linux/include/uapi/xen
Paul Durrant 4610d240d6 xen/privcmd: add IOCTL_PRIVCMD_RESTRICT
The purpose if this ioctl is to allow a user of privcmd to restrict its
operation such that it will no longer service arbitrary hypercalls via
IOCTL_PRIVCMD_HYPERCALL, and will check for a matching domid when
servicing IOCTL_PRIVCMD_DM_OP or IOCTL_PRIVCMD_MMAP*. The aim of this
is to limit the attack surface for a compromised device model.

Signed-off-by: Paul Durrant <paul.durrant@citrix.com>
Signed-off-by: Boris Ostrovsky <boris.ostrovsky@oracle.com>
2017-02-14 15:14:59 -05:00
..
Kbuild xen: install xen/gntdev.h and xen/gntalloc.h 2014-02-11 10:12:36 -05:00
evtchn.h xen/evtchn: add IOCTL_EVTCHN_RESTRICT 2016-07-25 10:59:31 +01:00
gntalloc.h xen/gntalloc: use types from linux/types.h in userspace headers 2015-10-23 14:20:44 +01:00
gntdev.h xen/gntdev: add ioctl for grant copy 2016-01-07 13:21:53 +00:00
privcmd.h xen/privcmd: add IOCTL_PRIVCMD_RESTRICT 2017-02-14 15:14:59 -05:00