[Qemu-devel] [PATCH 1/2] iscsi: do not leak acb->buf when commands are a

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Qemu-devel] [PATCH 1/2] iscsi: do not leak acb->buf when commands are a

From:	Paolo Bonzini
Subject:	[Qemu-devel] [PATCH 1/2] iscsi: do not leak acb->buf when commands are aborted
Date:	Thu, 24 Jan 2013 15:44:26 +0100

acb->buf is freed in the WRITE(16) callback, but this may not
get called at all when commands are aborted.  Add another
free in the ABORT TASK callback, which requires setting acb->buf
to NULL everywhere.

Signed-off-by: Paolo Bonzini <address@hidden>
---
 block/iscsi.c | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/block/iscsi.c b/block/iscsi.c
index fd54a15..b647201 100644
--- a/block/iscsi.c
+++ b/block/iscsi.c
@@ -77,6 +77,9 @@ iscsi_bh_cb(void *p)
 
     qemu_bh_delete(acb->bh);
 
+    g_free(acb->buf);
+    acb->buf = NULL;
+
     if (acb->canceled == 0) {
         acb->common.cb(acb->common.opaque, acb->status);
     }
@@ -198,6 +201,7 @@ iscsi_aio_write16_cb(struct iscsi_context *iscsi, int 
status,
     trace_iscsi_aio_write16_cb(iscsi, status, acb, acb->canceled);
 
     g_free(acb->buf);
+    acb->buf = NULL;
 
     if (acb->canceled != 0) {
         return;
@@ -241,6 +245,7 @@ iscsi_aio_writev(BlockDriverState *bs, int64_t sector_num,
     acb->canceled   = 0;
     acb->bh         = NULL;
     acb->status     = -EINPROGRESS;
+    acb->buf        = NULL;
 
     /* XXX we should pass the iovec to write16 to avoid the extra copy */
     /* this will allow us to get rid of 'buf' completely */
@@ -249,7 +254,6 @@ iscsi_aio_writev(BlockDriverState *bs, int64_t sector_num,
 
     /* if the iovec only contains one buffer we can pass it directly */
     if (acb->qiov->niov == 1) {
-        acb->buf = NULL;
         data.data = acb->qiov->iov[0].iov_base;
     } else {
         acb->buf = g_malloc(data.size);
@@ -440,6 +444,7 @@ iscsi_aio_flush(BlockDriverState *bs,
     acb->canceled   = 0;
     acb->bh         = NULL;
     acb->status     = -EINPROGRESS;
+    acb->buf        = NULL;
 
     acb->task = iscsi_synchronizecache10_task(iscsi, iscsilun->lun,
                                          0, 0, 0, 0,
@@ -493,6 +498,7 @@ iscsi_aio_discard(BlockDriverState *bs,
     acb->canceled   = 0;
     acb->bh         = NULL;
     acb->status     = -EINPROGRESS;
+    acb->buf        = NULL;
 
     list[0].lba = sector_qemu2lun(sector_num, iscsilun);
     list[0].num = nb_sectors * BDRV_SECTOR_SIZE / iscsilun->block_size;
-- 
1.8.1

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-devel] [PULL 1.4 0/2] Another SCSI pull request for 1.4, Paolo Bonzini, 2013/01/24
- [Qemu-devel] [PATCH 1/2] iscsi: do not leak acb->buf when commands are aborted, Paolo Bonzini <=
- [Qemu-devel] [PATCH 2/2] iscsi: add support for iovectors, Paolo Bonzini, 2013/01/24

Prev by Date: Re: [Qemu-devel] [A cry for sanity]: make_device_config.sh: Fix target path in generated dependency file
Next by Date: [Qemu-devel] [PULL 1.4 0/2] Another SCSI pull request for 1.4
Previous by thread: [Qemu-devel] [PULL 1.4 0/2] Another SCSI pull request for 1.4
Next by thread: [Qemu-devel] [PATCH 2/2] iscsi: add support for iovectors
Index(es):
- Date
- Thread