probing fixes

git-svn-id: svn://svn.savannah.nongnu.org/qemu/trunk@1425 c046a42c-6fe2-441c-8c8c-71466251a162
2005-04-28 21:09:32 +00:00 · 2005-04-28 21:09:32 +00:00 · 712e78744e
commit 712e78744e
parent 7c35359cbf
4 changed files with 42 additions and 27 deletions
--- a/block-cow.c
+++ b/block-cow.c
@ -54,7 +54,8 @@ static int cow_probe(const uint8_t *buf, int buf_size, const char *filename)
 {
    const struct cow_header_v2 *cow_header = (const void *)buf;

-    if (be32_to_cpu(cow_header->magic) == COW_MAGIC &&
+    if (buf_size >= sizeof(struct cow_header_v2) &&
+        be32_to_cpu(cow_header->magic) == COW_MAGIC &&
        be32_to_cpu(cow_header->version) == COW_VERSION) 
        return 100;
    else
--- a/block-qcow.c
+++ b/block-qcow.c
@ -81,7 +81,8 @@ static int qcow_probe(const uint8_t *buf, int buf_size, const char *filename)
 {
    const QCowHeader *cow_header = (const void *)buf;
    
-    if (be32_to_cpu(cow_header->magic) == QCOW_MAGIC &&
+    if (buf_size >= sizeof(QCowHeader) &&
+        be32_to_cpu(cow_header->magic) == QCOW_MAGIC &&
        be32_to_cpu(cow_header->version) == QCOW_VERSION) 
        return 100;
    else
@ -551,10 +552,20 @@ static int qcow_create(const char *filename, int64_t total_size,
    header_size = sizeof(header);
    backing_filename_len = 0;
    if (backing_file) {
+        const char *p;
+        /* XXX: this is a hack: we do not attempt to check for URL
+           like syntax */
+        p = strchr(backing_file, ':');
+        if (p && (p - backing_file) >= 2) {
+            /* URL like but exclude "c:" like filenames */
+            pstrcpy(backing_filename, sizeof(backing_filename),
+                    backing_file);
+        } else {
            realpath(backing_file, backing_filename);
            if (stat(backing_filename, &st) != 0) {
                return -1;
            }
+        }
        header.mtime = cpu_to_be32(st.st_mtime);
        header.backing_file_offset = cpu_to_be64(header_size);
        backing_filename_len = strlen(backing_filename);
--- a/block-vpc.c
+++ b/block-vpc.c
@ -81,9 +81,8 @@ typedef struct BDRVVPCState {

 static int vpc_probe(const uint8_t *buf, int buf_size, const char *filename)
 {
-    if (!strncmp(buf, "conectix", 8))
+    if (buf_size >= 8 && !strncmp(buf, "conectix", 8))
 	return 100;
-
    return 0;
 }

--- a/block.c
+++ b/block.c
@ -106,8 +106,10 @@ static BlockDriver *find_image_format(const char *filename)
    size_t bufsize = 1024;

    fd = open(filename, O_RDONLY | O_BINARY | O_LARGEFILE);
-    if (fd < 0)
-        return NULL;
+    if (fd < 0) {
+        buf = NULL;
+        ret = 0;
+    } else {
 #ifdef DIOCGSECTORSIZE
        {
            unsigned int sectorsize = 512;
@ -116,16 +118,17 @@ static BlockDriver *find_image_format(const char *filename)
                bufsize = sectorsize;
        }
 #endif
-    buf = malloc(bufsize);
+        buf = qemu_malloc(bufsize);
        if (!buf)
            return NULL;
        ret = read(fd, buf, bufsize);
        if (ret < 0) {
            close(fd);
-        free(buf);
+            qemu_free(buf);
            return NULL;
        }
        close(fd);
+    }
    
    drv = NULL;
    score_max = 0;
@ -136,7 +139,7 @@ static BlockDriver *find_image_format(const char *filename)
            drv = drv1;
        }
    }
-    free(buf);
+    qemu_free(buf);
    return drv;
 }

@ -653,4 +656,5 @@ void bdrv_init(void)
    bdrv_register(&bdrv_dmg);
    bdrv_register(&bdrv_bochs);
    bdrv_register(&bdrv_vpc);
+    bdrv_register(&bdrv_vvfat);
 }