vmxnet3: Do not fill stats if device is inactive - bwlp/qemu.git - Experimental fork of QEMU with video encoding patches

diff options

author	Shmulik Ladkani	2015-10-15 12:54:30 +0200
committer	Jason Wang	2015-10-27 03:30:38 +0100
commit	eedeeeffd419ab149e0b0ad5fc4b7cf5e1db6274 (patch)
tree	3214b3c8d13808a77f5b68438df25a6120e27e22 /net
parent	options: Add documentation for filter-dump (diff)
download	qemu-eedeeeffd419ab149e0b0ad5fc4b7cf5e1db6274.tar.gz qemu-eedeeeffd419ab149e0b0ad5fc4b7cf5e1db6274.tar.xz qemu-eedeeeffd419ab149e0b0ad5fc4b7cf5e1db6274.zip

vmxnet3: Do not fill stats if device is inactive

Guest OS may issue VMXNET3_CMD_GET_STATS even before device was activated (for example in linux, after insmod but prior net-dev open). Accessing shared descriptors prior device activation is illegal as the VMXNET3State structures have not been fully initialized. As a result, guest memory gets corrupted and may lead to guest OS crashes. Fix, by not filling the stats descriptors if device is inactive. Reported-by: Leonid Shatz <leonid.shatz@ravellosystems.com> Acked-by: Dmitry Fleytman <dmitry@daynix.com> Signed-off-by: Dana Rubin <dana.rubin@ravellosystems.com> Signed-off-by: Shmulik Ladkani <shmulik.ladkani@ravellosystems.com> Signed-off-by: Jason Wang <jasowang@redhat.com>

Diffstat (limited to 'net')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: