[PULL,0/1] NBD fix for 6.0-rc3

Message ID	20210412121846.144565-1-vsementsov@virtuozzo.com (mailing list archive)
State	New, archived
Headers	show Return-Path: <SRS0=BMa/=JJ=nongnu.org=qemu-devel-bounces+qemu-devel=archiver.kernel.org@kernel.org> DMARC-Filter: OpenDMARC Filter v1.3.2 mail.kernel.org 6309A601FF From: Vladimir Sementsov-Ogievskiy <vsementsov@virtuozzo.com> To: qemu-block@nongnu.org Cc: qemu-devel@nongnu.org, eblake@redhat.com, vsementsov@virtuozzo.com, peter.maydell@linaro.org, rvkagan@yandex-team.ru Subject: [PULL 0/1] NBD fix for 6.0-rc3 Date: Mon, 12 Apr 2021 15:18:45 +0300 Message-Id: <20210412121846.144565-1-vsementsov@virtuozzo.com> Content-Transfer-Encoding: 8bit Content-Type: text/plain MIME-Version: 1.0 X-MS-Exchange-MessageSentRepresentingType: 1 Received-SPF: pass client-ip=40.107.6.97; envelope-from=vsementsov@virtuozzo.com; helo=EUR04-DB3-obe.outbound.protection.outlook.com X-Spam_score_int: -27 X-Spam_score: -2.8 X-Spam_bar: -- X-Spam_report: (-2.8 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, MSGID_FROM_MTA_HEADER=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001 autolearn=ham autolearn_force=no X-Spam_action: no action Precedence: list Errors-To: qemu-devel-bounces+qemu-devel=archiver.kernel.org@nongnu.org Sender: "Qemu-devel" <qemu-devel-bounces+qemu-devel=archiver.kernel.org@nongnu.org>

Message ID

20210412121846.144565-1-vsementsov@virtuozzo.com (mailing list archive)

State

New, archived

Headers

DMARC-Filter: OpenDMARC Filter v1.3.2 mail.kernel.org 6309A601FF
From: Vladimir Sementsov-Ogievskiy <vsementsov@virtuozzo.com>
To: qemu-block@nongnu.org
Cc: qemu-devel@nongnu.org, eblake@redhat.com, vsementsov@virtuozzo.com,
 peter.maydell@linaro.org, rvkagan@yandex-team.ru
Subject: [PULL 0/1] NBD fix for 6.0-rc3
Date: Mon, 12 Apr 2021 15:18:45 +0300
Message-Id: <20210412121846.144565-1-vsementsov@virtuozzo.com>
Content-Transfer-Encoding: 8bit
Content-Type: text/plain
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
Received: from localhost.localdomain (185.215.60.212) by
 ZR0P278CA0153.CHEP278.PROD.OUTLOOK.COM (2603:10a6:910:41::20) with Microsoft
 SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id
 15.20.4020.21 via Frontend Transport; Mon, 12 Apr 2021 12:19:05 +0000
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 64a9f1a2-8e97-4d75-9c74-08d8fdad2acf
X-MS-TrafficTypeDiagnostic: AM5PR0801MB1907:
X-MS-Exchange-Transport-Forked: True
X-Microsoft-Antispam-PRVS: 
 <AM5PR0801MB1907B4AF8FCF30C6CEC9E967C1709@AM5PR0801MB1907.eurprd08.prod.outlook.com>
X-MS-Oob-TLC-OOBClassifiers: OLM:37;
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 
 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:;
 IPV:NLI; SFV:NSPM; H:AM7PR08MB5494.eurprd08.prod.outlook.com; PTR:; CAT:NONE;
 SFS:(4636009)(39840400004)(366004)(396003)(346002)(376002)(136003)(1076003)(186003)(2906002)(2616005)(83380400001)(4326008)(16526019)(8676002)(5660300002)(956004)(6506007)(36756003)(52116002)(86362001)(6666004)(38350700002)(8936002)(6916009)(69590400012)(66556008)(6512007)(26005)(66476007)(38100700002)(6486002)(478600001)(966005)(316002)(66946007);
 DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData: 
 bVKXUoM6tqoeQCGHjPnplvyY0xReJuIX/QnuQYkAISeowpII+47SR0HIw5uzZzOhFO+aWgoRDC+XmoXBbun5I9mTKk4OmWU9LlyEa5XYCMBRG1UOjmZEyJn2K6+tZd/t6GJevC4h43zHhLKYq5i9tDpxHXvVaxARlMiVQ+4KiO3uWxfw2gU2znN7P0RS0NVBRsNpGvChviCRXO7atw9Nh03a95C3hpTiebQg3s23lRCY1TRynQ4sCwwEOHZJ3B8ylp64uyUU07V4aB3NcINvpFASYFCqzeu9VOn3El646gsUO263uqIxp+J0i9Ls2WueDlvVJHWsvF2lqUD+0FBptaScJzZ7JIIVNHEAVhck/9sm2n17KBwz1FB4KfoDbER4SozQ+s+u4E1po46VwBh9j2aimBzZS6vwHXUAomFBcyG4EJInPWtAw4zB2WHRjKY1rmWn8QUP+OAyXHpu3egDjKM6OWZzdcu8GMcaO08vGRv6SduNX+Bb2/Tw2W1Vq4Zp1Kuomou1o3Ab3UHQEHo366vqjAwHQBt1Um1dOZfQTElfphGu9KR+QL9ys+CyTlN8iLItP25yaTHcDYaPPkJjgfhRucVG0T5yEVKJFjnO+hSyFkQ8tJgvoeiXfO5S0j4Z0bGHIA58gN2nUy1nZj1+AZZ+z7KMKcp58zuvN7I8LGcFOpd06nlubgfiGsrvR3xyHI34ZrF97eh2sKxDUYNjeiVuzUq6TQewecPiKkrpNp/kASQzVMJHB2/VpPDco9Hkxgm62Fy3roA9O5visEeTwUgG35wnl8Qahl93TfyI5+tRA9OOwYQaoaUS/JnF56Ythuj2XH3VMpad8yOYnA5IZg3e1YnZqgzfD5HXhaKbkjQV6YPSSxhK4/HnfecKOHoQrrRwSaENjvhk7HLXO82v9v64xv3jwb5ZxFk6t6WwZX+5q6cjghoVUpl1AsJzon9N2Okw+kMjurSb/70oFZW5mZbpjn4k3+41YGJcM7ixriGB6CI21ahiKaaDFbu6OSNkGawgWiYND7aXCAua2XIfhU9x05xbaAC1Cg+HF/W7Q+1z0MH8FiLLdn4N5uB5mpV+Iu0eeY8jB8Hp8cHKn393H1IlVNvf97LZbo/TVCD1yd82X0Yfj5ozBnBeIMmO42QaBHVOywNKFDpG6G2eyJEHxHVNzNiBQcpXctwnaeGucMzCwfyVwlDzn2z3H3/zzGgZPFsCRzfRwCcGY3imwp7CDSHMeL6kkEFthMMg4I28TuSXYI2T0dR40ouXAguNleGzkgPulY1eFChb7uHjzCgnGA4qDXUBoku/bbhJR3SMUIBr/sxcux2PtqJzZg/Z6FIh
X-OriginatorOrg: virtuozzo.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 
 64a9f1a2-8e97-4d75-9c74-08d8fdad2acf
X-MS-Exchange-CrossTenant-AuthSource: AM7PR08MB5494.eurprd08.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 12 Apr 2021 12:19:06.6087 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 0bc7f26d-0264-416e-a6fc-8352af79c58f
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: 
 koKP8pMWSaF7ziWpXMQTWzUcs2SBUDACC3xCrLw4k/ykgG6VgDTzVI8ogYjpsHUcYAp/oEBk9qCMy3eRbGMDRgJ0bjE1C5uo3kqau0RnMCE=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM5PR0801MB1907
Received-SPF: pass client-ip=40.107.6.97;
 envelope-from=vsementsov@virtuozzo.com;
 helo=EUR04-DB3-obe.outbound.protection.outlook.com
X-Spam_score_int: -27
X-Spam_score: -2.8
X-Spam_bar: --
X-Spam_report: (-2.8 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1,
 DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1,
 MSGID_FROM_MTA_HEADER=0.001, RCVD_IN_DNSWL_LOW=-0.7,
 RCVD_IN_MSPIKE_H2=-0.001,
 SPF_HELO_PASS=-0.001, SPF_PASS=-0.001 autolearn=ham autolearn_force=no
X-Spam_action: no action
X-BeenThere: qemu-devel@nongnu.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: <qemu-devel.nongnu.org>
List-Unsubscribe: <https://lists.nongnu.org/mailman/options/qemu-devel>,
 <mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <https://lists.nongnu.org/archive/html/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <https://lists.nongnu.org/mailman/listinfo/qemu-devel>,
 <mailto:qemu-devel-request@nongnu.org?subject=subscribe>
Errors-To: qemu-devel-bounces+qemu-devel=archiver.kernel.org@nongnu.org
Sender: "Qemu-devel"
 <qemu-devel-bounces+qemu-devel=archiver.kernel.org@nongnu.org>

Message

Vladimir Sementsov-Ogievskiy April 12, 2021, 12:18 p.m. UTC

The following changes since commit 555249a59e9cdd6b58da103aba5cf3a2d45c899f:

  Merge remote-tracking branch 'remotes/ehabkost-gl/tags/x86-next-pull-request' into staging (2021-04-10 16:58:56 +0100)

are available in the Git repository at:

  https://src.openvz.org/scm/~vsementsov/qemu.git tags/pull-nbd-2021-04-12

for you to fetch changes up to d3c278b689845558cd9811940436b28ae6afc5d7:

  block/nbd: fix possible use after free of s->connect_thread (2021-04-12 11:56:03 +0300)

----------------------------------------------------------------
One fix of possible use-after-free in NBD block-driver for 6.0-rc3

----------------------------------------------------------------

Note: the tag is signed by a new key, as I've lost the old one. So,
now there are two keys with my name on http://keys.gnupg.net, the elder
is lost. I feel stupid about that :(. Anyway, both keys are not signed by
anybody except for myself. And this is my first pull-request to Qemu,
so, I think some kind of TOFU still applies.

Vladimir Sementsov-Ogievskiy (1):
  block/nbd: fix possible use after free of s->connect_thread

 block/nbd.c | 11 +++++++++++
 1 file changed, 11 insertions(+)

Comments

Peter Maydell April 12, 2021, 3:48 p.m. UTC | #1

On Mon, 12 Apr 2021 at 13:19, Vladimir Sementsov-Ogievskiy
<vsementsov@virtuozzo.com> wrote:
>
> The following changes since commit 555249a59e9cdd6b58da103aba5cf3a2d45c899f:
>
>   Merge remote-tracking branch 'remotes/ehabkost-gl/tags/x86-next-pull-request' into staging (2021-04-10 16:58:56 +0100)
>
> are available in the Git repository at:
>
>   https://src.openvz.org/scm/~vsementsov/qemu.git tags/pull-nbd-2021-04-12
>
> for you to fetch changes up to d3c278b689845558cd9811940436b28ae6afc5d7:
>
>   block/nbd: fix possible use after free of s->connect_thread (2021-04-12 11:56:03 +0300)
>
> ----------------------------------------------------------------
> One fix of possible use-after-free in NBD block-driver for 6.0-rc3
>
> ----------------------------------------------------------------
>
> Note: the tag is signed by a new key, as I've lost the old one. So,
> now there are two keys with my name on http://keys.gnupg.net, the elder
> is lost. I feel stupid about that :(. Anyway, both keys are not signed by
> anybody except for myself. And this is my first pull-request to Qemu,
> so, I think some kind of TOFU still applies.

I'd really rather not deal with trying to add a new source of pull
requests the day before rc3, please. Eric, could you do a pull
or something?

thanks
-- PMM

Vladimir Sementsov-Ogievskiy April 13, 2021, 6:47 a.m. UTC | #2

12.04.2021 18:48, Peter Maydell wrote:
> On Mon, 12 Apr 2021 at 13:19, Vladimir Sementsov-Ogievskiy
> <vsementsov@virtuozzo.com> wrote:
>>
>> The following changes since commit 555249a59e9cdd6b58da103aba5cf3a2d45c899f:
>>
>>    Merge remote-tracking branch 'remotes/ehabkost-gl/tags/x86-next-pull-request' into staging (2021-04-10 16:58:56 +0100)
>>
>> are available in the Git repository at:
>>
>>    https://src.openvz.org/scm/~vsementsov/qemu.git tags/pull-nbd-2021-04-12
>>
>> for you to fetch changes up to d3c278b689845558cd9811940436b28ae6afc5d7:
>>
>>    block/nbd: fix possible use after free of s->connect_thread (2021-04-12 11:56:03 +0300)
>>
>> ----------------------------------------------------------------
>> One fix of possible use-after-free in NBD block-driver for 6.0-rc3
>>
>> ----------------------------------------------------------------
>>
>> Note: the tag is signed by a new key, as I've lost the old one. So,
>> now there are two keys with my name on http://keys.gnupg.net, the elder
>> is lost. I feel stupid about that :(. Anyway, both keys are not signed by
>> anybody except for myself. And this is my first pull-request to Qemu,
>> so, I think some kind of TOFU still applies.
> 
> I'd really rather not deal with trying to add a new source of pull
> requests the day before rc3, please. Eric, could you do a pull
> or something?
> 
> thanks
> -- PMM
> 

Hmm. Ok, that's not a degradation of 6.0 and there is no existing bug somewhere, so we can just not care for 6.0.

Peter Maydell April 13, 2021, 10:22 a.m. UTC | #3

On Tue, 13 Apr 2021 at 07:47, Vladimir Sementsov-Ogievskiy
<vsementsov@virtuozzo.com> wrote:
>
> 12.04.2021 18:48, Peter Maydell wrote:
> > On Mon, 12 Apr 2021 at 13:19, Vladimir Sementsov-Ogievskiy
> > <vsementsov@virtuozzo.com> wrote:
> >>
> >> The following changes since commit 555249a59e9cdd6b58da103aba5cf3a2d45c899f:
> >>
> >>    Merge remote-tracking branch 'remotes/ehabkost-gl/tags/x86-next-pull-request' into staging (2021-04-10 16:58:56 +0100)
> >>
> >> are available in the Git repository at:
> >>
> >>    https://src.openvz.org/scm/~vsementsov/qemu.git tags/pull-nbd-2021-04-12
> >>
> >> for you to fetch changes up to d3c278b689845558cd9811940436b28ae6afc5d7:
> >>
> >>    block/nbd: fix possible use after free of s->connect_thread (2021-04-12 11:56:03 +0300)
> >>
> >> ----------------------------------------------------------------
> >> One fix of possible use-after-free in NBD block-driver for 6.0-rc3
> >>
> >> ----------------------------------------------------------------
> >>
> >> Note: the tag is signed by a new key, as I've lost the old one. So,
> >> now there are two keys with my name on http://keys.gnupg.net, the elder
> >> is lost. I feel stupid about that :(. Anyway, both keys are not signed by
> >> anybody except for myself. And this is my first pull-request to Qemu,
> >> so, I think some kind of TOFU still applies.
> >
> > I'd really rather not deal with trying to add a new source of pull
> > requests the day before rc3, please. Eric, could you do a pull
> > or something?

> Hmm. Ok, that's not a degradation of 6.0 and there is no existing bug
> somewhere, so we can just not care for 6.0.

I think fixing a use-after-free is sensible for rc3; it's only having
it come to me via a new unknown submitter of pull requests that I'm
not happy about.

thanks
-- PMM

[PULL,0/1] NBD fix for 6.0-rc3

Pull-request

Message

Comments