[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-devel] [RFC V6 15/33] qcow2: Load and save deduplication table
|
From: |
Stefan Hajnoczi |
|
Subject: |
Re: [Qemu-devel] [RFC V6 15/33] qcow2: Load and save deduplication table header extension. |
|
Date: |
Thu, 7 Feb 2013 10:57:23 +0100 |
|
User-agent: |
Mutt/1.5.21 (2010-09-15) |
On Wed, Feb 06, 2013 at 01:31:48PM +0100, Benoît Canet wrote:
> @@ -148,6 +158,19 @@ static int qcow2_read_extensions(BlockDriverState *bs,
> uint64_t start_offset,
> }
> break;
>
> + case QCOW2_EXT_MAGIC_DEDUP_TABLE:
> + ret = bdrv_pread(bs->file, offset,
> + &dedup_table_extension, ext.len);
Buffer overflow if ext.len > sizeof(dedup_table_extension). Please
check ext.len before using it.
> + if (ret < 0) {
> + return ret;
> + }
> + s->dedup_table_offset =
> + be64_to_cpu(dedup_table_extension.offset);
> + s->dedup_table_size =
> + be32_to_cpu(dedup_table_extension.size);
> + s->dedup_hash_algo = dedup_table_extension.hash_algo;
Input validation for these fields (especially table size)?
- [Qemu-devel] [RFC V6 06/33] qcow2: Create a way to link to l2 tables when deduplicating., (continued)
- [Qemu-devel] [RFC V6 06/33] qcow2: Create a way to link to l2 tables when deduplicating., Benoît Canet, 2013/02/06
- [Qemu-devel] [RFC V6 05/33] qcow2: Make update_refcount public., Benoît Canet, 2013/02/06
- [Qemu-devel] [RFC V6 11/33] qcow2: Add qcow2_dedup_grow_table and use it., Benoît Canet, 2013/02/06
- [Qemu-devel] [RFC V6 12/33] qcow2: Makes qcow2_alloc_cluster_link_l2 mark to deduplicate clusters., Benoît Canet, 2013/02/06
- [Qemu-devel] [RFC V6 17/33] qcow2-cache: Allow to choose table size at creation., Benoît Canet, 2013/02/06
- [Qemu-devel] [RFC V6 15/33] qcow2: Load and save deduplication table header extension., Benoît Canet, 2013/02/06
- Re: [Qemu-devel] [RFC V6 15/33] qcow2: Load and save deduplication table header extension.,
Stefan Hajnoczi <=
- [Qemu-devel] [RFC V6 18/33] qcow2: Extract qcow2_add_feature and qcow2_remove_feature., Benoît Canet, 2013/02/06
- [Qemu-devel] [RFC V6 16/33] qcow2: Extract qcow2_do_table_init., Benoît Canet, 2013/02/06
- [Qemu-devel] [RFC V6 20/33] qcow2: Add a deduplication boolean to update_refcount., Benoît Canet, 2013/02/06
- [Qemu-devel] [RFC V6 21/33] qcow2: Drop hash for a given cluster when dedup makes refcount > 2^16/2., Benoît Canet, 2013/02/06
- [Qemu-devel] [RFC V6 22/33] qcow2: Remove hash when cluster is deleted., Benoît Canet, 2013/02/06