| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 7 Sep 2016 11:51:42 +0300
From: Matan Barak <matanb@...lanox.com>
To: Parav Pandit <pandit.parav@...il.com>,
Christoph Hellwig <hch@....de>
CC: Tejun Heo <tj@...nel.org>, <cgroups@...r.kernel.org>,
<linux-doc@...r.kernel.org>,
Linux Kernel Mailing List <linux-kernel@...r.kernel.org>,
<linux-rdma@...r.kernel.org>, Li Zefan <lizefan@...wei.com>,
Johannes Weiner <hannes@...xchg.org>,
Doug Ledford <dledford@...hat.com>,
Liran Liss <liranl@...lanox.com>,
"Hefty, Sean" <sean.hefty@...el.com>,
Jason Gunthorpe <jgunthorpe@...idianresearch.com>,
Haggai Eran <haggaie@...lanox.com>,
Jonathan Corbet <corbet@....net>, <james.l.morris@...cle.com>,
<serge@...lyn.com>, Or Gerlitz <ogerlitz@...lanox.com>,
Andrew Morton <akpm@...ux-foundation.org>,
<linux-security-module@...r.kernel.org>
Subject: Re: [PATCHv12 1/3] rdmacg: Added rdma cgroup controller
On 07/09/2016 10:55, Parav Pandit wrote:
> Hi Matan,
>
> On Thu, Sep 1, 2016 at 2:14 PM, Christoph Hellwig <hch@....de> wrote:
>> On Thu, Sep 01, 2016 at 10:25:40AM +0300, Matan Barak wrote:
>>> Well, if I recall, the reason doing so last time was in order to allow
>>> flexible updating of ib_core independently, which is obviously not a good
>>> reason (to say the least).
>>>
>>> Since the new ABI will probably define new object types (all recent
>>> proposals go this way), the current approach could lead to either trying to
>>> map new objects to existing cgroup resource types, which could lead to some
>>> weird non 1:1 mapping, or having a split definitions - such that each
>>> driver will declare its objects both in the cgroups mechanism and in its
>>> driver dispatch table.
>
>>> Even worse than that, drivers could simply ignore the cgroups support while
>>> implementing their own resource types and get a very broken containers
>>> support.
> If drivers are broken due to ignorance of not-calling cgroup APIs,
> that should be ok.
> That particular driver should fix it.
> If the resource creation using uverbs is using well defined rdma level
> resource, uverbs level will make sure to honor cgroup limits without
> involving hw drivers anyway.
>
All recent proposals of the new ABI schema deals with extending the
flexibility of the current schema by letting drivers define their
specific types, actions, attributes, etc. Even more than that, the
dispatching starts from the driver and it chooses if it wants to use the
common RDMA core layer or have it's own wise implementation instead.
Some drivers might even prefer not to implement the current verbs types.
These decisions were made in the OFVWG meetings.
Anyway, maybe we should consider using a more higher-level logic objects
that could fit multiple drivers requirements.
> RDMA Verb level resource is charged/uncharged by RDMA core.
> RDMA HW level resource is charged/uncharged by RDMA HW driver using
> well defined API and resource by cgroup core.
> This scheme ensures that there is 1:1 mapping.
>
Sounds reasonable, but what about drivers which ignore the common code
and implement it in their own way? What about drivers which don't
support the standard RDMA types at all?
I guess we should find a balance between something abstract and common
enough that will ease administrator configuration but be specific enough
for the various models we have (or will have) in the RDMA stack.
> I don't think current definition of resource type is carved out on stone.
> They can be extended as we forward.
> As many of us agree that, they should be well defined and it should be
> agreed by cgroup and rdma community.
>
Of course, but since the ABI and cgroups model are somehow related, they
should be dealt with together and approved by Doug who participated in
some of the OFVWG meetings.
> For example, today we have RDMA_VERB_xxx resources.
> New well defined RDMA HW resources can be defined in rdma_cgroup.h
> file as RDMA_HW_xx in same enum table.
>
So a driver will change the cgroups file for every new type it adds?
Will we just have a super set enum of all crazy types vendors added?
>>
>> Sorry guys, but arbitrary extensibility for something not finished is the
>> worst idea ever. We have two options here:
>>
>> a) delay cgroups support until the grand rewrite is done
>> b) add it now and deal with the consequences later
>>
> Can we do (b) now and differ adding any HW resources to cgroup until
> they are clearly called out.
> Architecture and APIs are already in place to support this.
>
Since this affect the user, it's better to think how it fits our
"optional standard"/"vendor types" model first. Maybe we could force all
standard types even if the driver we use doesn't support any of them.
>> That being said, adding random non-Verbs hardwasre to the RDMA core is
>> the second worst idea ever.
>
> We can differ adding HW resource to core and cgroup until they are
> clearly defined.
> In that case current architecture still holds good.
>
Clearly we should differ adding the actual code until a driver could
declare such objects, but we need to decide how to expose the standard
optional RDMA types (basically, the types you've added) and how future
driver specific types fit in.
>> Guess I need to catch up with the
>> discussion and start using the flame thrower.
>
> Matan,
> Can you please point us to the new RFC/ABI email thread which
> describes the design, partitioning of code between core vs hw drivers
> etc.
>
One proposal is [1]. There's another one from Sean which aims for
similar targets regards the driver specific types.
[1] https://www.spinics.net/lists/linux-rdma/msg38997.html
Matan
Powered by blists - more mailing lists