Re: [PATCH V2] x86/efi: Free allocated memory if remap fails

From: Sai Praneeth Prakhya
Date: Tue Jun 19 2018 - 22:37:01 EST

Next message: Jia-Ju Bai: "[PATCH] xen: Fix two possible sleep-in-atomic-context bugs in create_active()"
Previous message: Paul Burton: "Re: [PATCH 2/2] mips: generic: allow not building DTB in"
In reply to: Ard Biesheuvel: "Re: [PATCH V2] x86/efi: Free allocated memory if remap fails"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> >
> Thank you Sai.
>
> But this is not really what I meant.
>

Ya.. sorry! about that. I had a hunch that you might be suggesting something
like below but I went ahead with this implementation as it looked very simple
(just 3 insertions and no deletions)

> How about we modify efi_memmap_alloc() like this
>

It sounds like a good idea to me. Leaving aside the pros (which are obvious),
the only con I could see is few extra checks and some code but I don't think
it's an issue at all because this code is not in fast path and it dosen't
impact performance. So, I will post a V3 with suggested changes.

> @@ -39,10 +39,12 @@ static phys_addr_t __init
> __efi_memmap_alloc_late(unsigned long size)
> Â * Returns the physical address of the allocated memory map on
> Â * success, zero on failure.
> Â */
> -phys_addr_t __init efi_memmap_alloc(unsigned int num_entries)
> +phys_addr_t __init efi_memmap_alloc(unsigned int num_entries, bool *late)
> Â{
> ÂÂÂÂÂÂÂÂunsigned long size = num_entries * efi.memmap.desc_size;
>
> +ÂÂÂÂÂÂÂif (late)
> +ÂÂÂÂÂÂÂÂÂÂÂÂÂÂÂ*late = slab_is_available();
> ÂÂÂÂÂÂÂÂif (slab_is_available())
> ÂÂÂÂÂÂÂÂÂÂÂÂÂÂÂÂreturn __efi_memmap_alloc_late(size);
>
> and introduce efi_memmap_free() as before, but pass it the 'late'
> parameter you received from efi_memmap_alloc(). That way, it is the
> caller's job to take care of this.
>

Sure! makes sense.

> Also, it seems to me that efi_arch_mem_reserve() leaks the old memory
> map every time you create a new one, no?

I think you are right. The issue I see is (please let me know if you think
otherwise):
1. efi_arch_mem_reserve() comes up with a new memory map and then tries to
install it via efi_memmap_install().
2. efi_memmap_install(), unmaps the existing memory map and installs the new
memory map but doesn't free the memory used by the existing memory map.
Hence, as you said, leaks the old memory map.

If this you what you meant, I think, the issue is not just limited to
efi_arch_mem_reserve() but to all the places that call efi_memmap_install().
I think, we could solve it as below

diff --git a/drivers/firmware/efi/memmap.c b/drivers/firmware/efi/memmap.c
index 678e85704054..50ae4ffbf058 100644
--- a/drivers/firmware/efi/memmap.c
+++ b/drivers/firmware/efi/memmap.c
@@ -228,6 +228,7 @@ int __init efi_memmap_install(phys_addr_t addr, unsigned
int nr_map)
ÂÂÂÂÂÂÂÂstruct efi_memory_map_data data;
Â
ÂÂÂÂÂÂÂÂefi_memmap_unmap();
+ÂÂÂÂÂÂÂefi_memmap_free(efi.memmap.phys_map, efi.memmap.nr_map,
efi.memmap.late);
Â
ÂÂÂÂÂÂÂÂdata.phys_map = addr;
ÂÂÂÂÂÂÂÂdata.size = efi.memmap.desc_size * nr_map;

Please let me know your thoughts on it.

> That is a separate issue that
> you may want to look into, but it affects the design of this API as
> well.

Probably, I could have misunderstood you here.. but I think the
efi_memmap_free() API in V3 should work (without changes). Don't you think so?

Regards,
Sai

Next message: Jia-Ju Bai: "[PATCH] xen: Fix two possible sleep-in-atomic-context bugs in create_active()"
Previous message: Paul Burton: "Re: [PATCH 2/2] mips: generic: allow not building DTB in"
In reply to: Ard Biesheuvel: "Re: [PATCH V2] x86/efi: Free allocated memory if remap fails"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]