[Qemu-devel] qemu/usb-uhci: Data buffer is too small

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Qemu-devel] qemu/usb-uhci: Data buffer is too small

From:	Herbert Xu
Subject:	[Qemu-devel] qemu/usb-uhci: Data buffer is too small
Date:	Thu, 30 Nov 2006 16:41:41 +1100
User-agent:	Mutt/1.5.9i

Hi:

[QEMU] usb-uhci: Data buffer is too small

The data buffer is only 1280 bytes long but the user-supplied length
can be as large as 0x7ff.  This patch extends the buffer to 2048
bytes.

Signed-off-by: Herbert Xu <address@hidden>

Cheers,
-- 
Visit Openswan at http://www.openswan.org/
Email: Herbert Xu ~{PmV>HI~} <address@hidden>
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt
--
diff -r 463bda167715 tools/ioemu/hw/usb-uhci.c
--- a/tools/ioemu/hw/usb-uhci.c Wed Nov 29 12:43:11 2006 +0000
+++ b/tools/ioemu/hw/usb-uhci.c Thu Nov 30 16:38:40 2006 +1100
@@ -421,7 +421,7 @@ static int uhci_handle_td(UHCIState *s, 
 static int uhci_handle_td(UHCIState *s, UHCI_TD *td, int *int_mask)
 {
     uint8_t pid;
-    uint8_t buf[1280];
+    uint8_t buf[2048];
     int len, max_len, err, ret;
 
     if (td->ctrl & TD_CTRL_IOC) {

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-devel] qemu/usb-uhci: Data buffer is too small, Herbert Xu <=

Prev by Date: Re: [Qemu-devel] [PATCH 6/6, UPDATE] A cumulative MIPS patchset
Next by Date: [Qemu-devel] About the code to detect a CD-ROM disk is unmounted
Previous by thread: [Qemu-devel] [PATCH 6/6, UPDATE] A cumulative MIPS patchset
Next by thread: [Qemu-devel] About the code to detect a CD-ROM disk is unmounted
Index(es):
- Date
- Thread