summaryrefslogtreecommitdiff
path: root/tests
diff options
context:
space:
mode:
authorPeter Maydell <peter.maydell@linaro.org>2013-02-05 20:44:23 +0000
committerLuiz Capitulino <lcapitulino@redhat.com>2013-02-07 13:22:50 -0200
commit0184543814354d37eab75132712c3874d71dd776 (patch)
treea39e4dca82647ff94662731d5a42703dde60b8fc /tests
parentecd8d4715ea33aa2c146a5047bacb031e86af599 (diff)
downloadqemu-0184543814354d37eab75132712c3874d71dd776.tar.gz
qemu-0184543814354d37eab75132712c3874d71dd776.tar.bz2
qemu-0184543814354d37eab75132712c3874d71dd776.zip
tests/test-string-input-visitor: Handle errors provoked by fuzz test
It's OK and expected for visitors to return errors when presented with the fuzz test's random data. Since the fuzzer doesn't care about errors, we pass in NULL rather than an Error**. This fixes a bug in the fuzzer where it was passing the same Error** into each visitor, with the effect that once one visitor returned an error, each later visitor would notice that it had been passed in an Error** representing an already set error, and do nothing. For the case of visit_type_str() we also need to handle the case where an error means that the visitor doesn't set our char*. We initialize the pointer to NULL so we can safely g_free() it regardless of whether the visitor allocated a string for us or not. This fixes a problem where this test failed the MacOSX malloc() consistency checks and might segfault on other platforms [due to calling free() on an uninitialized pointer variable when visit_type_str() failed.]. Signed-off-by: Peter Maydell <peter.maydell@linaro.org> Reviewed-by: Andreas Färber <afaerber@suse.de> Signed-off-by: Luiz Capitulino <lcapitulino@redhat.com>
Diffstat (limited to 'tests')
-rw-r--r--tests/test-string-input-visitor.c12
1 files changed, 6 insertions, 6 deletions
diff --git a/tests/test-string-input-visitor.c b/tests/test-string-input-visitor.c
index f6b0093554..5989f8118e 100644
--- a/tests/test-string-input-visitor.c
+++ b/tests/test-string-input-visitor.c
@@ -174,7 +174,6 @@ static void test_visitor_in_fuzz(TestInputVisitorData *data,
double nres;
char *sres;
EnumOne eres;
- Error *errp = NULL;
Visitor *v;
unsigned int i;
char buf[10000];
@@ -193,21 +192,22 @@ static void test_visitor_in_fuzz(TestInputVisitorData *data,
}
v = visitor_input_test_init(data, buf);
- visit_type_int(v, &ires, NULL, &errp);
+ visit_type_int(v, &ires, NULL, NULL);
v = visitor_input_test_init(data, buf);
- visit_type_bool(v, &bres, NULL, &errp);
+ visit_type_bool(v, &bres, NULL, NULL);
visitor_input_teardown(data, NULL);
v = visitor_input_test_init(data, buf);
- visit_type_number(v, &nres, NULL, &errp);
+ visit_type_number(v, &nres, NULL, NULL);
v = visitor_input_test_init(data, buf);
- visit_type_str(v, &sres, NULL, &errp);
+ sres = NULL;
+ visit_type_str(v, &sres, NULL, NULL);
g_free(sres);
v = visitor_input_test_init(data, buf);
- visit_type_EnumOne(v, &eres, NULL, &errp);
+ visit_type_EnumOne(v, &eres, NULL, NULL);
visitor_input_teardown(data, NULL);
}
}