| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 12 Oct 2011 02:59:37 +0200 From: Frederic Weisbecker <fweisbec@...il.com> To: Andrew Morton <akpm@...ux-foundation.org>, Kay Sievers <kay.sievers@...y.org>, Tejun Heo <tj@...nel.org> Cc: linux-kernel@...r.kernel.org, lennart@...ttering.net, harald@...hat.com, david@...ar.dk, greg@...ah.com, "Kirill A. Shutemov" <kirill@...temov.name> Subject: Re: A Plumber’s Wish List for Linux (Resending because I screwed Tejun's email address...) On Tue, Oct 11, 2011 at 04:16:00PM -0700, Andrew Morton wrote: > On Fri, 07 Oct 2011 01:17:02 +0200 > Kay Sievers <kay.sievers@...y.org> wrote: > > * fork throttling mechanism as basic cgroup functionality that is > > available in all hierarchies independent of the controllers used: > > This is important to implement race-free killing of all members of a > > cgroup, so that cgroup member processes cannot fork faster then a cgroup > > supervisor process could kill them. This needs to be recursive, so that > > not only a cgroup but all its subgroups are covered as well. > > Frederic Weisbecker's "cgroups: add a task counter subsystem" should > address this. Does it meet these requirments? Have you tested it? It should work for this yeah. We in fact explored and documented that second usecase of the task counter subsystem for Kay's needs. Now cgroup subsystems can only be binded in one hierarchy at a time. So it couldn't be used by Lxc and some other user at the same time and that defeats kay's goals. But there is an old patch from Paul Menage that allows some specific subsystems (those that don't deal with global resources) to be mounted on many hierarchies. The task counter would fit in and hence be usable by Lxc and other users simultaneously. There is another solution that is to be considered. One could use the cgroup freezer to freeze all the tasks in a cgroup and then kill them all before thawing the whole. If the process of freezing doesn't have races against fork then it should work as well. I only worry about the window in copy_process() between the test on signal_pending(), that cancels the fork if a signal is pending on the parent, and the time the new task is eventually added to the cgroup with cgroup_post_fork(). If the freezer misses the child while it is in that window, then it's not going to be killed with the rest and it may even launch some fork() soon to annoy you further. I don't know if that's handled by the freezer. If it doesn't and that can't be fixed then that won't work for you. If the freezer is a possible solution then I don't know which one is best for you. Perhaps freezing the tasks in the cgroup can make it faster, or slower, than rejecting any fork and killing directly. Perhaps it would be helpful to get more details about the practical case you have. Anyway, if you think the task counter subsystem approach suits you better, I can rework Paul's patches that allow multi-bindable subsystem so that it gets usable by several users simultaneously. Thanks. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists