summary refs log tree commit diff
path: root/protos
diff options
context:
space:
mode:
authorDylan Reid <dgreid@chromium.org>2019-06-14 11:41:07 -0700
committerCommit Bot <commit-bot@chromium.org>2019-06-21 19:22:33 +0000
commit70d7bad28414e4b0d8bdf2d5eb85618a3b1e83c6 (patch)
tree529536de447e8b5b09fe308b49eb273215e39726 /protos
parentc9f254b1921335231b32550b5ae6b8416e1ca7aa (diff)
downloadcrosvm-70d7bad28414e4b0d8bdf2d5eb85618a3b1e83c6.tar
crosvm-70d7bad28414e4b0d8bdf2d5eb85618a3b1e83c6.tar.gz
crosvm-70d7bad28414e4b0d8bdf2d5eb85618a3b1e83c6.tar.bz2
crosvm-70d7bad28414e4b0d8bdf2d5eb85618a3b1e83c6.tar.lz
crosvm-70d7bad28414e4b0d8bdf2d5eb85618a3b1e83c6.tar.xz
crosvm-70d7bad28414e4b0d8bdf2d5eb85618a3b1e83c6.tar.zst
crosvm-70d7bad28414e4b0d8bdf2d5eb85618a3b1e83c6.zip
qcow: disallow crazy l1 table sizes
Before this change, a corrupt or malicious qcow file could cause crosvm
to allocate absurd amounts of memory. The fuzzer found this case,
limit the L1 table size so it can't cause issues.

BUG=chromium:974123
TEST=run fuzzer locally, add unit test

Change-Id: Ieb6db6c87f71df726b3cc9a98404581fe32fb1ce
Signed-off-by: Dylan Reid <dgreid@chromium.org>
Reviewed-on: https://chromium-review.googlesource.com/c/chromiumos/platform/crosvm/+/1660890
Reviewed-by: Daniel Verkamp <dverkamp@chromium.org>
Tested-by: kokoro <noreply+kokoro@google.com>
Diffstat (limited to 'protos')
0 files changed, 0 insertions, 0 deletions
 

generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-06 12:29:45 +0000