virtio-net: handle virtio_net_receive() errors

All these errors are caused by a buggy guest: let's switch the device to the broken state instead of terminating QEMU. Also we detach the element from the virtqueue and free it. Signed-off-by: Greg Kurz <groug@kaod.org> Reviewed-by: Cornelia Huck <cornelia.huck@de.ibm.com> Reviewed-by: Stefan Hajnoczi <stefanha@redhat.com> Reviewed-by: Michael S. Tsirkin <mst@redhat.com> Signed-off-by: Michael S. Tsirkin <mst@redhat.com>
author: Greg Kurz <groug@kaod.org> 2016-09-30 17:13:24 +0200
committer: Michael S. Tsirkin <mst@redhat.com> 2016-10-10 01:16:59 +0300
commit: ba10b9c0038e201d7ea28a9e3908928439ff7fa4 (patch)
tree: cf73a1111e76d7c9459b674e44d6dc8c9f83e057
parent: ba7eadb5927633d487064b518bf6fd001369e30c (diff)
1 files changed, 15 insertions, 12 deletions
diff --git a/hw/net/virtio-net.c b/hw/net/virtio-net.c
index a1584e1e67..5c0b2e0db5 100644
--- a/hw/net/virtio-net.c
+++ b/hw/net/virtio-net.c
@@ -1130,21 +1130,24 @@ static ssize_t virtio_net_receive(NetClientState *nc, const uint8_t *buf, size_t
 
         elem = virtqueue_pop(q->rx_vq, sizeof(VirtQueueElement));
         if (!elem) {
-            if (i == 0)
-                return -1;
-            error_report("virtio-net unexpected empty queue: "
-                         "i %zd mergeable %d offset %zd, size %zd, "
-                         "guest hdr len %zd, host hdr len %zd "
-                         "guest features 0x%" PRIx64,
-                         i, n->mergeable_rx_bufs, offset, size,
-                         n->guest_hdr_len, n->host_hdr_len,
-                         vdev->guest_features);
-            exit(1);
+            if (i) {
+                virtio_error(vdev, "virtio-net unexpected empty queue: "
+                             "i %zd mergeable %d offset %zd, size %zd, "
+                             "guest hdr len %zd, host hdr len %zd "
+                             "guest features 0x%" PRIx64,
+                             i, n->mergeable_rx_bufs, offset, size,
+                             n->guest_hdr_len, n->host_hdr_len,
+                             vdev->guest_features);
+            }
+            return -1;
         }
 
         if (elem->in_num < 1) {
-            error_report("virtio-net receive queue contains no in buffers");
-            exit(1);
+            virtio_error(vdev,
+                         "virtio-net receive queue contains no in buffers");
+            virtqueue_detach_element(q->rx_vq, elem, 0);
+            g_free(elem);
+            return -1;
         }
 
         sg = elem->in_sg;
author	Greg Kurz <groug@kaod.org>	2016-09-30 17:13:24 +0200
committer	Michael S. Tsirkin <mst@redhat.com>	2016-10-10 01:16:59 +0300
commit	ba10b9c0038e201d7ea28a9e3908928439ff7fa4 (patch)
tree	cf73a1111e76d7c9459b674e44d6dc8c9f83e057
parent	ba7eadb5927633d487064b518bf6fd001369e30c (diff)