[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-stable] [PATCH v3] blockjob: update nodes head while removing
|
From: |
Max Reitz |
|
Subject: |
Re: [Qemu-stable] [PATCH v3] blockjob: update nodes head while removing all bdrv |
|
Date: |
Fri, 13 Sep 2019 13:24:45 +0200 |
|
User-agent: |
Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0 |
On 11.09.19 12:03, Max Reitz wrote:
> From: Sergio Lopez <address@hidden>
>
> block_job_remove_all_bdrv() iterates through job->nodes, calling
> bdrv_root_unref_child() for each entry. The call to the latter may
> reach child_job_[can_]set_aio_ctx(), which will also attempt to
> traverse job->nodes, potentially finding entries that where freed
> on previous iterations.
>
> To avoid this situation, update job->nodes head on each iteration to
> ensure that already freed entries are no longer linked to the list.
>
> RHBZ: https://bugzilla.redhat.com/show_bug.cgi?id=1746631
> Signed-off-by: Sergio Lopez <address@hidden>
> Cc: address@hidden
> Signed-off-by: Max Reitz <address@hidden>
> ---
> v3:
> - Rewrote the loop to make the whole function a bit simpler
> (Also, remove the node from the job->nodes list before unref'ing it,
> just to be extra-safe)
> ---
> blockjob.c | 17 +++++++++++++----
> 1 file changed, 13 insertions(+), 4 deletions(-)
Thanks Sergio for tracking down the bug’s cause, the original patch, and
the review; I’ve applied the patch to my block branch:
https://git.xanclic.moe/XanClic/qemu/commits/branch/block
Max
signature.asc
Description: OpenPGP digital signature