Re: [PATCH 1/5] aio-posix: fix use after leaving scope in aio

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH 1/5] aio-posix: fix use after leaving scope in aio_poll()

From:	Sergio Lopez
Subject:	Re: [PATCH 1/5] aio-posix: fix use after leaving scope in aio_poll()
Date:	Wed, 19 Feb 2020 08:02:35 +0100

On Fri, Feb 14, 2020 at 05:17:08PM +0000, Stefan Hajnoczi wrote:
> epoll_handler is a stack variable and must not be accessed after it goes
> out of scope:
> 
>       if (aio_epoll_check_poll(ctx, pollfds, npfd, timeout)) {
>           AioHandler epoll_handler;
>           ...
>           add_pollfd(&epoll_handler);
>           ret = aio_epoll(ctx, pollfds, npfd, timeout);
>       } ...
> 
>   ...
> 
>   /* if we have any readable fds, dispatch event */
>   if (ret > 0) {
>       for (i = 0; i < npfd; i++) {
>           nodes[i]->pfd.revents = pollfds[i].revents;
>       }
>   }
> 
> nodes[0] is &epoll_handler, which has already gone out of scope.
> 
> There is no need to use pollfds[] for epoll.  We don't need an
> AioHandler for the epoll fd.
> 
> Signed-off-by: Stefan Hajnoczi <address@hidden>
> ---
>  util/aio-posix.c | 20 ++++++++------------
>  1 file changed, 8 insertions(+), 12 deletions(-)

Reviewed-by: Sergio Lopez <address@hidden>

signature.asc
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

[PATCH 0/5] aio-posix: towards an O(1) event loop, Stefan Hajnoczi, 2020/02/14
- [PATCH 1/5] aio-posix: fix use after leaving scope in aio_poll(), Stefan Hajnoczi, 2020/02/14
  - Re: [PATCH 1/5] aio-posix: fix use after leaving scope in aio_poll(), Sergio Lopez <=
- [PATCH 2/5] aio-posix: don't pass ns timeout to epoll_wait(), Stefan Hajnoczi, 2020/02/14
  - Re: [PATCH 2/5] aio-posix: don't pass ns timeout to epoll_wait(), Sergio Lopez, 2020/02/19
- [PATCH 3/5] qemu/queue.h: add QLIST_SAFE_REMOVE(), Stefan Hajnoczi, 2020/02/14
  - Re: [PATCH 3/5] qemu/queue.h: add QLIST_SAFE_REMOVE(), Sergio Lopez, 2020/02/19
- [PATCH 5/5] aio-posix: make AioHandler dispatch O(1) with epoll, Stefan Hajnoczi, 2020/02/14
  - Re: [PATCH 5/5] aio-posix: make AioHandler dispatch O(1) with epoll, Sergio Lopez, 2020/02/19
  - Re: [PATCH 5/5] aio-posix: make AioHandler dispatch O(1) with epoll, Paolo Bonzini, 2020/02/19
    - Re: [PATCH 5/5] aio-posix: make AioHandler dispatch O(1) with epoll, Stefan Hajnoczi, 2020/02/21
    - Re: [PATCH 5/5] aio-posix: make AioHandler dispatch O(1) with epoll, Paolo Bonzini, 2020/02/21
    - Re: [PATCH 5/5] aio-posix: make AioHandler dispatch O(1) with epoll, Stefan Hajnoczi, 2020/02/21

Prev by Date: Re: [PULL SUBSYSTEM qemu-pseries] pseries: Update SLOF firmware image
Next by Date: Re: [PATCH v2 12/22] qemu-iotests/199: fix style
Previous by thread: [PATCH 1/5] aio-posix: fix use after leaving scope in aio_poll()
Next by thread: [PATCH 2/5] aio-posix: don't pass ns timeout to epoll_wait()
Index(es):
- Date
- Thread