rpms / qemu

Clone
Source Code
GIT

Blame 0126-usb-controllers-do-not-need-to-check-for-babble-them.patch

c10s-sig-hyperscale c8s-sig-hyperscale c9s-sig-hyperscale
  1.   64c339471e696fad49171d7e481bbf9872981b20
  2.   0126-usb-controllers-do-not-need-to-check-for-babble-them.patch
Blob History Raw
5544c1 
From 074f49c02e7f2fd50533a246b4060051f95f8b09 Mon Sep 17 00:00:00 2001
Hans de Goede c8dfc6 
From: Hans de Goede <hdegoede@redhat.com>
Hans de Goede c8dfc6 
Date: Fri, 17 Aug 2012 11:39:16 +0200
5544c1 
Subject: [PATCH] usb: controllers do not need to check for babble themselves
Hans de Goede c8dfc6
Hans de Goede c8dfc6 
If an (emulated) usb-device tries to write more data to a packet then
Hans de Goede c8dfc6 
its iov len, this will trigger an assert in usb_packet_copy(), and if
Hans de Goede c8dfc6 
a driver somehow circumvents that check and writes more data to the
Hans de Goede c8dfc6 
iov then there is space, we have a much bigger problem then not correctly
Hans de Goede c8dfc6 
reporting babble to the guest.
Hans de Goede c8dfc6
Hans de Goede c8dfc6 
In practice babble will only happen with (real) redirected devices, and there
Hans de Goede c8dfc6 
both the usb-host os and the qemu usb-device code already check for it.
Hans de Goede c8dfc6
Hans de Goede c8dfc6 
Signed-off-by: Hans de Goede <hdegoede@redhat.com>
Hans de Goede c8dfc6 
Signed-off-by: Gerd Hoffmann <kraxel@redhat.com>
5544c1 
(cherry picked from commit 45b339b18c660eb85af2ba25bfcaed5469660d77)
5544c1
5544c1 
Signed-off-by: Michael Roth <mdroth@linux.vnet.ibm.com>
Hans de Goede c8dfc6 
---
Hans de Goede c8dfc6 
 hw/usb/hcd-ehci.c | 4 ----
Hans de Goede c8dfc6 
 hw/usb/hcd-uhci.c | 5 -----
Hans de Goede c8dfc6 
 2 files changed, 9 deletions(-)
Hans de Goede c8dfc6
Hans de Goede c8dfc6 
diff --git a/hw/usb/hcd-ehci.c b/hw/usb/hcd-ehci.c
Hans de Goede c8dfc6 
index 017342b..9523247 100644
Hans de Goede c8dfc6 
--- a/hw/usb/hcd-ehci.c
Hans de Goede c8dfc6 
+++ b/hw/usb/hcd-ehci.c
Hans de Goede c8dfc6 
@@ -1481,10 +1481,6 @@ static void ehci_execute_complete(EHCIQueue *q)
Hans de Goede c8dfc6 
             assert(0);
Hans de Goede c8dfc6 
             break;
Hans de Goede c8dfc6 
         }
Hans de Goede c8dfc6 
-    } else if ((p->usb_status > p->tbytes) && (p->pid == USB_TOKEN_IN)) {
Hans de Goede c8dfc6 
-        p->usb_status = USB_RET_BABBLE;
Hans de Goede c8dfc6 
-        q->qh.token |= (QTD_TOKEN_HALT | QTD_TOKEN_BABBLE);
Hans de Goede c8dfc6 
-        ehci_raise_irq(q->ehci, USBSTS_ERRINT);
Hans de Goede c8dfc6 
     } else {
Hans de Goede c8dfc6 
         // TODO check 4.12 for splits
Hans de Goede c8dfc6
Hans de Goede c8dfc6 
diff --git a/hw/usb/hcd-uhci.c b/hw/usb/hcd-uhci.c
Hans de Goede c8dfc6 
index b0db921..c7c8786 100644
Hans de Goede c8dfc6 
--- a/hw/usb/hcd-uhci.c
Hans de Goede c8dfc6 
+++ b/hw/usb/hcd-uhci.c
Hans de Goede c8dfc6 
@@ -729,11 +729,6 @@ static int uhci_complete_td(UHCIState *s, UHCI_TD *td, UHCIAsync *async, uint32_
Hans de Goede c8dfc6 
         *int_mask |= 0x01;
Hans de Goede c8dfc6
Hans de Goede c8dfc6 
     if (pid == USB_TOKEN_IN) {
Hans de Goede c8dfc6 
-        if (len > max_len) {
Hans de Goede c8dfc6 
-            ret = USB_RET_BABBLE;
Hans de Goede c8dfc6 
-            goto out;
Hans de Goede c8dfc6 
-        }
Hans de Goede c8dfc6 
-
Hans de Goede c8dfc6 
         if ((td->ctrl & TD_CTRL_SPD) && len < max_len) {
Hans de Goede c8dfc6 
             *int_mask |= 0x02;
Hans de Goede c8dfc6 
             /* short packet: do not update QH */
Hans de Goede c8dfc6 
--
5544c1 
1.7.12.1
Hans de Goede c8dfc6

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation