xen-devel

[Top] [All Lists]

Re: [Xen-devel] [PATCH 1 of 2] tools/libxc: Remus Checkpoint Compression

from [Ian Jackson]

[Permanent Link][Original]

To:	Shriram Rajagopalan <rshriram@xxxxxxxxx>
Subject:	Re: [Xen-devel] [PATCH 1 of 2] tools/libxc: Remus Checkpoint Compression
From:	Ian Jackson <Ian.Jackson@xxxxxxxxxxxxx>
Date:	Mon, 27 Jun 2011 16:33:59 +0100
Cc:	george.dunlap@xxxxxxxxxxxxx, xen-devel@xxxxxxxxxxxxxxxxxxx
Delivery-date:	Mon, 27 Jun 2011 08:40:37 -0700
Envelope-to:	www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to:	<b4974a38d10199c1e2b8.1308457939@xxxxxxxxxxxxxxxxxxx>
List-help:	<mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id:	Xen developer discussion <xen-devel.lists.xensource.com>
List-post:	<mailto:xen-devel@lists.xensource.com>
List-subscribe:	<http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe:	<http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
Newsgroups:	chiark.mail.xen.devel
References:	<patchbomb.1308457938@xxxxxxxxxxxxxxxxxxx> <b4974a38d10199c1e2b8.1308457939@xxxxxxxxxxxxxxxxxxx>
Sender:	xen-devel-bounces@xxxxxxxxxxxxxxxxxxx

Shriram Rajagopalan writes ("[Xen-devel] [PATCH 1 of 2] tools/libxc: Remus 
Checkpoint Compression"):
> [stuff]

Thanks for this.  I have some comments.

TBH I don't think "remus" is the right name for this functionality.
This checkpoint compression may be useful in non-Remus applications
(we won't know until we get some numbers) so it would be sensible to
name the functions and files accordingly.

> +        if (!buf->pages) {
> +            if (!(buf->pages = malloc(buf->compbuf_size))) {
> +                ERROR("Could not allocate compression buffer");
> +                return -1;
> +            }
> +        } else {
> +            if (!(ptmp = realloc(buf->pages, buf->compbuf_size))) {
> +                ERROR("Could not reallocate compression buffer");
> +                return -1;
> +            }
> +            buf->pages = ptmp;

realloc(0, some_nonzero_size) is legal and does what you would hope.
Using that would simplify this.  (Yes, I know the original code does
it the verbose way later too...)

> +static
> +int __uncompress(xc_interface *xch, char *destpage, unsigned long 
> *compbuf_pos,
> +                 char *compbuf, unsigned long compbuf_size)

Identifiers starting with "__" are reserved for the C implementation
and must not be used in Xen userspace libraries like libxc.  (The same
goes for identifiers starting with "_" with external linkage; although
those may be used for other purposes.)

> +typedef unsigned int data_t;

uint16_t surely.

> +    if (src[0].off == BEGIN)
> +    {
> +        *compbuf_pos += sizeof(struct marker);
> +        for (i = 1; (*compbuf_pos < compbuf_size) && (src[i].off >= 0);
> +             i++, *compbuf_pos += sizeof(struct marker))
> +            dest[src[i].off] = src[i].val;
> +    }
> +    else if (src[0].off == FULLPAGE)
> +    {
> +        *compbuf_pos += sizeof(struct marker) + XC_PAGE_SIZE;
> +        memcpy(destpage, (char *)&src[1], XC_PAGE_SIZE);
> +    }

I think there are some bugs here:

1. The accesses of src, and both arms of the conditional I quote
   above, seem to be able to read beyond the end of the compressed
   data buffer.

2. The value of src[i].off is used without checking that it's within
   the allowable range.

3. The code seems to be full of unaligned accesses.

When you have prepared a draft revised patch, can you please have
another Remus developer review the code for security problems ?
I would like to see them provide a formal reviewed-by/acked-by on your
resubmission.

Thanks,
Ian.

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Xen-devel] [PATCH 0 of 2] [Resend v2] remus: Checkpoint Compression, Shriram Rajagopalan [Xen-devel] [PATCH 2 of 2] remus: command line switche to enable/disable checkpoint compression, Shriram Rajagopalan [Xen-devel] [PATCH 1 of 2] tools/libxc: Remus Checkpoint Compression, Shriram Rajagopalan [Xen-devel] Re: [PATCH 1 of 2] tools/libxc: Remus Checkpoint Compression, George Dunlap Re: [Xen-devel] [PATCH 1 of 2] tools/libxc: Remus Checkpoint Compression, Ian Jackson <= Re: [Xen-devel] [PATCH 1 of 2] tools/libxc: Remus Checkpoint Compression, Shriram Rajagopalan Re: [Xen-devel] [PATCH 1 of 2] tools/libxc: Remus Checkpoint Compression, Ian Jackson Re: [Xen-devel] [PATCH 0 of 2] [Resend v2] remus: Checkpoint Compression, Ian Jackson Re: [Xen-devel] [PATCH 0 of 2] [Resend v2] remus: Checkpoint Compression, George Dunlap Re: [Xen-devel] [PATCH 0 of 2] [Resend v2] remus: Checkpoint Compression, Ian Jackson Re: [Xen-devel] [PATCH 0 of 2] [Resend v2] remus: Checkpoint Compression, Shriram Rajagopalan Re: [Xen-devel] [PATCH 0 of 2] [Resend v2] remus: Checkpoint Compression, Ian Campbell Re: [Xen-devel] [PATCH 0 of 2] [Resend v2] remus: Checkpoint Compression, Shriram Rajagopalan Re: [Xen-devel] [PATCH 0 of 2] [Resend v2] remus: Checkpoint Compression, George Dunlap Re: [Xen-devel] [PATCH 0 of 2] [Resend v2] remus: Checkpoint Compression, Shriram Rajagopalan

Previous by Date:	Re: [Xen-devel] Re: Patches for VGA-Passthrough XEN 4.2 unstable, Konrad Rzeszutek Wilk
Next by Date:	Re: [Xen-devel] AW: Load increase after memory upgrade?, Sander Eikelenboom
Previous by Thread:	[Xen-devel] Re: [PATCH 1 of 2] tools/libxc: Remus Checkpoint Compression, George Dunlap
Next by Thread:	Re: [Xen-devel] [PATCH 1 of 2] tools/libxc: Remus Checkpoint Compression, Shriram Rajagopalan
Indexes:	[Date] [Thread] [Top] [All Lists]