xen-changelog

[Top] [All Lists]

[Xen-changelog] [xen-unstable] Fix the HVM save hypercall to avoid freei

from [Xen patchbot-unstable]

[Permanent Link][Original]

To:	xen-changelog@xxxxxxxxxxxxxxxxxxx
Subject:	[Xen-changelog] [xen-unstable] Fix the HVM save hypercall to avoid freeing an uninitalised pointer.
From:	Xen patchbot-unstable <patchbot-unstable@xxxxxxxxxxxxxxxxxxx>
Date:	Sat, 06 Dec 2008 04:20:15 -0800
Delivery-date:	Sat, 06 Dec 2008 04:21:18 -0800
Envelope-to:	www-data@xxxxxxxxxxxxxxxxxxx
List-help:	<mailto:xen-changelog-request@lists.xensource.com?subject=help>
List-id:	BK change log <xen-changelog.lists.xensource.com>
List-post:	<mailto:xen-changelog@lists.xensource.com>
List-subscribe:	<http://lists.xensource.com/mailman/listinfo/xen-changelog>, <mailto:xen-changelog-request@lists.xensource.com?subject=subscribe>
List-unsubscribe:	<http://lists.xensource.com/mailman/listinfo/xen-changelog>, <mailto:xen-changelog-request@lists.xensource.com?subject=unsubscribe>
Reply-to:	xen-devel@xxxxxxxxxxxxxxxxxxx
Sender:	xen-changelog-bounces@xxxxxxxxxxxxxxxxxxx

# HG changeset patch
# User Keir Fraser <keir.fraser@xxxxxxxxxx>
# Date 1228319664 0
# Node ID 00a15b45cae3b23ff557791c0f4debf6749c86cf
# Parent  2647c63be4cf33ece76b69a39e54821ef0786786
Fix the HVM save hypercall to avoid freeing an uninitalised pointer.

Signed-off-by: Tim Deegan <Tim.Deegan@xxxxxxxxxx>
---
 xen/arch/x86/domctl.c |   16 +++++-----------
 1 files changed, 5 insertions(+), 11 deletions(-)

diff -r 2647c63be4cf -r 00a15b45cae3 xen/arch/x86/domctl.c
--- a/xen/arch/x86/domctl.c     Wed Dec 03 15:12:19 2008 +0000
+++ b/xen/arch/x86/domctl.c     Wed Dec 03 15:54:24 2008 +0000
@@ -326,13 +326,9 @@ long arch_do_domctl(
 
     case XEN_DOMCTL_sethvmcontext:
     { 
-        struct hvm_domain_context c;
-        struct domain             *d;
-
-        c.cur = 0;
-        c.size = domctl->u.hvmcontext.size;
-        c.data = NULL;
-        
+        struct hvm_domain_context c = { .size = domctl->u.hvmcontext.size };
+        struct domain *d;
+
         ret = -ESRCH;
         if ( (d = rcu_lock_domain_by_id(domctl->domain)) == NULL )
             break;
@@ -367,8 +363,8 @@ long arch_do_domctl(
 
     case XEN_DOMCTL_gethvmcontext:
     { 
-        struct hvm_domain_context c;
-        struct domain             *d;
+        struct hvm_domain_context c = { 0 };
+        struct domain *d;
 
         ret = -ESRCH;
         if ( (d = rcu_lock_domain_by_id(domctl->domain)) == NULL )
@@ -382,9 +378,7 @@ long arch_do_domctl(
         if ( !is_hvm_domain(d) ) 
             goto gethvmcontext_out;
 
-        c.cur = 0;
         c.size = hvm_save_size(d);
-        c.data = NULL;
 
         if ( guest_handle_is_null(domctl->u.hvmcontext.buffer) )
         {

_______________________________________________
Xen-changelog mailing list
Xen-changelog@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-changelog

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Xen-changelog] [xen-unstable] Fix the HVM save hypercall to avoid freeing an uninitalised pointer., Xen patchbot-unstable <=

Previous by Date:	[Xen-changelog] [xen-unstable] Do not request domain shutdown if in S3 state during domain save., Xen patchbot-unstable
Next by Date:	[Xen-changelog] [xen-unstable] AMD IOMMU: Fix event log interrupt handling, Xen patchbot-unstable
Previous by Thread:	[Xen-changelog] [xen-unstable] Do not request domain shutdown if in S3 state during domain save., Xen patchbot-unstable
Next by Thread:	[Xen-changelog] [xen-unstable] AMD IOMMU: Fix event log interrupt handling, Xen patchbot-unstable
Indexes:	[Date] [Thread] [Top] [All Lists]