[PATCH v3 0/2] block-backend: prevent dangling BDS pointers across aio

qemu-stable

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[PATCH v3 0/2] block-backend: prevent dangling BDS pointers across aio_p

From:	Stefan Hajnoczi
Subject:	[PATCH v3 0/2] block-backend: prevent dangling BDS pointers across aio_poll()
Date:	Tue, 11 Jan 2022 15:36:11 +0000

This series fixes use-after-free bugs when blk->root changes across aio_poll().
For example, a temporary filter node can be removed by a blockjob when a
drained section begins. If the caller doesn't hold a ref on the BDS then it
will have been freed.

Hanna Reitz (1):
  iotests/stream-error-on-reset: New test

Stefan Hajnoczi (1):
  block-backend: prevent dangling BDS pointers across aio_poll()

 block/block-backend.c                         |  19 ++-
 .../qemu-iotests/tests/stream-error-on-reset  | 140 ++++++++++++++++++
 .../tests/stream-error-on-reset.out           |   5 +
 3 files changed, 162 insertions(+), 2 deletions(-)
 create mode 100755 tests/qemu-iotests/tests/stream-error-on-reset
 create mode 100644 tests/qemu-iotests/tests/stream-error-on-reset.out

-- 
2.33.1

[Prev in Thread]

Current Thread

[Next in Thread]

[PATCH v3 0/2] block-backend: prevent dangling BDS pointers across aio_poll(), Stefan Hajnoczi <=
- [PATCH v3 1/2] block-backend: prevent dangling BDS pointers across aio_poll(), Stefan Hajnoczi, 2022/01/11
- [PATCH v3 2/2] iotests/stream-error-on-reset: New test, Stefan Hajnoczi, 2022/01/11
- Re: [PATCH v3 0/2] block-backend: prevent dangling BDS pointers across aio_poll(), Kevin Wolf, 2022/01/12

Prev by Date: Re: [PATCH 2/2] block/rbd: workaround for ceph issue #53784
Next by Date: [PATCH v3 1/2] block-backend: prevent dangling BDS pointers across aio_poll()
Previous by thread: Re: [PATCH v2] block-backend: prevent dangling BDS pointers across aio_poll()
Next by thread: [PATCH v3 1/2] block-backend: prevent dangling BDS pointers across aio_poll()
Index(es):
- Date
- Thread