diff options
| author | Fabiano Rosas <farosas@suse.de> | 2024-03-15 00:20:38 -0300 |
|---|---|---|
| committer | Peter Xu <peterx@redhat.com> | 2024-03-15 11:26:33 -0400 |
| commit | 73f6f9a12fb4a3afe01e18690ebd6a6e4283c1a6 (patch) | |
| tree | dd0867bfdae5400f2b58bd7ba48106ee5b782a87 /docs/devel/secure-coding-practices.rst | |
| parent | 74228c598f139bd9ce7839794be9a3ccc180fb27 (diff) | |
| download | focaccia-qemu-73f6f9a12fb4a3afe01e18690ebd6a6e4283c1a6.tar.gz focaccia-qemu-73f6f9a12fb4a3afe01e18690ebd6a6e4283c1a6.zip | |
migration/multifd: Ensure we're not given a socket for file migration
When doing migration using the fd: URI, QEMU will fetch the file
descriptor passed in via the monitor at
fd_start_outgoing|incoming_migration(), which means the checks at
migration_channels_and_transport_compatible() happen too soon and we
don't know at that point whether the FD refers to a plain file or a
socket.
For this reason, we've been allowing a migration channel of type
SOCKET_ADDRESS_TYPE_FD to pass the initial verifications in scenarios
where the socket migration is not supported, such as with fd + multifd.
The commit decdc76772 ("migration/multifd: Add mapped-ram support to
fd: URI") was supposed to add a second check prior to starting
migration to make sure a socket fd is not passed instead of a file fd,
but failed to do so.
Add the missing verification and update the comment explaining this
situation which is currently incorrect.
Fixes: decdc76772 ("migration/multifd: Add mapped-ram support to fd: URI")
Signed-off-by: Fabiano Rosas <farosas@suse.de>
Reviewed-by: Peter Xu <peterx@redhat.com>
Link: https://lore.kernel.org/r/20240315032040.7974-2-farosas@suse.de
Signed-off-by: Peter Xu <peterx@redhat.com>
Diffstat (limited to 'docs/devel/secure-coding-practices.rst')
0 files changed, 0 insertions, 0 deletions