|
|
|
|
|
|
|
|
|
|
xen-users
Re: [Xen-users] Xen 3.0.2-2 + linux-2.6-xen-fedora
Am Dienstag, den 19.09.2006, 23:43 +0800 schrieb Adrian Chadd:
> Yeah - my 2.6.17 paravirt kernels from FC5 will crash (and I didn't get
> a stack trace when this happened, but I will next time!) and they'll
> actually take the networking for all other xen's down with them.
>
> xm shutdown will successfully shut the domU environment down but it'll
> zombie the kernel instead of cleanly destroying the domain.
> I have to reboot to recover. restarting xend doesn't do anything
> (and I haven't checked the logs to see what it failed to do, save
> being unable to destroy domains..)
>
> Its a bit weird that a domU crashing can take out everything else.
> I'd hate to find someone reliably replicating it and using it as a
> DoS.. :/
After some digging through bugzilla, I saw several reports for this, and
someone then left a hint, and I think I've identified the bug as:
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=199944
The crash has been fixed some days ago in the development version (which
I can possibly confirm as I haven't seen a crash with the new version...
yet). Unfortunately, it seems that a malicious user breaking in and
gaining root rights on a XenU machine could still take down the whole
networking (by messing around on the evtchn?). Xen should really be
robust against any weird DomU behaviour in critical hypervisor/guest
kernel code.
signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil
_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
|
|
|
|
|