Li4u ICovCi0gICAgICAgICAgICAgICAgd2hpbGUgKCAoeSA9IHBhZ2UtPnUuaW51 c2UudHlwZV9pbmZvKSA9PSB4ICkKLSAgICAgICAgICAgICAgICB7CisgICAg ICAgICAgICAgICAgZG8gewogICAgICAgICAgICAgICAgICAgICBpZiAoIHBy ZWVtcHRpYmxlICYmIGh5cGVyY2FsbF9wcmVlbXB0X2NoZWNrKCkgKQogICAg ICAgICAgICAgICAgICAgICAgICAgcmV0dXJuIC1FSU5UUjsKICAgICAgICAg ICAgICAgICAgICAgY3B1X3JlbGF4KCk7Ci0gICAgICAgICAgICAgICAgfQor ICAgICAgICAgICAgICAgIH0gd2hpbGUgKCAoeSA9IHBhZ2UtPnUuaW51c2Uu dHlwZV9pbmZvKSA9PSB4ICk7CiAgICAgICAgICAgICAgICAgY29udGludWU7 CiAgICAgICAgICAgICB9CiAgICAgICAgICAgICAvKiBUeXBlIHJlZiBjb3Vu dCB3YXMgbGVmdCBhdCAxIHdoZW4gUEdUX3BhcnRpYWwgZ290IHNldC4gKi8K --=separator Content-Type: application/octet-stream; name="xsa264-4.10.patch" Content-Disposition: attachment; filename="xsa264-4.10.patch" Content-Transfer-Encoding: base64 RnJvbTogSmFuIEJldWxpY2ggPGpiZXVsaWNoQHN1c2UuY29tPgpTdWJqZWN0 OiB4ODYvbW06IGRvbid0IGJ5cGFzcyBwcmVlbXB0aW9uIGNoZWNrcwoKV2hp bGUgdW5saWtlbHksIGl0IGlzIG5vdCBpbXBvc3NpYmxlIGZvciBhIG11bHRp LXZDUFUgZ3Vlc3QgdG8gbGV2ZXJhZ2UKYnlwYXNzZXMgb2YgcHJlZW1wdGlv biBjaGVja3MgdG8gZHJpdmUgWGVuIGludG8gYW4gdW5ib3VuZGVkIGxvb3Au CgpUaGlzIGlzIFhTQS0yNjQuCgpTaWduZWQtb2ZmLWJ5OiBKYW4gQmV1bGlj aCA8amJldWxpY2hAc3VzZS5jb20+ClJldmlld2VkLWJ5OiBBbmRyZXcgQ29v cGVyIDxhbmRyZXcuY29vcGVyM0BjaXRyaXguY29tPgoKLS0tIGEveGVuL2Fy Y2gveDg2L21tLmMKKysrIGIveGVuL2FyY2gveDg2L21tLmMKQEAgLTI1MjYs NyArMjUyNiw3IEBAIHN0YXRpYyBpbnQgX3B1dF9wYWdlX3R5cGUoc3RydWN0 IHBhZ2VfaW4KICAgICAgICAgICAgICAgICBueCA9IHggJiB+KFBHVF92YWxp ZGF0ZWR8UEdUX3BhcnRpYWwpOwogICAgICAgICAgICAgICAgIGlmICggdW5s aWtlbHkoKHkgPSBjbXB4Y2hnKCZwYWdlLT51LmludXNlLnR5cGVfaW5mbywK ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICB4 LCBueCkpICE9IHgpICkKLSAgICAgICAgICAgICAgICAgICAgY29udGludWU7 CisgICAgICAgICAgICAgICAgICAgIGdvdG8gbWF5YmVfcHJlZW1wdDsKICAg ICAgICAgICAgICAgICAvKiBXZSBjbGVhcmVkIHRoZSAndmFsaWQgYml0JyBz byB3ZSBkbyB0aGUgY2xlYW4gdXAuICovCiAgICAgICAgICAgICAgICAgcmMg PSBfcHV0X2ZpbmFsX3BhZ2VfdHlwZShwYWdlLCB4LCBwcmVlbXB0aWJsZSwg cHRwZyk7CiAgICAgICAgICAgICAgICAgcHRwZyA9IE5VTEw7CkBAIC0yNTU4 LDEyICsyNTU4LDEzIEBAIHN0YXRpYyBpbnQgX3B1dF9wYWdlX3R5cGUoc3Ry dWN0IHBhZ2VfaW4KICAgICAgICAgICAgICAqLwogICAgICAgICAgICAgY3B1 X3JlbGF4KCk7CiAgICAgICAgICAgICB5ID0gcGFnZS0+dS5pbnVzZS50eXBl X2luZm87Ci0gICAgICAgICAgICBjb250aW51ZTsKKyAgICAgICAgICAgIGdv dG8gbWF5YmVfcHJlZW1wdDsKICAgICAgICAgfQogCiAgICAgICAgIGlmICgg bGlrZWx5KCh5ID0gY21weGNoZygmcGFnZS0+dS5pbnVzZS50eXBlX2luZm8s IHgsIG54KSkgPT0geCkgKQogICAgICAgICAgICAgYnJlYWs7CiAKKyAgICBt YXliZV9wcmVlbXB0OgogICAgICAgICBpZiAoIHByZWVtcHRpYmxlICYmIGh5 cGVyY2FsbF9wcmVlbXB0X2NoZWNrKCkgKQogICAgICAgICAgICAgcmV0dXJu IC1FSU5UUjsKICAgICB9CkBAIC0yNjc2LDEyICsyNjc3LDExIEBAIHN0YXRp YyBpbnQgX19nZXRfcGFnZV90eXBlKHN0cnVjdCBwYWdlX2kKICAgICAgICAg ICAgIGlmICggISh4ICYgUEdUX3BhcnRpYWwpICkKICAgICAgICAgICAgIHsK ICAgICAgICAgICAgICAgICAvKiBTb21lb25lIGVsc2UgaXMgdXBkYXRpbmcg dmFsaWRhdGlvbiBvZiB0aGlzIHBhZ2UuIFdhaXQuLi4gKi8KLSAgICAgICAg ICAgICAgICB3aGlsZSAoICh5ID0gcGFnZS0+dS5pbnVzZS50eXBlX2luZm8p ID09IHggKQotICAgICAgICAgICAgICAgIHsKKyAgICAgICAgICAgICAgICBk byB7CiAgICAgICAgICAgICAgICAgICAgIGlmICggcHJlZW1wdGlibGUgJiYg aHlwZXJjYWxsX3ByZWVtcHRfY2hlY2soKSApCiAgICAgICAgICAgICAgICAg ICAgICAgICByZXR1cm4gLUVJTlRSOwogICAgICAgICAgICAgICAgICAgICBj cHVfcmVsYXgoKTsKLSAgICAgICAgICAgICAgICB9CisgICAgICAgICAgICAg ICAgfSB3aGlsZSAoICh5ID0gcGFnZS0+dS5pbnVzZS50eXBlX2luZm8pID09 IHggKTsKICAgICAgICAgICAgICAgICBjb250aW51ZTsKICAgICAgICAgICAg IH0KICAgICAgICAgICAgIC8qIFR5cGUgcmVmIGNvdW50IHdhcyBsZWZ0IGF0 IDEgd2hlbiBQR1RfcGFydGlhbCBnb3Qgc2V0LiAqLwo= --=separator Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KWGVuLWFubm91 bmNlIG1haWxpbmcgbGlzdApYZW4tYW5ub3VuY2VAbGlzdHMueGVucHJvamVjdC5vcmcKaHR0cHM6 Ly9saXN0cy54ZW5wcm9qZWN0Lm9yZy9tYWlsbWFuL2xpc3RpbmZvL3hlbi1hbm5vdW5jZQ== --=separator-- From xen-announce-bounces@lists.xenproject.org Wed Jun 27 21:10:20 2018 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Wed, 27 Jun 2018 21:10:20 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.89) (envelope-from ) id 1fYHgW-0004uc-4u; Wed, 27 Jun 2018 21:09:04 +0000 Received: from us1-rack-dfw2.inumbo.com ([104.130.134.6]) by lists.xenproject.org with esmtp (Exim 4.89) (envelope-from ) id 1fYHgV-0004uS-6M for xen-announce@lists.xen.org; Wed, 27 Jun 2018 21:09:03 +0000 X-Inumbo-ID: 3d93e753-7a4d-11e8-9728-bc764e045a96 Received: from mail.xenproject.org (unknown [104.130.215.37]) by us1-rack-dfw2.inumbo.com (Halon) with ESMTPS id 3d93e753-7a4d-11e8-9728-bc764e045a96; Wed, 27 Jun 2018 23:01:20 +0200 (CEST) Received: from xenbits.xenproject.org ([104.239.192.120]) by mail.xenproject.org with esmtp (Exim 4.89) (envelope-from ) id 1fYHbb-00015z-29; Wed, 27 Jun 2018 21:03:59 +0000 Received: from iwj by xenbits.xenproject.org with local (Exim 4.89) (envelope-from ) id 1fYHba-0005FA-Vk; Wed, 27 Jun 2018 21:03:58 +0000 Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.508 (Entity 5.508) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Message-Id: Date: Wed, 27 Jun 2018 21:03:58 +0000 Subject: [Xen-announce] Xen Security Advisory 265 (CVE-2018-12893) - x86: #DB exception safety check can be triggered by a guest X-BeenThere: xen-announce@lists.xenproject.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Cc: "Xen.org security team" Errors-To: xen-announce-bounces@lists.xenproject.org Sender: "Xen-announce" --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Xen Security Advisory CVE-2018-12893 / XSA-265 version 3 x86: #DB exception safety check can be triggered by a guest UPDATES IN VERSION 3 ==================== Public release. ISSUE DESCRIPTION ================= One of the fixes in XSA-260 added some safety checks to help prevent Xen livelocking with debug exceptions. Unfortunately, due to an oversight, at least one of these safety checks can be triggered by a guest. IMPACT ====== A malicious PV guest can crash Xen, leading to a Denial of Service. VULNERABLE SYSTEMS ================== All Xen systems which have applied the XSA-260 fix are vulnerable. Only x86 systems are vulnerable. ARM systems are not vulnerable. Only x86 PV guests can exploit the vulnerability. x86 HVM and PVH guests cannot exploit the vulnerability. An attacker needs to be able to control hardware debugging facilities to exploit the vulnerability, but such permissions are typically available to unprivileged users. MITIGATION ========== Running only x86 HVM or PVH guests will avoid the vulnerability. CREDITS ======= This issue was discovered by Andrew Cooper of Citrix. RESOLUTION ========== Applying the appropriate attached patch resolves this issue. xsa265.patch xen-unstable, Xen 4.10.x, 4.9.x, 4.8.x xsa265-4.7.patch Xen 4.7.x, 4.6.x $ sha256sum xsa265* 3eb66ed7251dcc4259eeffe608b2747857e269307d894a1cb950973420184aa7 xsa265.patch 00faf2a4159698b6540565ece06de103c3547855e2084324ca44772b8a24aa18 xsa265-4.7.patch $ DEPLOYMENT DURING EMBARGO ========================= Deployment of the patches and/or mitigations described above (or others which are substantially similar) is permitted during the embargo, even on public-facing systems with untrusted guest users and administrators. But: Distribution of updated software is prohibited (except to other members of the predisclosure list). Predisclosure list members who wish to deploy significantly different patches and/or mitigations, please contact the Xen Project Security Team. (Note: this during-embargo deployment notice is retained in post-embargo publicly released Xen Project advisories, even though it is then no longer applicable. This is to enable the community to have oversight of the Xen Project Security Team's decisionmaking.) For more information about permissible uses of embargoed information, consult the Xen Project community's agreed Security Policy: http://www.xenproject.org/security-policy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQEcBAEBCAAGBQJbM+5JAAoJEIP+FMlX6CvZtSgIAMF8d/3Jor6b0EbW55JSLh76 56I8QfkqX4Xv/yWri3sXGJmPz7Af/qjDO+Ix5IScq54ugN5C8z7OBcbXFpX1WxNJ xCv6QjsbPmGCZHsT+NdWrl/ac6ZH3xlhE+S1awQ+9SkC+r6bRH/iROO+4DhpYQde CGoyYIwFq2VJoovh8lWHMsVl8VUXisyDk3bPK17VlAEFF1LuOkaan1UGEKRsciGX 12IlNw/I6c8a85wWpFtph1AOVZfrodWdwyj8vgLY3MHnEs+86/cm5O4+GxKHezHf P5dJDZ38HBPRL1qC+yFRV2sLxLgrc7fYlSWr3/xtOGo23aDLjCvS+FsMfIpyjPQ= =sf+j -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa265.patch" Content-Disposition: attachment; filename="xsa265.patch" Content-Transfer-Encoding: base64 RnJvbTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNv bT4KU3ViamVjdDogeDg2OiBSZWZpbmUgY2hlY2tzIGluICNEQiBoYW5kbGVy IGZvciBmYXVsdGluZyBjb25kaXRpb25zCgpPbmUgb2YgdGhlIGZpeCBmb3Ig WFNBLTI2MCAoYy9zIDc1ZDY4MjhiYzIgIng4Ni90cmFwczogRml4IGhhbmRs aW5nIG9mICNEQgpleGNlcHRpb25zIGluIGh5cGVydmlzb3IgY29udGV4dCIp IGFkZGVkIHNvbWUgc2FmZXR5IGNoZWNrcyB0byBoZWxwIGF2b2lkCmxpdmVs b2NrcyBvZiAjREIgZmF1bHRzLgoKV2hpbGUgYSBHZW5lcmFsIERldGVjdCAj REIgZXhjZXB0aW9uIGRvZXMgaGF2ZSBmYXVsdCBzZW1hbnRpY3MsIGhhcmR3 YXJlCmNsZWFycyAlZHI3LmdkIG9uIGVudHJ5IHRvIHRoZSBoYW5kbGVyLCBt ZWFuaW5nIHRoYXQgaXQgaXMgYWN0dWFsbHkgc2FmZSB0bwpyZXR1cm4gdG8u ICBGdXJ0aGVybW9yZSwgJWRyNi5nZCBpcyBndWVzdCBjb250cm9sbGVkIGFu ZCBzdGlja3kgKG5ldmVyIGNsZWFyZWQKYnkgaGFyZHdhcmUpLiAgQSBtYWxp Y2lvdXMgUFYgZ3Vlc3QgY2FuIHRoZXJlZm9yZSB0cmlnZ2VyIHRoZSBmYXRh bF90cmFwKCkgYW5kCmNyYXNoIFhlbi4KCkluc3RydWN0aW9uIGJyZWFrcG9p bnRzIGFyZSBtb3JlIHRyaWNreS4gIFRoZSBicmVha3BvaW50IG1hdGNoIGJp dHMgaW4gJWRyNgphcmUgbm90IHN0aWNreSwgYnV0IHRoZSBJbnRlbCBtYW51 YWwgd2FybnMgdGhhdCB0aGV5IG1heSBiZSBzZXQgZm9yCm5vbi1lbmFibGVk IGJyZWFrcG9pbnRzLCBzbyBhZGQgYSBicmVha3BvaW50IGVuYWJsZWQgY2hl Y2suCgpCZXlvbmQgdGhhdCwgYmVjYXVzZSBvZiB0aGUgcmVzdHJpY3Rpb24g b24gdGhlIGxpbmVhciBhZGRyZXNzZXMgUFYgZ3Vlc3RzIGNhbgpzZXQsIGFu ZCB0aGUgZmF1bHQgKHJhdGhlciB0aGFuIHRyYXApIG5hdHVyZSBvZiBpbnN0 cnVjdGlvbiBicmVha3BvaW50cwooaS5lLiBjYW4ndCBiZSBkZWZlcnJlZCBi eSBhIE1vdlNTIHNoYWRvdyksIHRoZXJlIHNob3VsZCBiZSBubyB3YXkgdG8K ZW5jb3VudGVyIGFuIGluc3RydWN0aW9uIGJyZWFrcG9pbnQgaW4gWGVuIGNv bnRleHQuICBIb3dldmVyLCBmb3IgZXh0cmEKcm9idXN0bmVzcywgZGVhbCB3 aXRoIHRoaXMgc2l0dWF0aW9uIGJ5IGNsZWFyaW5nIHRoZSBicmVha3BvaW50 IGNvbmZpZ3VyYXRpb24sCnJhdGhlciB0aGFuIGNyYXNoaW5nLgoKVGhpcyBp cyBYU0EtMjY1CgpTaWduZWQtb2ZmLWJ5OiBBbmRyZXcgQ29vcGVyIDxhbmRy ZXcuY29vcGVyM0BjaXRyaXguY29tPgpSZXZpZXdlZC1ieTogSmFuIEJldWxp Y2ggPGpiZXVsaWNoQHN1c2UuY29tPgoKZGlmZiAtLWdpdCBhL3hlbi9hcmNo L3g4Ni90cmFwcy5jIGIveGVuL2FyY2gveDg2L3RyYXBzLmMKaW5kZXggZTc5 Y2E4OC4uM2UwNWNmMSAxMDA2NDQKLS0tIGEveGVuL2FyY2gveDg2L3RyYXBz LmMKKysrIGIveGVuL2FyY2gveDg2L3RyYXBzLmMKQEAgLTE4MDksNiArMTgw OSwxMyBAQCB2b2lkIGRvX2RlYnVnKHN0cnVjdCBjcHVfdXNlcl9yZWdzICpy ZWdzKQogCiAgICAgaWYgKCAhZ3Vlc3RfbW9kZShyZWdzKSApCiAgICAgewor ICAgICAgICAvKgorICAgICAgICAgKiAhISEgV0FSTklORyAhISEKKyAgICAg ICAgICoKKyAgICAgICAgICogJWRyNiBpcyBtb3N0bHkgZ3Vlc3QgY29udHJv bGxlZCBhdCB0aGlzIHBvaW50LiAgQW55IGRlY3Npb25zIGJhc2UKKyAgICAg ICAgICogb24gaXRzIHZhbHVlIG11c3QgYmUgY3Jvc3NjaGVja2VkIHdpdGgg bm9uLWd1ZXN0IGNvbnRyb2xsZWQgc3RhdGUuCisgICAgICAgICAqLworCiAg ICAgICAgIGlmICggcmVncy0+ZWZsYWdzICYgWDg2X0VGTEFHU19URiApCiAg ICAgICAgIHsKICAgICAgICAgICAgIC8qIEluIFNZU0VOVEVSIGVudHJ5IHBh dGggd2UgY2FuJ3QgemFwIFRGIHVudGlsIEVGTEFHUyBpcyBzYXZlZC4gKi8K QEAgLTE4MzAsMzMgKzE4MzcsNDQgQEAgdm9pZCBkb19kZWJ1ZyhzdHJ1Y3Qg Y3B1X3VzZXJfcmVncyAqcmVncykKICAgICAgICAgICogQ2hlY2sgZm9yIGZh dWx0IGNvbmRpdGlvbnMuICBHZW5lcmFsIERldGVjdCwgYW5kIGluc3RydWN0 aW9uCiAgICAgICAgICAqIGJyZWFrcG9pbnRzIGFyZSBmYXVsdHMgcmF0aGVy IHRoYW4gdHJhcHMsIGF0IHdoaWNoIHBvaW50IGF0dGVtcHRpbmcKICAgICAg ICAgICogdG8gaWdub3JlIGFuZCBjb250aW51ZSB3aWxsIHJlc3VsdCBpbiBh IGxpdmVsb2NrLgorICAgICAgICAgKgorICAgICAgICAgKiBIb3dldmVyLCBv biBlbnRlcmluZyB0aGUgI0RCIGhhbmRsZXIsIGhhcmR3YXJlIGNsZWFycyAl ZHI3LmdkIGZvcgorICAgICAgICAgKiB1cyAoYXMgY29uZmlybWVkIGJ5IHRo ZSBlYXJsaWVyICVkcjYgYWNjZXNzZXMgc3VjY2VlZGluZyksIG1lYW5pbmcK KyAgICAgICAgICogdGhhdCBhIHJlYWwgR2VuZXJhbCBEZXRlY3QgZXhjZXB0 aW9uIGlzIHJlc3RhcnRhYmxlLgorICAgICAgICAgKgorICAgICAgICAgKiBQ ViBndWVzdHMgYXJlIG5vdCBwZXJtaXR0ZWQgdG8gcG9pbnQgJWRyezAuLjN9 IGF0IFhlbiBsaW5lYXIKKyAgICAgICAgICogYWRkcmVzc2VzLCBhbmQgSW5z dHJ1Y3Rpb24gQnJlYWtwb2ludHMgKGJlaW5nIGZhdWx0cykgZG9uJ3QgZ2V0 CisgICAgICAgICAqIGRlbGF5ZWQgYnkgYSBNb3ZTUyBzaGFkb3csIHNvIHdl IHNob3VsZCBuZXZlciBlbmNvdW50ZXIgb25lIGluCisgICAgICAgICAqIGh5 cGVydmlzb3IgY29udGV4dC4KKyAgICAgICAgICoKKyAgICAgICAgICogSWYg aG93ZXZlciB3ZSBkbywgc2FmZXR5IG1lYXN1cmVzIG5lZWQgdG8gYmUgZW5h Y3RlZC4gIFVzZSBhIGJpZworICAgICAgICAgKiBoYW1tZXIgYW5kIGNsZWFy IGFsbCBkZWJ1ZyBzZXR0aW5ncy4KICAgICAgICAgICovCi0gICAgICAgIGlm ICggZHI2ICYgRFJfR0VORVJBTF9ERVRFQ1QgKQotICAgICAgICB7Ci0gICAg ICAgICAgICBwcmludGsoWEVOTE9HX0VSUiAiSGl0IEdlbmVyYWwgRGV0ZWN0 IGluIFhlbiBjb250ZXh0XG4iKTsKLSAgICAgICAgICAgIGZhdGFsX3RyYXAo cmVncywgMCk7Ci0gICAgICAgIH0KLQogICAgICAgICBpZiAoIGRyNiAmIChE Ul9UUkFQMyB8IERSX1RSQVAyIHwgRFJfVFJBUDEgfCBEUl9UUkFQMCkgKQog ICAgICAgICB7Ci0gICAgICAgICAgICB1bnNpZ25lZCBpbnQgYnAsIGRyNyA9 IHJlYWRfZGVidWdyZWcoNykgPj4gRFJfQ09OVFJPTF9TSElGVDsKKyAgICAg ICAgICAgIHVuc2lnbmVkIGludCBicCwgZHI3ID0gcmVhZF9kZWJ1Z3JlZyg3 KTsKIAogICAgICAgICAgICAgZm9yICggYnAgPSAwOyBicCA8IDQ7ICsrYnAg KQogICAgICAgICAgICAgewogICAgICAgICAgICAgICAgIGlmICggKGRyNiAm ICgxdSA8PCBicCkpICYmIC8qIEJyZWFrcG9pbnQgdHJpZ2dlcmVkPyAqLwot ICAgICAgICAgICAgICAgICAgICAgKChkcjcgJiAoM3UgPDwgKGJwICogRFJf Q09OVFJPTF9TSVpFKSkpID09IDApIC8qIEluc24/ICovICkKKyAgICAgICAg ICAgICAgICAgICAgIChkcjcgJiAoM3UgPDwgKGJwICogRFJfRU5BQkxFX1NJ WkUpKSkgJiYgLyogRW5hYmxlZD8gKi8KKyAgICAgICAgICAgICAgICAgICAg ICgoZHI3ICYgKDN1IDw8ICgoYnAgKiBEUl9DT05UUk9MX1NJWkUpICsgLyog SW5zbj8gKi8KKyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICBEUl9DT05UUk9MX1NISUZUKSkpID09IERSX1JXX0VYRUNVVEUpICkKICAg ICAgICAgICAgICAgICB7CisgICAgICAgICAgICAgICAgICAgIEFTU0VSVF9V TlJFQUNIQUJMRSgpOworCiAgICAgICAgICAgICAgICAgICAgIHByaW50ayhY RU5MT0dfRVJSCiAgICAgICAgICAgICAgICAgICAgICAgICAgICAiSGl0IGlu c3RydWN0aW9uIGJyZWFrcG9pbnQgaW4gWGVuIGNvbnRleHRcbiIpOwotICAg ICAgICAgICAgICAgICAgICBmYXRhbF90cmFwKHJlZ3MsIDApOworICAgICAg ICAgICAgICAgICAgICB3cml0ZV9kZWJ1Z3JlZyg3LCAwKTsKKyAgICAgICAg ICAgICAgICAgICAgYnJlYWs7CiAgICAgICAgICAgICAgICAgfQogICAgICAg ICAgICAgfQogICAgICAgICB9CiAKICAgICAgICAgLyoKLSAgICAgICAgICog V2hhdGV2ZXIgY2F1c2VkIHRoaXMgI0RCIHNob3VsZCBiZSBhIHRyYXAuICBO b3RlIGl0IGFuZCBjb250aW51ZS4KLSAgICAgICAgICogR3Vlc3RzIGNhbiB0 cmlnZ2VyIHRoaXMgaW4gY2VydGFpbiBjb3JuZXIgY2FzZXMsIHNvIGVuc3Vy ZSB0aGUKLSAgICAgICAgICogbWVzc2FnZSBpcyByYXRlbGltaXRlZC4KKyAg ICAgICAgICogV2hhdGV2ZXIgY2F1c2VkIHRoaXMgI0RCIHNob3VsZCBiZSBy ZXN0YXJ0YWJsZSBieSB0aGlzIHBvaW50LiAgTm90ZQorICAgICAgICAgKiBp dCBhbmQgY29udGludWUuICBHdWVzdHMgY2FuIHRyaWdnZXIgdGhpcyBpbiBj ZXJ0YWluIGNvcm5lciBjYXNlcywKKyAgICAgICAgICogc28gZW5zdXJlIHRo ZSBtZXNzYWdlIGlzIHJhdGVsaW1pdGVkLgogICAgICAgICAgKi8KICAgICAg ICAgZ3ByaW50ayhYRU5MT0dfV0FSTklORywKICAgICAgICAgICAgICAgICAi SGl0ICNEQiBpbiBYZW4gY29udGV4dDogJTA0eDolcCBbJXBzXSwgc3RrICUw NHg6JXAsIGRyNiAlbHhcbiIsCg== --=separator Content-Type: application/octet-stream; name="xsa265-4.7.patch" Content-Disposition: attachment; filename="xsa265-4.7.patch" Content-Transfer-Encoding: base64 RnJvbTogQW5kcmV3IENvb3BlciA8YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNv bT4KU3ViamVjdDogeDg2OiBSZWZpbmUgY2hlY2tzIGluICNEQiBoYW5kbGVy IGZvciBmYXVsdGluZyBjb25kaXRpb25zCgpPbmUgb2YgdGhlIGZpeCBmb3Ig WFNBLTI2MCAoYy9zIDc1ZDY4MjhiYzIgIng4Ni90cmFwczogRml4IGhhbmRs aW5nIG9mICNEQgpleGNlcHRpb25zIGluIGh5cGVydmlzb3IgY29udGV4dCIp IGFkZGVkIHNvbWUgc2FmZXR5IGNoZWNrcyB0byBoZWxwIGF2b2lkCmxpdmVs b2NrcyBvZiAjREIgZmF1bHRzLgoKV2hpbGUgYSBHZW5lcmFsIERldGVjdCAj REIgZXhjZXB0aW9uIGRvZXMgaGF2ZSBmYXVsdCBzZW1hbnRpY3MsIGhhcmR3 YXJlCmNsZWFycyAlZHI3LmdkIG9uIGVudHJ5IHRvIHRoZSBoYW5kbGVyLCBt ZWFuaW5nIHRoYXQgaXQgaXMgYWN0dWFsbHkgc2FmZSB0bwpyZXR1cm4gdG8u ICBGdXJ0aGVybW9yZSwgJWRyNi5nZCBpcyBndWVzdCBjb250cm9sbGVkIGFu ZCBzdGlja3kgKG5ldmVyIGNsZWFyZWQKYnkgaGFyZHdhcmUpLiAgQSBtYWxp Y2lvdXMgUFYgZ3Vlc3QgY2FuIHRoZXJlZm9yZSB0cmlnZ2VyIHRoZSBmYXRh bF90cmFwKCkgYW5kCmNyYXNoIFhlbi4KCkluc3RydWN0aW9uIGJyZWFrcG9p bnRzIGFyZSBtb3JlIHRyaWNreS4gIFRoZSBicmVha3BvaW50IG1hdGNoIGJp dHMgaW4gJWRyNgphcmUgbm90IHN0aWNreSwgYnV0IHRoZSBJbnRlbCBtYW51 YWwgd2FybnMgdGhhdCB0aGV5IG1heSBiZSBzZXQgZm9yCm5vbi1lbmFibGVk IGJyZWFrcG9pbnRzLCBzbyBhZGQgYSBicmVha3BvaW50IGVuYWJsZWQgY2hl Y2suCgpCZXlvbmQgdGhhdCwgYmVjYXVzZSBvZiB0aGUgcmVzdHJpY3Rpb24g b24gdGhlIGxpbmVhciBhZGRyZXNzZXMgUFYgZ3Vlc3RzIGNhbgpzZXQsIGFu ZCB0aGUgZmF1bHQgKHJhdGhlciB0aGFuIHRyYXApIG5hdHVyZSBvZiBpbnN0 cnVjdGlvbiBicmVha3BvaW50cwooaS5lLiBjYW4ndCBiZSBkZWZlcnJlZCBi eSBhIE1vdlNTIHNoYWRvdyksIHRoZXJlIHNob3VsZCBiZSBubyB3YXkgdG8K ZW5jb3VudGVyIGFuIGluc3RydWN0aW9uIGJyZWFrcG9pbnQgaW4gWGVuIGNv bnRleHQuICBIb3dldmVyLCBmb3IgZXh0cmEKcm9idXN0bmVzcywgZGVhbCB3 aXRoIHRoaXMgc2l0dWF0aW9uIGJ5IGNsZWFyaW5nIHRoZSBicmVha3BvaW50 IGNvbmZpZ3VyYXRpb24sCnJhdGhlciB0aGFuIGNyYXNoaW5nLgoKVGhpcyBp cyBYU0EtMjY1CgpTaWduZWQtb2ZmLWJ5OiBBbmRyZXcgQ29vcGVyIDxhbmRy ZXcuY29vcGVyM0BjaXRyaXguY29tPgpSZXZpZXdlZC1ieTogSmFuIEJldWxp Y2ggPGpiZXVsaWNoQHN1c2UuY29tPgoKZGlmZiAtLWdpdCBhL3hlbi9hcmNo L3g4Ni90cmFwcy5jIGIveGVuL2FyY2gveDg2L3RyYXBzLmMKaW5kZXggNzMx ZDA1NC4uZDUyOGJlOSAxMDA2NDQKLS0tIGEveGVuL2FyY2gveDg2L3RyYXBz LmMKKysrIGIveGVuL2FyY2gveDg2L3RyYXBzLmMKQEAgLTM4NzIsNiArMzg3 MiwxMyBAQCB2b2lkIGRvX2RlYnVnKHN0cnVjdCBjcHVfdXNlcl9yZWdzICpy ZWdzKQogCiAgICAgaWYgKCAhZ3Vlc3RfbW9kZShyZWdzKSApCiAgICAgewor ICAgICAgICAvKgorICAgICAgICAgKiAhISEgV0FSTklORyAhISEKKyAgICAg ICAgICoKKyAgICAgICAgICogJWRyNiBpcyBtb3N0bHkgZ3Vlc3QgY29udHJv bGxlZCBhdCB0aGlzIHBvaW50LiAgQW55IGRlY3Npb25zIGJhc2UKKyAgICAg ICAgICogb24gaXRzIHZhbHVlIG11c3QgYmUgY3Jvc3NjaGVja2VkIHdpdGgg bm9uLWd1ZXN0IGNvbnRyb2xsZWQgc3RhdGUuCisgICAgICAgICAqLworCiAg ICAgICAgIGlmICggcmVncy0+ZWZsYWdzICYgWDg2X0VGTEFHU19URiApCiAg ICAgICAgIHsKICAgICAgICAgICAgIC8qIEluIFNZU0VOVEVSIGVudHJ5IHBh dGggd2UgY2FuJ3QgemFwIFRGIHVudGlsIEVGTEFHUyBpcyBzYXZlZC4gKi8K QEAgLTM4OTMsMzMgKzM5MDAsNDQgQEAgdm9pZCBkb19kZWJ1ZyhzdHJ1Y3Qg Y3B1X3VzZXJfcmVncyAqcmVncykKICAgICAgICAgICogQ2hlY2sgZm9yIGZh dWx0IGNvbmRpdGlvbnMuICBHZW5lcmFsIERldGVjdCwgYW5kIGluc3RydWN0 aW9uCiAgICAgICAgICAqIGJyZWFrcG9pbnRzIGFyZSBmYXVsdHMgcmF0aGVy IHRoYW4gdHJhcHMsIGF0IHdoaWNoIHBvaW50IGF0dGVtcHRpbmcKICAgICAg ICAgICogdG8gaWdub3JlIGFuZCBjb250aW51ZSB3aWxsIHJlc3VsdCBpbiBh IGxpdmVsb2NrLgorICAgICAgICAgKgorICAgICAgICAgKiBIb3dldmVyLCBv biBlbnRlcmluZyB0aGUgI0RCIGhhbmRsZXIsIGhhcmR3YXJlIGNsZWFycyAl ZHI3LmdkIGZvcgorICAgICAgICAgKiB1cyAoYXMgY29uZmlybWVkIGJ5IHRo ZSBlYXJsaWVyICVkcjYgYWNjZXNzZXMgc3VjY2VlZGluZyksIG1lYW5pbmcK KyAgICAgICAgICogdGhhdCBhIHJlYWwgR2VuZXJhbCBEZXRlY3QgZXhjZXB0 aW9uIGlzIHJlc3RhcnRhYmxlLgorICAgICAgICAgKgorICAgICAgICAgKiBQ ViBndWVzdHMgYXJlIG5vdCBwZXJtaXR0ZWQgdG8gcG9pbnQgJWRyezAuLjN9 IGF0IFhlbiBsaW5lYXIKKyAgICAgICAgICogYWRkcmVzc2VzLCBhbmQgSW5z dHJ1Y3Rpb24gQnJlYWtwb2ludHMgKGJlaW5nIGZhdWx0cykgZG9uJ3QgZ2V0 CisgICAgICAgICAqIGRlbGF5ZWQgYnkgYSBNb3ZTUyBzaGFkb3csIHNvIHdl IHNob3VsZCBuZXZlciBlbmNvdW50ZXIgb25lIGluCisgICAgICAgICAqIGh5 cGVydmlzb3IgY29udGV4dC4KKyAgICAgICAgICoKKyAgICAgICAgICogSWYg aG93ZXZlciB3ZSBkbywgc2FmZXR5IG1lYXN1cmVzIG5lZWQgdG8gYmUgZW5h Y3RlZC4gIFVzZSBhIGJpZworICAgICAgICAgKiBoYW1tZXIgYW5kIGNsZWFy IGFsbCBkZWJ1ZyBzZXR0aW5ncy4KICAgICAgICAgICovCi0gICAgICAgIGlm ICggZHI2ICYgRFJfR0VORVJBTF9ERVRFQ1QgKQotICAgICAgICB7Ci0gICAg ICAgICAgICBwcmludGsoWEVOTE9HX0VSUiAiSGl0IEdlbmVyYWwgRGV0ZWN0 IGluIFhlbiBjb250ZXh0XG4iKTsKLSAgICAgICAgICAgIGZhdGFsX3RyYXAo cmVncyk7Ci0gICAgICAgIH0KLQogICAgICAgICBpZiAoIGRyNiAmIChEUl9U UkFQMyB8IERSX1RSQVAyIHwgRFJfVFJBUDEgfCBEUl9UUkFQMCkgKQogICAg ICAgICB7Ci0gICAgICAgICAgICB1bnNpZ25lZCBpbnQgYnAsIGRyNyA9IHJl YWRfZGVidWdyZWcoNykgPj4gRFJfQ09OVFJPTF9TSElGVDsKKyAgICAgICAg ICAgIHVuc2lnbmVkIGludCBicCwgZHI3ID0gcmVhZF9kZWJ1Z3JlZyg3KTsK IAogICAgICAgICAgICAgZm9yICggYnAgPSAwOyBicCA8IDQ7ICsrYnAgKQog ICAgICAgICAgICAgewogICAgICAgICAgICAgICAgIGlmICggKGRyNiAmICgx dSA8PCBicCkpICYmIC8qIEJyZWFrcG9pbnQgdHJpZ2dlcmVkPyAqLwotICAg ICAgICAgICAgICAgICAgICAgKChkcjcgJiAoM3UgPDwgKGJwICogRFJfQ09O VFJPTF9TSVpFKSkpID09IDApIC8qIEluc24/ICovICkKKyAgICAgICAgICAg ICAgICAgICAgIChkcjcgJiAoM3UgPDwgKGJwICogRFJfRU5BQkxFX1NJWkUp KSkgJiYgLyogRW5hYmxlZD8gKi8KKyAgICAgICAgICAgICAgICAgICAgICgo ZHI3ICYgKDN1IDw8ICgoYnAgKiBEUl9DT05UUk9MX1NJWkUpICsgLyogSW5z bj8gKi8KKyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBE Ul9DT05UUk9MX1NISUZUKSkpID09IERSX1JXX0VYRUNVVEUpICkKICAgICAg ICAgICAgICAgICB7CisgICAgICAgICAgICAgICAgICAgIEFTU0VSVF9VTlJF QUNIQUJMRSgpOworCiAgICAgICAgICAgICAgICAgICAgIHByaW50ayhYRU5M T0dfRVJSCiAgICAgICAgICAgICAgICAgICAgICAgICAgICAiSGl0IGluc3Ry dWN0aW9uIGJyZWFrcG9pbnQgaW4gWGVuIGNvbnRleHRcbiIpOwotICAgICAg ICAgICAgICAgICAgICBmYXRhbF90cmFwKHJlZ3MpOworICAgICAgICAgICAg ICAgICAgICB3cml0ZV9kZWJ1Z3JlZyg3LCAwKTsKKyAgICAgICAgICAgICAg ICAgICAgYnJlYWs7CiAgICAgICAgICAgICAgICAgfQogICAgICAgICAgICAg fQogICAgICAgICB9CiAKICAgICAgICAgLyoKLSAgICAgICAgICogV2hhdGV2 ZXIgY2F1c2VkIHRoaXMgI0RCIHNob3VsZCBiZSBhIHRyYXAuICBOb3RlIGl0 IGFuZCBjb250aW51ZS4KLSAgICAgICAgICogR3Vlc3RzIGNhbiB0cmlnZ2Vy IHRoaXMgaW4gY2VydGFpbiBjb3JuZXIgY2FzZXMsIHNvIGVuc3VyZSB0aGUK LSAgICAgICAgICogbWVzc2FnZSBpcyByYXRlbGltaXRlZC4KKyAgICAgICAg ICogV2hhdGV2ZXIgY2F1c2VkIHRoaXMgI0RCIHNob3VsZCBiZSByZXN0YXJ0 YWJsZSBieSB0aGlzIHBvaW50LiAgTm90ZQorICAgICAgICAgKiBpdCBhbmQg Y29udGludWUuICBHdWVzdHMgY2FuIHRyaWdnZXIgdGhpcyBpbiBjZXJ0YWlu IGNvcm5lciBjYXNlcywKKyAgICAgICAgICogc28gZW5zdXJlIHRoZSBtZXNz YWdlIGlzIHJhdGVsaW1pdGVkLgogICAgICAgICAgKi8KICAgICAgICAgZ3By aW50ayhYRU5MT0dfV0FSTklORywKICAgICAgICAgICAgICAgICAiSGl0ICNE QiBpbiBYZW4gY29udGV4dDogJTA0eDolcCBbJXBzXSwgc3RrICUwNHg6JXAs IGRyNiAlbHhcbiIsCg== --=separator Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KWGVuLWFubm91 bmNlIG1haWxpbmcgbGlzdApYZW4tYW5ub3VuY2VAbGlzdHMueGVucHJvamVjdC5vcmcKaHR0cHM6 Ly9saXN0cy54ZW5wcm9qZWN0Lm9yZy9tYWlsbWFuL2xpc3RpbmZvL3hlbi1hbm5vdW5jZQ== --=separator--