qom: In function object_set_link_property(), first call object_ref(), then object_unref().

In the old implementation, if the new value of the property links to the same object, as the old value, that object is first unref-ed, and then ref-ed. This leads to unintended deinitialization of that object. In the new implementation, this is fixed. Reviewed-by: Paolo Bonzini <pbonzini@redhat.com> Signed-off-by: Alexander Barabash <alexander_barabash@mentor.com> Signed-off-by: Anthony Liguori <aliguori@us.ibm.com>
2012-02-22 19:22:26 +02:00 · 2012-02-22 19:22:26 +02:00 · f0cdc966fb
parent adbbdf2484
commit f0cdc966fb
1 changed files with 7 additions and 4 deletions
--- a/qom/object.c
+++ b/qom/object.c
@ -892,6 +892,7 @@ static void object_set_link_property(Object *obj, Visitor *v, void *opaque,
                                     const char *name, Error **errp)
 {
    Object **child = opaque;
+    Object *old_target;
    bool ambiguous = false;
    const char *type;
    char *path;
@ -901,10 +902,8 @@ static void object_set_link_property(Object *obj, Visitor *v, void *opaque,

    visit_type_str(v, &path, name, errp);

-    if (*child) {
-        object_unref(*child);
-        *child = NULL;
-    }
+    old_target = *child;
+    *child = NULL;

    if (strcmp(path, "") != 0) {
        Object *target;
@ -930,6 +929,10 @@ static void object_set_link_property(Object *obj, Visitor *v, void *opaque,
    }

    g_free(path);
+
+    if (old_target != NULL) {
+        object_unref(old_target);
+    }
 }

 void object_property_add_link(Object *obj, const char *name,