Re: [PATCH 3/3] virtio-crypto: don't modify elem->in/out

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH 3/3] virtio-crypto: don't modify elem->in/out_sg

From:	Stefan Hajnoczi
Subject:	Re: [PATCH 3/3] virtio-crypto: don't modify elem->in/out_sg
Date:	Wed, 16 Sep 2020 11:12:07 +0100

On Sun, Aug 16, 2020 at 04:32:06PM +0800, Li Qiang wrote:
> Stefan Hajnoczi <stefanha@redhat.com> 于2020年8月12日周三 下午6:51写道：
> 
> > A number of iov_discard_front/back() operations are made by
> > virtio-crypto. The elem->in/out_sg iovec arrays are modified by these
> > operations, resulting virtqueue_unmap_sg() calls on different addresses
> > than were originally mapped.
> >
> > This is problematic because dirty memory may not be logged correctly,
> > MemoryRegion refcounts may be leaked, and the non-RAM bounce buffer can
> > be leaked.
> >
> > Take a copy of the elem->in/out_sg arrays so that the originals are
> > preserved. The iov_discard_undo() API could be used instead (with better
> > performance) but requires careful auditing of the code, so do the simple
> > thing instead.
> >
> > Signed-off-by: Stefan Hajnoczi <stefanha@redhat.com>
> >
> 
> virtio-net also uses this method.

virtio-net operates on a copy of the iovecs (g_memdup()) so no changes
are necessary.

signature.asc
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [PATCH 3/3] virtio-crypto: don't modify elem->in/out_sg, Stefan Hajnoczi <=

Prev by Date: Re: [PATCH 1/3] util/iov: add iov_discard_undo()
Next by Date: Re: [PATCH 2/3] hostmem-file: add readonly=on|off option
Previous by thread: Re: [PATCH 1/3] util/iov: add iov_discard_undo()
Next by thread: [PATCH] virtiofsd: document cache=auto default
Index(es):
- Date
- Thread