Hi: This series tries to fix a possible OOB during queueing packets through qemu_net_queue_append_iov(). This could happen when it tries to queue a packet whose size is larger than INT_MAX which may lead integer overflow. We've fixed similar issue in the past during qemu_net_queue_deliver_iov() by ignoring large packets there. Let's just move the check earlier to qemu_sendv_packet_async() and reduce the limitation to NET_BUFSIZE. A simple qtest were also added this.
Please review. Thanks Jason Wang (4): net: drop too large packet early virtio-net-test: remove unused macro virtio-net-test: accept variable length argument in pci_test_start() virtio-net-test: add large tx buffer test net/net.c | 13 +++++---- tests/virtio-net-test.c | 63 ++++++++++++++++++++++++++++++++++++----- 2 files changed, 63 insertions(+), 13 deletions(-) -- 2.17.1
