Angel de Vicente
2006-Aug-22 15:20 UTC
[Xen-users] /lib/tls.disabled or xen-friendly glibc?
Hi, until now I have run Xen with /lib/tls out of the way for both dom0 and domU''s, but now I''m trying to install OpenLDAP in a domU, which requires TLS as default. So now I have at least three options ahead of me: 1. mv /lib/tls.disabled back to /lib/tls and accept the performance penalty (is there any documentation on how heavy this penalty is?) 2. Compile OpenLDAP without TLS support. 3. Compile a xen-friendly glibc. Any guidelines on what would make more sense? Xen performance would be better with /lib/tls disabled or with a xen-friendly glibc? Would it make any sense to have TLS disabled (un-friendly glibc) in dom0, while TSL enabled (friendly glibc) in a domU? Thanks for any suggestions, Angel de Vicente -- ---------------------------------- http://www.iac.es/galeria/angelv/ PostDoc Software Support Instituto de Astrofisica de Canarias _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
Hi, I am trying to get xen up and running but its not creating /dev/xen or the files in the directory, I don;t see any error messages, can anyone suggest what might be wrong? Thanks Nick _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
Hi, On Tue, Aug 22, 2006 at 04:20:14PM +0100, Angel de Vicente wrote:> Hi, > > until now I have run Xen with /lib/tls out of the way for both dom0 and domU''s, > but now I''m trying to install OpenLDAP in a domU, which requires TLS as > default. So now I have at least three options ahead of me:I doubt, those two TLSs are the same: TLS[OpenLDAP]: Transport Layer Security TLS[!XEN]: Transaction Local Storage You can safely compile openldap with tls. Regards, Frank _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
Petersson, Mats
2006-Aug-22 17:21 UTC
RE: [Xen-users] /lib/tls.disabled or xen-friendly glibc?
> -----Original Message----- > From: xen-users-bounces@lists.xensource.com > [mailto:xen-users-bounces@lists.xensource.com] On Behalf Of FB > Sent: 22 August 2006 18:08 > To: xen-users@lists.xensource.com > Subject: Re: [Xen-users] /lib/tls.disabled or xen-friendly glibc? > > Hi, > > On Tue, Aug 22, 2006 at 04:20:14PM +0100, Angel de Vicente wrote: > > Hi, > > > > until now I have run Xen with /lib/tls out of the way for > both dom0 and domU''s, > > but now I''m trying to install OpenLDAP in a domU, which > requires TLS as > > default. So now I have at least three options ahead of me: > > I doubt, those two TLSs are the same: > > TLS[OpenLDAP]: Transport Layer Security > TLS[!XEN]: Transaction Local StorageThread Local Storage, I think you''ll find that it is... -- Mats> > You can safely compile openldap with tls. > > Regards, > > Frank > > _______________________________________________ > Xen-users mailing list > Xen-users@lists.xensource.com > http://lists.xensource.com/xen-users > > >_______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
Angel de Vicente
2006-Aug-22 20:06 UTC
Re: [Xen-users] /lib/tls.disabled or xen-friendly glibc?
Hi,
> > until now I have run Xen with /lib/tls out of the way for both dom0
and domU''s,
> > but now I''m trying to install OpenLDAP in a domU, which
requires TLS as
> > default. So now I have at least three options ahead of me:
>
> I doubt, those two TLSs are the same:
>
> TLS[OpenLDAP]: Transport Layer Security
> TLS[!XEN]: Transaction Local Storage
>
> You can safely compile openldap with tls.
Ah, OK, I got confused about this (never compiled OpenLDAP before). So I guess
from my original post then I only get the first and the third options left
(i.e. either to restore /lib/tls or to get a xen-friendly glibc). The first
option works OK (as can seen below), but I guess the customary warning on
performance. I will try a xen-friendly glibc as well, but I wonder if anyone can
shed some light on what the performance hit will be?
Thanks a lot,
Angel de Vicente
----------
-bash-3.00# /usr/sbin/slapd -d 4
@(#) $OpenLDAP: slapd 2.2.13 (Oct 18 2005 10:08:34) $
buildcentos@x8664-build:/home/buildcentos/rpmbuild/BUILD/openldap-2.2.13/openldap-2.2.13/build-servers/servers/slapd
daemon_init: <null>
daemon: IPv6 socket() failed errno=97 (Address family not supported by protocol)
bdb_initialize: Sleepycat Software: Berkeley DB 4.2.52: (December 3, 2003)
bdb_initialize: Sleepycat Software: Berkeley DB 4.2.52: (December 3, 2003)
bdb_db_init: Initializing BDB database
bdb_db_open: dc=my-domain,dc=com
bdb(dc=my-domain,dc=com): unable to initialize mutex: Function not implemented
bdb(dc=my-domain,dc=com): /var/lib/ldap/__db.001: unable to initialize
environment lock: Function not implemented
bdb_db_open: dbenv_open failed: Function not implemented (38)
backend_startup: bi_db_open(0) failed! (38)
bdb(dc=my-domain,dc=com): DB_ENV->lock_id_free interface requires an
environment configured for the locking subsystem
bdb(dc=my-domain,dc=com): txn_checkpoint interface requires an environment
configured for the transaction subsystem
bdb_db_destroy: txn_checkpoint failed: Invalid argument (22)
slapd stopped.
connections_destroy: nothing to destroy.
-bash-3.00# mv /lib/tls.disabled /lib/tls
-bash-3.00# /usr/sbin/slapd -d 4
***************************************************************
***************************************************************
** WARNING: Currently emulating unsupported memory accesses **
** in /lib/tls glibc libraries. The emulation is **
** slow. To ensure full performance you should **
** install a ''xen-friendly'' (nosegneg) version of
**
** the library, or disable tls support by executing **
** the following as root: **
** mv /lib/tls /lib/tls.disabled **
** Offending process: slapd (pid=2477) **
***************************************************************
***************************************************************
Continuing...
@(#) $OpenLDAP: slapd 2.2.13 (Oct 18 2005 10:08:34) $
buildcentos@x8664-build:/home/buildcentos/rpmbuild/BUILD/openldap-2.2.13/openldap-2.2.13/build-servers/servers/slapd
daemon_init: <null>
daemon: IPv6 socket() failed errno=97 (Address family not supported by protocol)
bdb_initialize: Sleepycat Software: Berkeley DB 4.2.52: (December 3, 2003)
bdb_initialize: Sleepycat Software: Berkeley DB 4.2.52: (December 3, 2003)
bdb_db_init: Initializing BDB database
bdb_db_open: dc=my-domain,dc=com
slapd starting
--
----------------------------------
http://www.iac.es/galeria/angelv/
PostDoc Software Support
Instituto de Astrofisica de Canarias
_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users
Andrew Ross
2006-Aug-26 04:49 UTC
Re: [Xen-users] /lib/tls.disabled or xen-friendly glibc?
Angel de Vicente wrote:> > > until now I have run Xen with /lib/tls out of the way for both dom0 and domU''s, > > > but now I''m trying to install OpenLDAP in a domU, which requires TLS as > > > default. So now I have at least three options ahead of me: > > > > I doubt, those two TLSs are the same: > > > > TLS[OpenLDAP]: Transport Layer Security > > TLS[!XEN]: Transaction Local Storage > > > > You can safely compile openldap with tls. > > Ah, OK, I got confused about this (never compiled OpenLDAP before). So I guess > from my original post then I only get the first and the third options left > (i.e. either to restore /lib/tls or to get a xen-friendly glibc). The first > option works OK (as can seen below), but I guess the customary warning on > performance. I will try a xen-friendly glibc as well, but I wonder if anyone can > shed some light on what the performance hit will be?I recall reading that the performance hit from using a Xen-friendly glibc (ie. one compiled with the -mno-tls-direct-seg-refs CFLAG) over a regular TLS-enabled glibc is less than the performance penalty of having Xen emulate the TLS negative segment offsets, and presumably also less than the performance penalty of using LinuxThreads instead of TLS. Thus, it would be my recommendation that you switch to a Xen-friendly glibc - you haven''t mentioned your distribution, but I''ll assume it''s not Gentoo. Cheers Andrew Ross _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
Angel de Vicente
2006-Aug-29 08:55 UTC
Re: [Xen-users] /lib/tls.disabled or xen-friendly glibc?
Hi Andrew, Andrew Ross writes: > I recall reading that the performance hit from using a Xen-friendly > glibc (ie. one compiled with the -mno-tls-direct-seg-refs CFLAG) over a > regular TLS-enabled glibc is less than the performance penalty of having > Xen emulate the TLS negative segment offsets, and presumably also less > than the performance penalty of using LinuxThreads instead of TLS. > > Thus, it would be my recommendation that you switch to a Xen-friendly > glibc - you haven''t mentioned your distribution, but I''ll assume it''s > not Gentoo. Thanks for the tip. No, my distribution(s) are not Gentoo. I use Ubuntu 5.10 as dom0 and CentOS4.3 as domU. Now, for the domU''s I have a precompiled xen-friendly glibc which I have already used, but not so for Ubuntu. So, my next question was whether it makes any sense to have TLS disabled/"unfriendly glibc" in dom0 and TLS enabled/xen-friendly glibc in domU. Would domU benefit or would I have to have a xen-friendly glibc in dom0 as well? Any suggestions on what benchmarks would be useful to test this? I would gladly perform them and report back to the list (time permitting, of course)... Cheers, Ángel de Vicente -- ---------------------------------- http://www.iac.es/galeria/angelv/ PostDoc Software Support Instituto de Astrofisica de Canarias _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users