* [Qemu-devel] [PATCH V4] net/colo-compare.c: Fix memory leak and code style issue.
@ 2019-07-21 8:58 Zhang Chen
2019-07-22 13:19 ` Peter Maydell
0 siblings, 1 reply; 3+ messages in thread
From: Zhang Chen @ 2019-07-21 8:58 UTC (permalink / raw)
To: Li Zhijian, Peter Maydell, Jason Wang, qemu-dev; +Cc: Zhang Chen, Zhang Chen
From: Zhang Chen <chen.zhang@intel.com>
This patch to fix the origin "char *data" memory leak, code style issue
and add necessary check here.
Reported-by: Coverity (CID 1402785)
Signed-off-by: Zhang Chen <chen.zhang@intel.com>
---
net/colo-compare.c | 28 +++++++++++++++++++++-------
1 file changed, 21 insertions(+), 7 deletions(-)
diff --git a/net/colo-compare.c b/net/colo-compare.c
index 909dd6c6eb..23c0d906ab 100644
--- a/net/colo-compare.c
+++ b/net/colo-compare.c
@@ -127,6 +127,17 @@ static int compare_chr_send(CompareState *s,
uint32_t vnet_hdr_len,
bool notify_remote_frame);
+static bool packet_matches_str(const char *str,
+ const uint8_t *buf,
+ uint32_t packet_len)
+{
+ if (packet_len != strlen(str)) {
+ return false;
+ }
+
+ return !memcmp(str, buf, strlen(str));
+}
+
static void notify_remote_frame(CompareState *s)
{
char msg[] = "DO_CHECKPOINT";
@@ -1008,21 +1019,24 @@ static void compare_notify_rs_finalize(SocketReadState *notify_rs)
{
CompareState *s = container_of(notify_rs, CompareState, notify_rs);
- /* Get Xen colo-frame's notify and handle the message */
- char *data = g_memdup(notify_rs->buf, notify_rs->packet_len);
- char msg[] = "COLO_COMPARE_GET_XEN_INIT";
+ const char msg[] = "COLO_COMPARE_GET_XEN_INIT";
int ret;
- if (!strcmp(data, "COLO_USERSPACE_PROXY_INIT")) {
+ if (packet_matches_str("COLO_USERSPACE_PROXY_INIT",
+ notify_rs->buf,
+ notify_rs->packet_len)) {
ret = compare_chr_send(s, (uint8_t *)msg, strlen(msg), 0, true);
if (ret < 0) {
error_report("Notify Xen COLO-frame INIT failed");
}
- }
-
- if (!strcmp(data, "COLO_CHECKPOINT")) {
+ } else if (packet_matches_str("COLO_CHECKPOINT",
+ notify_rs->buf,
+ notify_rs->packet_len)) {
/* colo-compare do checkpoint, flush pri packet and remove sec packet */
g_queue_foreach(&s->conn_list, colo_flush_packets, s);
+ } else {
+ error_report("COLO compare got unsupported instruction '%s'",
+ (char *)notify_rs->buf);
}
}
--
2.17.GIT
^ permalink raw reply related [flat|nested] 3+ messages in thread
* Re: [Qemu-devel] [PATCH V4] net/colo-compare.c: Fix memory leak and code style issue.
2019-07-21 8:58 [Qemu-devel] [PATCH V4] net/colo-compare.c: Fix memory leak and code style issue Zhang Chen
@ 2019-07-22 13:19 ` Peter Maydell
2019-07-22 17:14 ` Zhang, Chen
0 siblings, 1 reply; 3+ messages in thread
From: Peter Maydell @ 2019-07-22 13:19 UTC (permalink / raw)
To: Zhang Chen; +Cc: Jason Wang, qemu-dev, Li Zhijian, Zhang Chen
On Sun, 21 Jul 2019 at 10:04, Zhang Chen <chen.zhang@intel.com> wrote:
>
> From: Zhang Chen <chen.zhang@intel.com>
>
> This patch to fix the origin "char *data" memory leak, code style issue
> and add necessary check here.
> Reported-by: Coverity (CID 1402785)
>
> Signed-off-by: Zhang Chen <chen.zhang@intel.com>
> @@ -1008,21 +1019,24 @@ static void compare_notify_rs_finalize(SocketReadState *notify_rs)
> {
> CompareState *s = container_of(notify_rs, CompareState, notify_rs);
>
> - /* Get Xen colo-frame's notify and handle the message */
> - char *data = g_memdup(notify_rs->buf, notify_rs->packet_len);
> - char msg[] = "COLO_COMPARE_GET_XEN_INIT";
> + const char msg[] = "COLO_COMPARE_GET_XEN_INIT";
> int ret;
>
> - if (!strcmp(data, "COLO_USERSPACE_PROXY_INIT")) {
> + if (packet_matches_str("COLO_USERSPACE_PROXY_INIT",
> + notify_rs->buf,
> + notify_rs->packet_len)) {
> ret = compare_chr_send(s, (uint8_t *)msg, strlen(msg), 0, true);
> if (ret < 0) {
> error_report("Notify Xen COLO-frame INIT failed");
> }
> - }
> -
> - if (!strcmp(data, "COLO_CHECKPOINT")) {
> + } else if (packet_matches_str("COLO_CHECKPOINT",
> + notify_rs->buf,
> + notify_rs->packet_len)) {
> /* colo-compare do checkpoint, flush pri packet and remove sec packet */
> g_queue_foreach(&s->conn_list, colo_flush_packets, s);
> + } else {
> + error_report("COLO compare got unsupported instruction '%s'",
> + (char *)notify_rs->buf);
> }
The notify_rs->buf is not NUL-terminated, so you can't use it
in a %s format string like this. The simplest fix is just
to not try to print the contents of the incoming packet at all.
The rest of the patch looks good.
thanks
-- PMM
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [Qemu-devel] [PATCH V4] net/colo-compare.c: Fix memory leak and code style issue.
2019-07-22 13:19 ` Peter Maydell
@ 2019-07-22 17:14 ` Zhang, Chen
0 siblings, 0 replies; 3+ messages in thread
From: Zhang, Chen @ 2019-07-22 17:14 UTC (permalink / raw)
To: Peter Maydell; +Cc: Jason Wang, qemu-dev, Li Zhijian, Zhang Chen
> -----Original Message-----
> From: Peter Maydell [mailto:peter.maydell@linaro.org]
> Sent: Monday, July 22, 2019 9:19 PM
> To: Zhang, Chen <chen.zhang@intel.com>
> Cc: Li Zhijian <lizhijian@cn.fujitsu.com>; Jason Wang <jasowang@redhat.com>;
> qemu-dev <qemu-devel@nongnu.org>; Zhang Chen <zhangckid@gmail.com>
> Subject: Re: [PATCH V4] net/colo-compare.c: Fix memory leak and code style
> issue.
>
> On Sun, 21 Jul 2019 at 10:04, Zhang Chen <chen.zhang@intel.com> wrote:
> >
> > From: Zhang Chen <chen.zhang@intel.com>
> >
> > This patch to fix the origin "char *data" memory leak, code style
> > issue and add necessary check here.
> > Reported-by: Coverity (CID 1402785)
> >
> > Signed-off-by: Zhang Chen <chen.zhang@intel.com>
>
> > @@ -1008,21 +1019,24 @@ static void
> > compare_notify_rs_finalize(SocketReadState *notify_rs) {
> > CompareState *s = container_of(notify_rs, CompareState,
> > notify_rs);
> >
> > - /* Get Xen colo-frame's notify and handle the message */
> > - char *data = g_memdup(notify_rs->buf, notify_rs->packet_len);
> > - char msg[] = "COLO_COMPARE_GET_XEN_INIT";
> > + const char msg[] = "COLO_COMPARE_GET_XEN_INIT";
> > int ret;
> >
> > - if (!strcmp(data, "COLO_USERSPACE_PROXY_INIT")) {
> > + if (packet_matches_str("COLO_USERSPACE_PROXY_INIT",
> > + notify_rs->buf,
> > + notify_rs->packet_len)) {
> > ret = compare_chr_send(s, (uint8_t *)msg, strlen(msg), 0, true);
> > if (ret < 0) {
> > error_report("Notify Xen COLO-frame INIT failed");
> > }
> > - }
> > -
> > - if (!strcmp(data, "COLO_CHECKPOINT")) {
> > + } else if (packet_matches_str("COLO_CHECKPOINT",
> > + notify_rs->buf,
> > + notify_rs->packet_len)) {
> > /* colo-compare do checkpoint, flush pri packet and remove sec packet
> */
> > g_queue_foreach(&s->conn_list, colo_flush_packets, s);
> > + } else {
> > + error_report("COLO compare got unsupported instruction '%s'",
> > + (char *)notify_rs->buf);
> > }
>
> The notify_rs->buf is not NUL-terminated, so you can't use it in a %s format
> string like this. The simplest fix is just to not try to print the contents of the
> incoming packet at all.
>
> The rest of the patch looks good.
Thanks for reminding. I will remove it in next version.
Thanks
Zhang Chen
>
> thanks
> -- PMM
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2019-07-22 17:15 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2019-07-21 8:58 [Qemu-devel] [PATCH V4] net/colo-compare.c: Fix memory leak and code style issue Zhang Chen
2019-07-22 13:19 ` Peter Maydell
2019-07-22 17:14 ` Zhang, Chen
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).