Red Hat Bugzilla – Bug 221239
Use of domain_crash_synchronous in illegal contexts
Last modified: 2007-11-30 17:07:39 EST
Using domain_crash_synchronous with IRQs disabled or spin locks held (or other
contexts where clean-up is required) can render the hypervisor inoperative.
This patch from upstream fixes the offenders.
Created attachment 144684 [details]
[XEN] Get rid of many uses of domain_crash_synchronous().
Justification: security bug, HVM guests could shut down the host by performing
The patch has already been posted to virtualist@ and rhkernel-list@.
Don, please apply the patch once it has received the ACKs required.
QE ack for RHEL5.
While trying to reproduce bug 222058 here, I unwittingly kept reproducing this
bug instead. Highly annoying to have the host crash 3 times in a row :)
Please quantify the security implications here for not having this in RC.
Rik, do you have a crash dump for this?
Brian, I've done an audit of all the domain_crash_synchronous() calls in RHEL5.
As a result we only need a subset of this patch. However, there are a number
of other similar patches which we need to pull instead.
I'll post them today.
Created attachment 145332 [details]
Replace inappropriate calls to domain_crash_synchronous
2.6.9-7.el5 included in 20070125.0.