qemu: avoid double free of qemu help output

If yajl was not compiled in, we end up freeing an incoming parameter, which leads to a bogus free later on. Regression introduced in commit 6e769eba. * src/qemu/qemu_capabilities.c (qemuCapsParseHelpStr): Avoid alloc on failure path, which in turn fixes bogus free. Reported by Cole Robinson.

qemu: avoid double free of qemu help output
If yajl was not compiled in, we end up freeing an incoming parameter, which leads to a bogus free later on. Regression introduced in commit 6e769eba. * src/qemu/qemu_capabilities.c (qemuCapsParseHelpStr): Avoid alloc on failure path, which in turn fixes bogus free. Reported by Cole Robinson.
ab6f1c98 · Eric Blake · 93f93f51 · ab6f1c98
隐藏空白更改
内联并排

Showing with 4 addition and 6 deletion

src/qemu/qemu_capabilities.c src/qemu/qemu_capabilities.c +4 -6

未找到文件。
--- a/src/qemu/qemu_capabilities.c
+++ b/src/qemu/qemu_capabilities.c
@@ -1330,16 +1330,14 @@ int qemuCapsParseHelpStr(const char *qemu,
 fail:
    p = strchr(help, '\n');
-    if (p)
+    if (!p)
-        p = strndup(help, p - help);
+        p = strchr(help, '\0');
    qemuReportError(VIR_ERR_INTERNAL_ERROR,
-                    _("cannot parse %s version number in '%s'"),
+                    _("cannot parse %s version number in '%.*s'"),
-                    qemu, p ? p : help);
+                    qemu, (int) (p - help), help);
 cleanup:
-    VIR_FREE(p);
    return -1;
 }