Skip to content

Fix denial of service with large numbers in cpuset-cpus and cpuset-mems#37967

Merged
yongtang merged 1 commit intomoby:masterfrom
thaJeztah:upstream_dos_fix
Oct 8, 2018
Merged

Fix denial of service with large numbers in cpuset-cpus and cpuset-mems#37967
yongtang merged 1 commit intomoby:masterfrom
thaJeztah:upstream_dos_fix

Conversation

@thaJeztah
Copy link
Member

@thaJeztah thaJeztah commented Oct 4, 2018

Using a value such as --cpuset-mems=1-9223372036854775807 would cause
dockerd to run out of memory allocating a map of the values in the
validation code. Set limits to the normal limit of the number of CPUs,
and improve the error handling.

Reported by Huawei PSIRT.

- Description for the changelog

* Fix denial of service with large numbers in `--cpuset-cpus` and `--cpuset-mems`

@thaJeztah thaJeztah requested a review from vdemeester as a code owner October 4, 2018 08:48
@thaJeztah
Copy link
Member Author

thaJeztah commented Oct 4, 2018

ping @justincormack @AkihiroSuda @vdemeester PTAL 🤗

@thaJeztah thaJeztah mentioned this pull request Oct 4, 2018
Closed
vdemeester
vdemeester reviewed Oct 4, 2018
View reviewed changes
pkg/parsers/parsers.go Outdated
Copy link
Member

@vdemeester vdemeester Oct 4, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we keep the signature (for not breaking downstream-dependencies) and add a new method ParsUintListMaximum or something ?

Copy link
Member Author

@thaJeztah thaJeztah Oct 4, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ah, yes; I could add a new one.

@thaJeztah thaJeztah mentioned this pull request Oct 4, 2018
Merged
@codecov
Copy link

codecov bot commented Oct 4, 2018
edited
Loading

Codecov Report

❗ No coverage uploaded for pull request base (master@c77cfbf). Click here to learn what that means.
The diff coverage is 62.5%.

@@            Coverage Diff            @@
##             master   #37967   +/-   ##
=========================================
  Coverage          ?    36.1%           
=========================================
  Files             ?      610           
  Lines             ?    45155           
  Branches          ?        0           
=========================================
  Hits              ?    16302           
  Misses            ?    26612           
  Partials          ?     2241

@thaJeztah
Copy link
Member Author

thaJeztah commented Oct 4, 2018

@vdemeester pushed an extra commit; if it looks good, I'll squash, and update my backports 😅

vdemeester
vdemeester approved these changes Oct 4, 2018
View reviewed changes
Copy link
Member

@vdemeester vdemeester left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM 🐯

@justincormack @thaJeztah
Fix denial of service with large numbers in cpuset-cpus and cpuset-mems
f8e876d 
Using a value such as `--cpuset-mems=1-9223372036854775807` would cause
`dockerd` to run out of memory allocating a map of the values in the
validation code. Set limits to the normal limit of the number of CPUs,
and improve the error handling.

Reported by Huawei PSIRT.

Signed-off-by: Justin Cormack <[email protected]>
Signed-off-by: Sebastiaan van Stijn <[email protected]>
@thaJeztah
Copy link
Member Author

thaJeztah commented Oct 5, 2018

Squashed; this should be ready to go

ping @justincormack PTAL

yongtang
yongtang approved these changes Oct 8, 2018
View reviewed changes
Copy link
Member

@yongtang yongtang left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@yongtang yongtang merged commit 2cc338c into moby:master Oct 8, 2018
@thaJeztah thaJeztah deleted the upstream_dos_fix branch October 9, 2018 01:30
runcom added a commit to projectatomic/docker that referenced this pull request Jan 18, 2019
@runcom
Fix denial of service with large numbers in cpuset-cpus and cpuset-mems
11e17d3 
Backport of moby#37967
Fix BZ https://bugzilla.redhat.com/show_bug.cgi?id=1666565

Signed-off-by: Antonio Murdaca <[email protected]>
runcom added a commit to projectatomic/docker that referenced this pull request Jan 18, 2019
@runcom
Fix denial of service with large numbers in cpuset-cpus and cpuset-mems
0d829ef 
Backport of moby#37967
Fix BZ https://bugzilla.redhat.com/show_bug.cgi?id=1666565

Signed-off-by: Antonio Murdaca <[email protected]>
runcom added a commit to projectatomic/docker that referenced this pull request Jan 18, 2019
@runcom
Fix denial of service with large numbers in cpuset-cpus and cpuset-mems
1185cfd 
Backport of moby#37967
Fix BZ https://bugzilla.redhat.com/show_bug.cgi?id=1666565

Signed-off-by: Antonio Murdaca <[email protected]>
@tatianab tatianab mentioned this pull request Nov 8, 2023
Closed
@thaJeztah thaJeztah mentioned this pull request Jan 6, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

2 more reviewers

@vdemeester vdemeester vdemeester approved these changes

@yongtang yongtang yongtang approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

impact/changelog status/4-merge

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@thaJeztah @vdemeester @yongtang @GordonTheTurtle @justincormack