Re: [PATCH 2/6] block/mirror: fix use after free of local

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH 2/6] block/mirror: fix use after free of local_err

From:	Eric Blake
Subject:	Re: [PATCH 2/6] block/mirror: fix use after free of local_err
Date:	Tue, 24 Mar 2020 10:57:58 -0500
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.6.0

On 3/24/20 10:36 AM, Vladimir Sementsov-Ogievskiy wrote:

local_err is used again in mirror_exit_common() after
bdrv_set_backing_hd(), so we must zero it. Otherwise try to set
non-NULL local_err will crash.

Signed-off-by: Vladimir Sementsov-Ogievskiy <address@hidden>
---
  block/mirror.c | 1 +
  1 file changed, 1 insertion(+)


Reviewed-by: Eric Blake <address@hidden>


diff --git a/block/mirror.c b/block/mirror.c
index 447051dbc6..6203e5946e 100644
--- a/block/mirror.c
+++ b/block/mirror.c
@@ -678,6 +678,7 @@ static int mirror_exit_common(Job *job)
              bdrv_set_backing_hd(target_bs, backing, &local_err);
              if (local_err) {
                  error_report_err(local_err);
+                local_err = NULL;
                  ret = -EPERM;
              }
          }


--
Eric Blake, Principal Software Engineer
Red Hat, Inc.           +1-919-301-3226
Virtualization:  qemu.org | libvirt.org

[Prev in Thread]

Current Thread

[Next in Thread]

[PATCH for-5.0 0/6] Several error use-after-free, Vladimir Sementsov-Ogievskiy, 2020/03/24
- [PATCH 1/6] scripts/coccinelle: add error-use-after-free.cocci, Vladimir Sementsov-Ogievskiy, 2020/03/24
  - Re: [PATCH 1/6] scripts/coccinelle: add error-use-after-free.cocci, Markus Armbruster, 2020/03/31
    - Re: [PATCH 1/6] scripts/coccinelle: add error-use-after-free.cocci, Vladimir Sementsov-Ogievskiy, 2020/03/31
- [PATCH 2/6] block/mirror: fix use after free of local_err, Vladimir Sementsov-Ogievskiy, 2020/03/24
  - Re: [PATCH 2/6] block/mirror: fix use after free of local_err, Eric Blake <=
  - Re: [PATCH 2/6] block/mirror: fix use after free of local_err, John Snow, 2020/03/24
  - Re: [PATCH 2/6] block/mirror: fix use after free of local_err, Max Reitz, 2020/03/25
    - Re: [PATCH 2/6] block/mirror: fix use after free of local_err, Max Reitz, 2020/03/25
    - Re: [PATCH 2/6] block/mirror: fix use after free of local_err, Vladimir Sementsov-Ogievskiy, 2020/03/25
    - Re: [PATCH 2/6] block/mirror: fix use after free of local_err, Max Reitz, 2020/03/25
    - Re: [PATCH 2/6] block/mirror: fix use after free of local_err, Markus Armbruster, 2020/03/31
    - Re: [PATCH 2/6] block/mirror: fix use after free of local_err, Eric Blake, 2020/03/25
  - Re: [PATCH 2/6] block/mirror: fix use after free of local_err, Max Reitz, 2020/03/25
- [PATCH 3/6] dump/win_dump: fix use after free of err, Vladimir Sementsov-Ogievskiy, 2020/03/24
  - Re: [PATCH 3/6] dump/win_dump: fix use after free of err, Markus Armbruster, 2020/03/30

Prev by Date: Re: [PATCH for-5.0 0/6] Several error use-after-free
Next by Date: [PATCH for 5.0] block: fix bdrv_root_attach_child forget to unref child_bs
Previous by thread: [PATCH 2/6] block/mirror: fix use after free of local_err
Next by thread: Re: [PATCH 2/6] block/mirror: fix use after free of local_err
Index(es):
- Date
- Thread