From: Peter Xu <peterx@redhat.com>
Date: Wed, 9 Mar 2016 05:56:37 +0000 (+0800)
Subject: block/qapi: fix unbounded stack for dump_qdict
X-Git-Url: http://git.maquefel.me/?a=commitdiff_plain;h=5eda622768a2162993e50275b325125d4485757d;p=qemu.git

block/qapi: fix unbounded stack for dump_qdict

Using heap instead of stack for better safety.

Signed-off-by: Peter Xu <peterx@redhat.com>
Reviewed-by: Eric Blake <eblake@redhat.com>
Reviewed-by: Markus Armbruster <armbru@redhat.com>
Signed-off-by: Kevin Wolf <kwolf@redhat.com>
---

diff --git a/block/qapi.c b/block/qapi.c
index e0e6e96ad2..1961cdf707 100644
--- a/block/qapi.c
+++ b/block/qapi.c
@@ -669,7 +669,7 @@ static void dump_qdict(fprintf_function func_fprintf, void *f, int indentation,
     for (entry = qdict_first(dict); entry; entry = qdict_next(dict, entry)) {
         QType type = qobject_type(entry->value);
         bool composite = (type == QTYPE_QDICT || type == QTYPE_QLIST);
-        char key[strlen(entry->key) + 1];
+        char *key = g_malloc(strlen(entry->key) + 1);
         int i;
 
         /* replace dashes with spaces in key (variable) names */
@@ -683,6 +683,7 @@ static void dump_qdict(fprintf_function func_fprintf, void *f, int indentation,
         if (!composite) {
             func_fprintf(f, "\n");
         }
+        g_free(key);
     }
 }