1. 30 1月, 2013 3 次提交
  2. 29 1月, 2013 6 次提交
    • I
      target-i386: kvm: prevent buffer overflow if -cpu foo, [x]level is too big · f8bb0565
      Igor Mammedov 提交于
      Stack corruption may occur if too big 'level' or 'xlevel' values passed
      on command line with KVM enabled, due to limited size of cpuid_data
      in kvm_arch_init_vcpu().
      
      reproduces with:
       qemu -enable-kvm -cpu qemu64,level=4294967295
      or
       qemu -enable-kvm -cpu qemu64,xlevel=4294967295
      
      Check if there is space in cpuid_data before passing it to cpu_x86_cpuid()
      or abort() if there is not space.
      Reviewed-by: NLaszlo Ersek <lersek@redhat.com>
      Reviewed-by: NAndreas Faerber <afaerber@suse.de>
      Signed-off-by: NIgor Mammedov <imammedo@redhat.com>
      Signed-off-by: NGleb Natapov <gleb@redhat.com>
      f8bb0565
    • A
      Merge remote-tracking branch 'afaerber/qom-cpu' into staging · ec9466ff
      Anthony Liguori 提交于
      * afaerber/qom-cpu: (37 commits)
        kvm: Pass CPUState to kvm_on_sigbus_vcpu()
        cpu: Unconditionalize CPUState fields
        target-m68k: Use type_register() instead of type_register_static()
        target-unicore32: Use type_register() instead of type_register_static()
        target-openrisc: Use type_register() instead of type_register_static()
        target-unicore32: Catch attempt to instantiate abstract type in cpu_init()
        target-openrisc: Catch attempt to instantiate abstract type in cpu_init()
        target-m68k: Catch attempt to instantiate abstract type in cpu_init()
        target-arm: Catch attempt to instantiate abstract type in cpu_init()
        target-alpha: Catch attempt to instantiate abstract type in cpu_init()
        qom: Introduce object_class_is_abstract()
        target-unicore32: Detect attempt to instantiate non-CPU type in cpu_init()
        target-openrisc: Detect attempt to instantiate non-CPU type in cpu_init()
        target-m68k: Detect attempt to instantiate non-CPU type in cpu_init()
        target-alpha: Detect attempt to instantiate non-CPU type in cpu_init()
        target-arm: Detect attempt to instantiate non-CPU type in cpu_init()
        cpu: Add model resolution support to CPUClass
        target-i386: Remove setting tsc-frequency from x86_def_t
        target-i386: Set custom features/properties without intermediate x86_def_t
        target-i386: Remove vendor_override field from CPUX86State
        ...
      
      Conflicts:
      	tests/Makefile
      
      Resolved simple conflict caused by lack of context in Makefile
      Signed-off-by: NAnthony Liguori <aliguori@us.ibm.com>
      ec9466ff
    • A
      Merge remote-tracking branch 'kwolf/for-anthony' into staging · 503cb22e
      Anthony Liguori 提交于
      # By Paolo Bonzini (14) and others
      # Via Kevin Wolf
      * kwolf/for-anthony: (24 commits)
        ide: Add fall through annotations
        block: Create proper size file for disk mirror
        ahci: Add migration support
        ahci: Change data types in preparation for migration
        ahci: Remove unused AHCIDevice fields
        hbitmap: add assertion on hbitmap_iter_init
        mirror: do nothing on zero-sized disk
        block/vdi: Check for bad signature
        block/vdi: Improved return values from vdi_open
        block/vdi: Improve debug output for signature
        block: Use error code EMEDIUMTYPE for wrong format in some block drivers
        block: Add special error code for wrong format
        mirror: support arbitrarily-sized iterations
        mirror: support more than one in-flight AIO operation
        mirror: add buf-size argument to drive-mirror
        mirror: switch mirror_iteration to AIO
        mirror: allow customizing the granularity
        block: allow customizing the granularity of the dirty bitmap
        block: return count of dirty sectors, not chunks
        mirror: perform COW if the cluster size is bigger than the granularity
        ...
      503cb22e
    • A
      Merge remote-tracking branch 'luiz/queue/qmp' into staging · 6cebf7af
      Anthony Liguori 提交于
      # By Lei Li (3) and others
      # Via Luiz Capitulino
      * luiz/queue/qmp:
        QAPI: Introduce memchar-read QMP command
        QAPI: Introduce memchar-write QMP command
        qemu-char: Add new char backend CirMemCharDriver
        docs: document virtio-balloon stats
        balloon: re-enable balloon stats
        balloon: drop old stats code & API
        block: Monitor command commit neglects to report some errors
      6cebf7af
    • M
    • M
      qemu-ga: Plug memory leak in guest_fsfreeze_cleanup() · 6f686749
      Markus Armbruster 提交于
      Neglects to free errors allocated by qmp_guest_fsfreeze_thaw().
      Spotted by Coverity.
      
      While there, drop the test whether return value is negative (it's
      never true), and improve logging.
      Signed-off-by: NMarkus Armbruster <armbru@redhat.com>
      Reviewed-by: NEric Blake <eblake@redhat.com>
      Reviewed-by: NLuiz Capitulino <lcapitulino@redhat.com>
      Signed-off-by: NMichael Roth <mdroth@linux.vnet.ibm.com>
      6f686749
  3. 28 1月, 2013 12 次提交
  4. 27 1月, 2013 19 次提交