blkdebug: Use QLIST_FOREACH_SAFE to resume IO

Message ID	1386919512-24520-1-git-send-email-famz@redhat.com
State	New
Headers	show Return-Path: <qemu-devel-bounces+incoming=patchwork.ozlabs.org@nongnu.org> From: Fam Zheng <famz@redhat.com> To: qemu-devel@nongnu.org Date: Fri, 13 Dec 2013 15:25:12 +0800 Message-Id: <1386919512-24520-1-git-send-email-famz@redhat.com> Cc: kwolf@redhat.com, stefanha@redhat.com Subject: [Qemu-devel] [PATCH] blkdebug: Use QLIST_FOREACH_SAFE to resume IO Precedence: list Errors-To: qemu-devel-bounces+incoming=patchwork.ozlabs.org@nongnu.org Sender: qemu-devel-bounces+incoming=patchwork.ozlabs.org@nongnu.org

Message ID

1386919512-24520-1-git-send-email-famz@redhat.com

State

New

Headers

From: Fam Zheng <famz@redhat.com>
To: qemu-devel@nongnu.org
Date: Fri, 13 Dec 2013 15:25:12 +0800
Message-Id: <1386919512-24520-1-git-send-email-famz@redhat.com>
Cc: kwolf@redhat.com, stefanha@redhat.com
Subject: [Qemu-devel] [PATCH] blkdebug: Use QLIST_FOREACH_SAFE to resume IO
Precedence: list
Errors-To: qemu-devel-bounces+incoming=patchwork.ozlabs.org@nongnu.org
Sender: qemu-devel-bounces+incoming=patchwork.ozlabs.org@nongnu.org

Commit Message

Fam Zheng Dec. 13, 2013, 7:25 a.m. UTC

Qemu-iotest 030 was broken.

When the coroutine runs and finishes, it will remove itself from the req
list, so let's use safe version of foreach to avoid use after free.

Signed-off-by: Fam Zheng <famz@redhat.com>
---
 block/blkdebug.c | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

Comments

Kevin Wolf Dec. 13, 2013, 4:13 p.m. UTC | #1

Am 13.12.2013 um 08:25 hat Fam Zheng geschrieben:
> Qemu-iotest 030 was broken.
> 
> When the coroutine runs and finishes, it will remove itself from the req
> list, so let's use safe version of foreach to avoid use after free.
> 
> Signed-off-by: Fam Zheng <famz@redhat.com>

Thanks, applied to the block branch.

> diff --git a/block/blkdebug.c b/block/blkdebug.c
> index 37cf028..957be2c 100644
> --- a/block/blkdebug.c
> +++ b/block/blkdebug.c
> @@ -594,9 +594,9 @@ static int blkdebug_debug_breakpoint(BlockDriverState *bs, const char *event,
>  static int blkdebug_debug_resume(BlockDriverState *bs, const char *tag)
>  {
>      BDRVBlkdebugState *s = bs->opaque;
> -    BlkdebugSuspendedReq *r;
> +    BlkdebugSuspendedReq *r, *next;
>  
> -    QLIST_FOREACH(r, &s->suspended_reqs, next) {
> +    QLIST_FOREACH_SAFE(r, &s->suspended_reqs, next, next) {
>          if (!strcmp(r->tag, tag)) {
>              qemu_coroutine_enter(r->co, NULL);
>              return 0;

This hunk wasn't strictly necessary because of the return 0, but it
doesn't hurt either.

Kevin

diff --git a/block/blkdebug.c b/block/blkdebug.c
index 37cf028..957be2c 100644
--- a/block/blkdebug.c
+++ b/block/blkdebug.c
@@ -594,9 +594,9 @@  static int blkdebug_debug_breakpoint(BlockDriverState *bs, const char *event,
 static int blkdebug_debug_resume(BlockDriverState *bs, const char *tag)
 {
     BDRVBlkdebugState *s = bs->opaque;
-    BlkdebugSuspendedReq *r;
+    BlkdebugSuspendedReq *r, *next;
 
-    QLIST_FOREACH(r, &s->suspended_reqs, next) {
+    QLIST_FOREACH_SAFE(r, &s->suspended_reqs, next, next) {
         if (!strcmp(r->tag, tag)) {
             qemu_coroutine_enter(r->co, NULL);
             return 0;
@@ -609,7 +609,7 @@  static int blkdebug_debug_remove_breakpoint(BlockDriverState *bs,
                                             const char *tag)
 {
     BDRVBlkdebugState *s = bs->opaque;
-    BlkdebugSuspendedReq *r;
+    BlkdebugSuspendedReq *r, *r_next;
     BlkdebugRule *rule, *next;
     int i, ret = -ENOENT;
 
@@ -622,7 +622,7 @@  static int blkdebug_debug_remove_breakpoint(BlockDriverState *bs,
             }
         }
     }
-    QLIST_FOREACH(r, &s->suspended_reqs, next) {
+    QLIST_FOREACH_SAFE(r, &s->suspended_reqs, next, r_next) {
         if (!strcmp(r->tag, tag)) {
             qemu_coroutine_enter(r->co, NULL);
             ret = 0;

blkdebug: Use QLIST_FOREACH_SAFE to resume IO

Commit Message

Comments

Patch