Re: [Qemu-devel] [PATCH v2 1/3] net/colo: fix memory double free error

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] [PATCH v2 1/3] net/colo: fix memory double free error

From:	Zhang Chen
Subject:	Re: [Qemu-devel] [PATCH v2 1/3] net/colo: fix memory double free error
Date:	Wed, 22 Feb 2017 16:39:02 +0800
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.5.1



On 02/22/2017 11:46 AM, zhanghailiang wrote:

The 'primary_list' and 'secondary_list' members of struct Connection
is not allocated through dynamically g_queue_new(), but we free it by using
g_queue_free(), which will lead to a double-free bug.

Signed-off-by: zhanghailiang <address@hidden>


Reviewed-by: Zhang Chen <address@hidden>

---
  net/colo.c | 4 ++--
  1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/net/colo.c b/net/colo.c
index 6a6eacd..8cc166b 100644
--- a/net/colo.c
+++ b/net/colo.c
@@ -147,9 +147,9 @@ void connection_destroy(void *opaque)
      Connection *conn = opaque;

g_queue_foreach(&conn->primary_list, packet_destroy, NULL);

-    g_queue_free(&conn->primary_list);
+    g_queue_clear(&conn->primary_list);
      g_queue_foreach(&conn->secondary_list, packet_destroy, NULL);
-    g_queue_free(&conn->secondary_list);
+    g_queue_clear(&conn->secondary_list);
      g_slice_free(Connection, conn);
  }


--
Thanks
Zhang Chen

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-devel] [PATCH v2 0/3] filter-rewriter: fix two bugs and one optimization, zhanghailiang, 2017/02/21
- [Qemu-devel] [PATCH v2 2/3] filter-rewriter: fix memory leak for connection in connection_track_table, zhanghailiang, 2017/02/21
  - Re: [Qemu-devel] [PATCH v2 2/3] filter-rewriter: fix memory leak for connection in connection_track_table, Jason Wang, 2017/02/22
    - Re: [Qemu-devel] [PATCH v2 2/3] filter-rewriter: fix memory leak for connection in connection_track_table, Hailiang Zhang, 2017/02/22
    - Re: [Qemu-devel] [PATCH v2 2/3] filter-rewriter: fix memory leak for connection in connection_track_table, Hailiang Zhang, 2017/02/22
    - Re: [Qemu-devel] [PATCH v2 2/3] filter-rewriter: fix memory leak for connection in connection_track_table, Jason Wang, 2017/02/22
    - Re: [Qemu-devel] [PATCH v2 2/3] filter-rewriter: fix memory leak for connection in connection_track_table, Hailiang Zhang, 2017/02/26
    - Re: [Qemu-devel] [PATCH v2 2/3] filter-rewriter: fix memory leak for connection in connection_track_table, Jason Wang, 2017/02/26
- [Qemu-devel] [PATCH v2 1/3] net/colo: fix memory double free error, zhanghailiang, 2017/02/21
  - Re: [Qemu-devel] [PATCH v2 1/3] net/colo: fix memory double free error, Zhang Chen <=
- [Qemu-devel] [PATCH v2 3/3] filter-rewriter: skip net_checksum_calculate() while offset = 0, zhanghailiang, 2017/02/21
  - Re: [Qemu-devel] [PATCH v2 3/3] filter-rewriter: skip net_checksum_calculate() while offset = 0, Zhang Chen, 2017/02/24
    - Re: [Qemu-devel] [PATCH v2 3/3] filter-rewriter: skip net_checksum_calculate() while offset = 0, Zhang Chen, 2017/02/24
    - Re: [Qemu-devel] [PATCH v2 3/3] filter-rewriter: skip net_checksum_calculate() while offset = 0, Hailiang Zhang, 2017/02/26
    - Re: [Qemu-devel] [PATCH v2 3/3] filter-rewriter: skip net_checksum_calculate() while offset = 0, Zhang Chen, 2017/02/26

Prev by Date: Re: [Qemu-devel] [PATCH v2 26/30] tests: allows to run single test in usb-hcd-ehci-test
Next by Date: Re: [Qemu-devel] [PATCH v2 30/30] migration: fix id leak regression
Previous by thread: [Qemu-devel] [PATCH v2 1/3] net/colo: fix memory double free error
Next by thread: [Qemu-devel] [PATCH v2 3/3] filter-rewriter: skip net_checksum_calculate() while offset = 0
Index(es):
- Date
- Thread