cloud-hypervisor

History

Demi Marie Obenour fdc19ad85e misc: Mark memory region APIs as unsafe To ensure that struct sizes are the same on 32-bit and 64-bit, various kernel APIs use __u64 (Rust u64) to represent userspace pointers. Userspace is expected to cast pointers to __u64 before passing them to the kernel, and cast kernel-provided __u64 to a pointer before using them. However, various safe APIs in Cloud Hypervisor took caller-provided u64 values and passed them to syscalls that treat them as userspace addresses. Therefore, passing bad u64 values would cause memory disclosure or corruption. The memory region APIs are one example of this, so mark them as unsafe. Signed-off-by: Demi Marie Obenour <demiobenour@gmail.com>	2025-11-22 10:24:13 +00:00
..
src	misc: Mark memory region APIs as unsafe	2025-11-22 10:24:13 +00:00
Cargo.toml	misc: improve developer experience of cargo clippy	2025-11-17 16:59:49 +00:00

Demi Marie Obenour fdc19ad85e misc: Mark memory region APIs as unsafe

To ensure that struct sizes are the same on 32-bit and 64-bit, various
kernel APIs use __u64 (Rust u64) to represent userspace pointers.
Userspace is expected to cast pointers to __u64 before passing them to
the kernel, and cast kernel-provided __u64 to a pointer before using
them.  However, various safe APIs in Cloud Hypervisor took
caller-provided u64 values and passed them to syscalls that treat them
as userspace addresses.  Therefore, passing bad u64 values would cause
memory disclosure or corruption.  The memory region APIs are one example
of this, so mark them as unsafe.

Signed-off-by: Demi Marie Obenour <demiobenour@gmail.com>

2025-11-22 10:24:13 +00:00

src

misc: Mark memory region APIs as unsafe

2025-11-22 10:24:13 +00:00

Cargo.toml

misc: improve developer experience of cargo clippy

2025-11-17 16:59:49 +00:00