Re: [Qemu-devel] [PATCH] sdl2: Support all virtio-gpu formats

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] [PATCH] sdl2: Support all virtio-gpu formats

From:	Max Reitz
Subject:	Re: [Qemu-devel] [PATCH] sdl2: Support all virtio-gpu formats
Date:	Wed, 10 Oct 2018 19:35:06 +0200
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.0

On 10.10.18 12:10, Gerd Hoffmann wrote:
> On Mon, Oct 08, 2018 at 08:50:13PM +0200, Max Reitz wrote:
>> There are some 2D resource formats that can be used through virtio-gpu,
> 
> Ahem, not really.  XRGB is the only one which works in practice, and
> virtio-gpu kms driver will stop advertising anything else soon (patches
> should land upstream with the next merge window).

OK, if virtio-gpu didn't support anything else, that'd be a fix, too.
But it sounds like you're talking about the Linux driver, I'm not.

This is not about Linux applications being able to abuse the Linux
driver to crash the VM, this is about malicious drivers (not necessarily
Linux drivers).

>> Add these formats in the switch converting pixman to SDL format
>> constants so a guest cannot crash the VM by triggering the
>> g_assert_not_reached() with an unsupported format.
> 
> Do you have a reproducer for that?

I have attached two RISC-V kernels, one (kernel-rgbx) setting
VIRTIO_GPU_FORMAT_R8G8B8X8_UNORM, the other (kernel-bgra) setting
VIRTIO_GPU_FORMAT_B8G8R8A8_UNORM.  Both crash qemu:

$ $QEMU/build/riscv64-softmmu/qemu-system-riscv64 -kernel kernel-rgbx \
    -serial stdio -M virt -device virtio-gpu-device
[platform-virt] Virt platform detected
[virtio-gpu] Found device @0x10008000
[virtio-gpu] Scanout 0: 0x0:1024x768
**
ERROR:$QEMU/ui/sdl2-2d.c:114:sdl2_2d_switch: code should not be reached
[1]    7151 abort (core dumped)

So this is not about a misbehaving Linux driver but about an own driver.
 Of course, if you can insert kernel code, there's noone stopping you
from hitting that assertion with Linux, too.

> There is sdl2_2d_check_format() which reports the supported formats.
> If we hit sdl2_2d_switch() with a format not whitelisted by
> sdl2_2d_check_format() we have a bug somewhere in qemu ...

I suppose the other solution would be for virtio_gpu_set_scanout() to
check whether the resource's format can actually be used for that
display.  Or in virtio_gpu_resource_create_2d(), I don't know whether
it's possible to use resources in other formats at all.

Max

signature.asc
Description: OpenPGP digital signature

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-devel] [PATCH] sdl2: Support all virtio-gpu formats, Max Reitz, 2018/10/08
- Re: [Qemu-devel] [PATCH] sdl2: Support all virtio-gpu formats, Max Reitz, 2018/10/08
- Re: [Qemu-devel] [PATCH] sdl2: Support all virtio-gpu formats, Gerd Hoffmann, 2018/10/10
  - Re: [Qemu-devel] [PATCH] sdl2: Support all virtio-gpu formats, Max Reitz <=
    - Re: [Qemu-devel] [PATCH] sdl2: Support all virtio-gpu formats, Max Reitz, 2018/10/10
    - Re: [Qemu-devel] [PATCH] sdl2: Support all virtio-gpu formats, Gerd Hoffmann, 2018/10/11
- Re: [Qemu-devel] [PATCH] sdl2: Support all virtio-gpu formats, Gerd Hoffmann, 2018/10/12
  - Re: [Qemu-devel] [PATCH] sdl2: Support all virtio-gpu formats, Max Reitz, 2018/10/12

Prev by Date: Re: [Qemu-devel] [PATCH v5 0/5] Connect a PCIe host and graphics support to RISC-V
Next by Date: Re: [Qemu-devel] [PATCH v1 0/5] Misc RISC-V patches
Previous by thread: Re: [Qemu-devel] [PATCH] sdl2: Support all virtio-gpu formats
Next by thread: Re: [Qemu-devel] [PATCH] sdl2: Support all virtio-gpu formats
Index(es):
- Date
- Thread