diff options
author | Peter Maydell <peter.maydell@linaro.org> | 2011-12-01 19:37:17 +0100 |
---|---|---|
committer | Andrzej Zaborowski <balrog@zabor.org> | 2011-12-05 21:38:56 +0100 |
commit | 217bfb445b54db618a30f3a39170bebd9fd9dbf2 (patch) | |
tree | 2d262345822f5271ea2c6977b3ce484d06b4b7db /target-i386 | |
parent | 21d89f841a8ff547cfe7ba97952fe4d5054b0421 (diff) | |
download | qemu-217bfb445b54db618a30f3a39170bebd9fd9dbf2.zip qemu-217bfb445b54db618a30f3a39170bebd9fd9dbf2.tar.gz qemu-217bfb445b54db618a30f3a39170bebd9fd9dbf2.tar.bz2 |
hw/arm_gic.c: Ignore attempts to complete nonexistent IRQs
Ignore attempts to complete non-existent IRQs; this fixes a buffer
overrun if the guest writes a bad value to the GICC_EOIR register.
(This case is UNPREDICTABLE so ignoring it is a valid choice.)
Note that doing nothing if the guest writes 1023 to this register
is not in fact a change in behaviour: the old code would also
always do nothing in this case but in a non-obvious way.
(The buffer overrun was noted by Coverity, see bug 887883.)
Signed-off-by: Peter Maydell <peter.maydell@linaro.org>
Signed-off-by: Andrzej Zaborowski <andrew.zaborowski@intel.com>
Diffstat (limited to 'target-i386')
0 files changed, 0 insertions, 0 deletions