|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [Xen-changelog] [xen-unstable] Serialize iptables calls in hotplug scripts
# HG changeset patch
# User Keir Fraser <keir.fraser@xxxxxxxxxx>
# Date 1243505239 -3600
# Node ID fe84a14aacd1bee4050b56cdff98321711cd38e1
# Parent ae810b2583943ca242c4e543ddb43c9f2c7a0f1e
Serialize iptables calls in hotplug scripts
iptables cannot correctly handle situations when more than one command
is trying to set netfilter rules. In such situations, iptables may fail
with EAGAIN, which results in iptables: Unknown error
18446744073709551615.
Such situation can easily happen when multiple network devices are
configured for a domain as vif hotplug scripts are called in parallel
for all of the network devices.
Signed-off-by: Jiri Denemark <jdenemar@xxxxxxxxxx>
---
tools/hotplug/Linux/vif-common.sh | 4 ++++
1 files changed, 4 insertions(+)
diff -r ae810b258394 -r fe84a14aacd1 tools/hotplug/Linux/vif-common.sh
--- a/tools/hotplug/Linux/vif-common.sh Thu May 28 11:01:00 2009 +0100
+++ b/tools/hotplug/Linux/vif-common.sh Thu May 28 11:07:19 2009 +0100
@@ -103,6 +103,8 @@ handle_iptable()
return
fi
+ claim_lock "iptables"
+
if [ "$ip" != "" ]
then
local addr
@@ -117,6 +119,8 @@ handle_iptable()
# No IP addresses have been specified, so allow anything.
frob_iptable
fi
+
+ release_lock "iptables"
}
_______________________________________________
Xen-changelog mailing list
Xen-changelog@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-changelog
|
 |
Lists.xenproject.org is hosted with RackSpace, monitoring our |