WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-devel] long latency of domain shutdown

from [Jan Beulich] [Permanent Link][Original]
To: "Keir Fraser" <keir.fraser@xxxxxxxxxxxxx>, "Jan Beulich" <JBeulich@xxxxxxxxxx>
Subject: Re: [Xen-devel] long latency of domain shutdown
From: "Jan Beulich" <jbeulich@xxxxxxxxxx>
Date: Wed, 14 May 2008 17:05:20 +0100
Cc: xen-devel@xxxxxxxxxxxxxxxxxxx
Delivery-date: Wed, 14 May 2008 09:05:34 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
In-reply-to: <482B273B.76E4.0078.0@xxxxxxxxxx>
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
References: <4815FBB8.76E4.0078.0@xxxxxxxxxx> <C43BA0D1.1FFA9%keir.fraser@xxxxxxxxxxxxx> <482B273B.76E4.0078.0@xxxxxxxxxx>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx 
>>> "Jan Beulich" <jbeulich@xxxxxxxxxx> 14.05.08 17:54 >>>
>>>> Keir Fraser <keir.fraser@xxxxxxxxxxxxx> 28.04.08 16:42 >>>
>>On 28/4/08 15:30, "Jan Beulich" <jbeulich@xxxxxxxxxx> wrote:
>>
>>> Okay, thanks - so I indeed missed the call to hypercall_preempt_check()
>>> in relinquish_memory(), which is the key indicator here.
>>> 
>>> However, that change deals exclusively with domain shutdown, but not
>>> with the more general page table pinning/unpinning operations, which I
>>> believe are (as described) vulnerable to mis-use by a malicious guest (I
>>> realize that well behaved guests would not normally present a heavily
>>> populated address space here, but it also cannot  be entirely excluded)
>>> - the upper bound to the number of operations on x86-64 is 512**4
>>> or 2**36 l1 table entries (ignoring the hypervisor hole which doesn't
>>> need processing).
>>
>>True. It turns out to be good enough in practice though.
>
>I'm afraid that's not the case - after they are now using the domain
>shutdown fix successfully, they upgraded the machine to 64G and
>the system fails to boot. Sounds exactly like other reports we had on
>the list regarding boot failures with lots of memory that can be avoided
>using dom0_mem=<much smaller value>. As I understand it, this is
>due to the way the kernel creates its 1:1 mapping - the hypervisor has
>to validate the whole tree from each L4 entry being installed in a single
>step - for a 4G machine I measured half a second for this operation, so

Sorry, I meant to write 1/8th of a second. But that's on a small (and
hence memory-wise faster) machine. Didn't measure on my bigger box,
yet.

>obviously anything beyond 32G is open for problems when the PM timer
>is in use.

This number wasn't consistent then either - the boundary would rather
be around 64G on that system, but obviously lower on others.

Jan


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-devel] long latency of domain shutdown, Jan Beulich
Next by Date:  Re: [Xen-devel] long latency of domain shutdown, Keir Fraser
Previous by Thread:  Re: [Xen-devel] long latency of domain shutdown, Jan Beulich
Next by Thread:  Re: [Xen-devel] long latency of domain shutdown, Keir Fraser
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy