Re: [PATCH 03/33] mm: slub: add knowledge of reserve pages

[PATCH 00/33] Swap over NFS -v14 · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 32/33] nfs: fix various memory recursions possible with swap over NFS. · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 05/33] mm: kmem_estimate_pages() · Peter Zijlstra <hidden> · 2007-10-30
Re: [PATCH 05/33] mm: kmem_estimate_pages() · Nick Piggin <hidden> · 2007-10-31
Re: [PATCH 05/33] mm: kmem_estimate_pages() · Peter Zijlstra <hidden> · 2007-10-31
[PATCH 24/33] mm: prepare swap entry methods for use in page methods · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 03/33] mm: slub: add knowledge of reserve pages · Peter Zijlstra <hidden> · 2007-10-30
Re: [PATCH 03/33] mm: slub: add knowledge of reserve pages · Nick Piggin <hidden> · 2007-10-31
Re: [PATCH 03/33] mm: slub: add knowledge of reserve pages · Peter Zijlstra <hidden> · 2007-10-31
Re: [PATCH 03/33] mm: slub: add knowledge of reserve pages · Nick Piggin <hidden> · 2007-10-31
Re: [PATCH 03/33] mm: slub: add knowledge of reserve pages · Peter Zijlstra <hidden> · 2007-10-31
Re: [PATCH 03/33] mm: slub: add knowledge of reserve pages · Nick Piggin <hidden> · 2007-10-31
Re: [PATCH 03/33] mm: slub: add knowledge of reserve pages · Peter Zijlstra <hidden> · 2007-10-31
Re: [PATCH 03/33] mm: slub: add knowledge of reserve pages · Peter Zijlstra <peterz@infradead.org> · 2007-10-31
[PATCH 16/33] netvm: network reserve infrastructure · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 08/33] mm: emergency pool · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 30/33] nfs: swap vs nfs_writepage · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 26/33] mm: methods for teaching filesystems about PG_swapcache pages · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 02/33] mm: tag reseve pages · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 28/33] nfs: teach the NFS client how to treat PG_swapcache pages · Peter Zijlstra <hidden> · 2007-10-30
Re: [PATCH 28/33] nfs: teach the NFS client how to treat PG_swapcache pages · Christoph Hellwig <hch@infradead.org> · 2007-10-31
[PATCH 22/33] netfilter: NF_QUEUE vs emergency skbs · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 19/33] netvm: hook skb allocation to reserves · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 13/33] net: wrap sk->sk_backlog_rcv() · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 10/33] mm: __GFP_MEMALLOC · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 23/33] netvm: skb processing · Peter Zijlstra <hidden> · 2007-10-30
Re: [PATCH 23/33] netvm: skb processing · Stephen Hemminger <hidden> · 2007-10-30
Re: [PATCH 23/33] netvm: skb processing · Peter Zijlstra <peterz@infradead.org> · 2007-10-30
[PATCH 25/33] mm: add support for non block device backed swap files · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 20/33] netvm: filter emergency skbs. · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 01/33] mm: gfp_to_alloc_flags() · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 17/33] sysctl: propagate conv errors · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 14/33] net: packet split receive api · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 15/33] net: sk_allocation() - concentrate socket related allocations · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 07/33] mm: serialize access to min_free_kbytes · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 18/33] netvm: INET reserves. · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 11/33] mm: memory reserve management · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 21/33] netvm: prevent a TCP specific deadlock · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 29/33] nfs: disable data cache revalidation for swapfiles · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 27/33] nfs: remove mempools · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 31/33] nfs: enable swap on NFS · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 04/33] mm: allow mempool to fall back to memalloc reserves · Peter Zijlstra <hidden> · 2007-10-30
Re: [PATCH 04/33] mm: allow mempool to fall back to memalloc reserves · Nick Piggin <hidden> · 2007-10-31
[PATCH 06/33] mm: allow PF_MEMALLOC from softirq context · Peter Zijlstra <hidden> · 2007-10-30
Re: [PATCH 06/33] mm: allow PF_MEMALLOC from softirq context · Nick Piggin <hidden> · 2007-10-31
Re: [PATCH 06/33] mm: allow PF_MEMALLOC from softirq context · Peter Zijlstra <hidden> · 2007-10-31
Re: [PATCH 06/33] mm: allow PF_MEMALLOC from softirq context · Nick Piggin <hidden> · 2007-10-31
Re: [PATCH 06/33] mm: allow PF_MEMALLOC from softirq context · Peter Zijlstra <hidden> · 2007-10-31
[PATCH 12/33] selinux: tag avc cache alloc as non-critical · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 33/33] nfs: do not warn on radix tree node allocation failures · Peter Zijlstra <hidden> · 2007-10-30
[PATCH 09/33] mm: system wide ALLOC_NO_WATERMARK · Peter Zijlstra <hidden> · 2007-10-30
Re: [PATCH 09/33] mm: system wide ALLOC_NO_WATERMARK · Nick Piggin <hidden> · 2007-10-31
Re: [PATCH 09/33] mm: system wide ALLOC_NO_WATERMARK · Peter Zijlstra <hidden> · 2007-10-31
Re: [PATCH 00/33] Swap over NFS -v14 · Nick Piggin <hidden> · 2007-10-31
Re: [PATCH 00/33] Swap over NFS -v14 · David Miller <davem@davemloft.net> · 2007-10-31
Re: [PATCH 00/33] Swap over NFS -v14 · Nick Piggin <hidden> · 2007-10-31
Re: [PATCH 00/33] Swap over NFS -v14 · Byron Stanoszek <hidden> · 2007-10-31
Re: [PATCH 00/33] Swap over NFS -v14 · Christoph Hellwig <hch@infradead.org> · 2007-10-31
Re: [PATCH 00/33] Swap over NFS -v14 · Peter Zijlstra <hidden> · 2007-10-31
NBD was Re: [PATCH 00/33] Swap over NFS -v14 · Pavel Machek <hidden> · 2007-10-31
Re: NBD was Re: [PATCH 00/33] Swap over NFS -v14 · Peter Zijlstra <hidden> · 2007-10-31
Re: [PATCH 00/33] Swap over NFS -v14 · Mike Snitzer <hidden> · 2007-10-31
Re: [PATCH 00/33] Swap over NFS -v14 · Evgeniy Polyakov <hidden> · 2007-10-31
Re: [PATCH 00/33] Swap over NFS -v14 · Peter Zijlstra <hidden> · 2007-10-31
Re: [PATCH 00/33] Swap over NFS -v14 · Peter Zijlstra <hidden> · 2007-10-31
Re: [PATCH 00/33] Swap over NFS -v14 · Jeff Garzik <hidden> · 2007-10-31
Re: [PATCH 00/33] Swap over NFS -v14 · Peter Zijlstra <hidden> · 2007-10-31
Re: [PATCH 00/33] Swap over NFS -v14 · Arnaldo Carvalho de Melo <hidden> · 2007-10-31
Re: [PATCH 00/33] Swap over NFS -v14 · Gregory Haskins <hidden> · 2007-10-31
Re: [PATCH 00/33] Swap over NFS -v14 · Pavel Machek <hidden> · 2007-11-02
Re: [PATCH 00/33] Swap over NFS -v14 · Robin Humble <hidden> · 2007-11-18

From: Peter Zijlstra <hidden>
Date: 2007-10-31 12:18:15
Also in: linux-mm, lkml

On Wed, 2007-10-31 at 21:46 +1100, Nick Piggin wrote:

On Wednesday 31 October 2007 21:42, Peter Zijlstra wrote:

quoted

On Wed, 2007-10-31 at 14:37 +1100, Nick Piggin wrote:

quoted

On Wednesday 31 October 2007 03:04, Peter Zijlstra wrote:

quoted

Restrict objects from reserve slabs (ALLOC_NO_WATERMARKS) to allocation
contexts that are entitled to it.

Care is taken to only touch the SLUB slow path.

This is done to ensure reserve pages don't leak out and get consumed.

I think this is generally a good idea (to prevent slab allocators
from stealing reserve). However I naively think the implementation
is a bit overengineered and thus has a few holes.

Humour me, what was the problem with failing the slab allocation
(actually, not fail but just call into the page allocator to do
correct waiting  / reclaim) in the slowpath if the process fails the
watermark checks?

Ah, we actually need slabs below the watermarks.

Right, I'd still allow those guys to allocate slabs. Provided they
have the right allocation context, right?

quoted

Its just that once I 
allocated those slabs using __GFP_MEMALLOC/PF_MEMALLOC I don't want
allocation contexts that do not have rights to those pages to walk off
with objects.

And I'd prevent these ones from doing so.

Without keeping track of "reserve" pages, which doesn't feel
too clean.

The problem with that is that once a slab was allocated with the right
allocation context, anybody can get objects from these slabs.


low memory, and empty slab:

task A                        task B

kmem_cache_alloc() = NULL

                              current->flags |= PF_MEMALLOC
                              kmem_cache_alloc() = obj
                              (slab != NULL)

kmem_cache_alloc() = obj
kmem_cache_alloc() = obj
kmem_cache_alloc() = obj


And now task A, who doesn't have the right permissions walks
away with all our reserve memory.

So we either reserve a page per object, which for 32 byte objects is a
large waste, or we stop anybody who doesn't have the right permissions
from obtaining objects. I took the latter approach.

Attachments

signature.asc [application/pgp-signature] 189 bytes

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help