Re: [Devel] [PATCH rh7] ve: Add a ability to show ve.mount_opts

On 08/26/2015 07:50 AM, Kirill Tkhai wrote: On 26.08.2015 17:40, Konstantin Khorenko wrote: On 07/20/2015 10:05 PM, Maxim Patlasov wrote: On 07/14/2015 01:27 AM, Kirill Tkhai wrote: В Пн, 13/07/2015 в 12:38 -0700, Maxim Patlasov пишет: On 07/08/2015 04:50 AM, Kirill Tkhai wrote: ... Why

[Devel] [PATCH rh7 4/4] arch: x86: charge page tables to memcg/kmem

Note the implementation is as simple as possible - I only insert memcg_kmem_newpage_charge and memcg_kmem_uncharge_pages to pte/pmd/pud/pgd alloc/free paths. There is no precharging! If our performance team reports a noticeable performance degradation due to this, I'll implement batched charge/unc

[Devel] [PATCH rh7 3/4] gfp: add __get_free_kmem_pages helper

Works exactly as __get_free_pages except it also tries to charge newly allocated pages to memcg/kmem. It will be used by the next patch. Signed-off-by: Vladimir Davydov --- include/linux/gfp.h | 1 + mm/page_alloc.c | 12 2 files changed, 13 insertions(+) diff --git a/include/

[Devel] [PATCH rh7 2/4] fs: account anon pipe buffers to memcg/kmem

https://jira.sw.ru/browse/PSBM-39052 Signed-off-by: Vladimir Davydov --- fs/pipe.c | 13 - 1 file changed, 8 insertions(+), 5 deletions(-) diff --git a/fs/pipe.c b/fs/pipe.c index 46f1ab264a4c..a09175176e37 100644 --- a/fs/pipe.c +++ b/fs/pipe.c @@ -223,9 +223,12 @@ static void anon

[Devel] [PATCH rh7 1/4] vmalloc: account to memcg/kmem

https://jira.sw.ru/browse/PSBM-33839 Signed-off-by: Vladimir Davydov --- mm/vmalloc.c | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/mm/vmalloc.c b/mm/vmalloc.c index 7fbc92aa03bc..9ce5142b44cb 100644 --- a/mm/vmalloc.c +++ b/mm/vmalloc.c @@ -1497,7 +1497,7 @@ static v

[Devel] [PATCH rh7 0/4] memcg/kmem: account some non-slab objects

This patch set implements memcg/kmem accounting for vmalloc, pipe buffers, and page tables. I'll probably try to submit these patches (slightly modified) upstream after v4.2 has been released. Vladimir Davydov (4): vmalloc: account to memcg/kmem fs: account anon pipe buffers to memcg/kmem gf

Re: [Devel] [PATCH rh7] ve: Add a ability to show ve.mount_opts

On 26.08.2015 17:40, Konstantin Khorenko wrote: > > On 07/20/2015 10:05 PM, Maxim Patlasov wrote: >> On 07/14/2015 01:27 AM, Kirill Tkhai wrote: >>> В Пн, 13/07/2015 в 12:38 -0700, Maxim Patlasov пишет: On 07/08/2015 04:50 AM, Kirill Tkhai wrote: > ... >> Why do we need to show hidd

Re: [Devel] [PATCH rh7] ve: Add a ability to show ve.mount_opts

On 07/20/2015 10:05 PM, Maxim Patlasov wrote: On 07/14/2015 01:27 AM, Kirill Tkhai wrote: В Пн, 13/07/2015 в 12:38 -0700, Maxim Patlasov пишет: On 07/08/2015 04:50 AM, Kirill Tkhai wrote: ... Why do we need to show hidden options to CT' user? He/she doesn't see ".balloon" file, so it doesn'

[Devel] [PATCH rh7] crypto/ghash-intel: specify context size for ghash async algorithm

Currently context size (cra_ctxsize) doesn't specified for ghash_async_alg. Which means it's zero. Thus crypto_create_tfm() doesn't allocate needed space for ghash_async_ctx, so any read/write to ctx becomes invalid. https://jira.sw.ru/browse/PSBM-38669 Signed-off-by: Andrey Ryabinin --- arch/x

[Devel] [PATCH RHEL7 COMMIT] net/sched: restore "mpu xxx" handling

The commit is pushed to "branch-rh7-3.10.0-229.7.2-ovz" and will appear at https://src.openvz.org/scm/ovz/vzkernel.git after rh7-3.10.0-229.7.2.vz7.6.2 --> commit e338c4be75d80bfd68ab025a7c963d08386b5d63 Author: Kirill Tkhai Date: Wed Aug 26 17:50:37 2015 +0400 net/sched: restore "mpu

[Devel] [PATCH rh7] net: udpv6: release memcg on destroy

In case of udpv6 we never release the memcg reference taken in udpv6_prot->init. This leads to memcg leak. Fix it by calling sock_release_memcg from udpv6_prot->destroy. https://jira.sw.ru/browse/PSBM-39084 Fixes: ee3396bb65bf ("udp: Charge ingress buffers into cg memory") Signed-off-by: Vladimir

Re: [Devel] [PATCH 2/2] fs: allow to mount devtmpfs in a non-root userns

On Wed, Aug 26, 2015 at 02:40:20PM +0400, Andrew Vagin wrote: > devtmpfs is virtualized, so it has to be secure. > > Signed-off-by: Andrew Vagin Reviewed-by: Vladimir Davydov ___ Devel mailing list Devel@openvz.org https://lists.openvz.org/mailman/lis

[Devel] [PATCH 2/2] fs: allow to mount devtmpfs in a non-root userns

devtmpfs is virtualized, so it has to be secure. Signed-off-by: Andrew Vagin --- drivers/base/devtmpfs.c |5 - 1 files changed, 4 insertions(+), 1 deletions(-) diff --git a/drivers/base/devtmpfs.c b/drivers/base/devtmpfs.c index c28e42c..66c8dd2 100644 --- a/drivers/base/devtmpfs.c +++

[Devel] [PATCH 1/2] userns: Allow PR_CAPBSET_DROP in a user namespace.

From: Eric W. Biederman As the capabilites and capability bounding set are per user namespace properties it is safe to allow changing them with just CAP_SETPCAP permission in the user namespace. Acked-by: Serge Hallyn Tested-by: Richard Weinberger Signed-off-by: "Eric W. Biederman" Signed-off

Re: [Devel] [PATCH RH7] sysfs: propagate access to all sub-directories hierarchically

On Wed, Aug 26, 2015 at 01:28:48PM +0300, Pavel Tikhomirov wrote: > Docker test TestGetContainerStats asks docker to get network > stats of container. Docker tries to get network devices stats > like count of bytes or packets sent/received from: > /sys/class/net/[device_name]/statistics/* > > We s

[Devel] [PATCH RH7] sysfs: propagate access to all sub-directories hierarchically

Docker test TestGetContainerStats asks docker to get network stats of container. Docker tries to get network devices stats like count of bytes or packets sent/received from: /sys/class/net/[device_name]/statistics/* We showed only statistics directory but not it's content as namespace tag check we