blob: 2e3f64fdfd5f061c2313ecab262ff3b177901ec7 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
|
<think>
Okay, I need to classify this bug report for QEMU into one of the given categories. Let's look at the details.
The bug report mentions a "use-after-free" issue in the pflash_cfi01 snapshot implementation. The problem occurs when restoring a snapshot using the specified parameters, leading to a crash.
Breaking down the cause:
1. The function `vm_state_notify` loops through a list and calls callbacks.
2. One callback points to `postload_update_cb`.
3. Inside this function, `qemu_del_vm_change_state_handler` is called, which frees the entry's memory.
4. However, the loop continues, so after freeing, it tries to access already freed memory.
The bug relates to improper handling of pointers and memory during state changes in QEMU. This likely affects how devices or their components (like flash storage) are managed post_snapshot restore. Since pflash_cfi01 is related to flash devices, this falls under device-related issues.
So the category should be "device".
</think>
device
|