| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 12 Mar 2013 16:01:36 -0700 From: Andrew Morton <akpm@...ux-foundation.org> To: Andrew Shewmaker <agshew@...il.com> Cc: linux-mm@...ck.org, linux-kernel@...r.kernel.org, alan@...rguk.ukuu.org.uk, simon.jeons@...il.com, ric.masonn@...il.com Subject: Re: [PATCH v5 1/2] mm: limit growth of 3% hardcoded other user reserve On Wed, 6 Mar 2013 18:52:01 -0500 Andrew Shewmaker <agshew@...il.com> wrote: > Add user_reserve_pages knob. > > Limit the growth of the memory reserved for other user > processes to min(3% current process, user_reserve_pages). > > user_reserve_pages defaults to min(3% free pages, 128MB) > I arrived at 128MB by taking that max VSZ of sshd, login, > bash, and top ... then adding the RSS of each. > > This only affects OVERCOMMIT_NEVER mode. Can we have a more complete changelog, please? One which describes, at great length, *why* we're doing this. Describe the problems you observed, the possible means of addressing them, why this means is considered best, etc. Also, there has been considerable discussion over this patchset and it is good to update the changelogs to reflect that discussion. Partly because other people will be asking the same questions when they see the patches and partly so that reviewers can understand how earlier objections/suggestions were addressed. Assume that your audience has not read this email thread! >From a quick read of the code, it appears that the root-cant-log-in problem was addressed by simply leaving it up to the administrator, yes? If the administrator sets user_reserve_pages or admin_reserve_pages to zero then they risk hitting the root-cant-log-in problem, yes? If so then I guess this is an OK approach, but we should clearly describe the risks in the documentation. Finally, I am allergic to exported interfaces which deal in "pages". Because PAGE_SIZE can vary by a factor of 16 depending upon config (ie: architecture). The risk is that a setup script which works nicely on 4k x86_64 will waste memory when executed on a 64k PAGE_SIZE powerpc box. A smart programmer will recognize this and will adapt the setting using getpagesize(2), but if we define these things in "bytes" rather than "pages" then dumb programmers can use it too. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists