Fix crash on OOM in qemuDomainCCWAddressSetCreate()

If OOM occurs in qemuDomainCCWAddressSetCreate, it jumps to a cleanup block and frees the partially initialized object. It then mistakenly returns the address of the just free'd pointer instead of NULL. Signed-off-by: N Daniel P. Berrange <berrange@redhat.com>

Fix crash on OOM in qemuDomainCCWAddressSetCreate()
If OOM occurs in qemuDomainCCWAddressSetCreate, it jumps to a cleanup block and frees the partially initialized object. It then mistakenly returns the address of the just free'd pointer instead of NULL. Signed-off-by: N Daniel P. Berrange <berrange@redhat.com>
ba19783d · Daniel P. Berrange · f27490b7 · ba19783d
隐藏空白更改
内联并排

Showing with 4 addition and 4 deletion

src/qemu/qemu_command.c src/qemu/qemu_command.c +4 -4

未找到文件。
--- a/src/qemu/qemu_command.c
+++ b/src/qemu/qemu_command.c
@@ -1261,10 +1261,10 @@ qemuDomainCCWAddressSetCreate(void)
     qemuDomainCCWAddressSetPtr addrs = NULL;

    if (VIR_ALLOC(addrs) < 0)
-        goto cleanup;
+        goto error;

    if (!(addrs->defined = virHashCreate(10, qemuDomainCCWAddressSetFreeEntry)))
-        goto cleanup;
+        goto error;

    /* must use cssid = 0xfe (254) for virtio-ccw devices */
    addrs->next.cssid = 254;
@@ -1273,9 +1273,9 @@ qemuDomainCCWAddressSetCreate(void)
    addrs->next.assigned = 0;
    return addrs;

-cleanup:
+error:
    qemuDomainCCWAddressSetFree(addrs);
-    return addrs;
+    return NULL;
 }

 /*