haraldwolff/qemu-patch-raspberry4
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
qemu-patch-raspberry4/hw/xen
History
Lan Tianyu 4e494de668 Qemu/Xen: Fix early freeing MSIX MMIO memory region 
msix->mmio is added to XenPCIPassthroughState's object as property.
object_finalize_child_property is called for XenPCIPassthroughState's
object, which calls object_property_del_all, which is going to try to
delete msix->mmio. object_finalize_child_property() will access
msix->mmio's obj. But the whole msix struct has already been freed
by xen_pt_msix_delete. This will cause segment fault when msix->mmio
has been overwritten.

This patch is to fix the issue.

Signed-off-by: Lan Tianyu <tianyu.lan@intel.com>
Reviewed-by: Stefano Stabellini <stefano.stabellini@eu.citrix.com>
Signed-off-by: Stefano Stabellini <stefano.stabellini@eu.citrix.com>
2015-10-26 11:32:18 +00:00
..
Makefile.objs xen, gfx passthrough: basic graphics passthrough support 2015-09-10 12:04:28 +00:00
xen-host-pci-device.c typofixes - v4 2015-09-11 10:45:43 +03:00
xen-host-pci-device.h xen/pt: Make xen_pt_unregister_device idempotent 2015-09-10 16:47:20 +00:00
xen_backend.c xen_backend: Remove unused error handling of qemu_set_fd_handler 2015-06-12 13:26:21 +01:00
xen_devconfig.c hw: Convert from BlockDriverState to BlockBackend, mostly 2014-10-20 14:02:25 +02:00
xen_pt.c Qemu/Xen: Fix early freeing MSIX MMIO memory region 2015-10-26 11:32:18 +00:00
xen_pt.h Qemu/Xen: Fix early freeing MSIX MMIO memory region 2015-10-26 11:32:18 +00:00
xen_pt_config_init.c Qemu/Xen: Fix early freeing MSIX MMIO memory region 2015-10-26 11:32:18 +00:00
xen_pt_graphics.c xen, gfx passthrough: add opregion mapping 2015-09-10 12:04:29 +00:00
xen_pt_msi.c Qemu/Xen: Fix early freeing MSIX MMIO memory region 2015-10-26 11:32:18 +00:00