Re: Memory overcommit

From: KOSAKI Motohiro
Date: Tue Oct 27 2009 - 22:48:04 EST

Next message: Andi Kleen: "Re: is avoiding compat ioctls possible?"
Previous message: David Smith: "Re: [PATCH] tpm_tis: TPM_STS_DATA_EXPECT workaround"
In reply to: KAMEZAWA Hiroyuki: "Re: Memory overcommit"
Next in thread: KAMEZAWA Hiroyuki: "Re: Memory overcommit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> 2. I started out running my mlock test program as root (later
> switched to use "ulimit -l unlimited" first). But badness() reckons
> CAP_SYS_ADMIN or CAP_SYS_RESOURCE is a reason to quarter your points;
> and CAP_SYS_RAWIO another reason to quarter your points: so running
> as root makes you sixteen times less likely to be killed. Quartering
> is anyway debatable, but sixteenthing seems utterly excessive to me.
>
> I moved the CAP_SYS_RAWIO test in with the others, so it does no
> more than quartering; but is quartering appropriate anyway? I did
> wonder if I was right to be "subverting" the fine-grained CAPs in
> this way, but have since seen unrelated mail from one who knows
> better, implying they're something of a fantasy, that su and sudo
> are indeed what's used in the real world. Maybe this patch was okay.

I agree quartering is debatable.
At least, killing quartering is worth for any user, and it can be push into -stable.

Next message: Andi Kleen: "Re: is avoiding compat ioctls possible?"
Previous message: David Smith: "Re: [PATCH] tpm_tis: TPM_STS_DATA_EXPECT workaround"
In reply to: KAMEZAWA Hiroyuki: "Re: Memory overcommit"
Next in thread: KAMEZAWA Hiroyuki: "Re: Memory overcommit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]