Xen project Mailing List

Re: [PATCH] xen/console: do not drop serial output from the hardware domain

To: Roger Pau Monné <roger.pau@xxxxxxxxxx>

Date: Mon, 13 Jun 2022 10:29:43 +0200

Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=suse.com; dmarc=pass action=none header.from=suse.com; dkim=pass header.d=suse.com; arc=none

Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=AYcrEut4kluYSceCBLqOPkSd1e7yrXpHrrbnXH3Oh2k=; b=MybAA4aKdZRWXnvomGruCDoCfftwudYQN/SRaWZdPJiGFS+msbYGFNq9Mo9La/skdVMZMwmopUiyjNTzAsLHhZlcpsoPOd0lfaKGerhb45piTlp4g4uvlLMr6KrNov2aoj9TEvk/sl6uHmXjHv3knHS6AjsR9Y0ktm5IVVyJCvEXug2GOT2x32GVfHBsF885gEX79oaO42Cq/zmOPPcUA8tg/EjIoWMEdKnzzDvTc2IXTnyLJMQwP87bAR0xSuRhoZyvsufeT/fgOxkoSUr3n5jNanZ+lUXIBHN908NSkyyKhP5dc+n3YfJ4aNsb/YlpeIcguHas1DSBHLxftwdqDw==

Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=JOHILgFexGHd8iy68NGMdUWKN3mFrPbVPk080WBSKW53X85fQZFXZLhQoIvwX48T0BIRlT1nl7snIGV5E1CHN3+KBt/tGj40jfvRRhNlCy1UXJadRsI8w+/9VGr0SXyyLvLGMyAPVSJLcicTC/2GFCaYxURO1TC+lYwGYY4pfM/cFHhjrclBTrRd26z/MUFQ3tAGjZsPuCk5KnNYH1L1Rx2UDPMC5q2QeHhacCDD1l8Zv5SBrvzqocrsBUgEkbRLdGpLa7arQb2MOF/Wt4eD/bE03S5WCVMUQsA+F/+vGHyCyKnO9icISMr3xbpTUFJgT5DWVOUHWsfllOTb/BSgsw==

Authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=suse.com;

Cc: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, George Dunlap <george.dunlap@xxxxxxxxxx>, Julien Grall <julien@xxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, Wei Liu <wl@xxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxxx

Delivery-date: Mon, 13 Jun 2022 08:29:51 +0000

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 13.06.2022 10:21, Roger Pau Monné wrote: > On Mon, Jun 13, 2022 at 09:30:06AM +0200, Jan Beulich wrote: >> On 10.06.2022 17:06, Roger Pau Monne wrote: >>> Prevent dropping console output from the hardware domain, since it's >>> likely important to have all the output if the boot fails without >>> having to resort to sync_console (which also affects the output from >>> other guests). >>> >>> Do so by pairing the console_serial_puts() with >>> serial_{start,end}_log_everything(), so that no output is dropped. >> >> While I can see the goal, why would Dom0 output be (effectively) more >> important than Xen's own one (which isn't "forced")? And with this >> aiming at boot output only, wouldn't you want to stop the overriding >> once boot has completed (of which, if I'm not mistaken, we don't >> really have any signal coming from Dom0)? And even during boot I'm >> not convinced we'd want to let through everything, but perhaps just >> Dom0's kernel messages? > > I normally use sync_console on all the boxes I'm doing dev work, so > this request is something that come up internally. > > Didn't realize Xen output wasn't forced, since we already have rate > limiting based on log levels I was assuming that non-ratelimited > messages wouldn't be dropped. But yes, I agree that Xen (non-guest > triggered) output shouldn't be rate limited either. Which would raise the question of why we have log levels for non-guest messages. >> Finally, what about (if such configured) output from a Xenstore >> domain? That's kind of importantish as well, I'd say. > > I would be less inclined to do so. Xenstore domains can use a regular > PV console, which shouldn't be affected by the rate limiting applied to > the serial. Fair point. > Also that would give the xenstore domain a way to trigger > DoS attacks. I guess a Xenstore domain can do so anyway, by simply refusing to fulfill its job. Jan

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.