qemu-e2k

Go to file

Stefan Weil 68716da745 apb: Fix out-of-bounds array write access

The array regs is declared with IOMMU_NREGS (3) elements and accessed
using IOMMU_CTRL (0) and IOMMU_BASE (8). In most cases, those values
are right shifted before being used as an index which results in indices
0 and 1. In one case, this right shift was missing for IOMMU_BASE which
results in an out-of-bounds write access with index 8.

The patch adds the missing shift operation also for IOMMU_CTRL where
it is needed only for cosmetic reasons.

Signed-off-by: Stefan Weil <sw@weilnetz.de>
Signed-off-by: Mark Cave-Ayland <mark.cave-ayland@ilande.co.uk>

2014-06-20 23:52:49 +01:00

audio

audio: Drop superfluous conditionals around g_free()

2014-06-13 12:34:54 +02:00

backends

hostmem: add properties for NUMA memory policy

2014-06-19 18:44:21 +03:00

block

block/iscsi: drop obsolete pointers from iscsi_co_writev

2014-06-18 18:42:42 +02:00

bsd-user

bsd-user: Fix syscall format, add strace support for more syscalls

2014-06-11 00:25:06 +01:00

default-configs

pc: implement pc-dimm device abstraction

2014-06-19 16:41:47 +03:00

disas

disas/libvixl: Update to libvixl 1.4

2014-05-13 16:09:35 +01:00

docs

qmp: add ACPI_DEVICE_OST event handling

2014-06-19 18:44:22 +03:00

dtc @ bc895d6d09

dtc: add submodule

2013-04-18 13:50:53 +02:00

fpu

softfloat: Introduce float32_to_uint64_round_to_zero

2014-04-08 11:20:00 +02:00

fsdev

virtfs-proxy-helper: fix call to accept

2014-04-28 08:55:32 +04:00

gdb-xml

target-arm: Support fp registers in gdb stub

2013-12-17 19:42:32 +00:00

apb: Fix out-of-bounds array write access

2014-06-20 23:52:49 +01:00

include

Merge remote-tracking branch 'remotes/kvm/uq/master' into staging

2014-06-20 19:25:18 +01:00

libcacard

Merge remote-tracking branch 'remotes/bonzini/configure' into staging

2014-06-11 15:36:48 +01:00

libdecnumber

libdecnumber: Fix decNumberSetBCD

2014-06-16 13:24:29 +02:00

linux-headers

linux-headers: update linux headers to kvm/next

2014-06-16 13:24:41 +02:00

linux-user

target-mips: implement UserLocal Register

2014-06-18 18:10:47 +02:00

net

Add the vhost-user netdev backend to the command line

2014-06-19 18:44:18 +03:00

pc-bios

PPC: Add u-boot firmware for e500

2014-06-16 13:24:35 +02:00

pixman @ 97336fad32

qapi: move include files to include/qobject/

2012-12-19 08:31:31 +01:00

po: add proper Language: tags to .po files

2014-04-28 08:55:32 +04:00

qapi

qapi/string-output-visitor: fix bugs

2014-06-19 18:44:22 +03:00

qga

qga: Fix handle fd leak in acquire_privilege()

2014-06-03 15:07:59 -05:00

qobject

json-parser: drop superfluous assignment for token variable

2014-06-11 10:10:29 -04:00

qom

qom: introduce object_property_get_enum and object_property_get_uint16List

2014-06-19 18:44:19 +03:00

roms

PPC: Add u-boot firmware for e500

2014-06-16 13:24:35 +02:00

scripts

linux-headers: include psci.h

2014-06-16 13:24:41 +02:00

slirp

slirp: Remove unused zero_ethaddr[] variable

2014-06-10 19:39:34 +04:00

stubs

qmp: add query-memory-devices command

2014-06-19 18:44:22 +03:00

sysconfigs/target

Eliminate cpus-x86_64.conf file

2012-09-21 15:12:58 +02:00

target-alpha

softmmu: introduce cpu_ldst.h

2014-06-05 16:10:33 +02:00

target-arm

target-arm: Introduce per-CPU field for PSCI version

2014-06-19 18:33:04 +01:00

target-cris

target-cris/translate.c: Remove _t_gen_mov_TN_env and _t_gen_mov_env_TN

2014-06-09 01:04:44 +02:00

target-i386

target-i386: Use Common ShiftRows and InvShiftRows Tables

2014-06-16 13:24:33 +02:00

target-lm32

softmmu: introduce cpu_ldst.h

2014-06-05 16:10:33 +02:00

target-m68k

softmmu: introduce cpu_ldst.h

2014-06-05 16:10:33 +02:00

target-microblaze

target-microblaze: Delete unused sign_extend() function

2014-06-10 19:39:34 +04:00

target-mips

target-mips: copy CP0_Config1 into DisasContext

2014-06-20 22:14:13 +02:00

target-moxie

softmmu: introduce cpu_ldst.h

2014-06-05 16:10:33 +02:00

target-openrisc

softmmu: introduce cpu_ldst.h

2014-06-05 16:10:33 +02:00

target-ppc

PPC: KVM: Make pv hcall endian agnostic

2014-06-16 13:24:46 +02:00

target-s390x

s390x/kvm: inject via flic

2014-06-10 09:50:27 +02:00

target-sh4

softmmu: introduce cpu_ldst.h

2014-06-05 16:10:33 +02:00

target-sparc

softmmu: introduce cpu_ldst.h

2014-06-05 16:10:33 +02:00

target-unicore32

softmmu: introduce cpu_ldst.h

2014-06-05 16:10:33 +02:00

target-xtensa

softmmu: introduce cpu_ldst.h

2014-06-05 16:10:33 +02:00

tcg

tcg/optimize: Don't special case TCG_OPF_CALL_CLOBBER

2014-06-18 11:39:02 -07:00

tests

tests: simplify code

2014-06-19 18:44:22 +03:00

trace

glib-compat.h: add new thread API emulation on top of pre-2.31 API

2014-06-10 07:44:01 +02:00

vnc: cleanups and fixes

2014-06-20 16:57:28 +01:00

util

pc,pci,virtio,hotplug fixes, enhancements

2014-06-20 18:01:24 +01:00

.exrc

qemu: add .exrc

2012-09-07 09:02:44 +03:00

.gitignore

configure: Put tempfiles in a subdir of the build directory

2014-05-24 00:34:38 +04:00

.gitmodules

PPC: Add u-boot firmware for e500

2014-06-16 13:24:35 +02:00

.mailmap

Update mailmap

2013-09-05 09:40:31 -05:00

.travis.yml

trace: Multi-backend tracing

2014-06-09 15:43:40 +02:00

aio-posix.c

aio: make aio_poll(ctx, true) block with no fds

2013-12-06 16:53:51 +01:00

aio-win32.c

aio: make aio_poll(ctx, true) block with no fds

2013-12-06 16:53:51 +01:00

arch_init.c

migration: catch unknown flags in ram_load

2014-06-16 04:55:27 +02:00

async.c

aio: fix qemu_bh_schedule() bh->ctx race condition

2014-06-04 09:56:06 +02:00

balloon.c

softmmu: move include files to include/sysemu/

2012-12-19 08:32:45 +01:00

block-migration.c

block: fix wrong order in live block migration setup

2014-06-04 11:22:39 +02:00

block.c

cleanup QEMUOptionParameter

2014-06-16 17:23:21 +08:00

blockdev-nbd.c

nbd: Close socket on negotiation failure.

2014-05-24 00:07:29 +04:00

blockdev.c

blockdev: Remove unused DriveInfo reference count

2014-06-16 17:23:19 +08:00

blockjob.c

block: Move op_blocker check from block_job_create to its caller

2014-05-28 14:28:46 +02:00

bt-host.c

sysemu: avoid proliferation of include/ subdirectories

2013-04-15 18:19:25 +02:00

bt-vhci.c

sysemu: avoid proliferation of include/ subdirectories

2013-04-15 18:19:25 +02:00

Changelog

Use qemu-project.org domain name

2013-10-11 09:34:56 -07:00

CODING_STYLE

CODING_STYLE: Section about mixed declarations

2014-03-27 19:22:49 +04:00

configure

Merge remote-tracking branch 'remotes/kvm/uq/master' into staging

2014-06-20 19:25:18 +01:00

COPYING

…

COPYING.LIB

…

coroutine-gthread.c

glib-compat.h: add new thread API emulation on top of pre-2.31 API

2014-06-10 07:44:01 +02:00

coroutine-sigaltstack.c

Merge remote-tracking branch 'kwolf/for-anthony' into staging

2013-02-26 07:44:39 -06:00

coroutine-ucontext.c

Fix warnings suppressors to honor --disable-werror

2013-04-17 10:28:04 -05:00

coroutine-win32.c

block: move include files to include/block/

2012-12-19 08:31:31 +01:00

cpu-exec.c

cpu: make CPU_INTERRUPT_RESET available on all targets

2014-05-13 13:21:51 +02:00

cpus.c

NUMA: move numa related code to new file numa.c

2014-06-19 18:44:18 +03:00

cputlb.c

softmmu: introduce cpu_ldst.h

2014-06-05 16:10:33 +02:00

device_tree.c

device_tree: qemu_fdt_setprop: Rename val_array arg

2013-12-20 01:58:12 +01:00

device-hotplug.c

blockdev: Remove unused DriveInfo reference count

2014-06-16 17:23:19 +08:00

disas.c

monitor: QEMU Monitor Instruction Disassembly Incorrect for PowerPC LE Mode

2014-06-16 13:24:26 +02:00

dma-helpers.c

dma-helpers: avoid calling dma_bdrv_unmap() twice

2014-05-24 00:28:43 +04:00

dump.c

dump: Make DumpState and endian conversion routines available for arch-specific dump code

2014-06-16 13:24:36 +02:00

exec.c

hostmem: add property to map memory with MAP_SHARED

2014-06-19 18:44:20 +03:00

gdbstub.c

exec: Change cpu_breakpoint_{insert,remove{,_by_ref,_all}} argument

2014-03-13 19:20:48 +01:00

HACKING

HACKING: Document vaddr type usage

2013-07-23 02:41:31 +02:00

hmp-commands.hx

Add the vhost-user netdev backend to the command line

2014-06-19 18:44:18 +03:00

hmp.c

hmp: add info memdev

2014-06-19 18:44:21 +03:00

hmp.h

hmp: add info memdev

2014-06-19 18:44:21 +03:00

iohandler.c

iohandler.c: Properly initialize sigaction struct

2014-05-24 00:07:29 +04:00

ioport.c

portio: Allow to mark portio lists as coalesced MMIO flushing

2013-10-17 17:24:15 +02:00

iothread.c

iothread: make IOThread struct definition public

2014-04-04 20:48:02 +02:00

kvm-all.c

Merge remote-tracking branch 'remotes/kvm/uq/master' into staging

2014-06-20 19:25:18 +01:00

kvm-stub.c

Add kvm_eventfds_enabled function

2014-06-19 16:41:54 +03:00

LICENSE

LICENSE: clarify

2013-08-12 09:15:12 -05:00

main-loop.c

main-loop: Suppress "I/O thread spun" warnings for qtest

2014-03-13 21:36:50 +01:00

MAINTAINERS

Merge remote-tracking branch 'remotes/kvm/uq/master' into staging

2014-06-20 19:25:18 +01:00

Makefile

trace: Multi-backend tracing

2014-06-09 15:43:40 +02:00

Makefile.objs

libcacard: remove libcacard-specific CFLAGS and LIBS from global vars

2014-05-09 22:59:40 +02:00

Makefile.target

NUMA: move numa related code to new file numa.c

2014-06-19 18:44:18 +03:00

memory_mapping.c

cpu: Use QTAILQ for CPU list

2013-09-03 12:25:55 +02:00

memory.c

hostmem: add property to map memory with MAP_SHARED

2014-06-19 18:44:20 +03:00

migration-exec.c

aio / timers: Untangle include files

2013-08-22 19:10:27 +02:00

migration-fd.c

aio / timers: Untangle include files

2013-08-22 19:10:27 +02:00

migration-rdma.c

rdma: Fix block during rdma migration

2014-06-16 04:55:27 +02:00

migration-tcp.c

Coverity: Fix failure path for qemu_accept in migration

2014-05-05 22:15:03 +02:00

migration-unix.c

Coverity: Fix failure path for qemu_accept in migration

2014-05-05 22:15:03 +02:00

migration.c

migration: catch unknown flags in ram_load

2014-06-16 04:55:27 +02:00

module-common.c

module: implement module loading

2014-02-20 13:14:18 +01:00

monitor.c

qmp: add ACPI_DEVICE_OST event handling

2014-06-19 18:44:22 +03:00

nbd.c

nbd: Miscellaneous typo fixes.

2014-05-24 00:07:29 +04:00

numa.c

numa: handle mmaped memory allocation failure correctly

2014-06-19 18:44:22 +03:00

os-posix.c

oslib-posix: Fix build on FreeBSD

2014-03-13 14:34:16 +00:00

os-win32.c

util: Split out exec_dir from os_find_datadir

2014-02-20 13:12:54 +01:00

page_cache.c

migration: Plug memory leak in migrate-set-cache-size command

2014-06-10 19:54:43 +04:00

qapi-schema.json

qmp: add query-acpi-ospm-status command

2014-06-19 18:44:22 +03:00

qdev-monitor.c

qdev: Implement named GPIOs

2014-05-28 17:36:21 +02:00

qdict-test-data.txt

…

qemu-bridge-helper.c

qemu-bridge-helper: force usage of a very high MAC address for the bridge

2013-03-28 12:58:52 -05:00

qemu-char.c

Add G_IO_HUP handler for socket chardev

2014-06-19 16:41:55 +03:00

qemu-coroutine-io.c

aio / timers: Untangle include files

2013-08-22 19:10:27 +02:00

qemu-coroutine-lock.c

coroutine: remove qemu_co_queue_wait_insert_head

2013-12-02 17:11:49 +01:00

qemu-coroutine-sleep.c

coroutine: add co_aio_sleep_ns() to allow sleep in block drivers

2013-10-30 12:22:09 +01:00

qemu-coroutine.c

coroutine: add ./configure --disable-coroutine-pool

2013-09-12 10:12:48 +02:00

qemu-doc.texi

doc: grammify "allows to"

2014-04-18 10:33:36 +04:00

qemu-file.c

Make qemu_peek_buffer loop until it gets it's data

2014-05-05 22:15:03 +02:00

qemu-img-cmds.hx

qemu-img: add -l for snapshot in convert

2013-12-04 15:19:00 +01:00

qemu-img.c

cleanup QEMUOptionParameter

2014-06-16 17:23:21 +08:00

qemu-img.texi

qemu-img: Document check exit codes

2014-06-04 11:30:32 +02:00

qemu-io-cmds.c

qemu-io-cmds: Fixed typo in example for writev.

2014-03-19 09:39:41 +01:00

qemu-io.c

trace: Multi-backend tracing

2014-06-09 15:43:40 +02:00

qemu-log.c

qemu-log: default to stderr for logging output

2013-02-26 13:31:47 -06:00

qemu-nbd.c

qemu-nbd: Don't use qerror_report()

2014-05-28 14:28:46 +02:00

qemu-nbd.texi

nbd: Miscellaneous typo fixes.

2014-05-24 00:07:29 +04:00

qemu-options-wrapper.h

vl.c: In qemu -h output, only print options for the arch we are running as

2011-12-19 10:27:33 -06:00

qemu-options.h

vl.c: Move option generation logic into a wrapper file

2011-12-19 10:27:33 -06:00

qemu-options.hx

numa: add -numa node,memdev= option

2014-06-19 18:44:19 +03:00

qemu-seccomp.c

seccomp: add shmctl(), mlock(), and munlock() to the syscall whitelist

2014-04-25 14:52:03 -03:00

qemu-tech.texi

qemu-tech.texi: update implemented xtensa features list

2012-11-29 13:00:52 -06:00

qemu-timer.c

vl.c: remove init_clocks call from main

2014-05-09 20:57:32 +02:00

qemu.nsi

nsis: Improved support for parallel installation of 32 and 64 bit code

2013-11-07 07:02:44 +01:00

qemu.sasl

sasl: Avoid 'Could not find keytab file' in syslog

2014-03-15 13:54:18 +04:00

qmp-commands.hx

qmp: add query-acpi-ospm-status command

2014-06-19 18:44:22 +03:00

qmp.c

qmp: add query-acpi-ospm-status command

2014-06-19 18:44:22 +03:00

qtest.c

qtest: fix hex2nib for capital characters

2014-06-10 19:39:34 +04:00

README

Use qemu-project.org domain name

2013-10-11 09:34:56 -07:00

rules.mak

rules.mak: remove $(sort) from extract-libs

2014-06-16 16:01:50 +01:00

savevm.c

migration: introduce self_announce_delay()

2014-06-19 16:41:54 +03:00

softmmu_template.h

softmmu: move softmmu_template.h out of include/

2014-06-05 16:10:33 +02:00

spice-qemu-char.c

spice: hook qemu_chr_fe_set_open() event to ports

2014-02-03 11:05:15 +01:00

tcg-runtime.c

tcg: Push tcg-runtime routines into exec/helper-*

2014-05-28 09:33:54 -07:00

tci.c

Merge remote-tracking branch 'remotes/bonzini/softmmu-smap' into staging

2014-06-05 21:06:14 +01:00

thread-pool.c

aio: Fix use-after-free in cancellation path

2014-05-28 14:28:46 +02:00

thunk.c

exec: move include files to include/exec/

2012-12-19 08:31:31 +01:00

tpm.c

Use error_is_set() only when necessary

2014-02-17 11:57:23 -05:00

trace-events

trace: pc: add PC_DIMM slot & address allocation

2014-06-19 16:41:50 +03:00

translate-all.c

memory: move preallocation code out of exec.c

2014-06-19 18:44:19 +03:00

translate-all.h

translate-all: Change tb_check_watchpoint() argument to CPUState

2014-03-13 19:20:48 +01:00

user-exec.c

softmmu: introduce cpu_ldst.h

2014-06-05 16:10:33 +02:00

VERSION

Open 2.1 development tree

2014-04-17 20:39:32 +01:00

version.rc

Use qemu-project.org domain name

2013-10-11 09:34:56 -07:00

vl.c

numa: use RAM_ADDR_FMT with ram_addr_t

2014-06-19 18:44:22 +03:00

vmstate.c

savevm: Ignore minimum_version_id_old if there is no load_state_old

2014-05-05 22:15:03 +02:00

xbzrle.c

xbzrle.c: Avoid undefined behaviour with signed arithmetic

2014-04-18 10:33:36 +04:00

xen-common-stub.c

xen: factor out common functions

2014-05-07 16:16:43 +00:00

xen-common.c

xen: factor out common functions

2014-05-07 16:16:43 +00:00

xen-hvm-stub.c

xen: factor out common functions

2014-05-07 16:16:43 +00:00

xen-hvm.c

xen: replace ffsl with ctzl

2014-06-11 00:25:06 +01:00

xen-mapcache.c

hw: move headers to include/

2013-04-08 18:13:10 +02:00

README

Read the documentation in qemu-doc.html or on http://wiki.qemu-project.org

- QEMU team

Languages

C 83.1%

C++ 6.3%

Python 3.2%

Dylan 2.8%

Shell 1.6%

Other 2.8%