Re: [PATCH] mm: disable `vm.max_map_count' sysctl limit

From: Michal Hocko
Date: Mon Nov 27 2017 - 14:57:40 EST

Next message: Josh Poimboeuf: "Re: perf test LLVM & clang 6 failing"
Previous message: Michal Hocko: "Re: [PATCH] mm: disable `vm.max_map_count' sysctl limit"
In reply to: Michal Hocko: "Re: [PATCH] mm: disable `vm.max_map_count' sysctl limit"
Next in thread: Andi Kleen: "Re: [PATCH] mm: disable `vm.max_map_count' sysctl limit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon 27-11-17 19:32:18, Michal Hocko wrote:
> On Mon 27-11-17 09:25:16, Andi Kleen wrote:
[...]
> > The reason the limit was there originally because it allows a DoS
> > attack against the kernel by filling all unswappable memory up with VMAs.
>
> We can reduce the effect by accounting vmas to memory cgroups.

As it turned out we already do.
vm_area_cachep = KMEM_CACHE(vm_area_struct, SLAB_PANIC|SLAB_ACCOUNT);

--
Michal Hocko
SUSE Labs

Next message: Josh Poimboeuf: "Re: perf test LLVM & clang 6 failing"
Previous message: Michal Hocko: "Re: [PATCH] mm: disable `vm.max_map_count' sysctl limit"
In reply to: Michal Hocko: "Re: [PATCH] mm: disable `vm.max_map_count' sysctl limit"
Next in thread: Andi Kleen: "Re: [PATCH] mm: disable `vm.max_map_count' sysctl limit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]