Re: [PATCH v2 2/2] pci: ensure configuration access is within bounds

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v2 2/2] pci: ensure configuration access is within bounds

From:	Michael S. Tsirkin
Subject:	Re: [PATCH v2 2/2] pci: ensure configuration access is within bounds
Date:	Thu, 4 Jun 2020 05:44:15 -0400

On Thu, Jun 04, 2020 at 07:14:00AM +0200, Gerd Hoffmann wrote:
>   Hi,
> 
> > > +    assert(address + len <= pci_config_size(d));
> > 
> > Does this allow guest now to crash QEMU?
> 
> Looks like it does (didn't actually try though).
> 
> > I think it was suggested that assert should only be used for cases
> > that can only arise from a programming error and not from values set
> > by the guest.
> 
> Correct.  We do have guest-triggerable asserts in the code base.  They
> are not the end of the world as the guest will only hurt itself.  But
> in general we try to get rid of them instead of adding new ones ...
> 
> Often you can just ignore the illegal guest action (bonus points for
> logging GUEST_ERROR as debugging aid).  Sometimes it is more difficult
> to deal with it (in case the hardware is expected to throw an error irq
> for example).
> 
> take care,
>   Gerd

In this case it's not supposed to be guest triggerable, so I'm inlined
to merge this, but as a separate patch from patch 1,
and commit log need to be clearer that it's defence in depth
not a bugfix.

[Prev in Thread]

Current Thread

[Next in Thread]

[PATCH v2 0/2] Ensure PCI configuration access is within bounds, P J P, 2020/06/03
- [PATCH v2 1/2] ait-vga: check address before reading configuration bytes, P J P, 2020/06/03
  - Re: [PATCH v2 1/2] ait-vga: check address before reading configuration bytes, BALATON Zoltan, 2020/06/03
  - Re: [PATCH v2 1/2] ait-vga: check address before reading configuration bytes, Daniel P . Berrangé, 2020/06/04
    - Re: [PATCH v2 1/2] ait-vga: check address before reading configuration bytes, P J P, 2020/06/04
    - Re: [PATCH v2 1/2] ait-vga: check address before reading configuration bytes, Michael S. Tsirkin, 2020/06/04
- [PATCH v2 2/2] pci: ensure configuration access is within bounds, P J P, 2020/06/03
  - Re: [PATCH v2 2/2] pci: ensure configuration access is within bounds, BALATON Zoltan, 2020/06/03
    - Re: [PATCH v2 2/2] pci: ensure configuration access is within bounds, Gerd Hoffmann, 2020/06/04
    - Re: [PATCH v2 2/2] pci: ensure configuration access is within bounds, Michael S. Tsirkin <=
    - Re: [PATCH v2 2/2] pci: ensure configuration access is within bounds, P J P, 2020/06/04
    - Re: [PATCH v2 2/2] pci: ensure configuration access is within bounds, Philippe Mathieu-Daudé, 2020/06/04
    - Re: [PATCH v2 2/2] pci: ensure configuration access is within bounds, Michael S. Tsirkin, 2020/06/04
    - Re: [PATCH v2 2/2] pci: ensure configuration access is within bounds, BALATON Zoltan, 2020/06/04
    - Re: [PATCH v2 2/2] pci: ensure configuration access is within bounds, Michael S. Tsirkin, 2020/06/04
    - Re: [PATCH v2 2/2] pci: ensure configuration access is within bounds, BALATON Zoltan, 2020/06/04
    - Re: [PATCH v2 2/2] pci: ensure configuration access is within bounds, Michael S. Tsirkin, 2020/06/04
    - Re: [PATCH v2 2/2] pci: ensure configuration access is within bounds, BALATON Zoltan, 2020/06/04
    - Re: [PATCH v2 2/2] pci: ensure configuration access is within bounds, Michael S. Tsirkin, 2020/06/04
  - Re: [PATCH v2 2/2] pci: ensure configuration access is within bounds, Peter Maydell, 2020/06/04

Prev by Date: Re: [PATCH v2 2/2] pci: ensure configuration access is within bounds
Next by Date: [PATCH] qga: fix assert regression on guest-shutdown
Previous by thread: Re: [PATCH v2 2/2] pci: ensure configuration access is within bounds
Next by thread: Re: [PATCH v2 2/2] pci: ensure configuration access is within bounds
Index(es):
- Date
- Thread