From: Andy Lutomirski <luto@amacapital.net>
To: Shakeel Butt <shakeelb@google.com>
Cc: Roman Gushchin <guro@fb.com>,
Johannes Weiner <hannes@cmpxchg.org>,
Linux MM <linux-mm@kvack.org>,
LKML <linux-kernel@vger.kernel.org>,
kernel-team@fb.com, Michal Hocko <mhocko@kernel.org>,
luto@kernel.org, Konstantin Khlebnikov <koct9i@gmail.com>,
Tejun Heo <tj@kernel.org>
Subject: Re: [RFC PATCH 1/2] mm: rework memcg kernel stack accounting
Date: Wed, 15 Aug 2018 10:37:28 -0700 [thread overview]
Message-ID: <19CD1E5B-CB86-493A-8BA6-7389E36291B4@amacapital.net> (raw)
In-Reply-To: <CALvZod7TDLtr-DgqgW_0tOKei_54U1JHThpgLKr9_ObaqcC3MA@mail.gmail.com>
> On Aug 15, 2018, at 10:32 AM, Shakeel Butt <shakeelb@google.com> wrote:
>
>> On Wed, Aug 15, 2018 at 10:26 AM Roman Gushchin <guro@fb.com> wrote:
>>
>>> On Wed, Aug 15, 2018 at 10:12:42AM -0700, Andy Lutomirski wrote:
>>>
>>>
>>>>> On Aug 15, 2018, at 9:55 AM, Roman Gushchin <guro@fb.com> wrote:
>>>>>
>>>>>> On Wed, Aug 15, 2018 at 12:39:23PM -0400, Johannes Weiner wrote:
>>>>>> On Tue, Aug 14, 2018 at 05:36:19PM -0700, Roman Gushchin wrote:
>>>>>> @@ -224,9 +224,14 @@ static unsigned long *alloc_thread_stack_node(struct task_struct *tsk, int node)
>>>>>> return s->addr;
>>>>>> }
>>>>>>
>>>>>> + /*
>>>>>> + * Allocated stacks are cached and later reused by new threads,
>>>>>> + * so memcg accounting is performed manually on assigning/releasing
>>>>>> + * stacks to tasks. Drop __GFP_ACCOUNT.
>>>>>> + */
>>>>>> stack = __vmalloc_node_range(THREAD_SIZE, THREAD_ALIGN,
>>>>>> VMALLOC_START, VMALLOC_END,
>>>>>> - THREADINFO_GFP,
>>>>>> + THREADINFO_GFP & ~__GFP_ACCOUNT,
>>>>>> PAGE_KERNEL,
>>>>>> 0, node, __builtin_return_address(0));
>>>>>>
>>>>>> @@ -246,12 +251,41 @@ static unsigned long *alloc_thread_stack_node(struct task_struct *tsk, int node)
>>>>>> #endif
>>>>>> }
>>>>>>
>>>>>> +static void memcg_charge_kernel_stack(struct task_struct *tsk)
>>>>>> +{
>>>>>> +#ifdef CONFIG_VMAP_STACK
>>>>>> + struct vm_struct *vm = task_stack_vm_area(tsk);
>>>>>> +
>>>>>> + if (vm) {
>>>>>> + int i;
>>>>>> +
>>>>>> + for (i = 0; i < THREAD_SIZE / PAGE_SIZE; i++)
>>>>>> + memcg_kmem_charge(vm->pages[i], __GFP_NOFAIL,
>>>>>> + compound_order(vm->pages[i]));
>>>>>> +
>>>>>> + /* All stack pages belong to the same memcg. */
>>>>>> + mod_memcg_page_state(vm->pages[0], MEMCG_KERNEL_STACK_KB,
>>>>>> + THREAD_SIZE / 1024);
>>>>>> + }
>>>>>> +#endif
>>>>>> +}
>>>>>
>>>>> Before this change, the memory limit can fail the fork, but afterwards
>>>>> fork() can grow memory consumption unimpeded by the cgroup settings.
>>>>>
>>>>> Can we continue to use try_charge() here and fail the fork?
>>>>
>>>> We can, but I'm not convinced we should.
>>>>
>>>> Kernel stack is relatively small, and it's already allocated at this point.
>>>> So IMO exceeding the memcg limit for 1-2 pages isn't worse than
>>>> adding complexity and handle this case (e.g. uncharge partially
>>>> charged stack). Do you have an example, when it does matter?
>>>
>>> What bounds it to just a few pages? Couldn’t there be lots of forks in flight that all hit this path? It’s unlikely, and there are surely easier DoS vectors, but still.
>>
>> Because any following memcg-aware allocation will fail.
>> There is also the pid cgroup controlled which can be used to limit the number
>> of forks.
>>
>> Anyway, I'm ok to handle the this case and fail fork,
>> if you think it does matter.
>
> Roman, before adding more changes do benchmark this. Maybe disabling
> the stack caching for CONFIG_MEMCG is much cleaner.
>
>
Unless memcg accounting is colossally slow, the caching should be left on. vmalloc() isn’t inherently slow, but vfree() is, since we need to do a global broadcast TLB flush after enough vfree() calls.
next prev parent reply other threads:[~2018-08-15 17:37 UTC|newest]
Thread overview: 17+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-08-15 0:36 Roman Gushchin
2018-08-15 0:36 ` [RFC PATCH 2/2] mm: drain memcg stocks on css offlining Roman Gushchin
2018-08-15 0:54 ` Shakeel Butt
2018-08-15 7:29 ` Michal Hocko
2018-08-15 1:18 ` [RFC PATCH 1/2] mm: rework memcg kernel stack accounting Shakeel Butt
2018-08-15 17:16 ` Roman Gushchin
2018-08-15 7:10 ` Michal Hocko
2018-08-15 16:39 ` Johannes Weiner
2018-08-15 16:55 ` Roman Gushchin
2018-08-15 17:12 ` Andy Lutomirski
2018-08-15 17:25 ` Roman Gushchin
2018-08-15 17:32 ` Shakeel Butt
2018-08-15 17:37 ` Andy Lutomirski [this message]
2018-08-21 17:22 ` Roman Gushchin
2018-08-15 17:20 ` Johannes Weiner
2018-08-16 6:35 ` Michal Hocko
2018-08-16 15:24 ` Roman Gushchin
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=19CD1E5B-CB86-493A-8BA6-7389E36291B4@amacapital.net \
--to=luto@amacapital.net \
--cc=guro@fb.com \
--cc=hannes@cmpxchg.org \
--cc=kernel-team@fb.com \
--cc=koct9i@gmail.com \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-mm@kvack.org \
--cc=luto@kernel.org \
--cc=mhocko@kernel.org \
--cc=shakeelb@google.com \
--cc=tj@kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox