| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 27 Apr 2011 16:03:07 +0200 From: Borislav Petkov <bp@...64.org> To: "Luck, Tony" <tony.luck@...el.com> Cc: "Eric W. Biederman" <ebiederm@...ssion.com>, Borislav Petkov <bp@...64.org>, Ingo Molnar <mingo@...e.hu>, "H. Peter Anvin" <hpa@...or.com>, Thomas Gleixner <tglx@...utronix.de>, EDAC devel <linux-edac@...r.kernel.org>, LKML <linux-kernel@...r.kernel.org>, Prarit Bhargava <prarit@...hat.com>, Nagananda Chumbalkar <Nagananda.Chumbalkar@...com>, Russ Anderson <rja@....com> Subject: Re: [PATCH -v2 2/2] x86, MCE: Drop the default decoding notifier On Tue, Apr 26, 2011 at 07:44:35PM -0400, Luck, Tony wrote: > > Sure. Although any DIMM that is generating so many correctable errors > > that you need to rate limit it in the kernel, won't likely to confine > > itself to correctable errors. > > > > Still it can happen that things are so bad that you do need to rate > > limit it in the kernel. Still with those you start wondering "How did > > this machine boot?" So printk_ratelimit sounds like a fine idea. > > > Perhaps we really want thresholds rather than rate limits (for corrected > errors). One corrected error shouldn't cause any but the most paranoid > to worry. A couple of errors from the same DIMM close together might be > some cause for concern, but could just be happenstance. Enough errors that > rate limiting looks useful, and you are into "something needs to be done" > territory. Right, but for thresholding you need to know to which DIMM the error address belongs. And this is not trivial in all cases. It looks like we need this error reporting thing dynamic: As a sane default, we want to dump some _sensible_ info to syslog about some errors happening. Then, all in-kernel decoding modules can enrich that error info with more specific details. Those two reporting modes should be ratelimited since doing thresholding in kernel could be tricky and taking up precious resources. Finally, you have the userspace daemon which datacenter people or Google with small root partitions could use, which sends that info to a centralized location instead of someone collecting it from each node. In that case, no info goes out to syslog but is eaten up by the RAS daemon which runs on every machine. And in userspace you can do all the cool thresholding, rate limiting, policy applying, etc, your heart desires. Makes sense? -- Regards/Gruss, Boris. Advanced Micro Devices GmbH Einsteinring 24, 85609 Dornach General Managers: Alberto Bozzo, Andrew Bowd Registration: Dornach, Gemeinde Aschheim, Landkreis Muenchen Registergericht Muenchen, HRB Nr. 43632 -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists