| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 17 Nov 2015 17:22:17 -0500 From: Johannes Weiner <hannes@...xchg.org> To: Vladimir Davydov <vdavydov@...tuozzo.com> Cc: David Miller <davem@...emloft.net>, Andrew Morton <akpm@...ux-foundation.org>, Tejun Heo <tj@...nel.org>, Michal Hocko <mhocko@...e.cz>, netdev@...r.kernel.org, linux-mm@...ck.org, cgroups@...r.kernel.org, linux-kernel@...r.kernel.org, kernel-team@...com Subject: Re: [PATCH 14/14] mm: memcontrol: hook up vmpressure to socket pressure On Tue, Nov 17, 2015 at 11:18:50PM +0300, Vladimir Davydov wrote: > AFAIK vmpressure was designed to allow userspace to tune hard limits of > cgroups in accordance with their demands, in which case the way how > vmpressure notifications work makes sense. You can still do that when the reporting happens on the reclaim level, it's easy to figure out where the pressure comes from once a group is struggling to reclaim its LRU pages. Reporting on the pressure level does nothing but destroy valuable information that would be useful in scenarios other than tuning a hierarchical memory limit. > > But you guys were wary about the patch that changed it, and this > > Changing vmpressure semantics as you proposed in v1 would result in > userspace getting notifications even if cgroup does not hit its limit. > May be it could be useful to someone (e.g. it could help tuning > memory.low), but I am pretty sure this would also result in breakages > for others. Maybe. I'll look into a two-layer vmpressure recording/reporting model that would give us reclaim-level events internally while retaining pressure-level events for the existing userspace interface. > > series has kicked up enough dust already, so I backed it out. > > > > But this will still be useful. Yes, it won't help in rebalancing an > > regularly working system, which would be cool, but it'll still help > > contain a worklad that is growing beyond expectations, which is the > > scenario that kickstarted this work. > > I haven't looked through all the previous patches in the series, but > AFAIU they should do the trick, no? Notifying sockets about vmpressure > is rather needed to protect a workload from itself. No, the only critical thing is to protect the system from OOM conditions caused by what should be containerized processes. That's a correctness issue. How much we mitigate the consequences inside the container when the workload screws up is secondary. But even that is already much better in this series compared to memcg v1, while leaving us with all the freedom to continue improving this internal mitigation in the future. > And with this patch it will work this way, but only if sum limits < > total ram, which is rather rare in practice. On tightly packed > systems it does nothing. That's not true, it's still useful when things go south inside a cgroup, even with overcommitted limits. See above. We can optimize the continuous global pressure rebalancing later on; whether that'll be based on a modified vmpressure implementation, or adding reclaim efficiency to the shrinker API or whatever. > That said, I don't think we should commit this particular patch. Neither > do I think socket accounting should be enabled by default in the unified > hierarchy for now, since the implementation is still incomplete. IMHO. I don't see a technical basis for either of those suggestions. -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists