yeahuh / rpms / qemu-kvm

Forked from rpms/qemu-kvm 2 years ago
Clone

Blame SOURCES/kvm-s390-avoid-potential-null-dereference-in-s390_pcihos.patch

b38b0f
From fae9b269df8dc92176dad05824d8f8e911fb8269 Mon Sep 17 00:00:00 2001
b38b0f
From: Cornelia Huck <cohuck@redhat.com>
b38b0f
Date: Wed, 17 Apr 2019 13:57:26 +0100
b38b0f
Subject: [PATCH 09/24] s390: avoid potential null dereference in
b38b0f
 s390_pcihost_unplug()
b38b0f
MIME-Version: 1.0
b38b0f
Content-Type: text/plain; charset=UTF-8
b38b0f
Content-Transfer-Encoding: 8bit
b38b0f
b38b0f
RH-Author: Cornelia Huck <cohuck@redhat.com>
b38b0f
Message-id: <20190417135741.25297-10-cohuck@redhat.com>
b38b0f
Patchwork-id: 85790
b38b0f
O-Subject: [RHEL-8.1.0 qemu-kvm PATCH v2 09/24] s390: avoid potential null dereference in s390_pcihost_unplug()
b38b0f
Bugzilla: 1699070
b38b0f
RH-Acked-by: David Hildenbrand <david@redhat.com>
b38b0f
RH-Acked-by: Thomas Huth <thuth@redhat.com>
b38b0f
RH-Acked-by: Philippe Mathieu-Daudé <philmd@redhat.com>
b38b0f
RH-Acked-by: Jens Freimann <jfreimann@redhat.com>
b38b0f
b38b0f
From: Li Qiang <liq3ea@163.com>
b38b0f
b38b0f
When getting the 'pbdev', the if...else has no default branch.
b38b0f
>From Coverity, the 'pbdev' maybe null when the 'dev' is not
b38b0f
the TYPE_PCI_BRIDGE/TYPE_PCI_DEVICE/TYPE_S390_PCI_DEVICE.
b38b0f
This patch adds a default branch for device plug and unplug.
b38b0f
b38b0f
Spotted by Coverity: CID 1398593
b38b0f
b38b0f
Signed-off-by: Li Qiang <liq3ea@163.com>
b38b0f
Message-Id: <20190108151114.33140-1-liq3ea@163.com>
b38b0f
Reviewed-by: David Hildenbrand <david@redhat.com>
b38b0f
Reviewed-by: Halil Pasic <pasic@linux.ibm.com>
b38b0f
Reviewed-by: Collin Walling <walling@linux.ibm.com>
b38b0f
Signed-off-by: Cornelia Huck <cohuck@redhat.com>
b38b0f
(cherry picked from commit 6ed675c92a80ff83638eef5e12d4aac529c12f93)
b38b0f
Signed-off-by: Cornelia Huck <cohuck@redhat.com>
b38b0f
Signed-off-by: Danilo C. L. de Paula <ddepaula@redhat.com>
b38b0f
---
b38b0f
 hw/s390x/s390-pci-bus.c | 4 ++++
b38b0f
 1 file changed, 4 insertions(+)
b38b0f
b38b0f
diff --git a/hw/s390x/s390-pci-bus.c b/hw/s390x/s390-pci-bus.c
b38b0f
index 9c444b6..486c4b6 100644
b38b0f
--- a/hw/s390x/s390-pci-bus.c
b38b0f
+++ b/hw/s390x/s390-pci-bus.c
b38b0f
@@ -916,6 +916,8 @@ static void s390_pcihost_plug(HotplugHandler *hotplug_dev, DeviceState *dev,
b38b0f
         pbdev->fh = pbdev->idx;
b38b0f
         QTAILQ_INSERT_TAIL(&s->zpci_devs, pbdev, link);
b38b0f
         g_hash_table_insert(s->zpci_table, &pbdev->idx, pbdev);
b38b0f
+    } else {
b38b0f
+        g_assert_not_reached();
b38b0f
     }
b38b0f
 }
b38b0f
 
b38b0f
@@ -960,6 +962,8 @@ static void s390_pcihost_unplug(HotplugHandler *hotplug_dev, DeviceState *dev,
b38b0f
     } else if (object_dynamic_cast(OBJECT(dev), TYPE_S390_PCI_DEVICE)) {
b38b0f
         pbdev = S390_PCI_DEVICE(dev);
b38b0f
         pci_dev = pbdev->pdev;
b38b0f
+    } else {
b38b0f
+        g_assert_not_reached();
b38b0f
     }
b38b0f
 
b38b0f
     switch (pbdev->state) {
b38b0f
-- 
b38b0f
1.8.3.1
b38b0f