Re: [PATCH v2 14/14] qga: Fix qmp_guest_suspend

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v2 14/14] qga: Fix qmp_guest_suspend_{disk, ram}() error hand

From:	Philippe Mathieu-Daudé
Subject:	Re: [PATCH v2 14/14] qga: Fix qmp_guest_suspend_{disk, ram}() error handling
Date:	Wed, 22 Apr 2020 18:07:04 +0200
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.5.0

On 4/22/20 5:17 PM, Markus Armbruster wrote:

Philippe Mathieu-Daudé <address@hidden> writes:

On 4/22/20 3:07 PM, Markus Armbruster wrote:

The Error ** argument must be NULL, &error_abort, &error_fatal, or a
pointer to a variable containing NULL.  Passing an argument of the
latter kind twice without clearing it in between is wrong: if the
first call sets an error, it no longer points to NULL for the second

qmp_guest_suspend_disk() and qmp_guest_suspend_ram() pass @local_err
first to check_suspend_mode(), then to acquire_privilege(), then to
execute_async().  Continuing after errors here can only end in tears.
For instance, we risk tripping error_setv()'s assertion.

Fixes: aa59637ea1c6a4c83430933f9c44c43e6c3f1b69
Fixes: f54603b6aa765514b2519e74114a2f417759d727
Cc: Michael Roth <address@hidden>
Signed-off-by: Markus Armbruster <address@hidden>
---
   qga/commands-win32.c | 14 ++++++++++++++
   1 file changed, 14 insertions(+)

diff --git a/qga/commands-win32.c b/qga/commands-win32.c
index 9717a8d52d..5ba56327dd 100644
--- a/qga/commands-win32.c
+++ b/qga/commands-win32.c
@@ -1322,9 +1322,16 @@ void qmp_guest_suspend_disk(Error **errp)
         *mode = GUEST_SUSPEND_MODE_DISK;
       check_suspend_mode(*mode, &local_err);
+    if (local_err) {
+        goto out;
+    }
       acquire_privilege(SE_SHUTDOWN_NAME, &local_err);
+    if (local_err) {
+        goto out;
+    }
       execute_async(do_suspend, mode, &local_err);
   +out:
       if (local_err) {


https://www.mail-archive.com/address@hidden/msg695647.html is
slightly different by removing the if() check.


It frees @mode unconditionally (marked --> below) I believe that's
wrong.  execute_async() runs do_suspend() in a new thread, and passes it
@mode.  do_suspend() frees it.


Oops I missed that, good catch!

Reviewed-by: Philippe Mathieu-Daudé <address@hidden>

           error_propagate(errp, local_err);
           g_free(mode);
@@ -1338,9 +1345,16 @@ void qmp_guest_suspend_ram(Error **errp)
         *mode = GUEST_SUSPEND_MODE_RAM;
       check_suspend_mode(*mode, &local_err);
+    if (local_err) {
+        goto out;
+    }
       acquire_privilege(SE_SHUTDOWN_NAME, &local_err);
+    if (local_err) {
+        goto out;
+    }
       execute_async(do_suspend, mode, &local_err);
   +out:
       if (local_err) {
           error_propagate(errp, local_err);
           g_free(mode);


    diff --git a/qga/commands-win32.c b/qga/commands-win32.c
    index b49920e201..8b66098056 100644
    --- a/qga/commands-win32.c
    +++ b/qga/commands-win32.c
    @@ -1341,13 +1341,18 @@ void qmp_guest_suspend_disk(Error **errp)

         *mode = GUEST_SUSPEND_MODE_DISK;
         check_suspend_mode(*mode, &local_err);
    +    if (local_err) {
    +        goto out;
    +    }
         acquire_privilege(SE_SHUTDOWN_NAME, &local_err);
    +    if (local_err) {
    +        goto out;
    +    }
         execute_async(do_suspend, mode, &local_err);

    -    if (local_err) {
    -        error_propagate(errp, local_err);
    -        g_free(mode);
    -    }
    +out:
    +    error_propagate(errp, local_err);
-->+    g_free(mode);
     }

     void qmp_guest_suspend_ram(Error **errp)

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [PATCH v2 13/14] qga: Fix qmp_guest_get_memory_blocks() error handling, (continued)
- [PATCH v2 08/14] virtio-net: Fix duplex=... and speed=... error handling, Markus Armbruster, 2020/04/22
  - Re: [PATCH v2 08/14] virtio-net: Fix duplex=... and speed=... error handling, Michael S. Tsirkin, 2020/04/22
- [PATCH v2 02/14] block/file-posix: Fix check_cache_dropped() error handling, Markus Armbruster, 2020/04/22
- [PATCH v2 04/14] cpus: Proper range-checking for -icount shift=N, Markus Armbruster, 2020/04/22
- [PATCH v2 09/14] xen/pt: Fix flawed conversion to realize(), Markus Armbruster, 2020/04/22
- [PATCH v2 14/14] qga: Fix qmp_guest_suspend_{disk, ram}() error handling, Markus Armbruster, 2020/04/22
  - Re: [PATCH v2 14/14] qga: Fix qmp_guest_suspend_{disk, ram}() error handling, Eric Blake, 2020/04/22
  - Re: [PATCH v2 14/14] qga: Fix qmp_guest_suspend_{disk, ram}() error handling, Philippe Mathieu-Daudé, 2020/04/22
    - Re: [PATCH v2 14/14] qga: Fix qmp_guest_suspend_{disk, ram}() error handling, Markus Armbruster, 2020/04/22
    - Re: [PATCH v2 14/14] qga: Fix qmp_guest_suspend_{disk, ram}() error handling, Philippe Mathieu-Daudé <=
    - Re: [PATCH v2 14/14] qga: Fix qmp_guest_suspend_{disk, ram}() error handling, Markus Armbruster, 2020/04/23
- Re: [PATCH v2 00/14] Miscellaneous error handling fixes, no-reply, 2020/04/22
- Re: [PATCH v2 00/14] Miscellaneous error handling fixes, Markus Armbruster, 2020/04/29

Prev by Date: Re: [PATCH 5/9] block/io: expand in_flight inc/dec section: simple cases
Next by Date: Re: [PATCH v5 4/9] qcow2: Support BDRV_REQ_ZERO_WRITE for truncate
Previous by thread: Re: [PATCH v2 14/14] qga: Fix qmp_guest_suspend_{disk, ram}() error handling
Next by thread: Re: [PATCH v2 14/14] qga: Fix qmp_guest_suspend_{disk, ram}() error handling
Index(es):
- Date
- Thread