Re: "per-process" limits (was: Showstopper list)

Alan Cox (alan@lxorguk.ukuu.org.uk)
Tue, 13 Oct 1998 14:45:58 +0100 (BST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Mark Lord: "Re: ide-dma & ST-36530A"
Previous message: Andi Kleen: "Re: "per-process" limits (was: Showstopper list)"
In reply to: Paul Barton-Davis: ""per-process" limits (was: Showstopper list)"
Next in thread: Paul Barton-Davis: "Re: "per-process" limits (was: Showstopper list)"

> Adding a kernel abstraction, such as a "group of tasks", would allow
> such limits to be implemented in a sane fashion, and is flexible
> enough to even allow the limits applied to groups of tasks not related
> via fork()/clone().

I actually wrote a few pieces of a thing called "beancounter" which was
an idea to do this. I've not had time to do more than post the first
draft version of the code (which someone in Linux security duely broke
straight off). Im not sure if the person who picked up on it is working
further on it or not.

The model SCO use for a user is fairly simple. There are three uid values
involved - uid, euid, and luid. The luid is a login uid. It is set once and
cannot be changed.

The code I had was less restrictive than the SCO idea - you have an luid
which sets your current->beancounter. That is the beancounter to which all
your resources get charged. Each resource object you allocate also makes
a copy by reference counting of the bean counter so that it can free up
the resources on an object.

Alan

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Mark Lord: "Re: ide-dma & ST-36530A"
Previous message: Andi Kleen: "Re: "per-process" limits (was: Showstopper list)"
In reply to: Paul Barton-Davis: ""per-process" limits (was: Showstopper list)"
Next in thread: Paul Barton-Davis: "Re: "per-process" limits (was: Showstopper list)"