git.baikalelectronics.ru Git - kernel.git/commit

author	SeongJae Park <sjpark@amazon.de>
	Mon, 14 Dec 2020 09:08:40 +0000 (10:08 +0100)
committer	Juergen Gross <jgross@suse.com>
	Mon, 14 Dec 2020 09:08:40 +0000 (10:08 +0100)
commit	c814db55aca2e2755a1a1f442748561dd2a06249
tree	561c330f8170bfc085446524242f0324c4036875	tree \| snapshot
parent	98a0ca51d7125fab6c7deb81bcd1aba3dadc71d7	commit \| diff

xenbus/xenbus_backend: Disallow pending watch messages

'xenbus_backend' watches 'state' of devices, which is writable by
guests.  Hence, if guests intensively updates it, dom0 will have lots of
pending events that exhausting memory of dom0.  In other words, guests
can trigger dom0 memory pressure.  This is known as XSA-349.  However,
the watch callback of it, 'frontend_changed()', reads only 'state', so
doesn't need to have the pending events.

To avoid the problem, this commit disallows pending watch messages for
'xenbus_backend' using the 'will_handle()' watch callback.

This is part of XSA-349

Cc: stable@vger.kernel.org
Signed-off-by: SeongJae Park <sjpark@amazon.de>
Reported-by: Michael Kurth <mku@amazon.de>
Reported-by: Pawel Wieczorkiewicz <wipawel@amazon.de>
Reviewed-by: Juergen Gross <jgross@suse.com>
Signed-off-by: Juergen Gross <jgross@suse.com>