yep,I found this commit too, already patch this commit and test it, the bug
can not reproduce any more
原始邮件
发件人:Fiona Ebner
时间:2024年2月15日 18:29
收件人:M_O_Bz ,qemu-block
抄送:"deepa.srinivasan" ,qemu-devel
,ronniesahlberg ,pbonzini
,pl
主题:Re: double free or corru
From: zeroway
when the duration now - buft_start reach to some kind of value,
which will get the multiply hda_bytes_per_second(st) * (now - buft_start)
overflow,
instead of calculate the wanted_r/wpos from start time to current time,
here calculate the each timer tick delta data first in wanted_
I try to refine the code like below(only show the code i modify meaningful), I
calculate the each 1ms timer wanted_wpos which I named it wanted_wpos_delta
first instead of caculate the hole duration wanted_wpos in one time
and summer all of them to calcute the wanted_wpos
/* calcute each
