WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/

Home

xen-devel

[Top] [All Lists]

[Xen-devel] [PATCH] Serialize iptables calls in hotplug scripts

from [Jiri Denemark]

[Permanent Link][Original]

To:	xen-devel@xxxxxxxxxxxxxxxxxxx
Subject:	[Xen-devel] [PATCH] Serialize iptables calls in hotplug scripts
From:	Jiri Denemark <jdenemar@xxxxxxxxxx>
Date:	Thu, 28 May 2009 11:41:24 +0200
Delivery-date:	Thu, 28 May 2009 02:42:30 -0700
Envelope-to:	www-data@xxxxxxxxxxxxxxxxxxx
List-help:	<mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id:	Xen developer discussion <xen-devel.lists.xensource.com>
List-post:	<mailto:xen-devel@lists.xensource.com>
List-subscribe:	<http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe:	<http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
Sender:	xen-devel-bounces@xxxxxxxxxxxxxxxxxxx
User-agent:	Mutt/1.5.18 (2008-05-17)

Hi,

iptables cannot correctly handle situations when more than one command is
trying to set netfilter rules. In such situations, iptables may fail with
EAGAIN, which results in iptables: Unknown error 18446744073709551615.

Such situation can easily happen when multiple network devices are configured
for a domain as vif hotplug scripts are called in parallel for all of the
network devices.

Attached is a patch which serializes all iptables calls from vif-* hotplug
scripts...

Signed-off-by: Jiri Denemark <jdenemar@xxxxxxxxxx>

xen-hotplug-serialize-iptables.patch
Description: Text document

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Xen-devel] [PATCH] Serialize iptables calls in hotplug scripts, Jiri Denemark <=

Previous by Date:	[Xen-devel] blktap2 kernel changes, Jan Beulich
Next by Date:	RE: [Xen-devel] [PATCH 0/5] pcie io space multiplexing for bootable pass through HVM domain, Tian, Kevin
Previous by Thread:	[Xen-devel] blktap2 kernel changes, Jan Beulich
Next by Thread:	[Xen-devel] [PATCH] xen_disk: move sanity check to the correct place, Gerd Hoffmann
Indexes:	[Date] [Thread] [Top] [All Lists]

This site is hosted by Citrix