10:16 a.m.
We have had sporadic reports of
# virsh capabilities
error: failed to get capabilities
error: server closed connection:
This normally means that libvirtd has crashed, closing the connection
but in this case libvirtd has always remained running. It turns out
that the capabilities XML was too large for the remote RPC message
size. This caused XDR serialization to fail. This caused libvirtd to
close the client connection immediately. The cause of the large XML
was node handling an edge case in libnuma where it returns a CPU mask
of all-1s to indicate a non-existant node.
This series does many things:
- Adds explicit warnings in places where XDR serialization fails,
so we see an indication of problem in /var/log/messages
- Try to send a real remote_error back to client, instead of
closing its connection
- Add logging of capabilities XML in libvirt.c so we can identify
the too large doc in libvirtd
- Add fix to cope with all-1s node mask
10:16 a.m.
New subject: [libvirt] [PATCH 1/4] Add explicit warning messages when failing to serialize to XDR
When libvirtd fails to serialize a message to XDR the client
connection is terminated immediately. To enable this to be
diagnosed, log the message which caused the problem on the
server
* daemon/dispatch.c: Log XDR serialization failures
---
daemon/dispatch.c | 6 ++++++
1 files changed, 6 insertions(+), 0 deletions(-)
diff --git a/daemon/dispatch.c b/daemon/dispatch.c
index 3028298..d6c2eb1 100644
--- a/daemon/dispatch.c
+++ b/daemon/dispatch.c
@@ -198,6 +198,8 @@ remoteSerializeError(struct qemud_client *client,
return 0;
xdr_error:
+ VIR_WARN("Failed to serialize remote error '%s' as XDR",
+ rerr->message ? *rerr->message : "<unknown>");
xdr_destroy(&xdr);
VIR_FREE(msg);
fatal_error:
@@ -602,6 +604,8 @@ xdr_error:
xdr_free (data->ret_filter, (char*)&ret);
xdr_destroy (&xdr);
fatal_error:
+ VIR_WARN("Failed to serialize reply for program '%d' proc '%d'
as XDR",
+ msg->hdr.prog, msg->hdr.proc);
return -1;
}
@@ -685,5 +689,7 @@ xdr_error:
xdr_destroy (&xdr);
fatal_error:
VIR_FREE(msg);
+ VIR_WARN("Failed to serialize stream data for proc %d as XDR",
+ stream->procedure);
return -1;
}
--
1.7.1
10:28 a.m.
New subject: [libvirt] [PATCH 1/4] Add explicit warning messages when failing to serialize to XDR
On 08/17/2010 09:16 AM, Daniel P. Berrange wrote:
When libvirtd fails to serialize a message to XDR the client
connection is terminated immediately. To enable this to be
diagnosed, log the message which caused the problem on the
server
* daemon/dispatch.c: Log XDR serialization failures
---
daemon/dispatch.c | 6 ++++++
1 files changed, 6 insertions(+), 0 deletions(-)
ACK.
--
Eric Blake eblake(a)redhat.com +1-801-349-2682
Libvirt virtualization library http://libvirt.org
10:36 a.m.
New subject: [libvirt] [PATCH 1/4] Add explicit warning messages when failing to serialize to XDR
On Tue, Aug 17, 2010 at 11:16:32AM -0400, Daniel P. Berrange wrote:
When libvirtd fails to serialize a message to XDR the client
connection is terminated immediately. To enable this to be
diagnosed, log the message which caused the problem on the
server
* daemon/dispatch.c: Log XDR serialization failures
ACK,
Daniel
--
Daniel Veillard | libxml Gnome XML XSLT toolkit http://xmlsoft.org/
daniel(a)veillard.com | Rpmfind RPM search engine http://rpmfind.net/
http://veillard.com/ | virtualization library http://libvirt.org/
10:16 a.m.
New subject: [libvirt] [PATCH 2/4] Try harder to send RPC error message back to client
When failing to serialize the normal RPC reply, try harder to
send a error message back to the client, instead of immediately
closing the connection.
* daemon/dispatch.c: Improve error messages when RPC reply
can not be sent
---
daemon/dispatch.c | 47 +++++++++++++++++++++++++++++------------------
1 files changed, 29 insertions(+), 18 deletions(-)
diff --git a/daemon/dispatch.c b/daemon/dispatch.c
index d6c2eb1..22eef36 100644
--- a/daemon/dispatch.c
+++ b/daemon/dispatch.c
@@ -548,7 +548,8 @@ remoteDispatchClientCall (struct qemud_server *server,
if (remoteEncodeClientMessageHeader(msg) < 0) {
xdr_free (data->ret_filter, (char*)&ret);
- goto fatal_error;
+ remoteDispatchFormatError(&rerr, "%s", _("failed to serialize
reply header"));
+ goto xdr_hdr_error;
}
@@ -558,22 +559,30 @@ remoteDispatchClientCall (struct qemud_server *server,
msg->bufferLength,
XDR_ENCODE);
- if (xdr_setpos(&xdr, msg->bufferOffset) == 0)
- goto xdr_error;
+ if (xdr_setpos(&xdr, msg->bufferOffset) == 0) {
+ remoteDispatchFormatError(&rerr, "%s", _("failed to change XDR
reply offset"));
+ goto xdr_error;
+ }
/* If OK, serialise return structure, if error serialise error. */
/* Serialise reply data */
- if (!((data->ret_filter) (&xdr, &ret)))
+ if (!((data->ret_filter) (&xdr, &ret))) {
+ remoteDispatchFormatError(&rerr, "%s", _("failed to serialize
reply payload (probable message size limit)"));
goto xdr_error;
+ }
/* Update the length word. */
msg->bufferOffset += xdr_getpos (&xdr);
len = msg->bufferOffset;
- if (xdr_setpos (&xdr, 0) == 0)
+ if (xdr_setpos (&xdr, 0) == 0) {
+ remoteDispatchFormatError(&rerr, "%s", _("failed to change XDR
reply offset"));
goto xdr_error;
+ }
- if (!xdr_u_int (&xdr, &len))
+ if (!xdr_u_int (&xdr, &len)) {
+ remoteDispatchFormatError(&rerr, "%s", _("failed to update
reply length header"));
goto xdr_error;
+ }
xdr_destroy (&xdr);
xdr_free (data->ret_filter, (char*)&ret);
@@ -588,25 +597,27 @@ remoteDispatchClientCall (struct qemud_server *server,
return 0;
+xdr_error:
+ /* Bad stuff serializing reply. Try to send a little info
+ * back to client to assist in bug reporting/diagnosis */
+ xdr_free (data->ret_filter, (char*)&ret);
+ xdr_destroy (&xdr);
+ /* fallthrough */
+
+xdr_hdr_error:
+ VIR_WARN("Failed to serialize reply for program '%d' proc '%d'
as XDR",
+ msg->hdr.prog, msg->hdr.proc);
+ /* fallthrough */
+
rpc_error:
- /* Semi-bad stuff happened, we can still try to send back
- * an RPC error message to client */
+ /* Bad stuff (de-)serializing message, but we have an
+ * RPC error message we can send back to the client */
rv = remoteSerializeReplyError(client, &rerr, &msg->hdr);
if (rv >= 0)
VIR_FREE(msg);
return rv;
-
-xdr_error:
- /* Seriously bad stuff happened, so we'll kill off this client
- and not send back any RPC error */
- xdr_free (data->ret_filter, (char*)&ret);
- xdr_destroy (&xdr);
-fatal_error:
- VIR_WARN("Failed to serialize reply for program '%d' proc '%d'
as XDR",
- msg->hdr.prog, msg->hdr.proc);
- return -1;
}
--
1.7.1
10:31 a.m.
New subject: [libvirt] [PATCH 2/4] Try harder to send RPC error message back to client
On 08/17/2010 09:16 AM, Daniel P. Berrange wrote:
@@ -558,22 +559,30 @@ remoteDispatchClientCall (struct qemud_server
*server,
msg->bufferLength,
XDR_ENCODE);
- if (xdr_setpos(&xdr, msg->bufferOffset) == 0)
- goto xdr_error;
+ if (xdr_setpos(&xdr, msg->bufferOffset) == 0) {
+ remoteDispatchFormatError(&rerr, "%s", _("failed to change
XDR reply offset"));
+ goto xdr_error;
Why the swap to a TAB?
ACK, modulo that nit.
--
Eric Blake eblake(a)redhat.com +1-801-349-2682
Libvirt virtualization library http://libvirt.org
10:37 a.m.
New subject: [libvirt] [PATCH 2/4] Try harder to send RPC error message back to client
On Tue, Aug 17, 2010 at 09:31:30AM -0600, Eric Blake wrote:
On 08/17/2010 09:16 AM, Daniel P. Berrange wrote:
> @@ -558,22 +559,30 @@ remoteDispatchClientCall (struct qemud_server *server,
> msg->bufferLength,
> XDR_ENCODE);
>
> - if (xdr_setpos(&xdr, msg->bufferOffset) == 0)
> - goto xdr_error;
> + if (xdr_setpos(&xdr, msg->bufferOffset) == 0) {
> + remoteDispatchFormatError(&rerr, "%s", _("failed to
change XDR reply offset"));
> + goto xdr_error;
Why the swap to a TAB?
Oh, I was writing this on a QA machine where I don't have my usual GIT/emacs
config setup
Daniel
--
|: Red Hat, Engineering, London -o- http://people.redhat.com/berrange/ :|
|: http://libvirt.org -o- http://virt-manager.org -o- http://deltacloud.org :|
|: http://autobuild.org -o- http://search.cpan.org/~danberr/ :|
|: GnuPG: 7D3B9505 -o- F3C9 553F A1DA 4AC2 5648 23C1 B3DF F742 7D3B 9505 :|
10:38 a.m.
New subject: [libvirt] [PATCH 2/4] Try harder to send RPC error message back to client
On Tue, Aug 17, 2010 at 11:16:33AM -0400, Daniel P. Berrange wrote:
When failing to serialize the normal RPC reply, try harder to
send a error message back to the client, instead of immediately
closing the connection.
* daemon/dispatch.c: Improve error messages when RPC reply
can not be sent
---
daemon/dispatch.c | 47 +++++++++++++++++++++++++++++------------------
1 files changed, 29 insertions(+), 18 deletions(-)
diff --git a/daemon/dispatch.c b/daemon/dispatch.c
index d6c2eb1..22eef36 100644
--- a/daemon/dispatch.c
+++ b/daemon/dispatch.c
@@ -548,7 +548,8 @@ remoteDispatchClientCall (struct qemud_server *server,
if (remoteEncodeClientMessageHeader(msg) < 0) {
xdr_free (data->ret_filter, (char*)&ret);
- goto fatal_error;
+ remoteDispatchFormatError(&rerr, "%s", _("failed to serialize
reply header"));
+ goto xdr_hdr_error;
}
@@ -558,22 +559,30 @@ remoteDispatchClientCall (struct qemud_server *server,
msg->bufferLength,
XDR_ENCODE);
- if (xdr_setpos(&xdr, msg->bufferOffset) == 0)
- goto xdr_error;
+ if (xdr_setpos(&xdr, msg->bufferOffset) == 0) {
+ remoteDispatchFormatError(&rerr, "%s", _("failed to change
XDR reply offset"));
+ goto xdr_error;
+ }
/* If OK, serialise return structure, if error serialise error. */
/* Serialise reply data */
- if (!((data->ret_filter) (&xdr, &ret)))
+ if (!((data->ret_filter) (&xdr, &ret))) {
+ remoteDispatchFormatError(&rerr, "%s", _("failed to serialize
reply payload (probable message size limit)"));
goto xdr_error;
+ }
/* Update the length word. */
msg->bufferOffset += xdr_getpos (&xdr);
len = msg->bufferOffset;
- if (xdr_setpos (&xdr, 0) == 0)
+ if (xdr_setpos (&xdr, 0) == 0) {
+ remoteDispatchFormatError(&rerr, "%s", _("failed to change
XDR reply offset"));
goto xdr_error;
+ }
- if (!xdr_u_int (&xdr, &len))
+ if (!xdr_u_int (&xdr, &len)) {
+ remoteDispatchFormatError(&rerr, "%s", _("failed to update
reply length header"));
goto xdr_error;
+ }
xdr_destroy (&xdr);
xdr_free (data->ret_filter, (char*)&ret);
@@ -588,25 +597,27 @@ remoteDispatchClientCall (struct qemud_server *server,
return 0;
+xdr_error:
+ /* Bad stuff serializing reply. Try to send a little info
+ * back to client to assist in bug reporting/diagnosis */
+ xdr_free (data->ret_filter, (char*)&ret);
+ xdr_destroy (&xdr);
+ /* fallthrough */
+
+xdr_hdr_error:
+ VIR_WARN("Failed to serialize reply for program '%d' proc '%d'
as XDR",
+ msg->hdr.prog, msg->hdr.proc);
+ /* fallthrough */
+
rpc_error:
- /* Semi-bad stuff happened, we can still try to send back
- * an RPC error message to client */
+ /* Bad stuff (de-)serializing message, but we have an
+ * RPC error message we can send back to the client */
rv = remoteSerializeReplyError(client, &rerr, &msg->hdr);
if (rv >= 0)
VIR_FREE(msg);
return rv;
-
-xdr_error:
- /* Seriously bad stuff happened, so we'll kill off this client
- and not send back any RPC error */
- xdr_free (data->ret_filter, (char*)&ret);
- xdr_destroy (&xdr);
-fatal_error:
- VIR_WARN("Failed to serialize reply for program '%d' proc '%d'
as XDR",
- msg->hdr.prog, msg->hdr.proc);
- return -1;
}
ACK,
Daniel
--
Daniel Veillard | libxml Gnome XML XSLT toolkit http://xmlsoft.org/
daniel(a)veillard.com | Rpmfind RPM search engine http://rpmfind.net/
http://veillard.com/ | virtualization library http://libvirt.org/
10:16 a.m.
New subject: [libvirt] [PATCH 3/4] Log return value for virConnectGetCapabilities
Enabling debug doesn't show the capabilities XML for a connection.
Add an extra debug statement for the return value
* src/libvirt.c: Enable debug logging of capabilities XML
---
src/libvirt.c | 1 +
1 files changed, 1 insertions(+), 0 deletions(-)
diff --git a/src/libvirt.c b/src/libvirt.c
index 3ec5724..ca383ba 100644
--- a/src/libvirt.c
+++ b/src/libvirt.c
@@ -4074,6 +4074,7 @@ virConnectGetCapabilities (virConnectPtr conn)
ret = conn->driver->getCapabilities (conn);
if (!ret)
goto error;
+ DEBUG("conn=%p ret=%s", conn, ret);
return ret;
}
--
1.7.1
10:31 a.m.
New subject: [libvirt] [PATCH 3/4] Log return value for virConnectGetCapabilities
On 08/17/2010 09:16 AM, Daniel P. Berrange wrote:
Enabling debug doesn't show the capabilities XML for a
connection.
Add an extra debug statement for the return value
* src/libvirt.c: Enable debug logging of capabilities XML
---
src/libvirt.c | 1 +
1 files changed, 1 insertions(+), 0 deletions(-)
diff --git a/src/libvirt.c b/src/libvirt.c
index 3ec5724..ca383ba 100644
--- a/src/libvirt.c
+++ b/src/libvirt.c
@@ -4074,6 +4074,7 @@ virConnectGetCapabilities (virConnectPtr conn)
ret = conn->driver->getCapabilities (conn);
if (!ret)
goto error;
+ DEBUG("conn=%p ret=%s", conn, ret);
ACK.
--
Eric Blake eblake(a)redhat.com +1-801-349-2682
Libvirt virtualization library http://libvirt.org
10:38 a.m.
New subject: [libvirt] [PATCH 3/4] Log return value for virConnectGetCapabilities
On Tue, Aug 17, 2010 at 11:16:34AM -0400, Daniel P. Berrange wrote:
Enabling debug doesn't show the capabilities XML for a
connection.
Add an extra debug statement for the return value
* src/libvirt.c: Enable debug logging of capabilities XML
---
src/libvirt.c | 1 +
1 files changed, 1 insertions(+), 0 deletions(-)
diff --git a/src/libvirt.c b/src/libvirt.c
index 3ec5724..ca383ba 100644
--- a/src/libvirt.c
+++ b/src/libvirt.c
@@ -4074,6 +4074,7 @@ virConnectGetCapabilities (virConnectPtr conn)
ret = conn->driver->getCapabilities (conn);
if (!ret)
goto error;
+ DEBUG("conn=%p ret=%s", conn, ret);
return ret;
}
trivial, ACK,
Daniel
--
Daniel Veillard | libxml Gnome XML XSLT toolkit http://xmlsoft.org/
daniel(a)veillard.com | Rpmfind RPM search engine http://rpmfind.net/
http://veillard.com/ | virtualization library http://libvirt.org/
10:16 a.m.
New subject: [libvirt] [PATCH 4/4] Fix handling of sparse NUMA topologies
When finding a sparse NUMA topology, libnuma will return ENOENT
the first time it is invoked. On subsequent invocations it
will return success, but with an all-1's CPU mask. Check for
this, to avoid polluting the capabilities XML with 4096 bogus
CPUs
* src/nodeinfo.c: Check for all-1s CPU mask
---
src/nodeinfo.c | 14 +++++++++++++-
1 files changed, 13 insertions(+), 1 deletions(-)
diff --git a/src/nodeinfo.c b/src/nodeinfo.c
index 57db085..65eeb24 100644
--- a/src/nodeinfo.c
+++ b/src/nodeinfo.c
@@ -361,6 +361,7 @@ nodeCapsInitNUMA(virCapsPtr caps)
{
int n;
unsigned long *mask = NULL;
+ unsigned long *allonesmask = NULL;
int *cpus = NULL;
int ret = -1;
int max_n_cpus = NUMA_MAX_N_CPUS;
@@ -371,13 +372,23 @@ nodeCapsInitNUMA(virCapsPtr caps)
int mask_n_bytes = max_n_cpus / 8;
if (VIR_ALLOC_N(mask, mask_n_bytes / sizeof *mask) < 0)
goto cleanup;
+ if (VIR_ALLOC_N(allonesmask, mask_n_bytes / sizeof *mask) < 0)
+ goto cleanup;
+ memset(allonesmask, 0xff, mask_n_bytes);
for (n = 0 ; n <= numa_max_node() ; n++) {
int i;
int ncpus;
+ /* The first time this returns -1, ENOENT if node doesn't exist... */
if (numa_node_to_cpus(n, mask, mask_n_bytes) < 0) {
VIR_WARN("NUMA topology for cell %d of %d not available,
ignoring",
- n, numa_max_node());
+ n, numa_max_node()+1);
+ continue;
+ }
+ /* second, third... times it returns an all-1's mask */
+ if (memcmp(mask, allonesmask, mask_n_bytes) == 0) {
+ VIR_DEBUG("NUMA topology for cell %d of %d is all ones, ignoring",
+ n, numa_max_node()+1);
continue;
}
@@ -406,6 +417,7 @@ nodeCapsInitNUMA(virCapsPtr caps)
cleanup:
VIR_FREE(cpus);
VIR_FREE(mask);
+ VIR_FREE(allonesmask);
return ret;
}
--
1.7.1
10:36 a.m.
New subject: [libvirt] [PATCH 4/4] Fix handling of sparse NUMA topologies
On 08/17/2010 09:16 AM, Daniel P. Berrange wrote:
When finding a sparse NUMA topology, libnuma will return ENOENT
the first time it is invoked. On subsequent invocations it
will return success, but with an all-1's CPU mask. Check for
this, to avoid polluting the capabilities XML with 4096 bogus
CPUs
* src/nodeinfo.c: Check for all-1s CPU mask
---
src/nodeinfo.c | 14 +++++++++++++-
1 files changed, 13 insertions(+), 1 deletions(-)
ACK.
--
Eric Blake eblake(a)redhat.com +1-801-349-2682
Libvirt virtualization library http://libvirt.org
10:45 a.m.
New subject: [libvirt] [PATCH 4/4] Fix handling of sparse NUMA topologies
On Tue, Aug 17, 2010 at 11:16:35AM -0400, Daniel P. Berrange wrote:
When finding a sparse NUMA topology, libnuma will return ENOENT
the first time it is invoked. On subsequent invocations it
will return success, but with an all-1's CPU mask. Check for
this, to avoid polluting the capabilities XML with 4096 bogus
CPUs
* src/nodeinfo.c: Check for all-1s CPU mask
---
src/nodeinfo.c | 14 +++++++++++++-
1 files changed, 13 insertions(+), 1 deletions(-)
diff --git a/src/nodeinfo.c b/src/nodeinfo.c
index 57db085..65eeb24 100644
--- a/src/nodeinfo.c
+++ b/src/nodeinfo.c
@@ -361,6 +361,7 @@ nodeCapsInitNUMA(virCapsPtr caps)
{
int n;
unsigned long *mask = NULL;
+ unsigned long *allonesmask = NULL;
int *cpus = NULL;
int ret = -1;
int max_n_cpus = NUMA_MAX_N_CPUS;
@@ -371,13 +372,23 @@ nodeCapsInitNUMA(virCapsPtr caps)
int mask_n_bytes = max_n_cpus / 8;
if (VIR_ALLOC_N(mask, mask_n_bytes / sizeof *mask) < 0)
goto cleanup;
+ if (VIR_ALLOC_N(allonesmask, mask_n_bytes / sizeof *mask) < 0)
+ goto cleanup;
+ memset(allonesmask, 0xff, mask_n_bytes);
for (n = 0 ; n <= numa_max_node() ; n++) {
int i;
int ncpus;
+ /* The first time this returns -1, ENOENT if node doesn't exist... */
if (numa_node_to_cpus(n, mask, mask_n_bytes) < 0) {
VIR_WARN("NUMA topology for cell %d of %d not available,
ignoring",
- n, numa_max_node());
+ n, numa_max_node()+1);
+ continue;
+ }
+ /* second, third... times it returns an all-1's mask */
+ if (memcmp(mask, allonesmask, mask_n_bytes) == 0) {
+ VIR_DEBUG("NUMA topology for cell %d of %d is all ones,
ignoring",
+ n, numa_max_node()+1);
continue;
}
it's always a bit bizarre to add such code to work around this kind of
breakage in dependancies's code ... shouldn't we check first that we got
the ENOENT before doing that compare test ? Unless we are sure an all
set of 1 is really unfeasible ?
@@ -406,6 +417,7 @@ nodeCapsInitNUMA(virCapsPtr caps)
cleanup:
VIR_FREE(cpus);
VIR_FREE(mask);
+ VIR_FREE(allonesmask);
return ret;
}
ACK, it's weird, but not really our fault,
Daniel
--
Daniel Veillard | libxml Gnome XML XSLT toolkit http://xmlsoft.org/
daniel(a)veillard.com | Rpmfind RPM search engine http://rpmfind.net/
http://veillard.com/ | virtualization library http://libvirt.org/
5211
days inactive
5211
days old
13 comments
3 participants
participants (3)
-
Daniel P. Berrange -
Daniel Veillard -
Eric Blake