Received: by 2002:a25:ad19:0:0:0:0:0 with SMTP id y25csp4563311ybi; Tue, 30 Jul 2019 04:18:10 -0700 (PDT) X-Google-Smtp-Source: APXvYqwZcPDO1BsE3efEG48Vz80M+uvdoTrTJpewRrLqC/FxKOiVBbnLUK1Q1nrcNrH1qTjfVMgT X-Received: by 2002:a17:902:b789:: with SMTP id e9mr111770918pls.294.1564485490714; Tue, 30 Jul 2019 04:18:10 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1564485490; cv=none; d=google.com; s=arc-20160816; b=USyBaDeY+Mo2RhjAtcNcYUJg+pudX9V9+i3aX+AX+MuVJ/IiOV6xw173XPVcSRb6vK JqzTlOOTDp1fV6nCQEGQ8K06q8AF7Nqgj8zOIO8W+zYfTg4XuN2457HOnruPKwfgPrk1 l2GfyCn3/J90fKzZ1FQ/HsPVcmqfp3lyMnr1r2iPGM4biSoRV6Q1AKPXQAxglecSox3i Vr3VN9xO4GoBTlHQOoNpzCqzoJJJlHbkTKZantSFCUaxH4/xbACBeE17dTIxj+MPyYFA U4PdQZqr/JVb+D/DleMiQt/9n1tQcdEXDdTWhEIu0BRXvFcyrpbxweUed+q+k4eAMI+N RCjg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:message-id:subject:cc :to:from:date; bh=sb79e2EJ3NY+P07ukpGO7G2zfQSORwuIwn5sTaiDznA=; b=VgFCxR4fweiVOWr8WLBdDpE1ooA7IUu+niOUvtI5HYbR89kdfmA02U2vTvdRgKDJmZ ATYsAlYwvKbjwITWC7XKC+lEEpOOcqX5VZecDQe5MVxpGqLiL/dWCa60+4nLvKeSSYBf iGBsJdVVIO1u3eOdw33O+7Go3vA7W99HC8BRinqAwn5IHV9ESLH9Ekjl6HlG5ruGZypd 9+tEepW8+pMhYO9oTBFHtg5wPxhtW03H7JyzrKW0lLxSztI7sukMQrua6bBV5XYIZZ25 cPTrvGQOD5lpLMJbdu0OLmuLMxa6PmwxETFIkBmvVHKIPLaP3NzjKQibjcaGj8RM4X76 839g== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=redhat.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id i94si26921860plb.78.2019.07.30.04.17.55; Tue, 30 Jul 2019 04:18:10 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=redhat.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1731520AbfG3Jfq (ORCPT + 99 others); Tue, 30 Jul 2019 05:35:46 -0400 Received: from mail-wr1-f68.google.com ([209.85.221.68]:45124 "EHLO mail-wr1-f68.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1729515AbfG3Jfp (ORCPT ); Tue, 30 Jul 2019 05:35:45 -0400 Received: by mail-wr1-f68.google.com with SMTP id f9so64958275wre.12 for ; Tue, 30 Jul 2019 02:35:43 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:date:from:to:cc:subject:message-id:references :mime-version:content-disposition:in-reply-to:user-agent; bh=sb79e2EJ3NY+P07ukpGO7G2zfQSORwuIwn5sTaiDznA=; b=YLBsgPMYsRawS06eWFqMDsckqE0alwD6z1ygSN5nHJHu7dEQOHI0o47nj1gkFAT4p5 RUE7QHkf0HBkCp8PfyxwB1GD94QHsbAejocXLedNLrNV6XuHVjN/n+1lzK4rE57P0XZy ZZQOZh4s5BLLm27xj8m0vZU4OBgS83W/6AJphn6HP91wHzNqhS7/iIAyYObZQ6z1w9dm Ohiv4mskWRQ/RvhgYAgBRGCKa85j/fkBUAALGOWXX2vo953gxbtpCyWsgpa9bw/gROeh FNJlL4hcP+qC0ZjpkIEiq5FEDZwCm/Drqg38TFLYa1OgbHeH+oSUusK9Yds+8QJguvZ8 +Rpg== X-Gm-Message-State: APjAAAUuJE+PvQ072eMMj9jvqWyTP9tHDod68sgMogkxjlRQgpPYMKsb lY8aaGtZ6DHOPH0Me3weRKXf2w== X-Received: by 2002:a05:6000:9:: with SMTP id h9mr36160545wrx.271.1564479343203; Tue, 30 Jul 2019 02:35:43 -0700 (PDT) Received: from steredhat (host122-201-dynamic.13-79-r.retail.telecomitalia.it. [79.13.201.122]) by smtp.gmail.com with ESMTPSA id q18sm77718877wrw.36.2019.07.30.02.35.42 (version=TLS1_3 cipher=AEAD-AES256-GCM-SHA384 bits=256/256); Tue, 30 Jul 2019 02:35:42 -0700 (PDT) Date: Tue, 30 Jul 2019 11:35:39 +0200 From: Stefano Garzarella To: "Michael S. Tsirkin" Cc: netdev@vger.kernel.org, linux-kernel@vger.kernel.org, Stefan Hajnoczi , "David S. Miller" , virtualization@lists.linux-foundation.org, Jason Wang , kvm@vger.kernel.org Subject: Re: [PATCH v4 1/5] vsock/virtio: limit the memory used per-socket Message-ID: <20190730093539.dcksure3vrykir3g@steredhat> References: <20190717113030.163499-1-sgarzare@redhat.com> <20190717113030.163499-2-sgarzare@redhat.com> <20190729095956-mutt-send-email-mst@kernel.org> <20190729153656.zk4q4rob5oi6iq7l@steredhat> <20190729114302-mutt-send-email-mst@kernel.org> <20190729161903.yhaj5rfcvleexkhc@steredhat> <20190729165056.r32uzj6om3o6vfvp@steredhat> <20190729143622-mutt-send-email-mst@kernel.org> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20190729143622-mutt-send-email-mst@kernel.org> User-Agent: NeoMutt/20180716 Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Mon, Jul 29, 2019 at 03:10:15PM -0400, Michael S. Tsirkin wrote: > On Mon, Jul 29, 2019 at 06:50:56PM +0200, Stefano Garzarella wrote: > > On Mon, Jul 29, 2019 at 06:19:03PM +0200, Stefano Garzarella wrote: > > > On Mon, Jul 29, 2019 at 11:49:02AM -0400, Michael S. Tsirkin wrote: > > > > On Mon, Jul 29, 2019 at 05:36:56PM +0200, Stefano Garzarella wrote: > > > > > On Mon, Jul 29, 2019 at 10:04:29AM -0400, Michael S. Tsirkin wrote: > > > > > > On Wed, Jul 17, 2019 at 01:30:26PM +0200, Stefano Garzarella wrote: > > > > > > > Since virtio-vsock was introduced, the buffers filled by the host > > > > > > > and pushed to the guest using the vring, are directly queued in > > > > > > > a per-socket list. These buffers are preallocated by the guest > > > > > > > with a fixed size (4 KB). > > > > > > > > > > > > > > The maximum amount of memory used by each socket should be > > > > > > > controlled by the credit mechanism. > > > > > > > The default credit available per-socket is 256 KB, but if we use > > > > > > > only 1 byte per packet, the guest can queue up to 262144 of 4 KB > > > > > > > buffers, using up to 1 GB of memory per-socket. In addition, the > > > > > > > guest will continue to fill the vring with new 4 KB free buffers > > > > > > > to avoid starvation of other sockets. > > > > > > > > > > > > > > This patch mitigates this issue copying the payload of small > > > > > > > packets (< 128 bytes) into the buffer of last packet queued, in > > > > > > > order to avoid wasting memory. > > > > > > > > > > > > > > Reviewed-by: Stefan Hajnoczi > > > > > > > Signed-off-by: Stefano Garzarella > > > > > > > > > > > > This is good enough for net-next, but for net I think we > > > > > > should figure out how to address the issue completely. > > > > > > Can we make the accounting precise? What happens to > > > > > > performance if we do? > > > > > > > > > > > > > > > > In order to do more precise accounting maybe we can use the buffer size, > > > > > instead of payload size when we update the credit available. > > > > > In this way, the credit available for each socket will reflect the memory > > > > > actually used. > > > > > > > > > > I should check better, because I'm not sure what happen if the peer sees > > > > > 1KB of space available, then it sends 1KB of payload (using a 4KB > > > > > buffer). > > > > > > > > > > The other option is to copy each packet in a new buffer like I did in > > > > > the v2 [2], but this forces us to make a copy for each packet that does > > > > > not fill the entire buffer, perhaps too expensive. > > > > > > > > > > [2] https://patchwork.kernel.org/patch/10938741/ > > > > > > > > > > > > > > > Thanks, > > > > > Stefano > > > > > > > > Interesting. You are right, and at some level the protocol forces copies. > > > > > > > > We could try to detect that the actual memory is getting close to > > > > admin limits and force copies on queued packets after the fact. > > > > Is that practical? > > > > > > Yes, I think it is doable! > > > We can decrease the credit available with the buffer size queued, and > > > when the buffer size of packet to queue is bigger than the credit > > > available, we can copy it. > > > > > > > > > > > And yes we can extend the credit accounting to include buffer size. > > > > That's a protocol change but maybe it makes sense. > > > > > > Since we send to the other peer the credit available, maybe this > > > change can be backwards compatible (I'll check better this). > > > > What I said was wrong. > > > > We send a counter (increased when the user consumes the packets) and the > > "buf_alloc" (the max memory allowed) to the other peer. > > It makes a difference between a local counter (increased when the > > packets are sent) and the remote counter to calculate the credit available: > > > > u32 virtio_transport_get_credit(struct virtio_vsock_sock *vvs, u32 credit) > > { > > u32 ret; > > > > spin_lock_bh(&vvs->tx_lock); > > ret = vvs->peer_buf_alloc - (vvs->tx_cnt - vvs->peer_fwd_cnt); > > if (ret > credit) > > ret = credit; > > vvs->tx_cnt += ret; > > spin_unlock_bh(&vvs->tx_lock); > > > > return ret; > > } > > > > Maybe I can play with "buf_alloc" to take care of bytes queued but not > > used. > > > > Thanks, > > Stefano > > Right. And the idea behind it all was that if we send a credit > to remote then we have space for it. Yes. > I think the basic idea was that if we have actual allocated > memory and can copy data there, then we send the credit to > remote. > > Of course that means an extra copy every packet. > So as an optimization, it seems that we just assume > that we will be able to allocate a new buffer. Yes, we refill the virtqueue when half of the buffers were used. > > First this is not the best we can do. We can actually do > allocate memory in the socket before sending credit. In this case, IIUC we should allocate an entire buffer (4KB), so we can reuse it if the packet is big. > If packet is small then we copy it there. > If packet is big then we queue the packet, > take the buffer out of socket and add it to the virtqueue. > > Second question is what to do about medium sized packets. > Packet is 1K but buffer is 4K, what do we do? > And here I wonder - why don't we add the 3K buffer > to the vq? This would allow us to have an accurate credit account. The problem here is the compatibility. Before this series virtio-vsock and vhost-vsock modules had the RX buffer size hard-coded (VIRTIO_VSOCK_DEFAULT_RX_BUF_SIZE = 4K). So, if we send a buffer smaller of 4K, there might be issues. Maybe it is the time to add add 'features' to virtio-vsock device. Thanks, Stefano