Re: xbd backend disconnection

To: Jed Davis <jdev%panix.com@localhost>
Subject: Re: xbd backend disconnection
From: Manuel Bouyer <bouyer%antioche.eu.org@localhost>
Date: Tue, 20 Sep 2005 12:35:27 +0200

On Mon, Sep 19, 2005 at 10:52:27PM -0400, Jed Davis wrote:
> Manuel Bouyer <bouyer%antioche.eu.org@localhost> writes:
> 
> > I also did a few more cleanups. The new patch is attached (against current)
> 
> And it works here.
> 
> The old patch's failure mode, however, reveals the lack of a check for
> overflowing the response ring, and that a malicious or broken domU
> could (I think) put garbage into the request ring indices and cause
> our dom0 to loop ~forever in interrupt context.

This one is easy, just check that (req_prod - req_cons) < BLKIF_RING_SIZE.
But it could also flood the dom0 with valid requests (especially easy on a
multiprocessor system). I don't know what can be done against without
hurting performances too much.

-- 
Manuel Bouyer <bouyer%antioche.eu.org@localhost>
     NetBSD: 26 ans d'experience feront toujours la difference
--

References:
- xbd backend disconnection
  - From: Jed Davis
- Re: xbd backend disconnection
  - From: Manuel Bouyer
- Re: xbd backend disconnection
  - From: Manuel Bouyer
- Re: xbd backend disconnection
  - From: Jed Davis

Prev by Date: Re: xbd backend disconnection
Next by Date: Re: dom0/domU bridging - don't get it to work
Previous by Thread: Re: xbd backend disconnection
Next by Thread: rc.d script for starting Xen domains
Indexes:

Home | Main Index | Thread Index | Old Index