Revision ae6fcfbf5f03de3407b809aaee319330d3dc7f8b authored by Stefano Garzarella on 17 October 2019, 12:44:03 UTC, committed by David S. Miller on 18 October 2019, 17:19:43 UTC
If the remote peer doesn't respect the credit information (buf_alloc, fwd_cnt), sending more data than it can send, we should drop the packets to prevent a malicious peer from using all of our memory. This is patch follows the VIRTIO spec: "VIRTIO_VSOCK_OP_RW data packets MUST only be transmitted when the peer has sufficient free buffer space for the payload" Signed-off-by: Stefano Garzarella <sgarzare@redhat.com> Signed-off-by: David S. Miller <davem@davemloft.net>
1 parent ec3359b
| File | Mode | Size |
|---|---|---|
| .gitignore | -rw-r--r-- | 44 bytes |
| Kconfig | -rw-r--r-- | 3.4 KB |
| Makefile | -rw-r--r-- | 4.1 KB |
| blacklist.c | -rw-r--r-- | 3.8 KB |
| blacklist.h | -rw-r--r-- | 84 bytes |
| blacklist_hashes.c | -rw-r--r-- | 166 bytes |
| blacklist_nohashes.c | -rw-r--r-- | 122 bytes |
| system_certificates.S | -rw-r--r-- | 828 bytes |
| system_keyring.c | -rw-r--r-- | 8.7 KB |
Computing file changes ...
