891324 – libvirtd memory leak, process grows to 10 GB

RHEL Engineering is moving the tracking of its product development work on RHEL 6 through RHEL 9 to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "RHEL project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs in the statuses "NEW", "ASSIGNED", and "POST" are being migrated throughout September 2023. Bugs of Red Hat partners with an assigned Engineering Partner Manager (EPM) are migrated in late September as per pre-agreed dates. Bugs against components "kernel", "kernel-rt", and "kpatch" are only migrated if still in "NEW" or "ASSIGNED". If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "RHEL project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/RHEL-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.

Bug 891324 - libvirtd memory leak, process grows to 10 GB

Summary: libvirtd memory leak, process grows to 10 GB

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	None
Product:	Red Hat Enterprise Linux 7
Classification:	Red Hat
Component:	libvirt
Sub Component:
Version:	7.0
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	high
Target Milestone:	rc
Target Release:	---
Assignee:	John Ferlan
QA Contact:	Virtualization Bugs
Docs Contact:
URL:
Whiteboard:
Depends On:	890039 903203 903280
Blocks:
TreeView+	depends on / blocked

Reported:	2013-01-02 15:45 UTC by Dave Allan
Modified:	2024-06-13 20:36 UTC (History)
CC List:	8 users (show)
Fixed In Version:	libvirt-1.0.2-1.el7
Doc Type:	Bug Fix
Doc Text:
Clone Of:	890039
Clones:	903203 903280 (view as bug list)
Environment:
Last Closed:	2014-06-13 12:28:09 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)
make check log (48.90 KB, text/x-log) 2013-01-20 03:40 UTC, Gunannan Ren	no flags	Details
excerpt from valgrind.log (10.89 KB, text/plain) 2013-01-23 12:41 UTC, Richard W.M. Jones	no flags	Details
View All

Description Dave Allan 2013-01-02 15:45:27 UTC

+++ This bug was initially created as a clone of Bug #890039 +++

Description of problem:

  PID USER      PR  NI  VIRT  RES  SHR S  %CPU %MEM    TIME+  COMMAND           
25390 rjones    20   0 10.9g  10g 8.4g S   0.0 66.8  16:34.08 libvirtd          

Note this appears to be a session libvirtd.

I sent this process a SIGBUS and collected the core dump which
is 2.1 GB in size.  I will attempt to compress it and upload it.

Version-Release number of selected component (if applicable):

libvirt-daemon-0.10.2.2-3.fc18.x86_64

How reproducible:

unknown

--- Additional comment from Richard W.M. Jones on 2012-12-24 10:10:00 EST ---

Created attachment 668504 [details]
coredump (xz compressed)

A mere 19 MB compressed.  Expands to 2.1 GB.

--- Additional comment from Richard W.M. Jones on 2012-12-24 10:14:58 EST ---

I did a 'strings' on the coredump and then sorted it to
show the most common strings.  They all seem to be SELinux
contexts.  (The number in the left hand column is the number
of times each string occurs in the coredump file).

2366430 system_u:object_r:bin_t:s0
1663530 system_u:object_r:textrel_shlib_t:s0
 929390 system_u:object_r:lvm_exec_t:s0
 601370 system_u:object_r:fsadm_exec_t:s0
 421740 system_u:object_r:games_exec_t:s0
 359260 <<none>>
 320210 system_u:object_r:innd_exec_t:s0
 288970 system_u:object_r:fixed_disk_device_t:s0
 273350 system_u:object_r:lib_t:s0
 242110 system_u:object_r:shell_exec_t:s0
 242110 system_u:object_r:nagios_services_plugin_exec_t:s0
 203060 system_u:object_r:rpm_exec_t:s0
 195250 system_u:object_r:etc_runtime_t:s0
 195250 system_u:object_r:cupsd_rw_etc_t:s0
 187440 system_u:object_r:httpd_sys_rw_content_t:s0
 179630 system_u:object_r:sound_device_t:s0
 179630 system_u:object_r:removable_device_t:s0
 171820 system_u:object_r:udev_exec_t:s0
 164010 system_u:object_r:var_log_t:s0
 164010 system_u:object_r:system_munin_plugin_exec_t:s0
 156200 system_u:object_r:tty_device_t:s0
 156200 system_u:object_r:iptables_exec_t:s0
 156200 system_u:object_r:ifconfig_exec_t:s0
 148390 system_u:object_r:initrc_exec_t:s0
 148390 system_u:object_r:httpd_sys_content_t:s0
 140580 system_u:object_r:wine_exec_t:s0
 140580 system_u:object_r:services_munin_plugin_exec_t:s0
 140580 system_u:object_r:mouse_device_t:s0
 140580 system_u:object_r:cobbler_var_lib_t:s0
 132770 system_u:object_r:svc_run_exec_t:s0
 117150 unconfined_u:object_r:mozilla_home_t:s0
 117150 system_u:object_r:vmware_host_exec_t:s0
 117150 system_u:object_r:nagios_system_plugin_exec_t:s0
 117150 system_u:object_r:mozilla_exec_t:s0
 117150 system_u:object_r:httpd_log_t:s0
 109340 system_u:object_r:xdm_var_run_t:s0
 109340 system_u:object_r:lpr_exec_t:s0
 109340 system_u:object_r:etc_t:s0
 101530 system_u:object_r:named_conf_t:s0
 101530 system_u:object_r:httpd_sys_script_exec_t:s0
 101530 system_u:object_r:httpd_cache_t:s0
  93720 system_u:object_r:xserver_misc_device_t:s0
  93720 system_u:object_r:v4l_device_t:s0
  85910 system_u:object_r:xsession_exec_t:s0
  85910 system_u:object_r:thumb_exec_t:s0
  85910 system_u:object_r:syslogd_exec_t:s0
  85910 system_u:object_r:net_conf_t:s0
  85910 system_u:object_r:mnt_t:s0
  85910 system_u:object_r:locale_t:s0
  85910 system_u:object_r:httpd_var_run_t:s0
  78100 system_u:object_r:usr_t:s0
  78100 system_u:object_r:sendmail_exec_t:s0
  78100 system_u:object_r:krb5_host_rcache_t:s0
  78100 system_u:object_r:httpd_exec_t:s0
  70290 system_u:object_r:xserver_exec_t:s0
  70290 system_u:object_r:xdm_exec_t:s0
  70290 system_u:object_r:var_auth_t:s0
  70290 system_u:object_r:traceroute_exec_t:s0
  70290 system_u:object_r:ssh_home_t:s0
  62480 system_u:object_r:xauth_home_t:s0
  62480 system_u:object_r:tape_device_t:s0
  62480 system_u:object_r:smbd_var_run_t:s0
  62480 system_u:object_r:quota_db_t:s0
  62480 system_u:object_r:printer_device_t:s0
  62480 system_u:object_r:postfix_master_exec_t:s0
  62480 system_u:object_r:passwd_file_t:s0
  62480 system_u:object_r:NetworkManager_var_lib_t:s0
  62480 system_u:object_r:mount_exec_t:s0
  62480 system_u:object_r:mdadm_exec_t:s0
  62480 system_u:object_r:likewise_initrc_exec_t:s0
  62480 system_u:object_r:ipsec_exec_t:s0
  62480 system_u:object_r:init_exec_t:s0
  62480 system_u:object_r:httpd_config_t:s0
  62480 system_u:object_r:event_device_t:s0
  62480 system_u:object_r:dhcpc_exec_t:s0
  62480 system_u:object_r:bootloader_exec_t:s0
  62480 system_u:object_r:bluetooth_exec_t:s0
  62480 system_u:object_r:admin_passwd_exec_t:s0
  54670 system_u:object_r:vmware_exec_t:s0
  54670 system_u:object_r:virtd_exec_t:s0
  54670 system_u:object_r:usb_device_t:s0
  54670 system_u:object_r:syslogd_var_run_t:s0
  54670 system_u:object_r:svc_svc_t:s0
  54670 system_u:object_r:sshd_key_t:s0
  54670 system_u:object_r:radiusd_log_t:s0
  54670 system_u:object_r:power_unit_file_t:s0
  54670 system_u:object_r:postgresql_log_t:s0
  54670 system_u:object_r:NetworkManager_exec_t:s0
  54670 system_u:object_r:named_cache_t:s0
  54670 system_u:object_r:mail_munin_plugin_exec_t:s0
  54670 system_u:object_r:lvm_metadata_t:s0
  54670 system_u:object_r:lost_found_t:s0

etc etc etc until ...

   7810 system_u:object_r:abrt_retrace_coredump_exec_t:s0
   7810 system_u:object_r:abrt_initrc_exec_t:s0
   7810 system_u:object_r:abrt_helper_exec_t:s0
   7810 system_u:object_r:abrt_handle_event_exec_t:s0
   7810 system_u:object_r:abrt_etc_t:s0
   7810 system_u:object_r:abrt_dump_oops_exec_t:s0
   4216    5
   2804     5
   1876 LinuxRestoreS5
   1588      5
   1518 rityFileLabel5
   1350 ext on '/home5
   1341 etFilec5
   1279 rSecurit5
   1202       5
   1154 /run/guestfs-%
   1106 ux context5
   1104 ing SELinux c5
   1067 org.freedesktop.DBus.Error.NoReply
   1066 Did not receive a reply. Possible causes include: the remote application did not send a reply, the message bus security policy blocked the reply, the reply timeout expired, or the network connection was broken.
   1043 nes5
   1007 Linux context5
   1000 nuxRestoreSec5
    777 ecurityS5
    737     <5
    719 s/tmp/libgues5
    633  context o5
    629 g SELinux con5
    592   <5
    553 tyFileLabel:95
    552 :s0'
    525    E
    515 /qemu/log/gue%
    506 tmp/libguestf5
    498        5
    495       <5
    490 e_t:s0
    485 le.sock'5
    460 ome/rct_r%
    444     <f5
    435 u:object_%
    427         5
    424 ine>
    417 t on '/home/r5

--- Additional comment from Richard W.M. Jones on 2012-12-24 11:23:03 EST ---

I ran a small Perl script over the top "SELinux" strings
and they alone amount to a minimum of 1,392,398,110 bytes
(likely that is a large underestimate when you consider
malloc overheads).

Comment 1 yanbing du 2013-01-10 02:52:52 UTC

I'm trying to reproduce this bug in a rhel6.4 host, but can't get the memory leak issue.

$ rpm -q libvirt
libvirt-0.10.2-14.el6.x86_64

I start a session libvirtd and start/destroy 4 VMs in a loop, after running a whole night, the result is(same with initial status):

 PID USER      PR  NI  VIRT  RES  SHR S %CPU %MEM    TIME+  COMMAND                                                                                                                                         
 2471 ydu       20   0 1003m  12m 4624 S  0.0  0.2  36:18.89 libvirtd

Comment 2 yanbing du 2013-01-10 02:55:01 UTC

(In reply to comment #1)
> I'm trying to reproduce this bug in a rhel6.4 host, but can't get the memory
> leak issue.
> 
> $ rpm -q libvirt
> libvirt-0.10.2-14.el6.x86_64
> 
> I start a session libvirtd and start/destroy 4 VMs in a loop, after running
> a whole night, the result is(same with initial status):
> 
>  PID USER      PR  NI  VIRT  RES  SHR S %CPU %MEM    TIME+  COMMAND         
> 
>  2471 ydu       20   0 1003m  12m 4624 S  0.0  0.2  36:18.89 libvirtd

That is a RHEL6 test result, i will try it on rhel7 later.

Comment 3 yanbing du 2013-01-11 02:48:13 UTC

On the rhel7 host
$ rpm -q libvirt
libvirt-1.0.1-1.el7.x86_64

PID USER      PR  NI  VIRT  RES  SHR S  %CPU %MEM    TIME+  COMMAND                                                                                                                                           
21812 ydu       20   0  920m  13m 6188 S   0.0  0.2   0:00.46 libvirtd  
------
  PID USER      PR  NI  VIRT  RES  SHR S  %CPU %MEM    TIME+  COMMAND  
21812 ydu       20   0  920m  15m 6216 S   1.3  0.2   2:46.92 libvirtd  
------
  PID USER      PR  NI  VIRT  RES  SHR S  %CPU %MEM    TIME+  COMMAND
21812 ydu       20   0  920m  22m 6216 S   2.3  0.3  26:34.30 libvirtd

Comment 4 yanbing du 2013-01-11 03:17:27 UTC

(In reply to comment #3)
> On the rhel7 host
> $ rpm -q libvirt
> libvirt-1.0.1-1.el7.x86_64
> 
> PID USER      PR  NI  VIRT  RES  SHR S  %CPU %MEM    TIME+  COMMAND         
> 
> 21812 ydu       20   0  920m  13m 6188 S   0.0  0.2   0:00.46 libvirtd  
> ------
>   PID USER      PR  NI  VIRT  RES  SHR S  %CPU %MEM    TIME+  COMMAND  
> 21812 ydu       20   0  920m  15m 6216 S   1.3  0.2   2:46.92 libvirtd  
> ------
>   PID USER      PR  NI  VIRT  RES  SHR S  %CPU %MEM    TIME+  COMMAND
> 21812 ydu       20   0  920m  22m 6216 S   2.3  0.3  26:34.30 libvirtd

Hi, Richard
  I can't reproduce this bug on the rehl7 host, is there any thing i can do to encounter it ? Please help, thanks!

Comment 5 Richard W.M. Jones 2013-01-11 13:49:59 UTC

(In reply to comment #4)
> (In reply to comment #3)
> > On the rhel7 host
> > $ rpm -q libvirt
> > libvirt-1.0.1-1.el7.x86_64
> > 
> > PID USER      PR  NI  VIRT  RES  SHR S  %CPU %MEM    TIME+  COMMAND         
> > 
> > 21812 ydu       20   0  920m  13m 6188 S   0.0  0.2   0:00.46 libvirtd  
> > ------
> >   PID USER      PR  NI  VIRT  RES  SHR S  %CPU %MEM    TIME+  COMMAND  
> > 21812 ydu       20   0  920m  15m 6216 S   1.3  0.2   2:46.92 libvirtd  
> > ------
> >   PID USER      PR  NI  VIRT  RES  SHR S  %CPU %MEM    TIME+  COMMAND
> > 21812 ydu       20   0  920m  22m 6216 S   2.3  0.3  26:34.30 libvirtd
> 
> Hi, Richard
>   I can't reproduce this bug on the rehl7 host, is there any thing i can do
> to encounter it ? Please help, thanks!

The fact that it's growing (slightly) even in your test is interesting.

I am usually running the libguestfs test suite over and over again,
and that is likely what caused the memory leak.  However I do not
have any specific reproducer.

Comment 6 Gunannan Ren 2013-01-15 11:47:03 UTC

Just from the core dump file, it is hard to analyze the memory leak via gdb.
I am going to use vlgrind to examine memory leak next step.

Comment 7 Richard W.M. Jones 2013-01-16 10:38:49 UTC

It seems to be a leak in a very specific type of string
(SELinux contexts).  Have you looked at the code in libvirt
or dependent libs which could allocate this kind of string?

I have another libvirtd process (same machine) which could do
with going on a diet:

  PID USER      PR  NI  VIRT  RES  SHR S  %CPU %MEM    TIME+  COMMAND           
17542 rjones    20   0 5983m 5.1g 4.1g S   0.0 33.1   5:21.45 libvirtd          

I'm going to assume this is the same problem.  The only thing
this machine has been doing involving libvirt AFAIK is running
the libguestfs test suite, so this's probably your reproducer:

cd libguestfs
make && make check

Comment 8 Gunannan Ren 2013-01-20 03:40:20 UTC

Created attachment 683423 [details]
make check log

Comment 9 Gunannan Ren 2013-01-20 03:48:43 UTC

I collected the statistics after running libguestfs test suit once on F18 as follows.  I am curious that the size of virtual images of libvirtd process didn't grow up after hitting the 1051m more or less. And I attached the "make check" log, seeing whether Richard could help review the log. In the meantime, the longevity testing is ongoing.

libguestfs is upstream git head.
libvirtd is libvirt-0.10.2.2-3

$ time make check > check.log 2>&1
real	19m23.452s
user	1m53.100s
sys	1m11.198s


  PID USER      PR  NI  VIRT  RES  SHR S  %CPU %MEM    TIME+  COMMAND                                                                                                                                              
32273 gren      20   0 1051m  55m 9756 S   0.0  1.4   0:27.81 libvirtd

Comment 10 Richard W.M. Jones 2013-01-20 10:56:46 UTC

The 'make check' log looks fine from what I can tell.

It doesn't look as if you're hitting the bug at all.  On
my machine I see the 'RES' size MUCH larger than 55m.  For
example after freshly starting libvirtd:

  PID USER      PR  NI  VIRT  RES  SHR S  %CPU %MEM    TIME+  COMMAND
27566 rjones    20   0  702m  23m  16m S   0.0  0.1   0:00.31 libvirtd

Then after running the test suite once (libguestfs.git):

  PID USER      PR  NI  VIRT  RES  SHR S  %CPU %MEM    TIME+  COMMAND
27566 rjones    20   0 2334m 1.3g 1.0g S   0.0  8.2   0:37.25 libvirtd

Let's assume this is not libvirt, but some dependent library.
What versions do you have of the following?

audit-libs-2.2.2-3.fc18.x86_64
avahi-libs-0.6.31-6.fc18.x86_64
cyrus-sasl-lib-2.1.25-2.fc18.x86_64
dbus-libs-1.6.8-2.fc18.x86_64
device-mapper-libs-1.02.77-4.fc18.x86_64
glibc-2.16-28.fc18.x86_64
gnutls-2.12.22-1.fc18.x86_64
keyutils-libs-1.5.5-3.fc18.x86_64
krb5-libs-1.10.3-5.fc18.x86_64
libcap-ng-0.7.3-1.fc18.x86_64
libcom_err-1.42.5-1.fc18.x86_64
libcurl-7.27.0-5.fc18.x86_64
libgcc-4.7.2-8.fc18.x86_64
libgcrypt-1.5.0-8.fc18.x86_64
libgpg-error-1.10-3.fc18.x86_64
libidn-1.26-1.fc18.x86_64
libnl3-3.2.14-1.fc18.x86_64
libselinux-2.1.12-7.fc18.x86_64
libsepol-2.1.8-2.fc18.x86_64
libssh2-1.4.3-1.fc18.x86_64
libtasn1-2.14-1.fc18.x86_64
libvirt-client-0.10.2.2-3.fc18.x86_64
libwsman1-2.3.6-1.fc18.x86_64
libxml2-2.9.0-3.fc18.x86_64
nspr-4.9.4-1.fc18.x86_64
nss-3.14.1-3.fc18.x86_64
nss-softokn-freebl-3.14.1-5.fc18.x86_64
nss-util-3.14.1-2.fc18.x86_64
numactl-libs-2.0.7-7.fc18.x86_64
openldap-2.4.33-3.fc18.x86_64
openssl-libs-1.0.1c-7.fc18.x86_64
p11-kit-0.14-1.fc18.x86_64
pcre-8.31-4.fc18.x86_64
systemd-libs-197-1.fc18.1.x86_64
xz-libs-5.1.2-2alpha.fc18.x86_64
yajl-2.0.4-1.fc18.x86_64
zlib-1.2.7-9.fc18.x86_64

(The output of:
  ldd /usr/sbin/libvirtd | grep '=>' | awk '{print $3}' | \
  xargs -n 1 rpm -qf | sort -u
)

Comment 11 Gunannan Ren 2013-01-21 03:19:45 UTC

$ diff myrpm yourrpm

1c1
< audit-libs-2.2.2-2.fc18.x86_64
---
> audit-libs-2.2.2-3.fc18.x86_64
3c3
< cyrus-sasl-lib-2.1.23-36.fc18.x86_64
---
> cyrus-sasl-lib-2.1.25-2.fc18.x86_64
7c7
< gnutls-2.12.21-1.fc18.x86_64
---
> gnutls-2.12.22-1.fc18.x86_64
12c12
< libcurl-7.27.0-4.fc18.x86_64
---
> libcurl-7.27.0-5.fc18.x86_64
16c16
< libidn-1.25-3.fc18.x86_64
---
> libidn-1.26-1.fc18.x86_64
33,34c33,34
< pcre-8.31-3.fc18.x86_64
< systemd-libs-195-15.fc18.x86_64
---
> pcre-8.31-4.fc18.x86_64
> systemd-libs-197-1.fc18.1.x86_64

Let me upgrade version of these rpms, then try "make check" again.
BTW, the longevity testing(24h) was fine:

32273 gren      20   0 1059m  99m 8804 S   0.0  2.6  40:37.10 libvirtd

Comment 12 Gunannan Ren 2013-01-21 09:18:44 UTC

Unfortunately, the memory leak issue still couldn't be able to be reproduced on my testing machine even after upgrading these libraries which libvirtd loads.

I used both libguestfs.git and libguestfs-1.21.3 in orders.
One thing I need to mention, I disable compliling for object with --disable-gobject

./autogen.sh \
--prefix=/usr \
--with-default-attach-method=libvirt \
--enable-gcc-warnings \
--enable-gtk-doc \
--disable-gobject \
-C

Comment 13 Richard W.M. Jones 2013-01-21 10:17:26 UTC

gobject shouldn't be involved at all.

I wonder if this is a kernel issue?  Or a configuration issue?

Because I haven't rebooted for a while my running kernel is:

Linux choo.home.annexia.org 3.6.9-4.fc18.x86_64 #1 SMP Tue Dec 4 14:12:51 UTC 2012 x86_64 x86_64 x86_64 GNU/Linux

I have no ~/.cache/libvirt/libvirtd.conf file at all, and my
/etc/libvirt/libvirtd.conf file is not changed.

Prelink says ...

prelink: /usr/sbin/libvirtd: at least one of file's dependencies has changed since prelinking
S.?......    /usr/sbin/libvirtd

whatever that is supposed to mean.

Comment 14 Richard W.M. Jones 2013-01-22 08:06:51 UTC

31360 rjones    20   0 25.2g  24g  19g S   0.0 159.0 100:07.64 libvirtd

This was caused by just running the following script overnight:

#!/bin/bash -

set -e
#set -x

cd /tmp
rm -f test1.img

while true; do
echo -n .

output=$(
guestfish <<EOF
sparse test1.img 1G
run
mkfs ext2 /dev/sda
vfs-type /dev/sda
EOF
)

if [ "$output" != "ext2" ]; then
    echo "error: output is not 'ext2'"
    echo "$output"
    exit 1
fi

done

Comment 15 Richard W.M. Jones 2013-01-22 08:08:33 UTC

gren: Is your SELinux Enforcing?  Mine is.

Comment 16 Gunannan Ren 2013-01-22 09:09:38 UTC

(In reply to comment #15)
> gren: Is your SELinux Enforcing?  Mine is.

Yes, I ran "make check" with selinux enforcing for sure, as I saw your suspicion on selinux before.

Okay, let me try the shell script.

Comment 17 Richard W.M. Jones 2013-01-22 16:24:51 UTC

Rebooting did NOT fix this issue.  After a fresh boot
libvirtd is still leaking memory like crazy.

 5526 rjones    20   0 2648m 1.4g 1.1g S   0.0  9.0   0:41.74 libvirtd

Comment 18 Dave Allan 2013-01-22 17:25:40 UTC

Rich, there's a fix for a leak that was discovered by coverity that is on list if not committed upstream; can you confirm that the leak is still there with the git HEAD?

Comment 19 Dave Allan 2013-01-22 17:50:34 UTC

John, since you're deep in the weeds with the coverity reported stuff, can you work with Rich on this?

Comment 20 Richard W.M. Jones 2013-01-22 18:34:00 UTC

Sorry chaps, it DOES occur with libvirt.git, although qualitatively
I suspect the leak may be different(!)  It certainly leaks a little
bit less than before, but libvirtd is still growing substantially
after a single run of the test suite:

  PID USER      PR  NI  VIRT  RES  SHR S  %CPU %MEM    TIME+  COMMAND           
31717 rjones    20   0 2522m 1.4g 1.1g S   0.0  9.0   0:09.49 lt-libvirtd       

---

John, here is a link to some documentation about how to run the
libguestfs test suite:

http://oirase.annexia.org/running-libguestfs-test-suite.txt

Comment 21 Richard W.M. Jones 2013-01-23 12:41:18 UTC

Created attachment 685857 [details]
excerpt from valgrind.log

I just ran a single run of libguestfs-test-tool against
libvirtd from git and I can see loads of memory leaks, some
in obvious SELinux-related code.

Comment 22 Gunannan Ren 2013-01-23 13:17:08 UTC

Maybe checking /proc/$(libvirtd-PID)/maps is a way of looking in the memory areas of a libvirtd process.

Comment 23 Richard W.M. Jones 2013-01-23 15:58:28 UTC

Methodology:

I'm testing libvirt.git (at time of writing,
commit bf62e9953c3dde35551a0c2a91d30a294516609a).

I have applied my patch to libselinux to fix bug 903203.

I use the following command (from the libvirt.git directory)
to run libvirtd under valgrind:

killall lt-libvirtd libvirtd
./run valgrind \
  --trace-children=no \
  --child-silent-after-fork=yes \
  --log-file=/tmp/valgrind.log \
  --leak-check=full \
  --suppressions=./tests/.valgrind.supp \
  ./daemon/libvirtd --timeout 30

while at the same time running the following command from
the libguestfs.git directory:

while true; do echo -n .; ../libvirt/run ./run ./fish/guestfish -N fs exit; done

This creates lots of transient domains, serially.  After some
time I ^C the while loop and wait 30s for libvirtd to exit, then I
examine the /tmp/valgrind.log file.

I also did the same but without using valgrind on libvirtd.

Observations:

The libvirtd process still grows unbounded (without valgrind).

Valgrind shows some reachable blocks, but no significant
unreachable blocks, indicating there is no memory leak.

Examining /proc/$pid/maps shows that the number of memory mappings
is growing like crazy:

$ wc -l /proc/589/maps 
822 /proc/589/maps
$ wc -l /proc/589/maps 
837 /proc/589/maps
$ wc -l /proc/589/maps 
852 /proc/589/maps
$ wc -l /proc/589/maps 
867 /proc/589/maps
$ wc -l /proc/589/maps 
942 /proc/589/maps
$ wc -l /proc/589/maps 
1032 /proc/589/maps

Examination of /proc/$pid/maps appears to point to libselinux again:

$ awk '{print $6}' /proc/589/maps | sort | uniq -c | sort -nr | head
    340 /etc/selinux/targeted/contexts/files/file_contexts.local.bin
    340 /etc/selinux/targeted/contexts/files/file_contexts.homedirs.bin
    340 /etc/selinux/targeted/contexts/files/file_contexts.bin
     67 
      4 /usr/lib64/sasl2/libsasldb.so.2.0.25
      4 /usr/lib64/sasl2/libplain.so.2.0.25
      4 /usr/lib64/sasl2/liblogin.so.2.0.25
      4 /usr/lib64/sasl2/libgssapiv2.so.2.0.25
      4 /usr/lib64/sasl2/libdigestmd5.so.2.0.25
      4 /usr/lib64/sasl2/libcrammd5.so.2.0.25

Comment 24 Richard W.M. Jones 2013-01-23 20:38:03 UTC

I've now fixed all of the memory leaks, so that I can run
the whole libguestfs test suite without any noticable
growth in the size of libvirtd.

There is one patch waiting to go upstream in libvirt:
https://www.redhat.com/archives/libvir-list/2013-January/msg01730.html

There is one patch upstream in libvirt which probably
needs to be backported to F18:
http://libvirt.org/git/?p=libvirt.git;a=commitdiff;h=05cc03518987fa0f8399930d14c1d635591ca49b

There are two bugs that need to be fixed in libselinux:
bug 903203, bug 903280.

Comment 25 Gunannan Ren 2013-01-24 08:23:05 UTC

I checked the libselinux-2.1.12-7 source code, it tries to mmap three binary file

/etc/selinux/targeted/contexts/files/file_contexts.bin
/etc/selinux/targeted/contexts/files/file_contexts.homedirs.bin
/etc/selinux/targeted/contexts/files/file_contexts.bin

But I don't find a place where it munmaps them, so probably it is mmap leak.

There are no these .bin files on my testing machine, possibly it is the reason why I can not reproduce the issue.

Comment 26 Gunannan Ren 2013-01-24 10:01:31 UTC

Afer recompiling the selinux-policy-targeted, it generated .bin files.
and on my testing machine, it can reproduce the bug too :).

Comment 27 Richard W.M. Jones 2013-01-24 12:51:39 UTC

I'll put this bug in POST so Cole knows that we need
the patches in Fedora 18 and RHEL 7.

http://libvirt.org/git/?p=libvirt.git;a=commitdiff;h=05cc03518987fa0f8399930d14c1d635591ca49b
http://libvirt.org/git/?p=libvirt.git;a=commitdiff;h=6159710ca1eecefa7c81335612c8141c88fc35a9

Comment 28 yanbing du 2013-02-01 10:55:39 UTC

Thanks guannan's help, now i can reproduce this bug on RHEL7
# uname -r
3.7.0-0.31.el7.x86_64
# rpm -q libvirt
libvirt-1.0.1-1.el7.x86_64

  PID USER      PR  NI    VIRT    RES    SHR S  %CPU  %MEM     TIME+ COMMAND                                                                                                                                  
15057 root      20   0 2695284 1.868g 1.518g S 2.659 24.96   0:15.48 libvirtd

Comment 29 Richard W.M. Jones 2013-02-01 11:07:52 UTC

(In reply to comment #28)
> Thanks guannan's help, now i can reproduce this bug on RHEL7
> # uname -r
> 3.7.0-0.31.el7.x86_64
> # rpm -q libvirt
> libvirt-1.0.1-1.el7.x86_64
> 
>   PID USER      PR  NI    VIRT    RES    SHR S  %CPU  %MEM     TIME+ COMMAND
> 
> 15057 root      20   0 2695284 1.868g 1.518g S 2.659 24.96   0:15.48 libvirtd

Also look at /proc/15057/maps.  Does it map the same
/etc/selinux/... files over and over again? (see also comment 23)

Comment 30 yanbing du 2013-02-04 03:02:39 UTC

(In reply to comment #29)
> (In reply to comment #28)
> > Thanks guannan's help, now i can reproduce this bug on RHEL7
> > # uname -r
> > 3.7.0-0.31.el7.x86_64
> > # rpm -q libvirt
> > libvirt-1.0.1-1.el7.x86_64
> > 
> >   PID USER      PR  NI    VIRT    RES    SHR S  %CPU  %MEM     TIME+ COMMAND
> > 
> > 15057 root      20   0 2695284 1.868g 1.518g S 2.659 24.96   0:15.48 libvirtd
> 
> Also look at /proc/15057/maps.  Does it map the same
> /etc/selinux/... files over and over again? (see also comment 23)

Yes, it is.

Comment 31 Gunannan Ren 2013-02-04 04:14:24 UTC

Hi yanbing

We need to verify the bug is fixed already in RHEL7 rather than just being able to reproduce it. So probably we need to wait some time for the libselinux with fix on RHEL7.
I just saw no such release for RHEL. 
For fedora, libselinux-2.1.12-7.1.fc18 with the fix is released already.
the http://koji.fedoraproject.org/koji/buildinfo?buildID=380977

Comment 32 yanbing du 2013-02-04 09:43:27 UTC

(In reply to comment #31)
> Hi yanbing
> 
> We need to verify the bug is fixed already in RHEL7 rather than just being
> able to reproduce it. So probably we need to wait some time for the
> libselinux with fix on RHEL7.
> I just saw no such release for RHEL.

Yes, and both bug 903203 and bug 903280 for fedora 18, so should we clone a new one to against rhel7 and backport these fixed patches ?

> For fedora, libselinux-2.1.12-7.1.fc18 with the fix is released already.
> the http://koji.fedoraproject.org/koji/buildinfo?buildID=380977

Comment 33 yanbing du 2013-06-04 05:17:09 UTC

Test with libvirt-1.0.5-2.el7.x86_64, and can't reproduce this bug.
# ps axu|grep libvirtd
root     21581  0.0  0.0 1072100 21280 ?       Ssl  Jun03   0:01 /usr/sbin/libvirtd

# wc -l /proc/21581/maps 
443 /proc/21581/maps
# wc -l /proc/21581/maps 
443 /proc/21581/maps

# awk '{print $6}' /proc/21581/maps | sort | uniq -c | sort -nr | head
     65 
      4 /usr/lib64/sasl2/libsasldb.so.3.0.0
      4 /usr/lib64/sasl2/libplain.so.3.0.0
      4 /usr/lib64/sasl2/liblogin.so.3.0.0
      4 /usr/lib64/sasl2/libdigestmd5.so.3.0.0
      4 /usr/lib64/sasl2/libcrammd5.so.3.0.0
      4 /usr/lib64/sasl2/libanonymous.so.3.0.0
      4 /usr/lib64/pkcs11/p11-kit-trust.so
      4 /usr/lib64/pkcs11/gnome-keyring-pkcs11.so
      4 /usr/lib64/libz.so.1.2.7
# ll /etc/selinux/targeted/contexts/files/*.bin
-rw-------. 1 root root 1171276 May 21 13:08 /etc/selinux/targeted/contexts/files/file_contexts.bin
-rw-------. 1 root root   36550 May 21 13:08 /etc/selinux/targeted/contexts/files/file_contexts.homedirs.bin
-rw-------. 1 root root      16 May 21 13:08 /etc/selinux/targeted/contexts/files/file_contexts.local.bin


  PID USER      PR  NI    VIRT    RES    SHR S  %CPU  %MEM     TIME+ COMMAND                                                                                                           
21581 root      20   0 1072100  22128  10656 S 41.81 0.017   0:25.56 libvirtd 

  PID USER      PR  NI    VIRT    RES    SHR S  %CPU  %MEM     TIME+ COMMAND                                                                                                                                  
21581 root      20   0 1072100  21744  10656 S 42.48 0.017   0:31.97 libvirtd  

And talk with gren, the bug can be VERIFIED.

Comment 34 Ludek Smid 2014-06-13 12:28:09 UTC

This request was resolved in Red Hat Enterprise Linux 7.0.

Contact your manager or support representative in case you have further questions about the request.

Note You need to log in before you can comment on or make changes to this bug.