Re: [Qemu-devel] [PULL 23/26] virtio-balloon: Safely handle BALLOON

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] [PULL 23/26] virtio-balloon: Safely handle BALLOON_PAGE

From:	Peter Maydell
Subject:	Re: [Qemu-devel] [PULL 23/26] virtio-balloon: Safely handle BALLOON_PAGE_SIZE < host page size
Date:	Tue, 5 Mar 2019 16:06:54 +0000

On Fri, 22 Feb 2019 at 02:41, Michael S. Tsirkin <address@hidden> wrote:
>
> From: David Gibson <address@hidden>
>
> The virtio-balloon always works in units of 4kiB (BALLOON_PAGE_SIZE), but
> we can only actually discard memory in units of the host page size.

Hi -- Coverity points out an issue in this patch (CID 1399146):

> +    /* Hard case
> +     *
> +     * We've put a piece of a larger host page into the balloon - we
> +     * need to keep track until we have a whole host page to
> +     * discard
> +     */
> +    warn_report_once(
> +"Balloon used with backing page size > 4kiB, this may not be reliable");
> +
> +    subpages = rb_page_size / BALLOON_PAGE_SIZE;
> +
> +    if (balloon->pbp
> +        && (rb != balloon->pbp->rb
> +            || host_page_base != balloon->pbp->base)) {
> +        /* We've partially ballooned part of a host page, but now
> +         * we're trying to balloon part of a different one.  Too hard,
> +         * give up on the old partial page */
> +        free(balloon->pbp);
> +        balloon->pbp = NULL;
>      }
>
> -    ram_block_discard_range(rb, ram_offset, rb_page_size);
> -    /* We ignore errors from ram_block_discard_range(), because it has
> -     * already reported them, and failing to discard a balloon page is
> -     * not fatal */
> +    if (!balloon->pbp) {
> +        /* Starting on a new host page */
> +        size_t bitlen = BITS_TO_LONGS(subpages) * sizeof(unsigned long);
> +        balloon->pbp = g_malloc0(sizeof(PartiallyBalloonedPage) + bitlen);


We allocate balloon->pbp with g_malloc0() here...

> +        balloon->pbp->rb = rb;
> +        balloon->pbp->base = host_page_base;
> +    }
> +
> +    bitmap_set(balloon->pbp->bitmap,
> +               (ram_offset - balloon->pbp->base) / BALLOON_PAGE_SIZE,
> +               subpages);
> +
> +    if (bitmap_full(balloon->pbp->bitmap, subpages)) {
> +        /* We've accumulated a full host page, we can actually discard
> +         * it now */
> +
> +        ram_block_discard_range(rb, balloon->pbp->base, rb_page_size);
> +        /* We ignore errors from ram_block_discard_range(), because it
> +         * has already reported them, and failing to discard a balloon
> +         * page is not fatal */
> +
> +        free(balloon->pbp);

...but we free it (here and elsewhere) with free(), not g_free().


thanks
-- PMM

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Qemu-devel] [PULL 23/26] virtio-balloon: Safely handle BALLOON_PAGE_SIZE < host page size, Peter Maydell <=
- Re: [Qemu-devel] [PULL 23/26] virtio-balloon: Safely handle BALLOON_PAGE_SIZE < host page size, David Gibson, 2019/03/05

Prev by Date: Re: [Qemu-devel] [RFC 2/2] virtio-balloon: Restore MADV_WILLNEED hint on balloon deflate
Next by Date: [Qemu-devel] iotest 223 is flaky
Previous by thread: Re: [Qemu-devel] [PATCH v3 0/3] char-socket: Fix race condition
Next by thread: Re: [Qemu-devel] [PULL 23/26] virtio-balloon: Safely handle BALLOON_PAGE_SIZE < host page size
Index(es):
- Date
- Thread