Re: [Qemu-devel] [PATCH v2 00/20] block: Handle failure for potentially

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] [PATCH v2 00/20] block: Handle failure for potentially

From:	Markus Armbruster
Subject:	Re: [Qemu-devel] [PATCH v2 00/20] block: Handle failure for potentially large allocations
Date:	Fri, 30 May 2014 13:14:24 +0200
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/24.3 (gnu/linux)

Kevin Wolf <address@hidden> writes:

> A not too small part of the recent CVEs were DoS scenarios by letting
> qemu abort with too large memory allocations. We generally "fixed" these
> cases by setting some limits on values read from image files that
> influence the size of allocations.

Just double-checking: do these limits ensure the size calculations in
arguments of g_malloc() etc. can't overflow?

> Because we still need to allow reading large images, this works only to
> a certain degree and we still can get fairly large allocations, which
> are not unthinkable to fail on some machines.
>
> This series converts potentially large allocations to g_try_malloc() and
> friends and handles failure gracefully e.g. by returning -ENOMEM. This
> may cause hot-plug of a new disk or individual requests to fail, but the
> VM as a whole can keep running.

I guess the resulting error paths are untested.  Just sayin', I'm not
asking you to test them.

[...]

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Qemu-devel] [PATCH v2 12/20] qed: Handle failure for potentially large allocations, (continued)
- [Qemu-devel] [PATCH v2 13/20] raw-posix: Handle failure for potentially large allocations, Kevin Wolf, 2014/05/28
- [Qemu-devel] [PATCH v2 14/20] raw-win32: Handle failure for potentially large allocations, Kevin Wolf, 2014/05/28
- [Qemu-devel] [PATCH v2 15/20] rbd: Handle failure for potentially large allocations, Kevin Wolf, 2014/05/28
  - Re: [Qemu-devel] [PATCH v2 15/20] rbd: Handle failure for potentially large allocations, Markus Armbruster, 2014/05/30
- [Qemu-devel] [PATCH v2 16/20] vdi: Handle failure for potentially large allocations, Kevin Wolf, 2014/05/28
- [Qemu-devel] [PATCH v2 17/20] vhdx: Handle failure for potentially large allocations, Kevin Wolf, 2014/05/28
- [Qemu-devel] [PATCH v2 18/20] vmdk: Handle failure for potentially large allocations, Kevin Wolf, 2014/05/28
- [Qemu-devel] [PATCH v2 19/20] vpc: Handle failure for potentially large allocations, Kevin Wolf, 2014/05/28
- [Qemu-devel] [PATCH v2 20/20] mirror: Handle failure for potentially large allocations, Kevin Wolf, 2014/05/28
- Re: [Qemu-devel] [PATCH v2 00/20] block: Handle failure for potentially large allocations, Markus Armbruster <=
  - Re: [Qemu-devel] [PATCH v2 00/20] block: Handle failure for potentially large allocations, Kevin Wolf, 2014/05/30

Prev by Date: Re: [Qemu-devel] [PATCH] target-arm: Prepare cpreg writefns/readfns for EL3/SecExt
Next by Date: [Qemu-devel] [PATCH v3 0/8] virtio-blk: use alias properties in transport devices
Previous by thread: [Qemu-devel] [PATCH v2 20/20] mirror: Handle failure for potentially large allocations
Next by thread: Re: [Qemu-devel] [PATCH v2 00/20] block: Handle failure for potentially large allocations
Index(es):
- Date
- Thread