Re: [PATCH] Re: reliability of linux-vm subsystem

From: Erik Mouw (J.A.K.Mouw@ITS.TUDelft.NL)
Date: Mon Nov 13 2000 - 18:45:47 EST

Next message: Marcelo Tosatti: "Re: Oops on 2.2.17 [klogd bonus question]"
Previous message: Jeff Garzik: "Re: ns558 pci/isa change"
In reply to: Szabolcs Szakacsits: "[PATCH] Re: reliability of linux-vm subsystem"
Next in thread: Michael Peddemors: "Re: [PATCH] Re: reliability of linux-vm subsystem"
Reply: Michael Peddemors: "Re: [PATCH] Re: reliability of linux-vm subsystem"
Reply: Szabolcs Szakacsits: "Re: [PATCH] Re: reliability of linux-vm subsystem"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Nov 13, 2000 at 10:50:05PM +0100, Szabolcs Szakacsits wrote:
> On Mon, Nov 13, 2000 Erik Mouw wrote:
> > Good, so the OOM killer works.
>
> But it doesn't work for this kind of application misbehaviours (or
> user attacks):
>
> main() { while(1) if (fork()) malloc(1); }

Proper process limits stop the fork bomb.

> or using IPC shared memory (code by Michal Zalewski)
>
> int i,d=1; char*x; main(){ while(1){ x=shmat(shmget(0,10000000/d,511),0,0);
> if(x==-1){ d*=10; continue; } for(i=0;i<10000000/d;i++) if(*(x+i)); } }

I don't remember if this already fixed.

> Linux 2.[24] "deadlocks" (without quotas). BTW, apparently FreeBSD, OpenBSD,
> SCO also become unusable while e.g. Solaris and Tru64 survives (root can
> clean up) both in non-overcommit and overcommit mode (no user quotas in
> any case).
>
> With the patch below [tried only with 2.2.18pre21 but it's easy to port to
> 2.4 and should apply to any late 2.2 kernels] Linux should also survive in
> both cases without any performance loss (well, trashing would start about
> the same time by adding 1.66% extra swap as the original one).

Looks like a nice feature to me. Any VM guru that cares to comment?

> > Sounds quite normal to me. If you don't enforce process limits, you
> > allow a normal user to thrash the system.
>
> Home users don't quote themself so they must hit the reset button. Really
> is this the maximum that the kernel can do? Also many enterprises expect
> the OS won't deadlock in case of application misbehaviours so they don't
> have to care about quota setup and can keep the good performance. This
> shortcoming^Wfeature of the kernel is one of the reasons Linux is still
> considered a toy or hobby OS by many ....

This is a mechanism vs. policy issue. The kernel hands you enough
mechanisms (well, except your patch) to handle misbehaving users. It is
up to the sysadmin to enforce the policy. For the home user it means
that the distribution providers have to set decent limits, for
enterprises it means that they have to hire a sysadmin.

Erik

-- 
J.A.K. (Erik) Mouw, Information and Communication Theory Group, Department
of Electrical Engineering, Faculty of Information Technology and Systems,
Delft University of Technology, PO BOX 5031,  2600 GA Delft, The Netherlands
Phone: +31-15-2783635  Fax: +31-15-2781843  Email: J.A.K.Mouw@its.tudelft.nl
WWW: http://www-ict.its.tudelft.nl/~erik/
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
Please read the FAQ at http://www.tux.org/lkml/

Next message: Marcelo Tosatti: "Re: Oops on 2.2.17 [klogd bonus question]"
Previous message: Jeff Garzik: "Re: ns558 pci/isa change"
In reply to: Szabolcs Szakacsits: "[PATCH] Re: reliability of linux-vm subsystem"
Next in thread: Michael Peddemors: "Re: [PATCH] Re: reliability of linux-vm subsystem"
Reply: Michael Peddemors: "Re: [PATCH] Re: reliability of linux-vm subsystem"
Reply: Szabolcs Szakacsits: "Re: [PATCH] Re: reliability of linux-vm subsystem"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Wed Nov 15 2000 - 21:00:24 EST