Date: Sun, 3 Sep 2000 19:18:21 -0400 (EDT) From: Robert Watson <rwatson@FreeBSD.org> To: Don Lewis <Don.Lewis@tsc.tdk.com> Cc: freebsd-arch@FreeBSD.org Subject: Re: Request for review: restructuring of per-uid resource limits Message-ID: <Pine.NEB.3.96L.1000903191534.74864A-100000@fledge.watson.org> In-Reply-To: <200009031550.IAA19487@salsa.gv.tsc.tdk.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Just a comment, haven't had a chance to review your e-mail yet -- per-uid resources currently function poorly in combination with jail(). A bit more uniquifying information may need to be used to determine the resource/accounting pool than uid in some FreeBSD environments. A patch was submitted a while back to do this, but it wasn't ever integrated due to lack of time from phk and myself. Probably the appropriate way to handle this is to add some sort of abstraction for determining the correct resource pool, allowing future partioning/namespace schemes to be implemented easily. I.e., struct resourcepool *res; res = getresourcepool(p); if (res == NULL) return; /* no resource limitations */ Possibly, a cred argument to the getresourcepool() function, if we feel that resources will likely be handled on the basis of credentials rather than processes. Given the future directions for MAC and so on, that might make a lot of sense also. Robert N M Watson robert@fledge.watson.org http://www.watson.org/~robert/ PGP key fingerprint: AF B5 5F FF A6 4A 79 37 ED 5F 55 E9 58 04 6A B1 TIS Labs at Network Associates, Safeport Network Services To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-arch" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.NEB.3.96L.1000903191534.74864A-100000>