1. 10 12月, 2012 40 次提交
    • C
      Prep for release 0.10.2.2 · 475b0044
      Cole Robinson 提交于
      475b0044
    • M
      dnsmasq: Fix parsing of the version number · 88e3b40e
      Michal Privoznik 提交于
      If debugging is enabled, the debug messages are sent to stderr.
      Moreover, if a command has catching of stderr set, the messages
      gets mixed with stdout output (assuming both outputs are stored
      in the same variable). The resulting string then doesn't
      necessarily have to start with desired prefix then. This bug
      exposes itself when parsing dnsmasq output:
      
      2012-12-06 11:18:11.445+0000: 18491: error :
      dnsmasqCapsSetFromBuffer:664 : internal error cannot parse
      /usr/sbin/dnsmasq version number in '2012-12-06
      11:11:02.232+0000: 18492: debug : virFileClose:72 : Closed fd 22'
      
      We can clearly see that the output of dnsmasq --version doesn't
      start with expected "Dnsmasq version " string but a libvirt debug
      output.
      (cherry picked from commit ff33f807)
      88e3b40e
    • M
      dnsmasq: Fix parsing of the version number · 0617864e
      Michal Privoznik 提交于
      If the debugging is enabled, the virCommand subsystem catches debug
      messages in the command output as well. In that case, we can't assume
      the string corresponding to command's stdout will start with specific
      prefix. But the prefix can be moved deeper in the string. This bug
      shows itself when parsing dnsmasq output:
      
      2012-12-06 11:18:11.445+0000: 18491: error :
      dnsmasqCapsSetFromBuffer:664 : internal error cannot parse
      /usr/sbin/dnsmasq version number in '2012-12-06 11:11:02.232+0000:
      18492: debug : virFileClose:72 : Closed fd 22'
      
      We can clearly see that the output of dnsmasq --version
      doesn't start with expected "Dnsmasq version " string but a libvirt
      debug output.
      (cherry picked from commit 51144313)
      0617864e
    • O
      storage: Error out earlier if the volume target path already exists · 9b625cbc
      Osier Yang 提交于
      https://bugzilla.redhat.com/show_bug.cgi?id=832302
      
      It's odd to fall through to buildVol, and the existed file is
      removed when buildVol fails. This checks if the volume target
      path already exists in createVol. The reason for not using
      error like "Volume already exists" is that there isn't volume
      maintained by libvirt for the path until a operation like
      pool-refresh, using error like that will just cause confusion.
      (cherry picked from commit d1f3d149)
      9b625cbc
    • D
      remote: Avoid the thread race condition · 97743435
      Daniel P. Berrange 提交于
      https://bugzilla.redhat.com/show_bug.cgi?id=866524
      
      Since the virConnect object is not locked wholely when doing
      virConenctDispose, a thread can get the lock and thus might
      cause the race.
      
      Detected by valgrind:
      
      ==23687== Invalid read of size 4
      ==23687==    at 0x38BAA091EC: pthread_mutex_lock (pthread_mutex_lock.c:61)
      ==23687==    by 0x3FBA919E36: remoteClientCloseFunc (remote_driver.c:337)
      ==23687==    by 0x3FBA936BF2: virNetClientCloseLocked (virnetclient.c:688)
      ==23687==    by 0x3FBA9390D8: virNetClientIncomingEvent (virnetclient.c:1859)
      ==23687==    by 0x3FBA851AAE: virEventPollRunOnce (event_poll.c:485)
      ==23687==    by 0x3FBA850846: virEventRunDefaultImpl (event.c:247)
      ==23687==    by 0x40CD61: vshEventLoop (virsh.c:2128)
      ==23687==    by 0x3FBA8626F8: virThreadHelper (threads-pthread.c:161)
      ==23687==    by 0x38BAA077F0: start_thread (pthread_create.c:301)
      ==23687==    by 0x33F68E570C: clone (clone.S:115)
      ==23687==  Address 0x4ca94e0 is 144 bytes inside a block of size 312 free'd
      ==23687==    at 0x4A0595D: free (vg_replace_malloc.c:366)
      ==23687==    by 0x3FBA8588B8: virFree (memory.c:309)
      ==23687==    by 0x3FBA86AAFC: virObjectUnref (virobject.c:145)
      ==23687==    by 0x3FBA8EA767: virConnectClose (libvirt.c:1458)
      ==23687==    by 0x40C8B8: vshDeinit (virsh.c:2584)
      ==23687==    by 0x41071E: main (virsh.c:3022)
      
      The above race is caused by the eventLoop thread tries to handle
      the net client event by calling the callback set by:
          virNetClientSetCloseCallback(priv->client,
                                       remoteClientCloseFunc,
                                       conn, NULL);
      
      I.E. remoteClientCloseFunc, which lock/unlock the virConnect object.
      
      This patch is to fix the bug by setting the callback to NULL when
      doRemoteClose.
      (cherry picked from commit b362938e)
      97743435
    • J
      qemu: Don't free PCI device if adding it to activePciHostdevs fails · 9034c928
      Jiri Denemark 提交于
      The device is still referenced from pcidevs and freeing it would leave
      an invalid pointer there.
      (cherry picked from commit ea1a9b5f)
      9034c928
    • E
      build: fix incremental autogen.sh when no AUTHORS is present · 61874071
      Eric Blake 提交于
      Commit 71d12562 tried to fix a problem where rebasing an old
      branch on top of newer libvirt.git resulted in automake failing
      because of a missing AUTHORS file.  However, while the fix
      worked for an incremental 'make', it did not work for someone
      that directly reran './autogen.sh'.  Reported by Laine Stump.
      
      * autogen.sh (autoreconf): Check for same conditions as cfg.mk.
      * cfg.mk (_update_required): Add comments.
      (cherry picked from commit 55dc872b)
      61874071
    • J
      conf: prevent crash with no uuid in cephx auth secret · 8b60ff7f
      Ján Tomko 提交于
      Fix the null pointer access when UUID is not specified.
      Introduce a bool 'uuidUsable' to virStoragePoolAuthCephx that indicates
      if uuid was specified or not and use it instead of the pointless
      comparison of the static UUID array to NULL.
      Add an error message if both uuid and usage are specified.
      
      Fixes:
      Error: FORWARD_NULL (CWE-476):
      libvirt-0.10.2/src/conf/storage_conf.c:461: var_deref_model: Passing
          null pointer "uuid" to function "virUUIDParse(char const *, unsigned
          char *)", which dereferences it. (The dereference is assumed on the
          basis of the 'nonnull' parameter attribute.)
      Error: NO_EFFECT (CWE-398):
          libvirt-0.10.2/src/conf/storage_conf.c:979: array_null: Comparing an
          array to null is not useful: "src->auth.cephx.secret.uuid != NULL".
      (cherry picked from commit bc680e13)
      8b60ff7f
    • D
      Allow duration=0 for virsh nodesuspend · 68fb799b
      Daniel P. Berrange 提交于
      The virNodeSuspend API allows for a duration of 0, to mean no
      timed wakup. virsh needlessly forbids this though
      Signed-off-by: NDaniel P. Berrange <berrange@redhat.com>
      (cherry picked from commit 1cad5eba)
      68fb799b
    • D
      Quote client identity in SASL whitelist log message · 8a0bb98d
      Daniel P. Berrange 提交于
      When seeing a message
      
       virNetSASLContextCheckIdentity:146 : SASL client admin not allowed in whitelist
      
      it isn't immediately obvious that 'admin' is the identity
      being checked. Quote the string to make it more obvious
      (cherry picked from commit 07da0a6b)
      8a0bb98d
    • G
      Fix uninitialized variables · 34d3627a
      Guido Günther 提交于
      detecet by
      
      	http://honk.sigxcpu.org:8001/job/libvirt-build/348/console
      (cherry picked from commit d01e427e)
      34d3627a
    • J
      nwfilter: report an error on OOM · 0e78179d
      Ján Tomko 提交于
      Also removed some unreachable code found by coverity:
      libvirt-0.10.2/src/nwfilter/nwfilter_driver.c:259: unreachable: This
      code cannot be reached: "nwfilterDriverUnlock(driver...".
      (cherry picked from commit 4f9af085)
      0e78179d
    • J
      virsh: check the return value of virStoragePoolGetAutostart · 9720cc81
      Ján Tomko 提交于
      On error, virStoragePoolGetAutostart would return -1 leaving autostart
      untouched.
      
      Removed the misleading debug message as well.
      
      Error: CHECKED_RETURN (CWE-252):
      libvirt-0.10.2/tools/virsh-pool.c:1386: unchecked_value: No check of the
          return value of "virStoragePoolGetAutostart(pool, &autostart)".
      (cherry picked from commit e9d74a7a)
      9720cc81
    • J
      conf: fix uninitialized variable in virDomainListSnapshots · 2f4d266d
      Ján Tomko 提交于
      If allocation of names fails, list is uninitialized.
      (cherry picked from commit 892582f9)
      2f4d266d
    • J
      rpc: don't destroy xdr before creating it in virNetMessageEncodeHeader · e8d28ec3
      Ján Tomko 提交于
      On OOM, xdr_destroy got called even though it wasn't created yet.
      
      Found by coverity:
      Error: UNINIT (CWE-457):
          libvirt-0.10.2/src/rpc/virnetmessage.c:214: var_decl: Declaring
          variable "xdr" without initializer.
          libvirt-0.10.2/src/rpc/virnetmessage.c:219: cond_true: Condition
          "virReallocN(&msg->buffer, 1UL /* sizeof (*msg->buffer) */,
          msg->bufferLength) < 0", taking true branch
          libvirt-0.10.2/src/rpc/virnetmessage.c:221: goto: Jumping to label
          "cleanup"
          libvirt-0.10.2/src/rpc/virnetmessage.c:257: label: Reached label
          "cleanup"
          libvirt-0.10.2/src/rpc/virnetmessage.c:258: uninit_use: Using
          uninitialized value "xdr.x_ops".
      (cherry picked from commit 6e1fc355)
      e8d28ec3
    • J
      virsh: do timing even for unusable connections · caf1377a
      Ján Tomko 提交于
      Time values were uninitialized if the connection wasn't usable.
      (cherry picked from commit 8b235d40)
      caf1377a
    • J
      virsh: use correct sizeof when allocating cpumap · a565e20b
      Ján Tomko 提交于
      Found by coverity:
      Error: SIZEOF_MISMATCH (CWE-569):
          libvirt-0.10.2/tools/virsh-domain.c:4754: suspicious_sizeof: Passing
          argument "8UL /* sizeof (cpumap) */" to function
          "_vshCalloc(vshControl *, size_t, size_t, char const *, int)" and
          then casting the return value to "unsigned char *" is suspicious.
      
      Error: SIZEOF_MISMATCH (CWE-569):
          libvirt-0.10.2/tools/virsh-domain.c:4942: suspicious_sizeof: Passing
          argument "8UL /* sizeof (cpumap) */" to function
          "_vshCalloc(vshControl *, size_t, size_t, char const *, int)" and
          then casting the return value to "unsigned char *" is suspicious.
      (cherry picked from commit dc04b2a7)
      a565e20b
    • J
      util: fix virBitmap allocation in virProcessInfoGetAffinity · e4e5a4d3
      Ján Tomko 提交于
      Found by coverity:
      Error: REVERSE_INULL (CWE-476):
          libvirt-0.10.2/src/util/processinfo.c:141: deref_ptr: Directly
          dereferencing pointer "map".
          libvirt-0.10.2/src/util/processinfo.c:142: check_after_deref:
          Null-checking "map" suggests that it may be null, but it has already
          been dereferenced on all paths leading to the check.
      (cherry picked from commit 7730257d)
      e4e5a4d3
    • L
      network: fix crash when portgroup has no name · 2e7298d7
      Laine Stump 提交于
      This resolves: https://bugzilla.redhat.com/show_bug.cgi?id=879473
      
      The name attribute is required for portgroup elements (yes, the RNG
      specifies that), and there is code in libvirt that assumes it is
      non-null.  Unfortunately, the portgroup parsing function wasn't
      checking for lack of portgroup. One adverse result of this was that
      attempts to update a network by adding a portgroup with no name would
      cause libvirtd to segfault. For example:
      
         virsh net-update default add portgroup "<portgroup default='yes'/>"
      
      This patch causes virNetworkPortGroupParseXML to fail if no name is
      specified, thus avoiding any later problems.
      (cherry picked from commit 012d69df)
      2e7298d7
    • D
      Fix leak of virNetworkPtr in LXC startup failure path · 3926d857
      Daniel P. Berrange 提交于
      When starting an LXC guest with a virNetwork based NIC device,
      if the network was not active, the virNetworkPtr device would
      be leaked
      Signed-off-by: NDaniel P. Berrange <berrange@redhat.com>
      (cherry picked from commit 509ce943)
      3926d857
    • D
      Fix error reporting in virNetDevVethDelete · e69aaf2f
      Daniel P. Berrange 提交于
      In virNetDevVethDelete the virRun method will properly report
      errors, but when checking the exit status for non-zero exit
      code no error is reported
      Signed-off-by: NDaniel P. Berrange <berrange@redhat.com>
      (cherry picked from commit 0584d662)
      e69aaf2f
    • D
      Ensure transient def is removed if LXC start fails · dd35c8da
      Daniel P. Berrange 提交于
      When starting a container, newDef is initialized to a
      copy of 'def', but when startup fails newDef is never
      removed. This cause later attempts to use 'virDomainDefine'
      to lose the new data being defined.
      Signed-off-by: NDaniel P. Berrange <berrange@redhat.com>
      (cherry picked from commit 9d2bfc1c)
      dd35c8da
    • D
      Ensure failure to create macvtap device aborts LXC start · f928284b
      Daniel P. Berrange 提交于
      A mistaken initialization of 'ret' caused failure to create
      macvtap devices to be ignored. The libvirt_lxc process
      would later fail to start due to missing devices
      
      Also make sure code checks '< 0' and not '!= 0' since only
      -1 is considered an error condition
      Signed-off-by: NDaniel P. Berrange <berrange@redhat.com>
      (cherry picked from commit 43db9cf4)
      f928284b
    • D
      Avoid crash when LXC start fails with no interface target · 74aa3ffe
      Daniel P. Berrange 提交于
      If the <interface> device did not contain any <target>
      element, LXC would crash on a NULL pointer if starting
      the container failed
      Signed-off-by: NDaniel P. Berrange <berrange@redhat.com>
      (cherry picked from commit 68dceb63)
      74aa3ffe
    • D
      Specify name of target interface with macvlan error · 49ed3cd1
      Daniel P. Berrange 提交于
      When failing to create a macvlan interface, make sure the
      error message contains the name of the host interface
      Signed-off-by: NDaniel P. Berrange <berrange@redhat.com>
      (cherry picked from commit e11daa2b)
      49ed3cd1
    • D
      Treat missing driver cgroup as fatal in LXC driver · 1083e418
      Daniel P. Berrange 提交于
      The LXC driver relies on use of cgroups to kill off LXC processes
      in shutdown. If cgroups aren't available, we're unable to kill
      off processes, so we must treat lack of cgroups as a fatal startup
      error.
      Signed-off-by: NDaniel P. Berrange <berrange@redhat.com>
      (cherry picked from commit 7c5ba648)
      1083e418
    • D
      Ensure LXC container exits if cgroups setup fails · 7e3b1283
      Daniel P. Berrange 提交于
      The code setting up LXC cgroups used an 'rc' variable both
      for capturing the return value of methods it calls, and
      its own return status. The result was that several failures
      in setting up cgroups would actually result in success being
      returned.
      
      Use a separate 'ret' for tracking return value as per normal
      code design in other parts of libvirt
      Signed-off-by: NDaniel P. Berrange <berrange@redhat.com>
      (cherry picked from commit 8e1f0c38)
      7e3b1283
    • P
      lxc: Don't crash if no security driver is specified in libvirt_lxc · bf8efc33
      Peter Krempa 提交于
      When no security driver is specified libvirt_lxc segfaults as a debug
      message tries to access security labels for the container that are not
      present.
      
      This problem was introduced in commit 6c3cf57d.
      (cherry picked from commit 99a388e6)
      bf8efc33
    • P
      lxc: Avoid segfault of libvirt_lxc helper on early cleanup paths · fac1a19d
      Peter Krempa 提交于
      Early jumps to the cleanup label caused a crash of the libvirt_lxc
      container helper as the cleanup section called
      virLXCControllerDeleteInterfaces(ctrl) without checking the ctrl argument
      for NULL. The argument was de-referenced soon after.
      
      $ /usr/libexec/libvirt_lxc
      /usr/libexec/libvirt_lxc: missing --name argument for configuration
      Segmentation fault
      (cherry picked from commit 81efb13b)
      fac1a19d
    • J
      storage: fix logical volume cloning · 89cecbbe
      Ján Tomko 提交于
      Commit 258e06c8 removed setting of the volume type to
      VIR_STORAGE_VOL_BLOCK, which leads to failures in
      storageVolumeCreateXMLFrom.
      
      The type (and target.format) of the volume was set to zero. In
      virStorageBackendGetBuildVolFromFunction, this gets interpreted as
      VIR_STORAGE_FILE_NONE and the qemu-img tool is called with unknown
      "none" format.
      
      Bug: https://bugzilla.redhat.com/show_bug.cgi?id=879780
      (cherry picked from commit 70f0bbe8)
      89cecbbe
    • D
      Skip deleted timers when calculting next timeout · 1f45a323
      Daniel P. Berrange 提交于
      It is possible for there to be deleted timers when we
      calculate the next timeout, and they must be skipped.
      Signed-off-by: NDaniel P. Berrange <berrange@redhat.com>
      (cherry picked from commit afbd9667)
      1f45a323
    • D
      Warn if requesting update to non-existent timer/handle watch · 9d239b59
      Daniel P. Berrange 提交于
      The event code is a no-op if requested to update a non-existent
      timer/handle watch. This makes it hard to detect bugs in the
      caller who have passed bogus data. Add a VIR_WARN output in
      such cases, since the API does not allow for return errors.
      Signed-off-by: NDaniel P. Berrange <berrange@redhat.com>
      (cherry picked from commit 39064f0f)
      9d239b59
    • D
      Fix virDiskNameToIndex to actually ignore partition numbers · f45dded0
      Daniel P. Berrange 提交于
      The docs for virDiskNameToIndex claim it ignores partition
      numbers. In actual fact though, a code ordering bug means
      that a partition number will cause the code to accidentally
      multiply the result by 26.
      Signed-off-by: NDaniel P. Berrange <berrange@redhat.com>
      (cherry picked from commit 81d6c4de)
      f45dded0
    • M
      conf: Report sensible error for invalid disk name · 17921668
      Martin Kletzander 提交于
      The error "... but the cause is unknown" appeared for XMLs similar to
      this:
      
       <disk type='file' device='cdrom'>
         <driver name='qemu' type='raw'/>
         <source file='/dev/zero'/>
         <target dev='sr0'/>
       </disk>
      
      Notice unsupported disk type (for the driver), but also no address
      specified. The first part is not a problem and we should not abort
      immediately because of that, but the combination with the address
      unknown was causing an unspecified error.
      
      While fixing this, I added an error to one place where this return
      value was not managed properly.
      (cherry picked from commit 03cd6e4a)
      17921668
    • D
      Use virNetServerRun instead of custom main loop · adc0bc4c
      Daniel P. Berrange 提交于
      The LXC controller code currently directly invokes the
      libvirt main loop code. The problem is that this misses
      the cleanup of virNetServerClient connections that
      virNetServerRun takes care of.
      
      The result is that when libvirtd is stopped, the
      libvirt_lxc controller process gets stuck in a I/O loop.
      When libvirtd is then started again, it fails to connect
      to the controller and thus kills off the entire domain.
      Signed-off-by: NDaniel P. Berrange <berrange@redhat.com>
      (cherry picked from commit f33e43c2)
      adc0bc4c
    • O
      storage: Fix bug of fs pool destroying · 8b656700
      Osier Yang 提交于
      Regression introduced by commit 258e06c8, "ret" could be set to 1
      or 0 by virStorageBackendFileSystemIsMounted before goto cleanup.
      This could mislead the callers (up to the public API
      virStoragePoolDestroy) to return success even the underlying umount
      command fails.
      (cherry picked from commit f4ac0656)
      8b656700
    • J
      conf: add support for booting from redirected USB devices · 2484fb2e
      Ján Tomko 提交于
      Commit a4c19459 only added the
      QEMU capability flag, command line option and added the boot element
      for redirdev's in the XML schema.
      
      This patch adds support for parsing and writing the XML with redirdevs
      with the boot flag. It also ignores unknown XML elements in redirdev
      instead of failing with:
      "error: An error occurred, but the cause is unknown"
      
      Bug: https://bugzilla.redhat.com/show_bug.cgi?id=805414
      (cherry picked from commit cc244e24)
      2484fb2e
    • L
      qemu: allow larger discrepency between memory & currentMemory in domain xml · b300c71f
      Laine Stump 提交于
      This resolves:
      
        https://bugzilla.redhat.com/show_bug.cgi?id=873134
      
      The reported problem is that an attempt to restore a saved domain that
      was configured with <currentMemory> and <memory> set to some (same for
      both) number that's not a multiple of 4096KiB results in an error like
      this:
      
        error: Failed to start domain libvirt_test_api
        error: XML error: current memory '4001792k' exceeds maximum '4000768k'
      
      (in this case, currentMemory was set to 4000000KiB).
      
      The reason for this failure is:
      
      1) a saved image contains the "live xml" of the domain at the time of
      the save.
      
      2) the live xml of a running domain gets its currentMemory
      (a.k.a. cur_balloon) directly from the qemu monitor rather than from
      the configuration of the domain.
      
      3) the value reported by qemu is (sometimes) not exactly what was
      originally given to qemu when the domain was started, but is rounded
      up to [some indeterminate granularity] - in some versions of qemu that
      granularity is apparently 1MiB, and in others it is 4MiB.
      
      4) When the XML is parsed to setup the state of the restored domain,
      the XML parser for <currentMemory> compares it to <memory> (which is
      the maximum allowed memory size for the domain) and if <currentMemory>
      is greater than the next 1024KiB boundary above <memory>, it spits out
      an error and fails.
      
      For example (from the BZ) if you start qemu on RHEL6 with both
      <currentMemory> and <memory> of 4000000 (this number is in KiB),
      libvirt's dominfo or dumpxml will report "4001792" back (rounded up to
      next 4MiB) for 10-20 seconds after the start, then revert to reporting
      "4000000". On Fedora 16 (which uses qemu-1.0), it will instead report
      "4000768" (rounded up to next 1MiB). On Fedora 17 (qemu-1.2), it seems
      to always report "4000000". ("4000000" is of course okay, and
      "4000768" is also okay since that's the next 1024KiB boundary above
      "4000000" and the parser was already allowing for that. But "4001792
      is *not* okay and produces the error message.)
      
      This patch solves the problem by changing the allowed "fudge factor"
      when parsing from 1024KiB to 4096KiB to match the maximum up-rounding
      that could be done in qemu.
      
      (I had earlier thought to fix this by up-rounding <memory> in the
      dumpxml that's put into the saved image, but that wouldn't have fixed
      the case where the save image was produced by an "unfixed"
      libvirtd.)
      (cherry picked from commit 89204fca)
      b300c71f
    • E
      nodeinfo: support kernels that lack socket information · ddf4a85d
      Eric Blake 提交于
      On RHEL 5, I was getting a segfault trying to start libvirtd,
      because we were failing virNodeParseSocket but not checking
      for errors, and then calling CPU_SET(-1, &sock_map) as a result.
      But if you don't have a topology/physical_package_id file,
      then you can just assume that the cpu belongs to socket 0.
      
      * src/nodeinfo.c (virNodeGetCpuValue): Change bool into
      default_value.
      (virNodeParseSocket): Allow for default value when file is missing,
      different from fatal error on reading file.
      (virNodeParseNode): Update call sites to fail on error.
      (cherry picked from commit 47976b48)
      ddf4a85d
    • J
      ec48fd7d