summaryrefslogtreecommitdiff
path: root/system/qemu/patches/qemu_pcnet.patch
blob: 25c89cd90bc373ead80634f905bddcdab480faf9 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18

index bdfd38f..68b9981 100644 (file)
--- a/hw/net/pcnet.c
+++ b/hw/net/pcnet.c
@@ -1241,6 +1241,14 @@ static void pcnet_transmit(PCNetState *s)
         }
 
         bcnt = 4096 - GET_FIELD(tmd.length, TMDL, BCNT);
+
+        /* if multi-tmd packet outsizes s->buffer then skip it silently.
+           Note: this is not what real hw does */
+        if (s->xmit_pos + bcnt > sizeof(s->buffer)) {
+            s->xmit_pos = -1;
+            goto txdone;
+        }
+
         s->phys_mem_read(s->dma_opaque, PHYSADDR(s, tmd.tbadr),
                          s->buffer + s->xmit_pos, bcnt, CSR_BSWP(s));
         s->xmit_pos += bcnt;
generated by cgit v1.2.3 (git 2.26.2) at 2024-11-23 21:34:13 +0000