block/cloop: refuse images with bogus offsets (CVE-2014-0144)
[qemu.git] / net / hub.c
blob33a99c99ef1eac9baf5f0f6d65f62d62bcff5c5b
1 /*
2 * Hub net client
4 * Copyright IBM, Corp. 2012
6 * Authors:
7 * Stefan Hajnoczi <stefanha@linux.vnet.ibm.com>
8 * Zhi Yong Wu <wuzhy@linux.vnet.ibm.com>
10 * This work is licensed under the terms of the GNU LGPL, version 2 or later.
11 * See the COPYING.LIB file in the top-level directory.
15 #include "monitor/monitor.h"
16 #include "net/net.h"
17 #include "clients.h"
18 #include "hub.h"
19 #include "qemu/iov.h"
22 * A hub broadcasts incoming packets to all its ports except the source port.
23 * Hubs can be used to provide independent network segments, also confusingly
24 * named the QEMU 'vlan' feature.
27 typedef struct NetHub NetHub;
29 typedef struct NetHubPort {
30 NetClientState nc;
31 QLIST_ENTRY(NetHubPort) next;
32 NetHub *hub;
33 int id;
34 } NetHubPort;
36 struct NetHub {
37 int id;
38 QLIST_ENTRY(NetHub) next;
39 int num_ports;
40 QLIST_HEAD(, NetHubPort) ports;
43 static QLIST_HEAD(, NetHub) hubs = QLIST_HEAD_INITIALIZER(&hubs);
45 static ssize_t net_hub_receive(NetHub *hub, NetHubPort *source_port,
46 const uint8_t *buf, size_t len)
48 NetHubPort *port;
50 QLIST_FOREACH(port, &hub->ports, next) {
51 if (port == source_port) {
52 continue;
55 qemu_send_packet(&port->nc, buf, len);
57 return len;
60 static ssize_t net_hub_receive_iov(NetHub *hub, NetHubPort *source_port,
61 const struct iovec *iov, int iovcnt)
63 NetHubPort *port;
64 ssize_t len = iov_size(iov, iovcnt);
66 QLIST_FOREACH(port, &hub->ports, next) {
67 if (port == source_port) {
68 continue;
71 qemu_sendv_packet(&port->nc, iov, iovcnt);
73 return len;
76 static NetHub *net_hub_new(int id)
78 NetHub *hub;
80 hub = g_malloc(sizeof(*hub));
81 hub->id = id;
82 hub->num_ports = 0;
83 QLIST_INIT(&hub->ports);
85 QLIST_INSERT_HEAD(&hubs, hub, next);
87 return hub;
90 static int net_hub_port_can_receive(NetClientState *nc)
92 NetHubPort *port;
93 NetHubPort *src_port = DO_UPCAST(NetHubPort, nc, nc);
94 NetHub *hub = src_port->hub;
96 QLIST_FOREACH(port, &hub->ports, next) {
97 if (port == src_port) {
98 continue;
101 if (qemu_can_send_packet(&port->nc)) {
102 return 1;
106 return 0;
109 static ssize_t net_hub_port_receive(NetClientState *nc,
110 const uint8_t *buf, size_t len)
112 NetHubPort *port = DO_UPCAST(NetHubPort, nc, nc);
114 return net_hub_receive(port->hub, port, buf, len);
117 static ssize_t net_hub_port_receive_iov(NetClientState *nc,
118 const struct iovec *iov, int iovcnt)
120 NetHubPort *port = DO_UPCAST(NetHubPort, nc, nc);
122 return net_hub_receive_iov(port->hub, port, iov, iovcnt);
125 static void net_hub_port_cleanup(NetClientState *nc)
127 NetHubPort *port = DO_UPCAST(NetHubPort, nc, nc);
129 QLIST_REMOVE(port, next);
132 static NetClientInfo net_hub_port_info = {
133 .type = NET_CLIENT_OPTIONS_KIND_HUBPORT,
134 .size = sizeof(NetHubPort),
135 .can_receive = net_hub_port_can_receive,
136 .receive = net_hub_port_receive,
137 .receive_iov = net_hub_port_receive_iov,
138 .cleanup = net_hub_port_cleanup,
141 static NetHubPort *net_hub_port_new(NetHub *hub, const char *name)
143 NetClientState *nc;
144 NetHubPort *port;
145 int id = hub->num_ports++;
146 char default_name[128];
148 if (!name) {
149 snprintf(default_name, sizeof(default_name),
150 "hub%dport%d", hub->id, id);
151 name = default_name;
154 nc = qemu_new_net_client(&net_hub_port_info, NULL, "hub", name);
155 port = DO_UPCAST(NetHubPort, nc, nc);
156 port->id = id;
157 port->hub = hub;
159 QLIST_INSERT_HEAD(&hub->ports, port, next);
161 return port;
165 * Create a port on a given hub
166 * @name: Net client name or NULL for default name.
168 * If there is no existing hub with the given id then a new hub is created.
170 NetClientState *net_hub_add_port(int hub_id, const char *name)
172 NetHub *hub;
173 NetHubPort *port;
175 QLIST_FOREACH(hub, &hubs, next) {
176 if (hub->id == hub_id) {
177 break;
181 if (!hub) {
182 hub = net_hub_new(hub_id);
185 port = net_hub_port_new(hub, name);
186 return &port->nc;
190 * Find a specific client on a hub
192 NetClientState *net_hub_find_client_by_name(int hub_id, const char *name)
194 NetHub *hub;
195 NetHubPort *port;
196 NetClientState *peer;
198 QLIST_FOREACH(hub, &hubs, next) {
199 if (hub->id == hub_id) {
200 QLIST_FOREACH(port, &hub->ports, next) {
201 peer = port->nc.peer;
203 if (peer && strcmp(peer->name, name) == 0) {
204 return peer;
209 return NULL;
213 * Find a available port on a hub; otherwise create one new port
215 NetClientState *net_hub_port_find(int hub_id)
217 NetHub *hub;
218 NetHubPort *port;
219 NetClientState *nc;
221 QLIST_FOREACH(hub, &hubs, next) {
222 if (hub->id == hub_id) {
223 QLIST_FOREACH(port, &hub->ports, next) {
224 nc = port->nc.peer;
225 if (!nc) {
226 return &(port->nc);
229 break;
233 nc = net_hub_add_port(hub_id, NULL);
234 return nc;
238 * Print hub configuration
240 void net_hub_info(Monitor *mon)
242 NetHub *hub;
243 NetHubPort *port;
245 QLIST_FOREACH(hub, &hubs, next) {
246 monitor_printf(mon, "hub %d\n", hub->id);
247 QLIST_FOREACH(port, &hub->ports, next) {
248 if (port->nc.peer) {
249 monitor_printf(mon, " \\ ");
250 print_net_client(mon, port->nc.peer);
257 * Get the hub id that a client is connected to
259 * @id: Pointer for hub id output, may be NULL
261 int net_hub_id_for_client(NetClientState *nc, int *id)
263 NetHubPort *port;
265 if (nc->info->type == NET_CLIENT_OPTIONS_KIND_HUBPORT) {
266 port = DO_UPCAST(NetHubPort, nc, nc);
267 } else if (nc->peer != NULL && nc->peer->info->type ==
268 NET_CLIENT_OPTIONS_KIND_HUBPORT) {
269 port = DO_UPCAST(NetHubPort, nc, nc->peer);
270 } else {
271 return -ENOENT;
274 if (id) {
275 *id = port->hub->id;
277 return 0;
280 int net_init_hubport(const NetClientOptions *opts, const char *name,
281 NetClientState *peer)
283 const NetdevHubPortOptions *hubport;
285 assert(opts->kind == NET_CLIENT_OPTIONS_KIND_HUBPORT);
286 hubport = opts->hubport;
288 /* Treat hub port like a backend, NIC must be the one to peer */
289 if (peer) {
290 return -EINVAL;
293 net_hub_add_port(hubport->hubid, name);
294 return 0;
298 * Warn if hub configurations are likely wrong
300 void net_hub_check_clients(void)
302 NetHub *hub;
303 NetHubPort *port;
304 NetClientState *peer;
306 QLIST_FOREACH(hub, &hubs, next) {
307 int has_nic = 0, has_host_dev = 0;
309 QLIST_FOREACH(port, &hub->ports, next) {
310 peer = port->nc.peer;
311 if (!peer) {
312 fprintf(stderr, "Warning: hub port %s has no peer\n",
313 port->nc.name);
314 continue;
317 switch (peer->info->type) {
318 case NET_CLIENT_OPTIONS_KIND_NIC:
319 has_nic = 1;
320 break;
321 case NET_CLIENT_OPTIONS_KIND_USER:
322 case NET_CLIENT_OPTIONS_KIND_TAP:
323 case NET_CLIENT_OPTIONS_KIND_SOCKET:
324 case NET_CLIENT_OPTIONS_KIND_VDE:
325 has_host_dev = 1;
326 break;
327 default:
328 break;
331 if (has_host_dev && !has_nic) {
332 fprintf(stderr, "Warning: vlan %d with no nics\n", hub->id);
334 if (has_nic && !has_host_dev) {
335 fprintf(stderr,
336 "Warning: vlan %d is not connected to host network\n",
337 hub->id);
342 bool net_hub_flush(NetClientState *nc)
344 NetHubPort *port;
345 NetHubPort *source_port = DO_UPCAST(NetHubPort, nc, nc);
346 int ret = 0;
348 QLIST_FOREACH(port, &source_port->hub->ports, next) {
349 if (port != source_port) {
350 ret += qemu_net_queue_flush(port->nc.incoming_queue);
353 return ret ? true : false;