| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 2 Mar 2015 10:22:05 -0500
From: Tejun Heo <tj@...nel.org>
To: Aleksa Sarai <cyphar@...har.com>
Cc: lizefan@...wei.com, mingo@...hat.com, peterz@...radead.org,
richard@....at, fweisbec@...il.com, linux-kernel@...r.kernel.org,
cgroups@...r.kernel.org
Subject: Re: [PATCH v2 2/2] cgroups: add an nproc subsystem
Hello,
On Fri, Feb 27, 2015 at 03:17:19PM +1100, Aleksa Sarai wrote:
> +config CGROUP_NPROC
> + bool "Process number limiting on cgroups"
> + depends on PAGE_COUNTER
> + help
> + This options enables the setting of process number limits in the scope
> + of a cgroup. Any attempt to fork more processes than is allowed in the
> + cgroup will fail. This allows for more basic resource limitation that
> + applies to a cgroup, similar to RLIMIT_NPROC (except that instead of
> + applying to a process tree it applies to a cgroup).
Please reflect the rationale from this discussion thread in the commit
message and help text. Also, I'd much prefer to name it pids
controller after the resource it's controlling.
> +struct nproc {
> + struct page_counter proc_counter;
I don't think it's a good idea to use page_counter outside memcg.
This is pretty much an implementation detail of memcg. The only
reason that file is out there is because of the wacky tcp controller
which is somewhat part of memcg (and to be replaced by proper kmemcg).
Either use plain atomic_t or percpu_counter with controlled batch
value (e.g. upto 10% deviation allowed from the target or sth). Given
that fork/exit is pretty heavy path, just plain atomic_t is prolly
enough.
> +static int nproc_can_attach(struct cgroup_subsys_state *css,
> + struct cgroup_taskset *tset)
> +{
> + struct nproc *nproc = css_nproc(css);
> + unsigned long num_tasks = 0;
> + struct task_struct *task;
> +
> + cgroup_taskset_for_each(task, tset)
> + num_tasks++;
> +
> + return nproc_add_procs(nproc, num_tasks);
> +}
can_attach() can't fail in the unified hierarchy. Circumvention of
configuration by moving processes to children is prevented through
hierarchical limit enforcement.
> +static int nproc_write_limit(struct cgroup_subsys_state *css,
> + struct cftype *cft, u64 val)
> +{
> + struct nproc *nproc = css_nproc(css);
> +
> + return page_counter_limit(&nproc->proc_counter, val);
> +}
Please make it handle "max".
> +static u64 nproc_read_limit(struct cgroup_subsys_state *css,
> + struct cftype *cft)
> +{
> + struct nproc *nproc = css_nproc(css);
> +
> + return nproc->proc_counter.limit;
> +}
Ditto when reading back.
> +static u64 nproc_read_max_limit(struct cgroup_subsys_state *css,
> + struct cftype *cft)
> +{
> + return PAGE_COUNTER_MAX;
> +}
And drop this file.
> +static u64 nproc_read_usage(struct cgroup_subsys_state *css,
> + struct cftype *cft)
> +{
> + struct nproc *nproc = css_nproc(css);
> +
> + return page_counter_read(&nproc->proc_counter);
> +}
> +
> +static struct cftype files[] = {
> + {
> + .name = "limit",
> + .write_u64 = nproc_write_limit,
> + .read_u64 = nproc_read_limit,
> + },
pids.max
> + {
> + .name = "max_limit",
> + .read_u64 = nproc_read_max_limit,
> + },
> + {
> + .name = "usage",
> + .read_u64 = nproc_read_usage,
> + },
pids.current
Thanks.
--
tejun
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists