[libvirt] nwfilter: test code to provoke deadlock

[Stefan Berger]

Attached are the bash scripts and xml files for provoking the deadlock. With the new patch applied the deadlock does not occur anymore.

Regards,
   Stefan

chg-vm1-filter.sh
Description: Bourne shell script

chg-vm2-filter.sh
Description: Bourne shell script

  <domain type='kvm'>
    <name>dummy-vm1</name>
    <memory>32768</memory>
    <currentMemory>32768</currentMemory>
    <vcpu>1</vcpu>
    <os>
      <type>hvm</type>
      <boot dev='hd'/>
    </os>
    <features>
      <acpi/>
      <apic/>
    </features>
    <clock offset='utc'/>
    <on_poweroff>destroy</on_poweroff>
    <on_reboot>restart</on_reboot>
    <on_crash>destroy</on_crash>
    <devices>
      <interface type='bridge'>
        <source bridge='virbr0'/>
        <filterref filter='dummy-vm1-filter'>
        </filterref>
        <target dev='vm1-if0'/>
      </interface>
      <console type='pty'>
      </console>
      <input type='mouse' bus='ps2'/>
      <graphics type='vnc' port='-1' autoport='yes'/>
    </devices>
  </domain>

<filter name='dummy-vm1-filter' chain='root'>
  <uuid>264d2617-43d0-7694-b479-320b72dac187</uuid>
  <rule action='accept' direction='in' priority='500'>
    <all comment='test me more again'/>
  </rule>
  <rule action='accept' direction='out' priority='500'>
    <all/>
  </rule>
  <rule action='accept' direction='in' priority='500'>
    <tcp dstportstart='21' dstportend='22'/>
  </rule>
  <rule action='accept' direction='in' priority='500'>
    <tcp dstportstart='80'/>
  </rule>
  <rule action='accept' direction='out' priority='500'>
    <icmp/>
  </rule>
  <rule action='accept' direction='out' priority='500'>
    <udp dstportstart='53'/>
  </rule>
  <rule action='drop' direction='inout' priority='500'>
    <all/>
  </rule>
</filter>


<filter name='dummy-vm1-filter' chain='root'>
  <uuid>264d2617-43d0-7694-b479-320b72dac187</uuid>
  <rule action='accept' direction='in' priority='500'>
    <all comment='test me more again and again'/>
  </rule>
  <rule action='accept' direction='out' priority='500'>
    <all/>
  </rule>
  <rule action='accept' direction='in' priority='500'>
    <tcp dstportstart='21' dstportend='22'/>
  </rule>
  <rule action='accept' direction='in' priority='500'>
    <tcp dstportstart='80'/>
  </rule>
  <rule action='accept' direction='out' priority='500'>
    <icmp/>
  </rule>
  <rule action='accept' direction='out' priority='500'>
    <udp dstportstart='53'/>
  </rule>
  <rule action='drop' direction='inout' priority='500'>
    <all/>
  </rule>
</filter>


  <domain type='kvm'>
    <name>dummy-vm2</name>
    <memory>32768</memory>
    <currentMemory>32768</currentMemory>
    <vcpu>1</vcpu>
    <os>
      <type>hvm</type>
      <boot dev='hd'/>
    </os>
    <features>
      <acpi/>
      <apic/>
    </features>
    <clock offset='utc'/>
    <on_poweroff>destroy</on_poweroff>
    <on_reboot>restart</on_reboot>
    <on_crash>destroy</on_crash>
    <devices>
      <interface type='bridge'>
        <source bridge='virbr0'/>
        <filterref filter='dummy-vm2-filter'>
        </filterref>
        <target dev='vm2-if0'/>
      </interface>
      <console type='pty'>
      </console>
      <input type='mouse' bus='ps2'/>
      <graphics type='vnc' port='-1' autoport='yes'/>
    </devices>
  </domain>

<filter name='dummy-vm2-filter' chain='root'>
  <uuid>364d2617-43d0-7694-b479-320b72dac187</uuid>
  <rule action='accept' direction='in' priority='500'>
    <all comment='test me more again'/>
  </rule>
  <rule action='accept' direction='out' priority='500'>
    <all/>
  </rule>
  <rule action='accept' direction='in' priority='500'>
    <tcp dstportstart='21' dstportend='22'/>
  </rule>
  <rule action='accept' direction='in' priority='500'>
    <tcp dstportstart='80'/>
  </rule>
  <rule action='accept' direction='out' priority='500'>
    <icmp/>
  </rule>
  <rule action='accept' direction='out' priority='500'>
    <udp dstportstart='53'/>
  </rule>
  <rule action='drop' direction='inout' priority='500'>
    <all/>
  </rule>
</filter>


<filter name='dummy-vm2-filter' chain='root'>
  <uuid>364d2617-43d0-7694-b479-320b72dac187</uuid>
  <rule action='accept' direction='in' priority='500'>
    <all comment='test me more again and again'/>
  </rule>
  <rule action='accept' direction='out' priority='500'>
    <all/>
  </rule>
  <rule action='accept' direction='in' priority='500'>
    <tcp dstportstart='21' dstportend='22'/>
  </rule>
  <rule action='accept' direction='in' priority='500'>
    <tcp dstportstart='80'/>
  </rule>
  <rule action='accept' direction='out' priority='500'>
    <icmp/>
  </rule>
  <rule action='accept' direction='out' priority='500'>
    <udp dstportstart='53'/>
  </rule>
  <rule action='drop' direction='inout' priority='500'>
    <all/>
  </rule>
</filter>

start_destroy_vm1.sh
Description: Bourne shell script

start_destroy_vm2.sh
Description: Bourne shell script

--
libvir-list mailing list
libvir-list@redhat.com
https://www.redhat.com/mailman/listinfo/libvir-list