Re: [PATCH v3] hv_netvsc: Add validation for untrusted Hyper-V values
From: David Miller
Date: Thu Sep 17 2020 - 19:21:55 EST
From: "Andrea Parri (Microsoft)" <parri.andrea@xxxxxxxxx>
Date: Wed, 16 Sep 2020 11:47:27 +0200
> From: Andres Beltran <lkmlabelt@xxxxxxxxx>
>
> For additional robustness in the face of Hyper-V errors or malicious
> behavior, validate all values that originate from packets that Hyper-V
> has sent to the guest in the host-to-guest ring buffer. Ensure that
> invalid values cannot cause indexing off the end of an array, or
> subvert an existing validation via integer overflow. Ensure that
> outgoing packets do not have any leftover guest memory that has not
> been zeroed out.
>
> Signed-off-by: Andres Beltran <lkmlabelt@xxxxxxxxx>
> Co-developed-by: Andrea Parri (Microsoft) <parri.andrea@xxxxxxxxx>
> Signed-off-by: Andrea Parri (Microsoft) <parri.andrea@xxxxxxxxx>
Applied, thank you.