device_add: don't add a /peripheral link until init is complete

Otherwise we end up with a dangling reference which causes qdev_free() to fail. Reported-by: N Michael Tsirkin <mst@redhat.com> Signed-off-by: N Anthony Liguori <aliguori@us.ibm.com>

device_add: don't add a /peripheral link until init is complete
Otherwise we end up with a dangling reference which causes qdev_free() to fail. Reported-by: N Michael Tsirkin <mst@redhat.com> Signed-off-by: N Anthony Liguori <aliguori@us.ibm.com>
b2d4b3f7 · Anthony Liguori · 83f7d43a · b2d4b3f7
隐藏空白更改
内联并排

Showing with 10 addition and 8 deletion

hw/qdev-monitor.c hw/qdev-monitor.c +10 -8

未找到文件。
--- a/hw/qdev-monitor.c
+++ b/hw/qdev-monitor.c
@@ -457,6 +457,16 @@ DeviceState *qdev_device_add(QemuOpts *opts)
    id = qemu_opts_id(opts);
    if (id) {
        qdev->id = id;
+    }
+    if (qemu_opt_foreach(opts, set_property, qdev, 1) != 0) {
+        qdev_free(qdev);
+        return NULL;
+    }
+    if (qdev_init(qdev) < 0) {
+        qerror_report(QERR_DEVICE_INIT_FAILED, driver);
+        return NULL;
+    }
+    if (qdev->id) {
        object_property_add_child(qdev_get_peripheral(), qdev->id,
                                  OBJECT(qdev), NULL);
    } else {
@@ -466,14 +476,6 @@ DeviceState *qdev_device_add(QemuOpts *opts)
                                  OBJECT(qdev), NULL);
        g_free(name);
    }        
-    if (qemu_opt_foreach(opts, set_property, qdev, 1) != 0) {
-        qdev_free(qdev);
-        return NULL;
-    }
-    if (qdev_init(qdev) < 0) {
-        qerror_report(QERR_DEVICE_INIT_FAILED, driver);
-        return NULL;
-    }
    qdev->opts = opts;
    return qdev;
 }