[libvirt] [PATCH] Fix a invalid usage of virDomainNetDef in OpenVZ driver

John Ferlan jferlan at redhat.com
Wed Jun 5 15:42:02 UTC 2013 

On 06/04/2013 03:44 AM, Alvaro Polo wrote:
> OpenVZ was accessing ethernet data to obtain the guest iface name
> regardless the domain is configured to use ethernet or bridged
> networking. This prevented the guest network interface to be rightly
> named for bridged networking.
> ---
>  src/openvz/openvz_driver.c | 20 +++++++++++++-------
>  1 file changed, 13 insertions(+), 7 deletions(-)
> 
> diff --git a/src/openvz/openvz_driver.c b/src/openvz/openvz_driver.c
> index c8081ce..db738a4 100644
> --- a/src/openvz/openvz_driver.c
> +++ b/src/openvz/openvz_driver.c
> @@ -815,6 +815,7 @@ openvzDomainSetNetwork(virConnectPtr conn, const char *vpsid,
>      char host_macaddr[VIR_MAC_STRING_BUFLEN];
>      struct openvz_driver *driver =  conn->privateData;
>      virCommandPtr cmd = NULL;
> +    char *guest_ifname = NULL;
>  
>      if (net == NULL)
>         return 0;
> @@ -840,11 +841,15 @@ openvzDomainSetNetwork(virConnectPtr conn, const char *vpsid,
>          virBuffer buf = VIR_BUFFER_INITIALIZER;
>          int veid = openvzGetVEID(vpsid);
>  
> -        /* if user doesn't specify guest interface name,
> -         * then we need to generate it */
> -        if (net->data.ethernet.dev == NULL) {
> -            net->data.ethernet.dev = openvzGenerateContainerVethName(veid);
> -            if (net->data.ethernet.dev == NULL) {
> +        /* if net is ethernet and the user has specified guest interface name,
> +         * let's use it; otherwise generate a new one */
> +        if (net->type == VIR_DOMAIN_NET_TYPE_ETHERNET &&
> +            net->data.ethernet.dev != NULL) {

[1] I know this code was pushed, but see note below

> +            if (VIR_STRDUP(guest_ifname, net->data.ethernet.dev) == -1)
> +                goto cleanup;
> +        } else {
> +            guest_ifname = openvzGenerateContainerVethName(veid);
> +            if (guest_ifname == NULL) {
>                 virReportError(VIR_ERR_INTERNAL_ERROR, "%s",
>                                _("Could not generate eth name for container"));
>                 goto cleanup;
> @@ -862,7 +867,7 @@ openvzDomainSetNetwork(virConnectPtr conn, const char *vpsid,
>              }
>          }
>  
> -        virBufferAdd(&buf, net->data.ethernet.dev, -1); /* Guest dev */
> +        virBufferAdd(&buf, guest_ifname, -1); /* Guest dev */
>          virBufferAsprintf(&buf, ",%s", macaddr); /* Guest dev mac */
>          virBufferAsprintf(&buf, ",%s", net->ifname); /* Host dev */
>          virBufferAsprintf(&buf, ",%s", host_macaddr); /* Host dev mac */
> @@ -871,7 +876,7 @@ openvzDomainSetNetwork(virConnectPtr conn, const char *vpsid,
>              if (driver->version >= VZCTL_BRIDGE_MIN_VERSION) {
>                  virBufferAsprintf(&buf, ",%s", net->data.bridge.brname); /* Host bridge */
>              } else {
> -                virBufferAsprintf(configBuf, "ifname=%s", net->data.ethernet.dev);
> +                virBufferAsprintf(configBuf, "ifname=%s", guest_ifname);
>                  virBufferAsprintf(configBuf, ",mac=%s", macaddr); /* Guest dev mac */
>                  virBufferAsprintf(configBuf, ",host_ifname=%s", net->ifname); /* Host dev */
>                  virBufferAsprintf(configBuf, ",host_mac=%s", host_macaddr); /* Host dev mac */
> @@ -895,6 +900,7 @@ openvzDomainSetNetwork(virConnectPtr conn, const char *vpsid,
>  
>   cleanup:
>      virCommandFree(cmd);
> +    VIR_FREE(guest_ifname);
>      return rc;
>  }
>  
> 

[1] My nightly Coverity run had the following complaint as a result of this patch:


818  	    char *guest_ifname = NULL;
819  	

(1) Event cond_false: 	Condition "net == NULL", taking false branch

820  	    if (net == NULL)
821  	       return 0;

(2) Event cond_false: 	Condition "vpsid == NULL", taking false branch

822  	    if (vpsid == NULL) {
823  	        virReportError(VIR_ERR_INTERNAL_ERROR, "%s",
824  	                       _("Container ID is not specified"));
825  	        return -1;

(3) Event if_end: 	End of if statement

826  	    }
827  	

(4) Event cond_true: 	Condition "net->type != VIR_DOMAIN_NET_TYPE_BRIDGE", taking true branch
(5) Event cond_false: 	Condition "net->type != VIR_DOMAIN_NET_TYPE_ETHERNET", taking false branch

828  	    if (net->type != VIR_DOMAIN_NET_TYPE_BRIDGE &&
829  	        net->type != VIR_DOMAIN_NET_TYPE_ETHERNET)
830  	        return 0;
831  	
832  	    cmd = virCommandNewArgList(VZCTL, "--quiet", "set", vpsid, NULL);
833  	
834  	    virMacAddrFormat(&net->mac, macaddr);
835  	    virDomainNetGenerateMAC(driver->xmlopt, &host_mac);
836  	    virMacAddrFormat(&host_mac, host_macaddr);
837  	

(6) Event cond_false: 	Condition "net->type == VIR_DOMAIN_NET_TYPE_BRIDGE", taking false branch
(7) Event cond_true: 	Condition "net->type == VIR_DOMAIN_NET_TYPE_ETHERNET", taking true branch
(8) Event cond_true: 	Condition "net->data.ethernet.ipaddr == NULL", taking true branch

838  	    if (net->type == VIR_DOMAIN_NET_TYPE_BRIDGE ||
839  	        (net->type == VIR_DOMAIN_NET_TYPE_ETHERNET &&
840  	         net->data.ethernet.ipaddr == NULL)) {
841  	        virBuffer buf = VIR_BUFFER_INITIALIZER;
842  	        int veid = openvzGetVEID(vpsid);
843  	
844  	        /* if net is ethernet and the user has specified guest interface name,
845  	         * let's use it; otherwise generate a new one */

(9) Event cond_true: 	Condition "net->type == VIR_DOMAIN_NET_TYPE_ETHERNET", taking true branch
(10) Event cond_false: 	Condition "net->data.ethernet.dev != NULL", taking false branch
(12) Event var_compare_op: 	Comparing "net->data.ethernet.dev" to null implies that "net->data.ethernet.dev" might be null.
Also see events: 	[var_deref_model]

846  	        if (net->type == VIR_DOMAIN_NET_TYPE_ETHERNET &&
847  	            net->data.ethernet.dev != NULL) {
848  	            if (VIR_STRDUP(guest_ifname, net->data.ethernet.dev) == -1)
849  	                goto cleanup;

(11) Event else_branch: 	Reached else branch

850  	        } else {
851  	            guest_ifname = openvzGenerateContainerVethName(veid);

(13) Event cond_false: 	Condition "guest_ifname == NULL", taking false branch

852  	            if (guest_ifname == NULL) {
853  	               virReportError(VIR_ERR_INTERNAL_ERROR, "%s",
854  	                              _("Could not generate eth name for container"));
855  	               goto cleanup;

(14) Event if_end: 	End of if statement

856  	            }
857  	        }
858  	
859  	        /* if user doesn't specified host interface name,
860  	         * than we need to generate it */

(15) Event cond_true: 	Condition "net->ifname == NULL", taking true branch

861  	        if (net->ifname == NULL) {

(16) Event var_deref_model: 	Passing null pointer "net->data.ethernet.dev" to function "openvzGenerateVethName(int, char *)", which dereferences it. [details]
Also see events: 	[var_compare_op]

862  	            net->ifname = openvzGenerateVethName(veid, net->data.ethernet.dev);
863  	            if (net->ifname == NULL) {
864  	               virReportError(VIR_ERR_INTERNAL_ERROR, "%s",
865  	                              _("Could not generate veth name"));
866  	               goto cleanup;
867  	            }
868  	        }
869  

If I'm reading the code correctly, it seems replacing 'net->data.ethernet.dev' 
with 'guest_ifname' at line 862 will be the right solution. Doing so makes
Coverity happy.  Previously the code guarenteed data.ethernet.dev was filled
in with the openvzGenerateContainerVethName() result.


John

More information about the libvir-list mailing list