From: Markus Armbruster <armbru@redhat.com>
To: qemu-devel@nongnu.org
Cc: Greg Kurz <groug@kaod.org>
Subject: [Qemu-devel] [PATCH v4 08/38] 9pfs: Fix CLI parsing crash on error
Date: Wed, 17 Oct 2018 10:26:32 +0200 [thread overview]
Message-ID: <20181017082702.5581-9-armbru@redhat.com> (raw)
In-Reply-To: <20181017082702.5581-1-armbru@redhat.com>
Calling error_report() in a function that takes an Error ** argument
is suspicious. 9p-handle.c's handle_parse_opts() does that, and then
fails without setting an error. Wrong. Its caller crashes when it
tries to report the error:
$ qemu-system-x86_64 -nodefaults -fsdev id=foo,fsdriver=handle
qemu-system-x86_64: -fsdev id=foo,fsdriver=handle: warning: handle backend is deprecated
qemu-system-x86_64: -fsdev id=foo,fsdriver=handle: fsdev: No path specified
Segmentation fault (core dumped)
Screwed up when commit 91cda4e8f37 (v2.12.0) converted the function to
Error. Fix by calling error_setg() instead of error_report().
Fixes: 91cda4e8f372602795e3a2f4bd2e3adaf9f82255
Cc: Greg Kurz <groug@kaod.org>
Signed-off-by: Markus Armbruster <armbru@redhat.com>
Acked-by: Greg Kurz <groug@kaod.org>
Reviewed-by: Eric Blake <eblake@redhat.com>
---
hw/9pfs/9p-handle.c | 6 ++++--
1 file changed, 4 insertions(+), 2 deletions(-)
diff --git a/hw/9pfs/9p-handle.c b/hw/9pfs/9p-handle.c
index f3641dbe4a..3465b1ef30 100644
--- a/hw/9pfs/9p-handle.c
+++ b/hw/9pfs/9p-handle.c
@@ -19,6 +19,7 @@
#include <grp.h>
#include <sys/socket.h>
#include <sys/un.h>
+#include "qapi/error.h"
#include "qemu/xattr.h"
#include "qemu/cutils.h"
#include "qemu/error-report.h"
@@ -655,12 +656,13 @@ static int handle_parse_opts(QemuOpts *opts, FsDriverEntry *fse, Error **errp)
warn_report("handle backend is deprecated");
if (sec_model) {
- error_report("Invalid argument security_model specified with handle fsdriver");
+ error_setg(errp,
+ "Invalid argument security_model specified with handle fsdriver");
return -1;
}
if (!path) {
- error_report("fsdev: No path specified");
+ error_setg(errp, "fsdev: No path specified");
return -1;
}
fse->path = g_strdup(path);
--
2.17.1
next prev parent reply other threads:[~2018-10-17 8:27 UTC|newest]
Thread overview: 52+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-10-17 8:26 [Qemu-devel] [PATCH v4 00/38] Replace some unwise uses of error_report() & friends Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 01/38] error: Fix use of error_prepend() with &error_fatal, &error_abort Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 02/38] Use error_fatal to simplify obvious fatal errors (again) Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 03/38] block: Use warn_report() & friends to report warnings Markus Armbruster
2018-10-17 13:50 ` Kevin Wolf
2018-10-17 17:29 ` Markus Armbruster
2018-10-18 11:10 ` Kevin Wolf
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 04/38] cpus hw target: " Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 05/38] vfio: " Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 06/38] vfio: Clean up error reporting after previous commit Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 07/38] char: Use error_printf() to print help and such Markus Armbruster
2018-10-17 8:26 ` Markus Armbruster [this message]
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 09/38] pc: Fix machine property nvdimm-persistence error handling Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 10/38] ioapic: Fix error handling in realize() Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 11/38] smbios: Clean up error handling in smbios_add() Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 12/38] migration: Fix !replay_can_snapshot() error handling Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 13/38] l2tpv3: Improve -netdev/netdev_add/-net/... error reporting Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 14/38] net/socket: Fix invalid socket type error handling Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 15/38] numa: Fix QMP command set-numa-node " Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 16/38] xen/pt: Fix incomplete conversion to realize() Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 17/38] seccomp: Clean up error reporting in parse_sandbox() Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 18/38] vl: Clean up error reporting in parse_add_fd() Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 19/38] qom: Clean up error reporting in user_creatable_add_opts_foreach() Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 20/38] vl: Clean up error reporting in chardev_init_func() Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 21/38] vl: Clean up error reporting in machine_set_property() Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 22/38] vl: Clean up error reporting in mon_init_func() Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 23/38] vl: Clean up error reporting in parse_fw_cfg() Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 24/38] vl: Clean up error reporting in device_init_func() Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 25/38] ui/keymaps: Fix handling of erroneous include files Markus Armbruster
2018-10-19 6:49 ` Gerd Hoffmann
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 26/38] ui: Convert vnc_display_init(), init_keyboard_layout() to Error Markus Armbruster
2018-10-19 6:51 ` Gerd Hoffmann
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 27/38] vnc: Clean up error reporting in vnc_init_func() Markus Armbruster
2018-10-19 6:52 ` Gerd Hoffmann
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 28/38] numa: Clean up error reporting in parse_numa() Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 29/38] tpm: Clean up error reporting in tpm_init_tpmdev() Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 30/38] spice: Clean up error reporting in add_channel() Markus Armbruster
2018-10-19 6:53 ` Gerd Hoffmann
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 31/38] fsdev: Clean up error reporting in qemu_fsdev_add() Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 32/38] vl: Assert drive_new() does not fail in default_drive() Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 33/38] blockdev: Convert drive_new() to Error Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 34/38] vl: Fix exit status for -drive format=help Markus Armbruster
2018-10-17 8:26 ` [Qemu-devel] [PATCH v4 35/38] vl: Simplify call of parse_name() Markus Armbruster
2018-10-17 8:27 ` [Qemu-devel] [PATCH v4 36/38] block: Clean up bdrv_img_create()'s error reporting Markus Armbruster
2018-10-17 13:47 ` Kevin Wolf
2018-10-17 8:27 ` [Qemu-devel] [PATCH v4 37/38] raw: Convert a warning to warn_report() Markus Armbruster
2018-10-17 13:45 ` Kevin Wolf
2018-10-17 17:34 ` Markus Armbruster
2018-10-19 9:37 ` Markus Armbruster
2018-10-17 8:27 ` [Qemu-devel] [PATCH v4 38/38] vpc: Fail open on bad header checksum Markus Armbruster
2018-10-17 13:10 ` Kevin Wolf
2018-10-17 17:34 ` Markus Armbruster
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20181017082702.5581-9-armbru@redhat.com \
--to=armbru@redhat.com \
--cc=groug@kaod.org \
--cc=qemu-devel@nongnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).