Am 04.07.2013 um 05:42 schrieb Ben Hutchings <b...@decadent.org.uk>:
> My understanding is that disabling scatter/gather on netfront in domU
> (ethtool -K eth0 sg off) will prevent it from triggering these bugs, but
> at a substantial performance impact. In practice, disabling TSO in domU
> (ethtool -K eth0 tso off) should also work and will have a smaller
> performance impact. However, a malicious domU would still be able to
> crash dom0.
Thanks, Ben, for updating us on this issue!
Crashing dom0 seems to happen on my Cisco C200 M2 server lately, maybe
unrelated to this bug, maybe not. At least my server sometimes gets a restart
command from the operating system. We see this in the CIMC (management console)
logs and Cisco already confirmed that the reboot command is issued by the OS.
On the other hand I see absolutely no hint or cause in the system log files,
neither on dom0, nor domU nor the hypervisor logs, which makes it difficult to
track down the reason for the random reboots of the whole machine.
I'm using the ethtool workaround in some of my 8 running domUs, but not in all.
No ethtool workaround in dom0 as well.
> As Ian requested, the netback fixes were included in Linux 3.2.47 and
> thus should appear in the wheezy-proposed-updates suite shortly. Aside
> from that, any regression that occurred as a result of a security update
> may also be fixed in a security update, and I hope we will be able to
> provide such updates for both Debian 6 (squeeze) and 7 (wheezy) in the
> next few weeks.
Do you have a suggestion of "in the next few weeks"? The crashing server really
gets annoying: sometimes it reboots several times per day, sometimes it runs
for a week or so. We are close to open a TAC case with Cisco about the crashing
server, but would like to be sure that it's not the kernel which is causing
this, of course. ;)
--
Ciao... // Fon: 0381-2744150
Ingo \X/ http://blog.windfluechter.net
gpg pubkey: http://www.juergensmann.de/ij_public_key.asc
--
To UNSUBSCRIBE, email to debian-kernel-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive:
http://lists.debian.org/ebf914fa-8d50-4b64-b48c-57df00b65...@2013.bluespice.org
