9:25 a.m.
The private data for video definition is created in
virDomainVideoDefNew() and we attempt to free it in
virDomainVideoDefFree(). This seems to work, except
the free function calls clear function which zeroes
out the whole structure and thus virObjectUnref()
which is called on private data does nothing.
2,568 bytes in 107 blocks are definitely lost in loss record 207 of 213
at 0x4A35476: calloc (vg_replace_malloc.c:752)
by 0x50A6048: virAllocVar (viralloc.c:346)
by 0x513CC5A: virObjectNew (virobject.c:243)
by 0x4DC1DEE: qemuDomainVideoPrivateNew (qemu_domain.c:1337)
by 0x51A6BD6: virDomainVideoDefNew (domain_conf.c:2831)
by 0x51B9F06: virDomainVideoDefParseXML (domain_conf.c:15541)
by 0x51CB761: virDomainDefParseXML (domain_conf.c:21158)
by 0x51C5973: virDomainDefParseNode (domain_conf.c:21708)
by 0x51C583A: virDomainDefParse (domain_conf.c:21663)
by 0x51C58AE: virDomainDefParseFile (domain_conf.c:21688)
Signed-off-by: Michal Privoznik <mprivozn(a)redhat.com>
---
src/conf/domain_conf.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/src/conf/domain_conf.c b/src/conf/domain_conf.c
index 67555c9be3..c290baf953 100644
--- a/src/conf/domain_conf.c
+++ b/src/conf/domain_conf.c
@@ -2853,6 +2853,7 @@ virDomainVideoDefClear(virDomainVideoDefPtr def)
if (def->driver)
VIR_FREE(def->driver->vhost_user_binary);
VIR_FREE(def->driver);
+ virObjectUnref(def->privateData);
memset(def, 0, sizeof(*def));
}
@@ -2864,7 +2865,6 @@ void virDomainVideoDefFree(virDomainVideoDefPtr def)
return;
virDomainVideoDefClear(def);
- virObjectUnref(def->privateData);
VIR_FREE(def);
}
--
2.21.0
9:42 a.m.
On Thu, Sep 26, 2019 at 04:25:05PM +0200, Michal Privoznik wrote:
The private data for video definition is created in
virDomainVideoDefNew() and we attempt to free it in
virDomainVideoDefFree(). This seems to work, except
the free function calls clear function which zeroes
out the whole structure and thus virObjectUnref()
which is called on private data does nothing.
2,568 bytes in 107 blocks are definitely lost in loss record 207 of 213
at 0x4A35476: calloc (vg_replace_malloc.c:752)
by 0x50A6048: virAllocVar (viralloc.c:346)
by 0x513CC5A: virObjectNew (virobject.c:243)
by 0x4DC1DEE: qemuDomainVideoPrivateNew (qemu_domain.c:1337)
by 0x51A6BD6: virDomainVideoDefNew (domain_conf.c:2831)
by 0x51B9F06: virDomainVideoDefParseXML (domain_conf.c:15541)
by 0x51CB761: virDomainDefParseXML (domain_conf.c:21158)
by 0x51C5973: virDomainDefParseNode (domain_conf.c:21708)
by 0x51C583A: virDomainDefParse (domain_conf.c:21663)
by 0x51C58AE: virDomainDefParseFile (domain_conf.c:21688)
Impressive that we haven't uncovered it sooner.
Signed-off-by: Michal Privoznik <mprivozn(a)redhat.com>
---
Reviewed-by: Erik Skultety <eskultet(a)redhat.com>
10:01 a.m.
On 9/26/19 4:42 PM, Erik Skultety wrote:
On Thu, Sep 26, 2019 at 04:25:05PM +0200, Michal Privoznik wrote:
> The private data for video definition is created in
> virDomainVideoDefNew() and we attempt to free it in
> virDomainVideoDefFree(). This seems to work, except
> the free function calls clear function which zeroes
> out the whole structure and thus virObjectUnref()
> which is called on private data does nothing.
>
> 2,568 bytes in 107 blocks are definitely lost in loss record 207 of 213
> at 0x4A35476: calloc (vg_replace_malloc.c:752)
> by 0x50A6048: virAllocVar (viralloc.c:346)
> by 0x513CC5A: virObjectNew (virobject.c:243)
> by 0x4DC1DEE: qemuDomainVideoPrivateNew (qemu_domain.c:1337)
> by 0x51A6BD6: virDomainVideoDefNew (domain_conf.c:2831)
> by 0x51B9F06: virDomainVideoDefParseXML (domain_conf.c:15541)
> by 0x51CB761: virDomainDefParseXML (domain_conf.c:21158)
> by 0x51C5973: virDomainDefParseNode (domain_conf.c:21708)
> by 0x51C583A: virDomainDefParse (domain_conf.c:21663)
> by 0x51C58AE: virDomainDefParseFile (domain_conf.c:21688)
Impressive that we haven't uncovered it sooner.
That's okay, this was introduced only a few days ago in
v5.7.0-212-g3dbf3941ad.
>
> Signed-off-by: Michal Privoznik <mprivozn(a)redhat.com>
> ---
Reviewed-by: Erik Skultety <eskultet(a)redhat.com>
Thanks, pushed now.
Michal
10:08 a.m.
On Thu, Sep 26, 2019 at 05:01:24PM +0200, Michal Privoznik wrote:
On 9/26/19 4:42 PM, Erik Skultety wrote:
> On Thu, Sep 26, 2019 at 04:25:05PM +0200, Michal Privoznik wrote:
> > The private data for video definition is created in
> > virDomainVideoDefNew() and we attempt to free it in
> > virDomainVideoDefFree(). This seems to work, except
> > the free function calls clear function which zeroes
> > out the whole structure and thus virObjectUnref()
> > which is called on private data does nothing.
> >
> > 2,568 bytes in 107 blocks are definitely lost in loss record 207 of 213
> > at 0x4A35476: calloc (vg_replace_malloc.c:752)
> > by 0x50A6048: virAllocVar (viralloc.c:346)
> > by 0x513CC5A: virObjectNew (virobject.c:243)
> > by 0x4DC1DEE: qemuDomainVideoPrivateNew (qemu_domain.c:1337)
> > by 0x51A6BD6: virDomainVideoDefNew (domain_conf.c:2831)
> > by 0x51B9F06: virDomainVideoDefParseXML (domain_conf.c:15541)
> > by 0x51CB761: virDomainDefParseXML (domain_conf.c:21158)
> > by 0x51C5973: virDomainDefParseNode (domain_conf.c:21708)
> > by 0x51C583A: virDomainDefParse (domain_conf.c:21663)
> > by 0x51C58AE: virDomainDefParseFile (domain_conf.c:21688)
>
> Impressive that we haven't uncovered it sooner.
That's okay, this was introduced only a few days ago in
v5.7.0-212-g3dbf3941ad.
Ah, missed the fact that the series touched the object cleanup code as well.
Erik
1884
days inactive
1884
days old
3 comments
2 participants
participants (2)
-
Erik Skultety -
Michal Privoznik