From mboxrd@z Thu Jan 1 00:00:00 1970 From: Gleb Natapov Subject: Re: [PATCH 0/2] Introduce panic hypercall Date: Tue, 21 Jun 2011 09:04:28 +0300 Message-ID: <20110621060428.GC491@redhat.com> References: <1308577094-17551-1-git-send-email-gollub@b1-systems.de> <20110620153825.GH13042@redhat.com> <4DFF6B20.7090107@redhat.com> <201106201826.32975.gollub@b1-systems.de> <4DFF76B1.8020509@redhat.com> <4DFF7FD0.4070002@siemens.com> <4DFF8208.7060401@redhat.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Cc: Jan Kiszka , Daniel Gollub , "Daniel P. Berrange" , kvm@vger.kernel.org, qemu-devel To: Avi Kivity Return-path: Received: from mx1.redhat.com ([209.132.183.28]:33028 "EHLO mx1.redhat.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751588Ab1FUGEe (ORCPT ); Tue, 21 Jun 2011 02:04:34 -0400 Content-Disposition: inline In-Reply-To: <4DFF8208.7060401@redhat.com> Sender: kvm-owner@vger.kernel.org List-ID: On Mon, Jun 20, 2011 at 08:23:20PM +0300, Avi Kivity wrote: > On 06/20/2011 08:13 PM, Jan Kiszka wrote: > >> A watchdog has the advantage that is also detects lockups. > >> > >> In fact you could implement the panic device via the existing > >> watchdogs. Simply program the timer for the minimum interval and > >> *don't* service the interrupt. This would work for non-virt setups as > >> well as another way to issue a reset. > > > >If you manage to bring down the other guest CPUs fast enough. Otherwise, > >they may corrupt your crashdump before the host had a chance to collect > >all pieces. Synchronous signaling to the hypervisor is a bit safer. > > You could NMI-IPI them. But I agree a synchronous signal is better > (note it's not race-free itself). > But kexec/kdump has exactly same race, so this is at least not worse that alternative. -- Gleb.