Re: [Qemu-devel] [PATCH 07/38] xilinx: fix buffer overflow on realize

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] [PATCH 07/38] xilinx: fix buffer overflow on realize

From:	Paolo Bonzini
Subject:	Re: [Qemu-devel] [PATCH 07/38] xilinx: fix buffer overflow on realize
Date:	Sun, 23 Oct 2016 14:01:14 +0200
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.3.0


On 22/10/2016 11:52, Marc-André Lureau wrote:
> Signed-off-by: Marc-André Lureau <address@hidden>
> ---
>  hw/ssi/xilinx_spips.c | 2 +-
>  1 file changed, 1 insertion(+), 1 deletion(-)
> 
> diff --git a/hw/ssi/xilinx_spips.c b/hw/ssi/xilinx_spips.c
> index e2b77dc..ab7fa6f 100644
> --- a/hw/ssi/xilinx_spips.c
> +++ b/hw/ssi/xilinx_spips.c
> @@ -620,7 +620,7 @@ static void xilinx_spips_realize(DeviceState *dev, Error 
> **errp)
>  
>      s->cs_lines = g_new0(qemu_irq, s->num_cs * s->num_busses);
>      ssi_auto_connect_slaves(DEVICE(s), s->cs_lines, s->spi[0]);
> -    ssi_auto_connect_slaves(DEVICE(s), s->cs_lines, s->spi[1]);

Better add a for loop going up to s->num_busses.  I can do that on commit.

Paolo

>      sysbus_init_irq(sbd, &s->irq);
>      for (i = 0; i < s->num_cs * s->num_busses; ++i) {
>          sysbus_init_irq(sbd, &s->cs_lines[i]);
>

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-devel] [PATCH 00/38] char: fixes and improvements (was "[PATCH 0/9] Fix mux regression"), Marc-André Lureau, 2016/10/22
- [Qemu-devel] [PATCH 01/38] rng: remove unused included header, Marc-André Lureau, 2016/10/22
- [Qemu-devel] [PATCH 02/38] char: remove use-after-free on win-stdio, Marc-André Lureau, 2016/10/22
- [Qemu-devel] [PATCH 04/38] sun4uv: fix serial initialization regression, Marc-André Lureau, 2016/10/22
- [Qemu-devel] [PATCH 03/38] ringbuf: fix chr_write return value, Marc-André Lureau, 2016/10/22
- [Qemu-devel] [PATCH 05/38] malta: replace chr init by CHR_EVENT_OPENED handler, Marc-André Lureau, 2016/10/22
- [Qemu-devel] [PATCH 07/38] xilinx: fix buffer overflow on realize, Marc-André Lureau, 2016/10/22
  - Re: [Qemu-devel] [PATCH 07/38] xilinx: fix buffer overflow on realize, Paolo Bonzini <=
- [Qemu-devel] [PATCH 06/38] char: remove init callback, Marc-André Lureau, 2016/10/22
- [Qemu-devel] [PATCH 08/38] mux: split mux_chr_update_read_handler(), Marc-André Lureau, 2016/10/22
  - Re: [Qemu-devel] [PATCH 08/38] mux: split mux_chr_update_read_handler(), Eric Blake, 2016/10/24
- [Qemu-devel] [PATCH 10/38] char: start converting mux driver to use CharBackend, Marc-André Lureau, 2016/10/22
- [Qemu-devel] [PATCH 09/38] char: introduce CharBackend, Marc-André Lureau, 2016/10/22
  - Re: [Qemu-devel] [PATCH 09/38] char: introduce CharBackend, Paolo Bonzini, 2016/10/23
- [Qemu-devel] [PATCH 11/38] char: replace PROP_CHR with CharBackend, Marc-André Lureau, 2016/10/22
- [Qemu-devel] [PATCH 14/38] colo: claim in find_and_check_chardev, Marc-André Lureau, 2016/10/22
- [Qemu-devel] [PATCH 12/38] char: remaining switch to CharBackend in frontend, Marc-André Lureau, 2016/10/22
- [Qemu-devel] [PATCH 13/38] char: rename some frontend functions, Marc-André Lureau, 2016/10/22

Prev by Date: Re: [Qemu-devel] [RESEND PATCH v3 kernel 0/7] Extend virtio-balloon for fast (de)inflating & fast live migration
Next by Date: Re: [Qemu-devel] [PATCH 09/38] char: introduce CharBackend
Previous by thread: [Qemu-devel] [PATCH 07/38] xilinx: fix buffer overflow on realize
Next by thread: [Qemu-devel] [PATCH 06/38] char: remove init callback
Index(es):
- Date
- Thread