diff options
author | Dylan Reid <dgreid@chromium.org> | 2019-06-14 11:41:07 -0700 |
---|---|---|
committer | Commit Bot <commit-bot@chromium.org> | 2019-06-21 19:22:33 +0000 |
commit | 70d7bad28414e4b0d8bdf2d5eb85618a3b1e83c6 (patch) | |
tree | 529536de447e8b5b09fe308b49eb273215e39726 /protos | |
parent | c9f254b1921335231b32550b5ae6b8416e1ca7aa (diff) | |
download | crosvm-70d7bad28414e4b0d8bdf2d5eb85618a3b1e83c6.tar crosvm-70d7bad28414e4b0d8bdf2d5eb85618a3b1e83c6.tar.gz crosvm-70d7bad28414e4b0d8bdf2d5eb85618a3b1e83c6.tar.bz2 crosvm-70d7bad28414e4b0d8bdf2d5eb85618a3b1e83c6.tar.lz crosvm-70d7bad28414e4b0d8bdf2d5eb85618a3b1e83c6.tar.xz crosvm-70d7bad28414e4b0d8bdf2d5eb85618a3b1e83c6.tar.zst crosvm-70d7bad28414e4b0d8bdf2d5eb85618a3b1e83c6.zip |
qcow: disallow crazy l1 table sizes
Before this change, a corrupt or malicious qcow file could cause crosvm to allocate absurd amounts of memory. The fuzzer found this case, limit the L1 table size so it can't cause issues. BUG=chromium:974123 TEST=run fuzzer locally, add unit test Change-Id: Ieb6db6c87f71df726b3cc9a98404581fe32fb1ce Signed-off-by: Dylan Reid <dgreid@chromium.org> Reviewed-on: https://chromium-review.googlesource.com/c/chromiumos/platform/crosvm/+/1660890 Reviewed-by: Daniel Verkamp <dverkamp@chromium.org> Tested-by: kokoro <noreply+kokoro@google.com>
Diffstat (limited to 'protos')
0 files changed, 0 insertions, 0 deletions