Page MenuHomeFreeBSD

bhyve: error out if fwcfg user file isn't read completely
ClosedPublic

Authored by corvink on May 12 2023, 5:40 AM.
Tags
None
Referenced Files
Unknown Object (File)
Sat, Jan 18, 9:41 PM
Unknown Object (File)
Fri, Jan 10, 9:22 PM
Unknown Object (File)
Fri, Jan 10, 9:20 PM
Unknown Object (File)
Fri, Jan 10, 9:10 PM
Unknown Object (File)
Fri, Jan 10, 5:24 PM
Unknown Object (File)
Dec 2 2024, 10:28 AM
Unknown Object (File)
Nov 30 2024, 2:03 PM
Unknown Object (File)
Nov 13 2024, 11:02 PM

Details

Summary
At the moment, fwcfg reads the file once at startup and passes these
data to the guest. Therefore, we should always read the whole file.
Otherwise we should error out.

Additionally, GCC12 complains that the comparison whether
fwcfg_file->size is lower than 0 is always false due to the limited
range of data type.

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

rew added inline comments.
usr.sbin/bhyve/qemu_fwcfg.c
602–604

Why is a partial read of the file not an error?

usr.sbin/bhyve/qemu_fwcfg.c
602–604

to expand the previous question..

should we ensure that all bytes are read or error out?

and why not use the same pattern that you used in pci_passthru.c using mmap()?

  • error out on partial reads
corvink retitled this revision from bhyve: fix comparison when reading fwcfg user files to bhyve: error out if fwcfg user file isn't read completely.May 12 2023, 6:27 AM
corvink edited the summary of this revision. (Show Details)
corvink added inline comments.
usr.sbin/bhyve/qemu_fwcfg.c
602–604

You're right. Partial reads don't make sense.

What's the advantage of using mmap + memcpy instead of just read?

usr.sbin/bhyve/qemu_fwcfg.c
596–597

I don't think this is correct since a signed type is being returned into an unsigned variable.

granted - if there is a read error, the check below will still do the right thing unless the file size happens to be 4G.

602–604

What's the advantage of using mmap + memcpy instead of just read?

I'm not aware of an advantage in using one or over the other in this scenario.

corvink marked an inline comment as done.
  • save read output in a signed variable
This revision is now accepted and ready to land.May 15 2023, 2:26 PM