|
From: | Eric Blake |
Subject: | Re: [Qemu-devel] [PATCH] migration: fix crash in when incoming client channel setup fails |
Date: | Tue, 19 Jun 2018 11:31:17 -0500 |
User-agent: | Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.8.0 |
On 06/19/2018 10:58 AM, Daniel P. Berrangé wrote:
So, what happens with this fix, does the destination exit cleanly, or stay to accept another connection or what?It stays around and can accept another connection, which is actually quite desirable, as it limits impact of a malicious client from DOS'ing the genuine client by racing to connect first.
Compare to NBD which had a CVE created for the DOS aspect of a malicious client connecting first; see commit 0c9390d9, CVE-2017-9524.
-- Eric Blake, Principal Software Engineer Red Hat, Inc. +1-919-301-3266 Virtualization: qemu.org | libvirt.org
[Prev in Thread] | Current Thread | [Next in Thread] |