WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-devel] Xen hypervisor external denial of service vulnerability?

from [Pim van Riezen] [Permanent Link][Original]
To: Pasi Kärkkäinen <pasik@xxxxxx>
Subject: Re: [Xen-devel] Xen hypervisor external denial of service vulnerability?
From: Pim van Riezen <pi+lists@xxxxxxxxxxxx>
Date: Tue, 8 Feb 2011 17:10:32 +0100
Cc: xen-devel@xxxxxxxxxxxxxxxxxxx
Delivery-date: Tue, 08 Feb 2011 08:11:42 -0800
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <20110208155359.GW2754@xxxxxxxxxxx>
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
References: <A380BBA2-B226-4747-A35D-901318490782@xxxxxxxxxxxx> <E2D001B5-B565-4F9C-BDF4-A2EA2B162C6F@xxxxxxxxxxxx> <20110208155359.GW2754@xxxxxxxxxxx>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx 
On Feb 8, 2011, at 16:53 , Pasi Kärkkäinen wrote:

> On Tue, Feb 08, 2011 at 01:39:06PM +0100, Pim van Riezen wrote:
>> Addendum:
>> 
>>      The Dells are actually R715.
>>      The dom0 kernel is actually vmlinuz-2.6.18-194.32.1.el5xen
>> 
> 
> Have you gived dom0 fixed amount of memory, and also increase dom0 vcpu 
> weights
> so that dom0 will always get enough cpu time to take care of things? 

Fixed dom0_mem, yes.
Weighting, seems not, but just did a testrun with the dom0 weight set to 512. I 
got 2 task blocks on one node (that seems a new development) and the same plus 
another raw_safe_halt soft lockup on the other:

Feb  8 17:07:50 handel kernel: INFO: task syslogd:9120 blocked for more than 
120 seconds.
Feb  8 17:07:50 handel kernel: "echo 0 > 
/proc/sys/kernel/hung_task_timeout_secs" disables this message.
Feb  8 17:07:50 handel kernel: syslogd       D 00000ede44a71082     0  9120     
 1          9123  9089 (NOTLB)
Feb  8 17:07:50 handel kernel:  ffff880078087d88  0000000000000282  
0000000000000000  0000000000000001 
Feb  8 17:07:50 handel kernel:  000000000000000a  ffff8800798d70c0  
ffff8800000320c0  0000000000022b41 
Feb  8 17:07:50 handel kernel:  ffff8800798d72a8  0000000000000000 
Feb  8 17:07:50 handel kernel: Call Trace:
Feb  8 17:07:50 handel kernel:  [<ffffffff88036d5a>] 
:jbd:log_wait_commit+0xa3/0xf5
Feb  8 17:07:50 handel kernel:  [<ffffffff8029c48f>] 
autoremove_wake_function+0x0/0x2e
Feb  8 17:07:50 handel kernel:  [<ffffffff8803178a>] 
:jbd:journal_stop+0x1cf/0x1ff
Feb  8 17:07:50 handel kernel:  [<ffffffff8023119d>] 
__writeback_single_inode+0x1e9/0x328
Feb  8 17:07:50 handel kernel:  [<ffffffff802d330d>] do_readv_writev+0x26e/0x291
Feb  8 17:07:51 handel kernel:  [<ffffffff802e5b8b>] sync_inode+0x24/0x33
Feb  8 17:07:51 handel kernel:  [<ffffffff8804c36d>] 
:ext3:ext3_sync_file+0xc9/0xdc
Feb  8 17:07:51 handel kernel:  [<ffffffff80251e07>] do_fsync+0x52/0xa4
Feb  8 17:07:51 handel kernel:  [<ffffffff802d3b11>] __do_fsync+0x23/0x36
Feb  8 17:07:51 handel kernel:  [<ffffffff802602f9>] tracesys+0xab/0xb6
Feb  8 17:07:51 handel kernel: 
Feb  8 17:07:51 handel kernel: INFO: task syslogd:9120 blocked for more than 
120 seconds.
Feb  8 17:07:51 handel kernel: "echo 0 > 
/proc/sys/kernel/hung_task_timeout_secs" disables this message.
Feb  8 17:07:51 handel kernel: syslogd       D 00000ede44a71082     0  9120     
 1          9123  9089 (NOTLB)
Feb  8 17:07:51 handel kernel:  ffff880078087d88  0000000000000282  
0000000000000000  0000000000000001 
Feb  8 17:07:51 handel kernel:  000000000000000a  ffff8800798d70c0  
ffff8800000320c0  0000000000022b41 
Feb  8 17:07:51 handel kernel:  ffff8800798d72a8  0000000000000000 
Feb  8 17:07:51 handel kernel: Call Trace:
Feb  8 17:07:51 handel kernel:  [<ffffffff88036d5a>] 
:jbd:log_wait_commit+0xa3/0xf5
Feb  8 17:07:51 handel kernel:  [<ffffffff8029c48f>] 
autoremove_wake_function+0x0/0x2e
Feb  8 17:07:51 handel kernel:  [<ffffffff8803178a>] 
:jbd:journal_stop+0x1cf/0x1ff
Feb  8 17:07:51 handel kernel:  [<ffffffff8023119d>] 
__writeback_single_inode+0x1e9/0x328
Feb  8 17:07:51 handel kernel:  [<ffffffff802d330d>] do_readv_writev+0x26e/0x291
Feb  8 17:07:51 handel kernel:  [<ffffffff802e5b8b>] sync_inode+0x24/0x33
Feb  8 17:07:51 handel kernel:  [<ffffffff8804c36d>] 
:ext3:ext3_sync_file+0xc9/0xdc
Feb  8 17:07:51 handel kernel:  [<ffffffff80251e07>] do_fsync+0x52/0xa4
Feb  8 17:07:51 handel kernel:  [<ffffffff802d3b11>] __do_fsync+0x23/0x36
Feb  8 17:07:51 handel kernel:  [<ffffffff802602f9>] tracesys+0xab/0xb6
Feb  8 17:07:51 handel kernel: 

Feb  8 17:03:45 telemann kernel: INFO: task syslogd:7704 blocked for more than 
120 seconds.
Feb  8 17:03:45 telemann kernel: "echo 0 > 
/proc/sys/kernel/hung_task_timeout_secs" disables this message.
Feb  8 17:03:45 telemann kernel: syslogd       D 00000ee120ea024a     0  7704   
   1          7707  7673 (NOTLB)
Feb  8 17:03:45 telemann kernel:  ffff8800754dfd88  0000000000000282  
0000000000000000  0000000000000001 
Feb  8 17:03:45 telemann kernel:  000000000000000a  ffff88007e65e860  
ffff88000001e820  0000000000021814 
Feb  8 17:03:45 telemann kernel:  ffff88007e65ea48  0000000000000000 
Feb  8 17:03:45 telemann kernel: Call Trace:
Feb  8 17:03:45 telemann kernel:  [<ffffffff88036d5a>] 
:jbd:log_wait_commit+0xa3/0xf5
Feb  8 17:03:45 telemann kernel:  [<ffffffff8029c48f>] 
autoremove_wake_function+0x0/0x2e
Feb  8 17:03:45 telemann kernel:  [<ffffffff8803178a>] 
:jbd:journal_stop+0x1cf/0x1ff
Feb  8 17:03:45 telemann kernel:  [<ffffffff8023119d>] 
__writeback_single_inode+0x1e9/0x328
Feb  8 17:03:45 telemann kernel:  [<ffffffff802d330d>] 
do_readv_writev+0x26e/0x291
Feb  8 17:07:35 telemann kernel:  [<ffffffff802e5b8b>] sync_inode+0x24/0x33
Feb  8 17:07:35 telemann kernel:  [<ffffffff8804c36d>] 
:ext3:ext3_sync_file+0xc9/0xdc
Feb  8 17:07:35 telemann kernel:  [<ffffffff80251e07>] do_fsync+0x52/0xa4
Feb  8 17:07:35 telemann kernel:  [<ffffffff802d3b11>] __do_fsync+0x23/0x36
Feb  8 17:07:35 telemann kernel:  [<ffffffff802602f9>] tracesys+0xab/0xb6
Feb  8 17:07:35 telemann kernel: 
Feb  8 17:07:35 telemann kernel: INFO: task syslogd:7704 blocked for more than 
120 seconds.
Feb  8 17:07:35 telemann kernel: "echo 0 > 
/proc/sys/kernel/hung_task_timeout_secs" disables this message.
Feb  8 17:07:35 telemann kernel: syslogd       D 00000ee120ea024a     0  7704   
   1          7707  7673 (NOTLB)
Feb  8 17:07:35 telemann kernel:  ffff8800754dfd88  0000000000000282  
0000000000000000  0000000000000001 
Feb  8 17:07:35 telemann kernel:  000000000000000a  ffff88007e65e860  
ffff88000001e820  0000000000021814 
Feb  8 17:07:35 telemann kernel:  ffff88007e65ea48  0000000000000000 
Feb  8 17:07:35 telemann kernel: Call Trace:
Feb  8 17:07:35 telemann kernel:  [<ffffffff88036d5a>] 
:jbd:log_wait_commit+0xa3/0xf5
Feb  8 17:07:35 telemann kernel:  [<ffffffff8029c48f>] 
autoremove_wake_function+0x0/0x2e
Feb  8 17:07:35 telemann kernel:  [<ffffffff8803178a>] 
:jbd:journal_stop+0x1cf/0x1ff
Feb  8 17:07:35 telemann kernel:  [<ffffffff8023119d>] 
__writeback_single_inode+0x1e9/0x328
Feb  8 17:07:35 telemann kernel:  [<ffffffff802d330d>] 
do_readv_writev+0x26e/0x291
Feb  8 17:07:35 telemann kernel:  [<ffffffff802e5b8b>] sync_inode+0x24/0x33
Feb  8 17:07:35 telemann kernel:  [<ffffffff8804c36d>] 
:ext3:ext3_sync_file+0xc9/0xdc
Feb  8 17:07:35 telemann kernel:  [<ffffffff80251e07>] do_fsync+0x52/0xa4
Feb  8 17:07:35 telemann kernel:  [<ffffffff802d3b11>] __do_fsync+0x23/0x36
Feb  8 17:07:35 telemann kernel:  [<ffffffff802602f9>] tracesys+0xab/0xb6
Feb  8 17:07:35 telemann kernel: 
Feb  8 17:07:35 telemann kernel: BUG: soft lockup - CPU#0 stuck for 287s! 
[swapper:0]
Feb  8 17:07:35 telemann kernel: CPU 0:
Feb  8 17:07:35 telemann kernel: Modules linked in: tun 8021q netloop netbk 
blktap blkbk bridge ipmi_devintf ipmi_si ipmi_msghandler dell_rbu autofs4 hidp 
rfcomm l2cap bluetooth lockd sunrpc ip_conntrack_netbios_ns ipt_REJECT xt_state 
xt_tcpudp iptable_filter ipt_MASQUERADE iptable_nat ip_nat ip_conntrack 
nfnetlink ip_tables ip6table_filter ip6_tables x_tables ipv6 xfrm_nalgo 
crypto_api dm_round_robin dm_multipath scsi_dh video backlight sbs power_meter 
hwmon i2c_ec dell_wmi wmi button battery asus_acpi ac parport_pc lp parport 
8250_pnp sr_mod cdrom sg pcspkr i2c_piix4 serio_raw 8250 i2c_core serial_core 
bnx2 amd64_edac_mod edac_mc dm_raid45 dm_message dm_region_hash dm_mem_cache 
dm_snapshot dm_zero dm_mirror dm_log dm_mod lpfc scsi_transport_fc ahci libata 
shpchp mpt2sas scsi_transport_sas sd_mod scsi_mod ext3 jbd uhci_hcd ohci_hcd 
ehci_hcd
Feb  8 17:07:35 telemann kernel: Pid: 0, comm: swapper Not tainted 
2.6.18-194.32.1.el5xen #1
Feb  8 17:07:36 telemann kernel: RIP: e030:[<ffffffff802063aa>]  
[<ffffffff802063aa>] hypercall_page+0x3aa/0x1000
Feb  8 17:07:36 telemann kernel: RSP: e02b:ffffffff80645f58  EFLAGS: 00000246
Feb  8 17:07:36 telemann kernel: RAX: 0000000000000000 RBX: 0000000000000000 
RCX: ffffffff802063aa
Feb  8 17:07:36 telemann kernel: RDX: 0000000000000001 RSI: 0000000000000000 
RDI: 0000000000000001
Feb  8 17:07:36 telemann kernel: RBP: 0000000000000000 R08: 0000000000000038 
R09: 00000001003cd738
Feb  8 17:07:36 telemann kernel: R10: ffff88007e6c3b00 R11: 0000000000000246 
R12: 0000000000000000
Feb  8 17:07:36 telemann kernel: R13: 0000000000000000 R14: 0000000000000000 
R15: 0000000000000000
Feb  8 17:07:36 telemann kernel: FS:  00002ad0c0f9ba30(0000) 
GS:ffffffff805d3000(0000) knlGS:0000000000000000
Feb  8 17:07:36 telemann kernel: CS:  e033 DS: 0000 ES: 0000
Feb  8 17:07:36 telemann kernel: 
Feb  8 17:07:36 telemann kernel: Call Trace:
Feb  8 17:07:36 telemann kernel:  [<ffffffff8026f4f3>] raw_safe_halt+0x84/0xa8
Feb  8 17:07:36 telemann kernel:  [<ffffffff8026ca88>] xen_idle+0x38/0x4a
Feb  8 17:07:36 telemann kernel:  [<ffffffff8024af6c>] cpu_idle+0x97/0xba
Feb  8 17:07:36 telemann kernel:  [<ffffffff8064eb0f>] start_kernel+0x21f/0x224
Feb  8 17:07:36 telemann kernel:  [<ffffffff8064e1e5>] _sinittext+0x1e5/0x1eb
Feb  8 17:07:36 telemann kernel: 

Cheers,
Pim


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-devel] Xen hypervisor external denial of service vulnerability?, Pasi Kärkkäinen
Next by Date:  [Xen-users] Re: [Xen-devel] Re: Nvidia 9500GT Xen VGA passthru, Anish Patel
Previous by Thread:  Re: [Xen-devel] Xen hypervisor external denial of service vulnerability?, Pasi Kärkkäinen
Next by Thread:  Re: [Xen-devel] Xen hypervisor external denial of service vulnerability?, Pim van Riezen
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy