Skip to content

Commit

Permalink
user namespaces: document CFS behavior
Browse files Browse the repository at this point in the history 
Documented the currently bogus state of support for CFS user groups with
user namespaces.  In particular, all users in a user namespace should be
children of the user which created the user namespace.  This is yet to
be implemented.

Signed-off-by: Serge E. Hallyn <[email protected]>
Acked-by: Dhaval Giani <[email protected]>

Signed-off-by: Serge E. Hallyn <[email protected]>
Signed-off-by: James Morris <[email protected]>
  • Loading branch information
Serge E. Hallyn authored and James Morris committed Dec 8, 2008
1 parent 7657d90 commit 94d6a5f
Show file tree
Hide file tree
Showing 2 changed files with 28 additions and 1 deletion.
21 changes: 21 additions & 0 deletions Documentation/scheduler/sched-design-CFS.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -273,3 +273,24 @@ task groups and modify their CPU share using the "cgroups" pseudo filesystem.

# #Launch gmplayer (or your favourite movie player)
# echo <movie_player_pid> > multimedia/tasks

8. Implementation note: user namespaces

User namespaces are intended to be hierarchical. But they are currently
only partially implemented. Each of those has ramifications for CFS.

First, since user namespaces are hierarchical, the /sys/kernel/uids
presentation is inadequate. Eventually we will likely want to use sysfs
tagging to provide private views of /sys/kernel/uids within each user
namespace.

Second, the hierarchical nature is intended to support completely
unprivileged use of user namespaces. So if using user groups, then
we want the users in a user namespace to be children of the user
who created it.

That is currently unimplemented. So instead, every user in a new
user namespace will receive 1024 shares just like any user in the
initial user namespace. Note that at the moment creation of a new
user namespace requires each of CAP_SYS_ADMIN, CAP_SETUID, and
CAP_SETGID.
8 changes: 7 additions & 1 deletion kernel/user.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -239,7 +239,13 @@ static struct kobj_type uids_ktype = {
.release = uids_release,
};

/* create /sys/kernel/uids/<uid>/cpu_share file for this user */
/*
* Create /sys/kernel/uids/<uid>/cpu_share file for this user
* We do not create this file for users in a user namespace (until
* sysfs tagging is implemented).
*
* See Documentation/scheduler/sched-design-CFS.txt for ramifications.
*/
static int uids_user_create(struct user_struct *up)
{
struct kobject *kobj = &up->kobj;
Expand Down

0 comments on commit 94d6a5f

Please sign in to comment.