Re: [PATCH 2/3 for 9.0] Revert "chardev/char-socket: Fix TLS io channels

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH 2/3 for 9.0] Revert "chardev/char-socket: Fix TLS io channels

From:	Daniel P . Berrangé
Subject:	Re: [PATCH 2/3 for 9.0] Revert "chardev/char-socket: Fix TLS io channels sending too much data to the backend"
Date:	Tue, 19 Mar 2024 13:14:25 +0000
User-agent:	Mutt/2.2.12 (2023-09-09)

On Mon, Mar 18, 2024 at 11:09:23PM +0400, Marc-André Lureau wrote:
> Hi
> 
> On Mon, Mar 18, 2024 at 10:23 PM Daniel P. Berrangé <berrange@redhat.com> 
> wrote:
> >
> > This commit results in unexpected termination of the TLS connection.
> > When 'fd_can_read' returns 0, the code goes on to pass a zero length
> > buffer to qio_channel_read. The TLS impl calls into gnutls_recv()
> > with this zero length buffer, at which point GNUTLS returns an error
> > GNUTLS_E_INVALID_REQUEST. This is treated as fatal by QEMU's TLS code
> > resulting in the connection being torn down by the chardev.
> >
> > Simply skipping the qio_channel_read when the buffer length is zero
> > is also not satisfactory, as it results in a high CPU burn busy loop
> > massively slowing QEMU's functionality.
> >
> > The proper solution is to avoid tcp_chr_read being called at all
> > unless the frontend is able to accept more data. This will be done
> > in a followup commit.
> >
> > This reverts commit 1907f4d149c3589ade641423c6a33fd7598fa4d3.
> 
> Actually 462945cd22d2bcd233401ed3aa167d83a8e35b05 upstream.

Opps, yes, will fix this before I send a pull.

> 
> >
> > Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>
> > ---
> >  chardev/char-socket.c | 6 +++---
> >  1 file changed, 3 insertions(+), 3 deletions(-)
> >
> > diff --git a/chardev/char-socket.c b/chardev/char-socket.c
> > index 2c4dffc0e6..812d7aa38a 100644
> > --- a/chardev/char-socket.c
> > +++ b/chardev/char-socket.c
> > @@ -496,9 +496,9 @@ static gboolean tcp_chr_read(QIOChannel *chan, 
> > GIOCondition cond, void *opaque)
> >          s->max_size <= 0) {
> >          return TRUE;
> >      }
> > -    len = tcp_chr_read_poll(opaque);
> > -    if (len > sizeof(buf)) {
> > -        len = sizeof(buf);
> > +    len = sizeof(buf);
> > +    if (len > s->max_size) {
> > +        len = s->max_size;
> >      }
> >      size = tcp_chr_recv(chr, (void *)buf, len);
> >      if (size == 0 || (size == -1 && errno != EAGAIN)) {
> > --
> > 2.43.0
> >
> 

With regards,
Daniel
-- 
|: https://berrange.com      -o-    https://www.flickr.com/photos/dberrange :|
|: https://libvirt.org         -o-            https://fstop138.berrange.com :|
|: https://entangle-photo.org    -o-    https://www.instagram.com/dberrange :|

[Prev in Thread]

Current Thread

[Next in Thread]

[PATCH 0/3 for 9.0] Fix TLS support for chardevs and incoming data loss on EOF, Daniel P . Berrangé, 2024/03/18
- [PATCH 3/3 for 9.0] Revert "chardev: use a child source for qio input source", Daniel P . Berrangé, 2024/03/18
  - Re: [PATCH 3/3 for 9.0] Revert "chardev: use a child source for qio input source", Marc-André Lureau, 2024/03/18
    - Re: [PATCH 3/3 for 9.0] Revert "chardev: use a child source for qio input source", Daniel P . Berrangé, 2024/03/19
  - Re: [PATCH 3/3 for 9.0] Revert "chardev: use a child source for qio input source", Thomas Huth, 2024/03/19
- [PATCH 2/3 for 9.0] Revert "chardev/char-socket: Fix TLS io channels sending too much data to the backend", Daniel P . Berrangé, 2024/03/18
  - Re: [PATCH 2/3 for 9.0] Revert "chardev/char-socket: Fix TLS io channels sending too much data to the backend", Marc-André Lureau, 2024/03/18
    - Re: [PATCH 2/3 for 9.0] Revert "chardev/char-socket: Fix TLS io channels sending too much data to the backend", Daniel P . Berrangé <=
  - Re: [PATCH 2/3 for 9.0] Revert "chardev/char-socket: Fix TLS io channels sending too much data to the backend", Thomas Huth, 2024/03/19
- [PATCH 1/3 for 9.0] chardev: lower priority of the HUP GSource in socket chardev, Daniel P . Berrangé, 2024/03/18
  - Re: [PATCH 1/3 for 9.0] chardev: lower priority of the HUP GSource in socket chardev, Marc-André Lureau, 2024/03/18
  - Re: [PATCH 1/3 for 9.0] chardev: lower priority of the HUP GSource in socket chardev, Thomas Huth, 2024/03/19
- Re: [PATCH 0/3 for 9.0] Fix TLS support for chardevs and incoming data loss on EOF, Thomas Huth, 2024/03/19

Prev by Date: Re: [PATCH 06/22] plugins: Create TCGHelperInfo for all out-of-line callbacks
Next by Date: Request for Support: QEMU IPv6 Port Forwarding Issue
Previous by thread: Re: [PATCH 2/3 for 9.0] Revert "chardev/char-socket: Fix TLS io channels sending too much data to the backend"
Next by thread: Re: [PATCH 2/3 for 9.0] Revert "chardev/char-socket: Fix TLS io channels sending too much data to the backend"
Index(es):
- Date
- Thread