From: Jeff Dike <jdike@addtoit.com>
To: Blaisorblade <blaisorblade@yahoo.it>
Cc: akpm@osdl.org, linux-kernel@vger.kernel.org,
user-mode-linux-devel@lists.sourceforge.net
Subject: Re: [uml-devel] [PATCH 4/5] UML - Close file descriptor leaks
Date: Sun, 1 Oct 2006 18:07:27 -0400 [thread overview]
Message-ID: <20061001220727.GA5194@ccure.user-mode-linux.org> (raw)
In-Reply-To: <200610011910.37805.blaisorblade@yahoo.it>
On Sun, Oct 01, 2006 at 07:10:37PM +0200, Blaisorblade wrote:
> NACK on the ubd driver part. It adds a bugs and does fix the one you found in
> the right point. ACK on the other hunk.
>
> Now, Andrew, you can ignore what follows if you want:
>
> Jeff, please explain me the exact ubd driver bug - I believe that the open
> must be done there, that it is balanced by ubd_close(), and that the leak fix
> should be done differently.
The code as it was was just wrong. There was a call to ubd_open_dev
at the start and a matching ubd_close at the end. So far, so good,
since ubd_close inverts ubd_open_dev. However, neither manipulates
dev->count (this is done by ubd_open/ubd_release) and the call to
ubd_add_disk indirectly calls ubd_open, which, since dev->count is
still zero redoes the initialization, leaking the descriptor and
vmalloc space allocated by the first ubd_open_dev call.
The fix is simple - there is no need for ubd_add to call ubd_open_dev
or ubd_close (ubd_file_size doesn't require the device be opened), so
the calls can simply be deleted. With the non-count-changing
device-opening call gone, the leaks just disappear.
There are multiple things wrong with the code, many of which are still
there, but I don't see this as being an argument against this change.
It eliminates some useless code, which is good from both a maintenance
and performance standpoint. However, leaks aside, the main benefit of
this change is that eliminates the one call to ubd_open_dev outside of
ubd_open, and thus opening stuff on the host and allocating memory is
always inside a check of dev->open.
> I've done huge changes to the UBD driver and I'll
> send them you briefly for your tree (they work but they're not yet in a
> perfect shape).
OK, just make sure you preserve (or add) this property.
> For what I can gather from your description and code, the leak you diagnosed
> is a bug in ubd_open_dev(), and is valid for any call to it:
No, the bug is doing the work of opening the device outside a check of
the device refcount.
> generally, if an
> _open function fails it should leave nothing to cleanup, and in particular
> the corresponding _close should not be called (this is the implicit standard
> I've seen in Linux).
This is true - however the _open function was succeeding, so it's
irrelevant in this case.
> Btw, ubd_open_dev() and ubd_close() are matching functions, while ubd_close()
> does not match ubd_open(), so I renamed ubd_close -> ubd_close_dev.
Yes, this is one of the things wrong with the current code - the names
are messed up.
Jeff
-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys -- and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
User-mode-linux-devel mailing list
User-mode-linux-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/user-mode-linux-devel
WARNING: multiple messages have this Message-ID (diff)
From: Jeff Dike <jdike@addtoit.com>
To: Blaisorblade <blaisorblade@yahoo.it>
Cc: user-mode-linux-devel@lists.sourceforge.net, akpm@osdl.org,
linux-kernel@vger.kernel.org
Subject: Re: [uml-devel] [PATCH 4/5] UML - Close file descriptor leaks
Date: Sun, 1 Oct 2006 18:07:27 -0400 [thread overview]
Message-ID: <20061001220727.GA5194@ccure.user-mode-linux.org> (raw)
In-Reply-To: <200610011910.37805.blaisorblade@yahoo.it>
On Sun, Oct 01, 2006 at 07:10:37PM +0200, Blaisorblade wrote:
> NACK on the ubd driver part. It adds a bugs and does fix the one you found in
> the right point. ACK on the other hunk.
>
> Now, Andrew, you can ignore what follows if you want:
>
> Jeff, please explain me the exact ubd driver bug - I believe that the open
> must be done there, that it is balanced by ubd_close(), and that the leak fix
> should be done differently.
The code as it was was just wrong. There was a call to ubd_open_dev
at the start and a matching ubd_close at the end. So far, so good,
since ubd_close inverts ubd_open_dev. However, neither manipulates
dev->count (this is done by ubd_open/ubd_release) and the call to
ubd_add_disk indirectly calls ubd_open, which, since dev->count is
still zero redoes the initialization, leaking the descriptor and
vmalloc space allocated by the first ubd_open_dev call.
The fix is simple - there is no need for ubd_add to call ubd_open_dev
or ubd_close (ubd_file_size doesn't require the device be opened), so
the calls can simply be deleted. With the non-count-changing
device-opening call gone, the leaks just disappear.
There are multiple things wrong with the code, many of which are still
there, but I don't see this as being an argument against this change.
It eliminates some useless code, which is good from both a maintenance
and performance standpoint. However, leaks aside, the main benefit of
this change is that eliminates the one call to ubd_open_dev outside of
ubd_open, and thus opening stuff on the host and allocating memory is
always inside a check of dev->open.
> I've done huge changes to the UBD driver and I'll
> send them you briefly for your tree (they work but they're not yet in a
> perfect shape).
OK, just make sure you preserve (or add) this property.
> For what I can gather from your description and code, the leak you diagnosed
> is a bug in ubd_open_dev(), and is valid for any call to it:
No, the bug is doing the work of opening the device outside a check of
the device refcount.
> generally, if an
> _open function fails it should leave nothing to cleanup, and in particular
> the corresponding _close should not be called (this is the implicit standard
> I've seen in Linux).
This is true - however the _open function was succeeding, so it's
irrelevant in this case.
> Btw, ubd_open_dev() and ubd_close() are matching functions, while ubd_close()
> does not match ubd_open(), so I renamed ubd_close -> ubd_close_dev.
Yes, this is one of the things wrong with the current code - the names
are messed up.
Jeff
next prev parent reply other threads:[~2006-10-01 22:08 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2006-09-27 17:57 [uml-devel] [PATCH 4/5] UML - Close file descriptor leaks Jeff Dike
2006-09-27 17:57 ` Jeff Dike
2006-10-01 17:10 ` [uml-devel] " Blaisorblade
2006-10-01 17:10 ` Blaisorblade
2006-10-01 22:07 ` Jeff Dike [this message]
2006-10-01 22:07 ` Jeff Dike
2006-10-03 18:50 ` Paolo Giarrusso
2006-10-03 18:50 ` Paolo Giarrusso
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20061001220727.GA5194@ccure.user-mode-linux.org \
--to=jdike@addtoit.com \
--cc=akpm@osdl.org \
--cc=blaisorblade@yahoo.it \
--cc=linux-kernel@vger.kernel.org \
--cc=user-mode-linux-devel@lists.sourceforge.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.