[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v7 08/10] tools/misc: Add xen-vmtrace tool


  • To: Ian Jackson <iwj@xxxxxxxxxxxxxx>
  • From: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>
  • Date: Tue, 26 Jan 2021 15:59:20 +0000
  • Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=citrix.com; dmarc=pass action=none header.from=citrix.com; dkim=pass header.d=citrix.com; arc=none
  • Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=JXOdaqWZdeqwMtUeXHo8G5WPnlQnye3g0CeCjmib6GA=; b=iofErfPcL6h/I3l9CL/D28DsRoDNuuaWIAbQTi+JgcfNqzAvRS7YLaZM5hyTO9rlk69/5W4KaAya2ghiF7xJsVTadZIHP46hb7wzq5H1aRmbKWjC4dEaVDy06AvZT0LFisnbFz5qHgmKDBWKIi7cZLJh4VKtzD+tvSXV4FWY2v/dtRJFwYbjnCtCPb/JT2ZlrplIGR/cbbb6vNhveBfIUofoZwvIBMdDom62m+qmjKOsoGAObKQVwYyvKrVEeA8+riqwxgoi4aDhxHwcVl7VihOPepf1PPXYJqjgDonIeKQE6oFho3g79cje9/+buzCn/8FxFkar4GnLGDmSc8jiYw==
  • Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=bm1T1BAcGoy3cQEQ4pVUIVKgK8Y15RRks1rYI32iMSlpZH1H1y5L04FWpYhyYJdVRVcT/wlAZ19TGbp3PpZh69riOqiepFCgEJlKGkRaC2FRMhVkkrCTMLmeYrXT81e+pSN5Kdj5/BzueiyeOkMhmKqbYSU9MY0PLfoGS0iUi3MTyZb7N1USo5EWL9p+Q7uhkErDlYXn3xyg48yW5IyOK/jivtLX7JlQDYHC+2J21D169PXEtVt2z6sfPuaHtSQlCzJj5HXZfYzPlu21AHjjcmpe7aflsh/gk4AIaKfdZA0eqVSjARVBkeJyAaHJNcjSju31iMg77kbaIpY41leRyQ==
  • Authentication-results: esa3.hc3370-68.iphmx.com; dkim=pass (signature verified) header.i=@citrix.onmicrosoft.com
  • Cc: Xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxxx>, Michał Leszczyński <michal.leszczynski@xxxxxxx>, "Wei Liu" <wl@xxxxxxx>, Tamas K Lengyel <tamas@xxxxxxxxxxxxx>
  • Delivery-date: Tue, 26 Jan 2021 15:59:32 +0000
  • Ironport-sdr: 12rZF4LauM5OSYANVN1y5TC4Apfc4do7xEGOYDUpfVUeupcNKQa5QUt3V9qYbO4gAmoj+b5+av fLhdjsPeFeeZTsVmfgC5c7nCDXMCW1ai3ZRQHC4tLLzSaEVy7WtUPjEJ+t6We/DwvysoIYWXwv Hz/O3sMYpUXN48r/XqAsFG1tkGvsmq9yfIMK6cbJIs9LLFWNMyoSDe/N2z26xAOgMRaeB8CD32 QlYiXVR0j3LFXR8zBq4XK11FjJ5tRqLDsdL4sHp0yAbc8W7bFvGCHOpim/w8q3j8hwIEq1CEO9 CB4=
  • List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 26/01/2021 13:32, Ian Jackson wrote:
> Andrew Cooper writes ("Re: [PATCH v7 08/10] tools/misc: Add xen-vmtrace 
> tool"):
>> On 26/01/2021 11:59, Ian Jackson wrote:
>>> [Andrew:]
>>>> This is example code, not a production utility.
>>> Perhaps the utility could print some kind of health warning about it
>>> possibly leaving this perf-impacting feature enabled, and how to clean
>>> up ?
>> Why?  The theoretical fallout here is not conceptually different to
>> libxl or qemu segfaulting, or any of the myriad other random utilities
>> we have.
>>
>> Printing "Warning - this program, just like everything else in the Xen
>> tree, might in exceptional circumstances segfault and leave the domain
>> in a weird state" is obvious, and doesn't need stating.
>>
>> The domain is stuffed. `xl destroy` may or may not make the problem go away.
> Firstly, I don't agree with this pessimistic analysis of our current
> tooling.  Secondly, I would consider many such behaviours bugs;
> certainly we have bugs but we shouldn't introduce more of them.
>
> You are justifying the poor robustness of this tool on the grounds
> that it's "example code, not a production utility".
>
> But we are shipping it to bin/ and there is nothing telling anyone
> that trying to use it (perhaps wrapped in something of their own
> devising) is a bad idea.
>
> Either this is code users might be expected to run in production in
> which we need to make it at least have a minimal level of engineering
> robustness (which is perhaps too difficult at this stage), or we need
> to communicate to our users that it's a programming example, not a
> useful utility.
>
> Note that *even if it is a programming example*, we should highlight
> its most important deficiencies.  Otherwise it is a hazardously
> misleading example.
>
> I hope that makes sense.

First of all - I'm not the author of this code.  I'm merely the person
who did the latest round of cleanup, and sent the series.

This code is a damn sight more robust than the other utilities, because
in the case that something does go wrong, the domain will still function
correctly.  Almost everything else, qemu included, will leave the VM
totally broken, as it becomes paused waiting on a request which has
escaped into the ether.


I also don't feel that now is an appropriate time to be insisting that
the goalpost's move when it comes to submissions into tools/,
particularly as you were happy (well - didn't comment on) with this
pattern back in v3.

What exact colour do you want this bikeshed?  Anything non-trivial is
going to miss 4.15.

~Andrew



 


Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.