| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 15 Sep 2015 08:38:54 +0530 From: Parav Pandit <pandit.parav@...il.com> To: Jason Gunthorpe <jgunthorpe@...idianresearch.com> Cc: "Hefty, Sean" <sean.hefty@...el.com>, Tejun Heo <tj@...nel.org>, Doug Ledford <dledford@...hat.com>, "cgroups@...r.kernel.org" <cgroups@...r.kernel.org>, "linux-doc@...r.kernel.org" <linux-doc@...r.kernel.org>, "linux-kernel@...r.kernel.org" <linux-kernel@...r.kernel.org>, "linux-rdma@...r.kernel.org" <linux-rdma@...r.kernel.org>, "lizefan@...wei.com" <lizefan@...wei.com>, Johannes Weiner <hannes@...xchg.org>, Jonathan Corbet <corbet@....net>, "james.l.morris@...cle.com" <james.l.morris@...cle.com>, "serge@...lyn.com" <serge@...lyn.com>, Haggai Eran <haggaie@...lanox.com>, Or Gerlitz <ogerlitz@...lanox.com>, Matan Barak <matanb@...lanox.com>, "raindel@...lanox.com" <raindel@...lanox.com>, "akpm@...ux-foundation.org" <akpm@...ux-foundation.org>, "linux-security-module@...r.kernel.org" <linux-security-module@...r.kernel.org> Subject: Re: [PATCH 0/7] devcg: device cgroup extension for rdma resource > Because actual hardware resources *ARE* the limit. We cannot abstract > it away. The hardware/driver has real, fixed, immutable limits. No API > abstraction can possibly change that. > > The limits are such there *IS NO* API boundary that can bundle them > into something simpler. There will always be apps that require wildly > different ratios of the basic verbs resources (PD/QP/CQ/AH/MR) > > Either we control each and every vendor's limited resource directly > (which is where you started), or we just roll them up into a 'all > resource' bundle and control them indirectly. There just isn't a > mythical third 'better API' choice with the hardware we have today. > As you precisely described, about wild ratio, we are asking vendor driver (bottom most layer) to statically define what the resource pool is, without telling him which application are we going to run to use those pool. Therefore vendor layer cannot ever define "right" resource pool. If we try to fix defining "right" resource pool, we will have to come up with API to modify/tune individual element of the pool. Once we bring that complexity, it becomes what is proposed in this pachset. Instead of bringing such complex solution, that affecting all the layers which solves the same problem as this patch, its better to keep definition of "bundle" in the user library/application deployment engine. where bundle is set of those resources. May be instead of having invidividual files for each resource, at user interface level, we can have rdma.bundle file. this bundle cgroup file defines these resources such as "ah 100 mr 100 qp 10" > So? I don't think it is really important to have an exact, precise, > limit. The HW pools are pretty big, unless you plan to run tens of > thousands of containers eacg with tiny RDMA limits, it is fine to talk > in broader terms (ie 10% of all HW limited resource) which is totally > adaquate to hard-prevent run away or exhaustion scenarios. > rdma cgroup will allow us to run post 512 or 1024 containers without using PCIe SR-IOV, without creating any vendor specific resource pools. > Jason -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists