Re: [Qemu-devel] [PATCH v2] aio: Fix use-after-free in cancellation path

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] [PATCH v2] aio: Fix use-after-free in cancellation path

From:	Paolo Bonzini
Subject:	Re: [Qemu-devel] [PATCH v2] aio: Fix use-after-free in cancellation path
Date:	Tue, 20 May 2014 16:01:38 +0200
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.5.0

Il 20/05/2014 15:16, Stefan Hajnoczi ha scritto:

On Tue, May 20, 2014 at 10:00:47AM +0800, Fam Zheng wrote:

diff --git a/thread-pool.c b/thread-pool.c
index fbdd3ff..d4984ba 100644
--- a/thread-pool.c
+++ b/thread-pool.c
@@ -223,6 +223,7 @@ static void thread_pool_cancel(BlockDriverAIOCB *acb)
         }
         pool->pending_cancellations--;
     }
+    event_notifier_ready(&pool->notifier);
     qemu_mutex_unlock(&pool->lock);
 }


event_notifier_ready() doesn't need pool->lock.  Can you call it outside
the lock or am I missing something?


Yes, in fact I'm a bit wary of calling it inside the lock.

Paolo

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-devel] [PATCH v2] aio: Fix use-after-free in cancellation path, Fam Zheng, 2014/05/19
- Re: [Qemu-devel] [PATCH v2] aio: Fix use-after-free in cancellation path, Stefan Hajnoczi, 2014/05/20
  - Re: [Qemu-devel] [PATCH v2] aio: Fix use-after-free in cancellation path, Paolo Bonzini <=
    - Re: [Qemu-devel] [PATCH v2] aio: Fix use-after-free in cancellation path, Fam Zheng, 2014/05/20

Prev by Date: [Qemu-devel] [PATCH 5/6] usb: add input routing support for tablet and keyboard
Next by Date: Re: [Qemu-devel] [call for testers] qemu gtk ui overhaul
Previous by thread: Re: [Qemu-devel] [PATCH v2] aio: Fix use-after-free in cancellation path
Next by thread: Re: [Qemu-devel] [PATCH v2] aio: Fix use-after-free in cancellation path
Index(es):
- Date
- Thread