[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] Xen hypervisor external denial of service vulnerability?

On Feb 8, 2011, at 16:53 , Pasi Kärkkäinen wrote:

> On Tue, Feb 08, 2011 at 01:39:06PM +0100, Pim van Riezen wrote:
>> Addendum:
>> 
>>      The Dells are actually R715.
>>      The dom0 kernel is actually vmlinuz-2.6.18-194.32.1.el5xen
>> 
> 
> Have you gived dom0 fixed amount of memory, and also increase dom0 vcpu 
> weights
> so that dom0 will always get enough cpu time to take care of things? 

Fixed dom0_mem, yes.
Weighting, seems not, but just did a testrun with the dom0 weight set to 512. I 
got 2 task blocks on one node (that seems a new development) and the same plus 
another raw_safe_halt soft lockup on the other:

Feb  8 17:07:50 handel kernel: INFO: task syslogd:9120 blocked for more than 
120 seconds.
Feb  8 17:07:50 handel kernel: "echo 0 > 
/proc/sys/kernel/hung_task_timeout_secs" disables this message.
Feb  8 17:07:50 handel kernel: syslogd       D 00000ede44a71082     0  9120     
 1          9123  9089 (NOTLB)
Feb  8 17:07:50 handel kernel:  ffff880078087d88  0000000000000282  
0000000000000000  0000000000000001 
Feb  8 17:07:50 handel kernel:  000000000000000a  ffff8800798d70c0  
ffff8800000320c0  0000000000022b41 
Feb  8 17:07:50 handel kernel:  ffff8800798d72a8  0000000000000000 
Feb  8 17:07:50 handel kernel: Call Trace:
Feb  8 17:07:50 handel kernel:  [<ffffffff88036d5a>] 
:jbd:log_wait_commit+0xa3/0xf5
Feb  8 17:07:50 handel kernel:  [<ffffffff8029c48f>] 
autoremove_wake_function+0x0/0x2e
Feb  8 17:07:50 handel kernel:  [<ffffffff8803178a>] 
:jbd:journal_stop+0x1cf/0x1ff
Feb  8 17:07:50 handel kernel:  [<ffffffff8023119d>] 
__writeback_single_inode+0x1e9/0x328
Feb  8 17:07:50 handel kernel:  [<ffffffff802d330d>] do_readv_writev+0x26e/0x291
Feb  8 17:07:51 handel kernel:  [<ffffffff802e5b8b>] sync_inode+0x24/0x33
Feb  8 17:07:51 handel kernel:  [<ffffffff8804c36d>] 
:ext3:ext3_sync_file+0xc9/0xdc
Feb  8 17:07:51 handel kernel:  [<ffffffff80251e07>] do_fsync+0x52/0xa4
Feb  8 17:07:51 handel kernel:  [<ffffffff802d3b11>] __do_fsync+0x23/0x36
Feb  8 17:07:51 handel kernel:  [<ffffffff802602f9>] tracesys+0xab/0xb6
Feb  8 17:07:51 handel kernel: 
Feb  8 17:07:51 handel kernel: INFO: task syslogd:9120 blocked for more than 
120 seconds.
Feb  8 17:07:51 handel kernel: "echo 0 > 
/proc/sys/kernel/hung_task_timeout_secs" disables this message.
Feb  8 17:07:51 handel kernel: syslogd       D 00000ede44a71082     0  9120     
 1          9123  9089 (NOTLB)
Feb  8 17:07:51 handel kernel:  ffff880078087d88  0000000000000282  
0000000000000000  0000000000000001 
Feb  8 17:07:51 handel kernel:  000000000000000a  ffff8800798d70c0  
ffff8800000320c0  0000000000022b41 
Feb  8 17:07:51 handel kernel:  ffff8800798d72a8  0000000000000000 
Feb  8 17:07:51 handel kernel: Call Trace:
Feb  8 17:07:51 handel kernel:  [<ffffffff88036d5a>] 
:jbd:log_wait_commit+0xa3/0xf5
Feb  8 17:07:51 handel kernel:  [<ffffffff8029c48f>] 
autoremove_wake_function+0x0/0x2e
Feb  8 17:07:51 handel kernel:  [<ffffffff8803178a>] 
:jbd:journal_stop+0x1cf/0x1ff
Feb  8 17:07:51 handel kernel:  [<ffffffff8023119d>] 
__writeback_single_inode+0x1e9/0x328
Feb  8 17:07:51 handel kernel:  [<ffffffff802d330d>] do_readv_writev+0x26e/0x291
Feb  8 17:07:51 handel kernel:  [<ffffffff802e5b8b>] sync_inode+0x24/0x33
Feb  8 17:07:51 handel kernel:  [<ffffffff8804c36d>] 
:ext3:ext3_sync_file+0xc9/0xdc
Feb  8 17:07:51 handel kernel:  [<ffffffff80251e07>] do_fsync+0x52/0xa4
Feb  8 17:07:51 handel kernel:  [<ffffffff802d3b11>] __do_fsync+0x23/0x36
Feb  8 17:07:51 handel kernel:  [<ffffffff802602f9>] tracesys+0xab/0xb6
Feb  8 17:07:51 handel kernel: 

Feb  8 17:03:45 telemann kernel: INFO: task syslogd:7704 blocked for more than 
120 seconds.
Feb  8 17:03:45 telemann kernel: "echo 0 > 
/proc/sys/kernel/hung_task_timeout_secs" disables this message.
Feb  8 17:03:45 telemann kernel: syslogd       D 00000ee120ea024a     0  7704   
   1          7707  7673 (NOTLB)
Feb  8 17:03:45 telemann kernel:  ffff8800754dfd88  0000000000000282  
0000000000000000  0000000000000001 
Feb  8 17:03:45 telemann kernel:  000000000000000a  ffff88007e65e860  
ffff88000001e820  0000000000021814 
Feb  8 17:03:45 telemann kernel:  ffff88007e65ea48  0000000000000000 
Feb  8 17:03:45 telemann kernel: Call Trace:
Feb  8 17:03:45 telemann kernel:  [<ffffffff88036d5a>] 
:jbd:log_wait_commit+0xa3/0xf5
Feb  8 17:03:45 telemann kernel:  [<ffffffff8029c48f>] 
autoremove_wake_function+0x0/0x2e
Feb  8 17:03:45 telemann kernel:  [<ffffffff8803178a>] 
:jbd:journal_stop+0x1cf/0x1ff
Feb  8 17:03:45 telemann kernel:  [<ffffffff8023119d>] 
__writeback_single_inode+0x1e9/0x328
Feb  8 17:03:45 telemann kernel:  [<ffffffff802d330d>] 
do_readv_writev+0x26e/0x291
Feb  8 17:07:35 telemann kernel:  [<ffffffff802e5b8b>] sync_inode+0x24/0x33
Feb  8 17:07:35 telemann kernel:  [<ffffffff8804c36d>] 
:ext3:ext3_sync_file+0xc9/0xdc
Feb  8 17:07:35 telemann kernel:  [<ffffffff80251e07>] do_fsync+0x52/0xa4
Feb  8 17:07:35 telemann kernel:  [<ffffffff802d3b11>] __do_fsync+0x23/0x36
Feb  8 17:07:35 telemann kernel:  [<ffffffff802602f9>] tracesys+0xab/0xb6
Feb  8 17:07:35 telemann kernel: 
Feb  8 17:07:35 telemann kernel: INFO: task syslogd:7704 blocked for more than 
120 seconds.
Feb  8 17:07:35 telemann kernel: "echo 0 > 
/proc/sys/kernel/hung_task_timeout_secs" disables this message.
Feb  8 17:07:35 telemann kernel: syslogd       D 00000ee120ea024a     0  7704   
   1          7707  7673 (NOTLB)
Feb  8 17:07:35 telemann kernel:  ffff8800754dfd88  0000000000000282  
0000000000000000  0000000000000001 
Feb  8 17:07:35 telemann kernel:  000000000000000a  ffff88007e65e860  
ffff88000001e820  0000000000021814 
Feb  8 17:07:35 telemann kernel:  ffff88007e65ea48  0000000000000000 
Feb  8 17:07:35 telemann kernel: Call Trace:
Feb  8 17:07:35 telemann kernel:  [<ffffffff88036d5a>] 
:jbd:log_wait_commit+0xa3/0xf5
Feb  8 17:07:35 telemann kernel:  [<ffffffff8029c48f>] 
autoremove_wake_function+0x0/0x2e
Feb  8 17:07:35 telemann kernel:  [<ffffffff8803178a>] 
:jbd:journal_stop+0x1cf/0x1ff
Feb  8 17:07:35 telemann kernel:  [<ffffffff8023119d>] 
__writeback_single_inode+0x1e9/0x328
Feb  8 17:07:35 telemann kernel:  [<ffffffff802d330d>] 
do_readv_writev+0x26e/0x291
Feb  8 17:07:35 telemann kernel:  [<ffffffff802e5b8b>] sync_inode+0x24/0x33
Feb  8 17:07:35 telemann kernel:  [<ffffffff8804c36d>] 
:ext3:ext3_sync_file+0xc9/0xdc
Feb  8 17:07:35 telemann kernel:  [<ffffffff80251e07>] do_fsync+0x52/0xa4
Feb  8 17:07:35 telemann kernel:  [<ffffffff802d3b11>] __do_fsync+0x23/0x36
Feb  8 17:07:35 telemann kernel:  [<ffffffff802602f9>] tracesys+0xab/0xb6
Feb  8 17:07:35 telemann kernel: 
Feb  8 17:07:35 telemann kernel: BUG: soft lockup - CPU#0 stuck for 287s! 
[swapper:0]
Feb  8 17:07:35 telemann kernel: CPU 0:
Feb  8 17:07:35 telemann kernel: Modules linked in: tun 8021q netloop netbk 
blktap blkbk bridge ipmi_devintf ipmi_si ipmi_msghandler dell_rbu autofs4 hidp 
rfcomm l2cap bluetooth lockd sunrpc ip_conntrack_netbios_ns ipt_REJECT xt_state 
xt_tcpudp iptable_filter ipt_MASQUERADE iptable_nat ip_nat ip_conntrack 
nfnetlink ip_tables ip6table_filter ip6_tables x_tables ipv6 xfrm_nalgo 
crypto_api dm_round_robin dm_multipath scsi_dh video backlight sbs power_meter 
hwmon i2c_ec dell_wmi wmi button battery asus_acpi ac parport_pc lp parport 
8250_pnp sr_mod cdrom sg pcspkr i2c_piix4 serio_raw 8250 i2c_core serial_core 
bnx2 amd64_edac_mod edac_mc dm_raid45 dm_message dm_region_hash dm_mem_cache 
dm_snapshot dm_zero dm_mirror dm_log dm_mod lpfc scsi_transport_fc ahci libata 
shpchp mpt2sas scsi_transport_sas sd_mod scsi_mod ext3 jbd uhci_hcd ohci_hcd 
ehci_hcd
Feb  8 17:07:35 telemann kernel: Pid: 0, comm: swapper Not tainted 
2.6.18-194.32.1.el5xen #1
Feb  8 17:07:36 telemann kernel: RIP: e030:[<ffffffff802063aa>]  
[<ffffffff802063aa>] hypercall_page+0x3aa/0x1000
Feb  8 17:07:36 telemann kernel: RSP: e02b:ffffffff80645f58  EFLAGS: 00000246
Feb  8 17:07:36 telemann kernel: RAX: 0000000000000000 RBX: 0000000000000000 
RCX: ffffffff802063aa
Feb  8 17:07:36 telemann kernel: RDX: 0000000000000001 RSI: 0000000000000000 
RDI: 0000000000000001
Feb  8 17:07:36 telemann kernel: RBP: 0000000000000000 R08: 0000000000000038 
R09: 00000001003cd738
Feb  8 17:07:36 telemann kernel: R10: ffff88007e6c3b00 R11: 0000000000000246 
R12: 0000000000000000
Feb  8 17:07:36 telemann kernel: R13: 0000000000000000 R14: 0000000000000000 
R15: 0000000000000000
Feb  8 17:07:36 telemann kernel: FS:  00002ad0c0f9ba30(0000) 
GS:ffffffff805d3000(0000) knlGS:0000000000000000
Feb  8 17:07:36 telemann kernel: CS:  e033 DS: 0000 ES: 0000
Feb  8 17:07:36 telemann kernel: 
Feb  8 17:07:36 telemann kernel: Call Trace:
Feb  8 17:07:36 telemann kernel:  [<ffffffff8026f4f3>] raw_safe_halt+0x84/0xa8
Feb  8 17:07:36 telemann kernel:  [<ffffffff8026ca88>] xen_idle+0x38/0x4a
Feb  8 17:07:36 telemann kernel:  [<ffffffff8024af6c>] cpu_idle+0x97/0xba
Feb  8 17:07:36 telemann kernel:  [<ffffffff8064eb0f>] start_kernel+0x21f/0x224
Feb  8 17:07:36 telemann kernel:  [<ffffffff8064e1e5>] _sinittext+0x1e5/0x1eb
Feb  8 17:07:36 telemann kernel: 

Cheers,
Pim


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.