Commit 3fd2092f authored Dec 21, 2018 by Daniel P. Berrangé Committed by Gerd Hoffmann Jan 07, 2019

hw/usb: fix mistaken de-initialization of CCID state



In previous commit:

  commit 7dea29e4
  Author: Li Qiang <liq3ea@gmail.com>
  Date:   Fri Oct 19 03:50:36 2018 -0700

    hw: ccid-card-emulated: cleanup resource when realize in error path

The emulated_realize method was changed so that it jumps to a cleanup
label to de-initialize state upon error. This change failed to ensure
the success path exited the method before this point though. So the
mutexes are always destroyed even in normal operation. The result is
as crashtastic as expected:

$ qemu-system-x86_64 -usb -device usb-ccid,id=ccid0 -device ccid-card-emulated,backend=nss-emulated,id=smartcard0,bus=ccid0.0
qemu-system-x86_64: util/qemu-thread-posix.c:64: qemu_mutex_lock_impl: Assertion `mutex->initialized' failed.
Aborted (core dumped)

Fixes: 7dea29e4
Reported-by: Michael Tokarev <mjt@tls.msk.ru>
Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>
Reviewed-by: Michael Tokarev <mjt@tls.msk.ru>
Reviewed-by: Philippe Mathieu-Daudé <philmd@redhat.com>
Tested-by: Philippe Mathieu-Daudé <philmd@redhat.com>
Message-id: 20181221134115.27973-1-berrange@redhat.com
Signed-off-by: Gerd Hoffmann <kraxel@redhat.com>

parent e59dbbac

hw/usb/ccid-card-emulated.c

+2 −0

Original line number	Diff line number	Diff line
		@@ -549,6 +549,8 @@ static void emulated_realize(CCIDCardState base, Error *errp)
		qemu_thread_create(&card->apdu_thread_id, "ccid/apdu", handle_apdu_thread,
		card, QEMU_THREAD_JOINABLE);

		return;

		out2:
		clean_event_notifier(card);
		out1: