Skip to content

Commit 7c236b8

Browse files
dmatlackbonzini
dmatlack
authored and
bonzini
committed
KVM: selftests: Create a separate dirty bitmap per slot
The calculation to get the per-slot dirty bitmap was incorrect leading to a buffer overrun. Fix it by splitting out the dirty bitmap into a separate bitmap per slot. Fixes: 609e620 ("KVM: selftests: Support multiple slots in dirty_log_perf_test") Signed-off-by: David Matlack <[email protected]> Reviewed-by: Andrew Jones <[email protected]> Message-Id: <[email protected]> Signed-off-by: Paolo Bonzini <[email protected]>
1 parent 9f2fc55 commit 7c236b8

File tree

1 file changed

+39
-15
lines changed

1 file changed

+39
-15
lines changed

tools/testing/selftests/kvm/dirty_log_perf_test.c

Lines changed: 39 additions & 15 deletions
Original file line numberDiff line numberDiff line change
@@ -118,42 +118,64 @@ static inline void disable_dirty_logging(struct kvm_vm *vm, int slots)
118118
toggle_dirty_logging(vm, slots, false);
119119
}
120120

121-
static void get_dirty_log(struct kvm_vm *vm, int slots, unsigned long *bitmap,
122-
uint64_t nr_pages)
121+
static void get_dirty_log(struct kvm_vm *vm, unsigned long *bitmaps[], int slots)
123122
{
124-
uint64_t slot_pages = nr_pages / slots;
125123
int i;
126124

127125
for (i = 0; i < slots; i++) {
128126
int slot = PERF_TEST_MEM_SLOT_INDEX + i;
129-
unsigned long *slot_bitmap = bitmap + i * slot_pages;
130127

131-
kvm_vm_get_dirty_log(vm, slot, slot_bitmap);
128+
kvm_vm_get_dirty_log(vm, slot, bitmaps[i]);
132129
}
133130
}
134131

135-
static void clear_dirty_log(struct kvm_vm *vm, int slots, unsigned long *bitmap,
136-
uint64_t nr_pages)
132+
static void clear_dirty_log(struct kvm_vm *vm, unsigned long *bitmaps[],
133+
int slots, uint64_t pages_per_slot)
137134
{
138-
uint64_t slot_pages = nr_pages / slots;
139135
int i;
140136

141137
for (i = 0; i < slots; i++) {
142138
int slot = PERF_TEST_MEM_SLOT_INDEX + i;
143-
unsigned long *slot_bitmap = bitmap + i * slot_pages;
144139

145-
kvm_vm_clear_dirty_log(vm, slot, slot_bitmap, 0, slot_pages);
140+
kvm_vm_clear_dirty_log(vm, slot, bitmaps[i], 0, pages_per_slot);
146141
}
147142
}
148143

144+
static unsigned long **alloc_bitmaps(int slots, uint64_t pages_per_slot)
145+
{
146+
unsigned long **bitmaps;
147+
int i;
148+
149+
bitmaps = malloc(slots * sizeof(bitmaps[0]));
150+
TEST_ASSERT(bitmaps, "Failed to allocate bitmaps array.");
151+
152+
for (i = 0; i < slots; i++) {
153+
bitmaps[i] = bitmap_zalloc(pages_per_slot);
154+
TEST_ASSERT(bitmaps[i], "Failed to allocate slot bitmap.");
155+
}
156+
157+
return bitmaps;
158+
}
159+
160+
static void free_bitmaps(unsigned long *bitmaps[], int slots)
161+
{
162+
int i;
163+
164+
for (i = 0; i < slots; i++)
165+
free(bitmaps[i]);
166+
167+
free(bitmaps);
168+
}
169+
149170
static void run_test(enum vm_guest_mode mode, void *arg)
150171
{
151172
struct test_params *p = arg;
152173
pthread_t *vcpu_threads;
153174
struct kvm_vm *vm;
154-
unsigned long *bmap;
175+
unsigned long **bitmaps;
155176
uint64_t guest_num_pages;
156177
uint64_t host_num_pages;
178+
uint64_t pages_per_slot;
157179
int vcpu_id;
158180
struct timespec start;
159181
struct timespec ts_diff;
@@ -171,7 +193,9 @@ static void run_test(enum vm_guest_mode mode, void *arg)
171193
guest_num_pages = (nr_vcpus * guest_percpu_mem_size) >> vm_get_page_shift(vm);
172194
guest_num_pages = vm_adjust_num_guest_pages(mode, guest_num_pages);
173195
host_num_pages = vm_num_host_pages(mode, guest_num_pages);
174-
bmap = bitmap_zalloc(host_num_pages);
196+
pages_per_slot = host_num_pages / p->slots;
197+
198+
bitmaps = alloc_bitmaps(p->slots, pages_per_slot);
175199

176200
if (dirty_log_manual_caps) {
177201
cap.cap = KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2;
@@ -239,7 +263,7 @@ static void run_test(enum vm_guest_mode mode, void *arg)
239263
iteration, ts_diff.tv_sec, ts_diff.tv_nsec);
240264

241265
clock_gettime(CLOCK_MONOTONIC, &start);
242-
get_dirty_log(vm, p->slots, bmap, host_num_pages);
266+
get_dirty_log(vm, bitmaps, p->slots);
243267
ts_diff = timespec_elapsed(start);
244268
get_dirty_log_total = timespec_add(get_dirty_log_total,
245269
ts_diff);
@@ -248,7 +272,7 @@ static void run_test(enum vm_guest_mode mode, void *arg)
248272

249273
if (dirty_log_manual_caps) {
250274
clock_gettime(CLOCK_MONOTONIC, &start);
251-
clear_dirty_log(vm, p->slots, bmap, host_num_pages);
275+
clear_dirty_log(vm, bitmaps, p->slots, pages_per_slot);
252276
ts_diff = timespec_elapsed(start);
253277
clear_dirty_log_total = timespec_add(clear_dirty_log_total,
254278
ts_diff);
@@ -281,7 +305,7 @@ static void run_test(enum vm_guest_mode mode, void *arg)
281305
clear_dirty_log_total.tv_nsec, avg.tv_sec, avg.tv_nsec);
282306
}
283307

284-
free(bmap);
308+
free_bitmaps(bitmaps, p->slots);
285309
free(vcpu_threads);
286310
perf_test_destroy_vm(vm);
287311
}

0 commit comments

Comments
 (0)