[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [ANNOUNCE] xen ocaml tools

To: xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxx>
From: Patrick Colp <pjcolp@xxxxxxxxx>
Date: Fri, 06 Feb 2009 15:46:16 -0800
Cc: Thomas Gazagnaire <Thomas.Gazagnaire@xxxxxxxxxxxxx>, Vincent Hanquez <vincent.hanquez@xxxxxxxxxxxxx>
Delivery-date: Fri, 06 Feb 2009 15:47:19 -0800
List-id: Xen developer discussion <xen-devel.lists.xensource.com>

Vincent Hanquez wrote:

Patrick Colp wrote:
I'm really excited to see somebody else working on an OCaml XenStore!I was wondering if you could tell me what the difference are betweenthis implementation and the one I recently released to the community?
this is a bit hard to tell without testing your version.
but i think the main difference is the way we handle transactions, whichshould provide a stable average time to commit transactions when havinglots of xenstore traffic from guests.

I think you're thinking of my initial release last year. The version I releaseda few months ago also has an in-memory store and greatly improved transactions.It was motivated by the need to survive things like DoS attacks.

I wrote a little attack program (in OCaml) which runs from any DomU and broughtthe original xenstored to its knees. With the attack going, it's impossible tobring a new domain up -- it just hangs forever attempting to bring it up.Basically, the attack just hammers xenstored with micro-transactions. With theoriginal transaction system, which allows the first committing transaction in ageneration to win, long transactions could never complete. I implementedtransactions that would enable all concurrent but non-conflicting transactionsto commit. This made my version of xenstored resilient to the attack.

I played around with this with your version too, but found that, while it wouldnot hang forever while attempting to load a domain, it would instead die after afew seconds with the following error:


Error: (2, 'No such file or directory')

I tried with with the eagain mode thing (random dropping of 1/3 of alltransactions) both enabled and disabled, but it had the same effect (except thatwith the mode enabled, 1/3 of all transactions would fail regardless of if theyshould or not).

I've been reading over your code and noticed that you seem to have amini-implementation of libxc. I was wondering why you chose to do this overusing the pre-existing libxenctrl? Does this make the final executable smaller?



Patrick

Attachment: attack.tar.gz
Description: GNU Zip compressed data

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

Follow-Ups:
- Re: [Xen-devel] [ANNOUNCE] xen ocaml tools
  - From: Vincent Hanquez
- Re: [Xen-devel] [ANNOUNCE] xen ocaml tools
  - From: Patrick Colp

References:
- [Xen-devel] [ANNOUNCE] xen ocaml tools
  - From: Vincent Hanquez
- Re: [Xen-devel] [ANNOUNCE] xen ocaml tools
  - From: Patrick Colp
- Re: [Xen-devel] [ANNOUNCE] xen ocaml tools
  - From: Vincent Hanquez

Prev by Date: [Xen-devel] [PATCH 4/4] tmem tools: tmem control plane domain launch mods
Next by Date: [Xen-devel] [GIT PULL] x86: unify some of kernel/irq*.c
Previous by thread: Re: [Xen-devel] [ANNOUNCE] xen ocaml tools
Next by thread: Re: [Xen-devel] [ANNOUNCE] xen ocaml tools
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.