WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-devel] [PATCH] qemu-xen: fix segfault with empty cdroms

from [Ian Jackson] [Permanent Link][Original]
To: Stefano Stabellini <stefano.stabellini@xxxxxxxxxxxxx>
Subject: Re: [Xen-devel] [PATCH] qemu-xen: fix segfault with empty cdroms
From: Ian Jackson <Ian.Jackson@xxxxxxxxxxxxx>
Date: Fri, 11 Feb 2011 17:45:17 +0000
Cc: xen-devel@xxxxxxxxxxxxxxxxxxx
Delivery-date: Fri, 11 Feb 2011 09:45:56 -0800
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <alpine.DEB.2.00.1102111230350.2826@kaball-desktop>
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
Newsgroups: chiark.mail.xen.devel
References: <alpine.DEB.2.00.1102111230350.2826@kaball-desktop>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx 
Stefano Stabellini writes ("[Xen-devel] [PATCH] qemu-xen: fix segfault with 
empty cdroms"):
> When the cdrom is empty the params node in xenstore might be missing
> completely, cope with it instead of segfaulting.
...
>       blkdev->params = xenstore_read_be_str(&blkdev->xendev, "params");
> -        h = strchr(blkdev->params, ':');
> +        if (blkdev->params != NULL)
> +            h = strchr(blkdev->params, ':');

So blkdev->params may be 0.  In that case, we end up with:

              blkdev->fileproto = "<unset>";
              blkdev->filename  = blkdev->params;

so now ->filename may be 0.  Eventually,

              if (bdrv_open2(blkdev->bs, blkdev->filename, qflags,
                             bdrv_find_format(blkdev->fileproto)) != 0) {

Isn't that going to crash ?

Perhaps a clause needs to be added to:

      /* do we have all we need? */
      if (blkdev->params == NULL ||
          blkdev->mode == NULL   ||
          blkdev->type == NULL   ||
          blkdev->dev == NULL)
          return -1;

Ian.

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: [Xen-devel] xen-unstable on OL6 (RHEL6 clone) problems, Dan Magenheimer
Next by Date:  Re: [Xen-devel] [PATCH] qemu-xen: fix segfault with empty cdroms, Stefano Stabellini
Previous by Thread:  [Xen-devel] [PATCH] qemu-xen: fix segfault with empty cdroms, Stefano Stabellini
Next by Thread:  Re: [Xen-devel] [PATCH] qemu-xen: fix segfault with empty cdroms, Stefano Stabellini
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy