[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Qemu-ppc] [PULL 10/33] spapr_rtas: Prevent QEMU crash during hotplug wi
From: |
David Gibson |
Subject: |
[Qemu-ppc] [PULL 10/33] spapr_rtas: Prevent QEMU crash during hotplug without a prior device_add |
Date: |
Mon, 21 Sep 2015 11:06:05 +1000 |
From: Bharata B Rao <address@hidden>
If drmgr is used in the guest to hotplug a device before a device_add
has been issued via the QEMU monitor, QEMU segfaults in configure_connector
call. This occurs due to accessing of NULL FDT which otherwise would have
been created and associated with the DRC during device_add command.
Check for NULL FDT and return failure from configure_connector call.
As per PAPR+, an error value of -9003 seems appropriate for this failure.
Signed-off-by: Bharata B Rao <address@hidden>
Cc: Michael Roth <address@hidden>
Reviewed-by: David Gibson <address@hidden>
Signed-off-by: David Gibson <address@hidden>
---
hw/ppc/spapr_rtas.c | 6 ++++++
include/hw/ppc/spapr_drc.h | 15 ++++++++-------
2 files changed, 14 insertions(+), 7 deletions(-)
diff --git a/hw/ppc/spapr_rtas.c b/hw/ppc/spapr_rtas.c
index 5cbf9a0..2f8e25c 100644
--- a/hw/ppc/spapr_rtas.c
+++ b/hw/ppc/spapr_rtas.c
@@ -522,6 +522,12 @@ static void rtas_ibm_configure_connector(PowerPCCPU *cpu,
drck = SPAPR_DR_CONNECTOR_GET_CLASS(drc);
fdt = drck->get_fdt(drc, NULL);
+ if (!fdt) {
+ DPRINTF("rtas_ibm_configure_connector: Missing FDT for DRC index:
%xh\n",
+ drc_index);
+ rc = SPAPR_DR_CC_RESPONSE_NOT_CONFIGURABLE;
+ goto out;
+ }
ccs = spapr_ccs_find(spapr, drc_index);
if (!ccs) {
diff --git a/include/hw/ppc/spapr_drc.h b/include/hw/ppc/spapr_drc.h
index 60cda35..28ffeae 100644
--- a/include/hw/ppc/spapr_drc.h
+++ b/include/hw/ppc/spapr_drc.h
@@ -119,13 +119,14 @@ typedef enum {
} sPAPRDREntitySense;
typedef enum {
- SPAPR_DR_CC_RESPONSE_NEXT_SIB = 1, /* currently unused */
- SPAPR_DR_CC_RESPONSE_NEXT_CHILD = 2,
- SPAPR_DR_CC_RESPONSE_NEXT_PROPERTY = 3,
- SPAPR_DR_CC_RESPONSE_PREV_PARENT = 4,
- SPAPR_DR_CC_RESPONSE_SUCCESS = 0,
- SPAPR_DR_CC_RESPONSE_ERROR = -1,
- SPAPR_DR_CC_RESPONSE_CONTINUE = -2,
+ SPAPR_DR_CC_RESPONSE_NEXT_SIB = 1, /* currently unused */
+ SPAPR_DR_CC_RESPONSE_NEXT_CHILD = 2,
+ SPAPR_DR_CC_RESPONSE_NEXT_PROPERTY = 3,
+ SPAPR_DR_CC_RESPONSE_PREV_PARENT = 4,
+ SPAPR_DR_CC_RESPONSE_SUCCESS = 0,
+ SPAPR_DR_CC_RESPONSE_ERROR = -1,
+ SPAPR_DR_CC_RESPONSE_CONTINUE = -2,
+ SPAPR_DR_CC_RESPONSE_NOT_CONFIGURABLE = -9003,
} sPAPRDRCCResponse;
typedef void (spapr_drc_detach_cb)(DeviceState *d, void *opaque);
--
2.4.3
- [Qemu-ppc] [PULL 00/33] spapr-next queue 2015-09-16, David Gibson, 2015/09/20
- [Qemu-ppc] [PULL 01/33] spapr: Provide an error message when migration fails due to htab_shift mismatch, David Gibson, 2015/09/20
- [Qemu-ppc] [PULL 05/33] spapr: Make ibm, change-msi respect 3 return values, David Gibson, 2015/09/20
- [Qemu-ppc] [PULL 08/33] spapr_drc: Fix potential undefined behaviour, David Gibson, 2015/09/20
- [Qemu-ppc] [PULL 07/33] spapr: add dumpdtb support, David Gibson, 2015/09/20
- [Qemu-ppc] [PULL 03/33] spapr: Add /ibm,partition-name, David Gibson, 2015/09/20
- [Qemu-ppc] [PULL 10/33] spapr_rtas: Prevent QEMU crash during hotplug without a prior device_add,
David Gibson <=
- [Qemu-ppc] [PULL 06/33] spapr: SPLPAR Characteristics, David Gibson, 2015/09/20
- [Qemu-ppc] [PULL 09/33] ppc/spapr: Use qemu_log_mask() for hcall_dprintf(), David Gibson, 2015/09/20
- [Qemu-ppc] [PULL 04/33] spapr: Add /rtas/ibm,change-msix-capable, David Gibson, 2015/09/20
- [Qemu-ppc] [PULL 16/33] spapr_pci: fix device tree props for MSI/MSI-X, David Gibson, 2015/09/20
- [Qemu-ppc] [PULL 14/33] pseries: Fix incorrect calculation of threads per socket for chip-id, David Gibson, 2015/09/20
- [Qemu-ppc] [PULL 02/33] spapr: Create pseries-2.5 machine, David Gibson, 2015/09/20
- [Qemu-ppc] [PULL 11/33] sPAPR: Introduce rtas_ldq(), David Gibson, 2015/09/20
- [Qemu-ppc] [PULL 27/33] spapr: Provide better error message when slots exceed max allowed, David Gibson, 2015/09/20
- [Qemu-ppc] [PULL 12/33] pseries: define coldplugged devices as "configured", David Gibson, 2015/09/20
- [Qemu-ppc] [PULL 24/33] spapr: Make hash table size a factor of maxram_size, David Gibson, 2015/09/20