qemu-block
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-block] [Qemu-devel] [PATCH 00/10] Remove deprecated load_image


From: Peter Maydell
Subject: Re: [Qemu-block] [Qemu-devel] [PATCH 00/10] Remove deprecated load_image() function
Date: Fri, 14 Dec 2018 11:30:01 +0000

On Fri, 30 Nov 2018 at 15:20, Peter Maydell <address@hidden> wrote:
>
> This patchset removes the load_image() function, which we noted
> in a comment as being deprecated in 2008 but were still using
> in a handful of places. All the use cases are bugs of some
> kind or another, either straightforward "no length checking
> at all" or "doesn't cope with the file getting larger between
> get_image_size()'s length check and the read in load_image()".
> IRC consensus was that this doesn't rise to the level of a
> security issue since the images being loaded should either
> be trusted or the management layer app should be fencing things
> off to ensure they don't change underfoot.
>
> The replacement is either:
>  * g_file_get_contents(), in places where we were previously
>    explicitly g_malloc()ing a buffer to load the image
>  * load_image_size(), in places where we load the image
>    into a pre-existing buffer, MemoryRegion, etc
>
> The final patch in the series adds a documentation comment
> for load_image_size().

I'm putting together a pullreq with some of the miscellaneous
cleanup patches I've sent out during codefreeze. I'm going to
add this series to it, with this squashed into patch 5:

@@ -982,7 +982,7 @@ static void load_linux(PCMachineState *pcms,
         if (initrd_size >= initrd_max) {
             fprintf(stderr, "qemu: initrd is too large, cannot support."
                     "(max: %"PRIu32", need %"PRId64")\n",
-                    initrd_max, initrd_size);
+                    initrd_max, (uint64_t)initrd_size);
             exit(1);
         }

and the commit message tweaks Eric requested to mention
when error-checking was added.

thanks
-- PMM



reply via email to

[Prev in Thread] Current Thread [Next in Thread]