Package: libvirt-bin Version: 0.8.3-3 Severity: normal
When iptables is restarted, nwfilters are blown away. Libvirt includes a mechanism whereby you can send a SIGHUP signal to it in order to make it recreate its iptables rules. However, I find that sending SIGHUP causes libvirt to segfault. If I stop the VM which uses nwfilter and send libvirt SIGHUP again, it does not segfault. 18:15:04.585: info : qemudDispatchSignalEvent:385 : Reloading configuration on SIGHUP 18:15:04.585: debug : virHookCheck:112 : No hook script /etc/libvirt/hooks/daemon 18:15:04.585: debug : virHookCheck:112 : No hook script /etc/libvirt/hooks/qemu 18:15:04.585: debug : virHookCheck:112 : No hook script /etc/libvirt/hooks/lxc 18:15:04.586: info : networkReloadIptablesRules:932 : Reloading iptables rules Segmentation fault This does not occur in libvirt-bin from experimental and may have been fixed by one of the following. 2010-08-16 Stefan Berger <[email protected]> nwfilter: extend nwfilter reload support In this patch I am extending and fixing the nwfilter module's reload support to stop all ongoing threads (for learning IP addresses of interfaces) and rebuild the filtering rules o f all interfaces of all VMs when libvirt is started. Now libvirtd rebuilds the filters upon the SIGHUP signal and libvirtd restart. 2010-08-13 Stefan Berger <[email protected]> 18:36 nwfilter: serialize execution of scripts with ebtables cmds While testing the SIGHUP handling and reloading of the nwfilter driver, I found that when the filters are rebuilt and mutlipe threads handled the individual interfaces, concurrentl y running multiple external bash scripts causes strange failures -- System Information: Debian Release: squeeze/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 2.6.32-5-amd64 (SMP w/16 CPU cores) Locale: LANG=en_IE.UTF-8, LC_CTYPE=en_IE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages libvirt-bin depends on: ii adduser 3.112 add and remove users and groups ii libavahi-client3 0.6.27-2 Avahi client library ii libavahi-common3 0.6.27-2 Avahi common library ii libblkid1 2.17.2-3.3 block device id library ii libc6 2.11.2-6+squeeze1 Embedded GNU C Library: Shared lib ii libcap-ng0 0.6.4-1 An alternate posix capabilities li ii libdevmapper1.02.1 2:1.02.48-3 The Linux Kernel Device Mapper use ii libgcrypt11 1.4.5-2 LGPL Crypto library - runtime libr ii libgnutls26 2.8.6-1 the GNU TLS library - runtime libr ii libnl1 1.1-5 library for dealing with netlink s ii libparted0debian1 2.3-3 The GNU Parted disk partitioning s ii libpciaccess0 0.12.0-1 Generic PCI access library for X ii libreadline6 6.1-3 GNU readline and history libraries ii libsasl2-2 2.1.23.dfsg1-6 Cyrus SASL - authentication abstra ii libudev0 163-2 libudev shared library ii libuuid1 2.17.2-3.3 Universally Unique ID library ii libvirt0 0.8.3-3 library for interfacing with diffe ii libxenstore3.0 4.0.1-1 Xenstore communications library fo ii libxml2 2.7.7.dfsg-4 GNOME XML library ii logrotate 3.7.8-6 Log rotation utility Versions of packages libvirt-bin recommends: ii bridge-utils 1.4-5 Utilities for configuring the Linu pn dnsmasq-base <none> (no description available) ii gawk 1:3.1.7.dfsg-5 GNU awk, a pattern scanning and pr ii iptables 1.4.8-3 administration tools for packet fi ii libxml2-utils 2.7.7.dfsg-4 XML utilities ii netcat-openbsd 1.89-4 TCP/IP swiss army knife ii qemu 0.12.5+dfsg-2 fast processor emulator ii qemu-kvm 0.12.5+dfsg-3 Full virtualization on x86 hardwar Versions of packages libvirt-bin suggests: ii policykit-1 0.96-3 framework for managing administrat -- no debconf information -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
