Re: [PATCH v2 3/3] xen/blkfront: don't trust the backend response data blindly

From: Juergen Gross
Date: Fri Jul 30 2021 - 06:31:12 EST

Next message: Boqun Feng: "Re: [PATCH] lockdep/selftests: Fix duplicate included locking-selftest-softirq.h"
Previous message: Jiapeng Chong: "[PATCH] xtensa: ISS: Fix warning comparing pointer to 0"
In reply to: Juergen Gross: "Re: [PATCH v2 3/3] xen/blkfront: don't trust the backend response data blindly"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 30.07.21 12:08, Juergen Gross wrote:

On 08.07.21 14:43, Juergen Gross wrote:

Today blkfront will trust the backend to send only sane response data.
In order to avoid privilege escalations or crashes in case of malicious
backends verify the data to be within expected limits. Especially make
sure that the response always references an outstanding request.

Introduce a new state of the ring BLKIF_STATE_ERROR which will be
switched to in case an inconsistency is being detected. Recovering from
this state is possible only via removing and adding the virtual device
again (e.g. via a suspend/resume cycle).

Signed-off-by: Juergen Gross <jgross@xxxxxxxx>

Any comments for this patch?

Please ignore this request for comments, I already got some.

Juergen

Attachment: OpenPGP_0xB0DE9DD628BF132F.asc
Description: OpenPGP public key

Attachment: OpenPGP_signature
Description: OpenPGP digital signature

Next message: Boqun Feng: "Re: [PATCH] lockdep/selftests: Fix duplicate included locking-selftest-softirq.h"
Previous message: Jiapeng Chong: "[PATCH] xtensa: ISS: Fix warning comparing pointer to 0"
In reply to: Juergen Gross: "Re: [PATCH v2 3/3] xen/blkfront: don't trust the backend response data blindly"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]