mirror of
https://github.com/xqemu/xqemu.git
synced 2025-04-02 11:11:56 -04:00
91ae1d30ec
The handler for diag 500 did not check whether the requested function
was in the supported range, so illegal values could crash QEMU in the
worst case.
Signed-off-by: Thomas Huth <thuth@linux.vnet.ibm.com>
Reviewed-by: Cornelia Huck <cornelia.huck@de.ibm.com>
Signed-off-by: Christian Borntraeger <borntraeger@de.ibm.com>
CC: qemu-stable@nongnu.org
(cherry picked from commit f2c55d1735)
Signed-off-by: Michael Roth <mdroth@linux.vnet.ibm.com>
39 lines
890 B
C
39 lines
890 B
C
/*
|
|
* Support for virtio hypercalls on s390
|
|
*
|
|
* Copyright 2012 IBM Corp.
|
|
* Author(s): Cornelia Huck <cornelia.huck@de.ibm.com>
|
|
*
|
|
* This work is licensed under the terms of the GNU GPL, version 2 or (at
|
|
* your option) any later version. See the COPYING file in the top-level
|
|
* directory.
|
|
*/
|
|
|
|
#include "cpu.h"
|
|
#include "hw/s390x/s390-virtio.h"
|
|
|
|
#define MAX_DIAG_SUBCODES 255
|
|
|
|
static s390_virtio_fn s390_diag500_table[MAX_DIAG_SUBCODES];
|
|
|
|
void s390_register_virtio_hypercall(uint64_t code, s390_virtio_fn fn)
|
|
{
|
|
assert(code < MAX_DIAG_SUBCODES);
|
|
assert(!s390_diag500_table[code]);
|
|
|
|
s390_diag500_table[code] = fn;
|
|
}
|
|
|
|
int s390_virtio_hypercall(CPUS390XState *env)
|
|
{
|
|
s390_virtio_fn fn;
|
|
|
|
if (env->regs[1] < MAX_DIAG_SUBCODES) {
|
|
fn = s390_diag500_table[env->regs[1]];
|
|
if (fn) {
|
|
return fn(&env->regs[2]);
|
|
}
|
|
}
|
|
|
|
return -EINVAL;
|
|
}
|