Received: by 2002:ac0:a5a6:0:0:0:0:0 with SMTP id m35-v6csp838740imm; Fri, 14 Sep 2018 07:08:23 -0700 (PDT) X-Google-Smtp-Source: ANB0VdYq/DkZmQGQFPO2y0LiULvmykDr3M+zA03kDRxrkhbH0BmbW7+gHTp5fqB21SS5npV8xNQv X-Received: by 2002:a65:41c6:: with SMTP id b6-v6mr12207450pgq.174.1536934103876; Fri, 14 Sep 2018 07:08:23 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1536934103; cv=none; d=google.com; s=arc-20160816; b=WfzlxKCy01VkNaKHQjAXv/wQexDgLpbf1gBDyQgQg8yK64TGZAWnU6o45lh+0MNrdN CPnLl7YRhFXiGZdwnpn7AxaKn4zNxpPk4XrqmUVx/uDMcevMZYKwoen/MS6/9iXFleOH igLoZ1IFajEkV41SlGclATunJzbVH/+pBxK/u+LEMbjnYOxBsKLbI0ySfF4KXfaC7CBd TanhkjQ3qLGYaOFBfr1STT8ZmBGygdphTU0ZaN4NPLV+pW/WvUdD/ivwM03964AYL/xi PVgpA4Z7McQB+NkjT3QAcs9mHXUh6QgTDELwxRgomxmZzAFMcSPyX5YzzsZugfE6gDwQ BTzA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:message-id:subject:cc :to:from:date; bh=UiISQZjvjNHGxW5bS1FIg2HiUHZ4BNp7SgWabWpk9x0=; b=yAUSontgT9GIVIBjoTdXtL0GFYO+nva9QzH8MtXf6C0jZOKL/bPEVize0NbHZ4nNWT U7/r0VD65b5CzftIc7UsY+ZeWOK5WICKQJqiMNnVXT8XwSd+yHue1RQJwqsPxljFPMME U96Ub9enztatJpilOaaKKPYdaEEKDvfBBcpEfvJCsu21FO39pzVkjv4NsCFyeADlJ2mx NEdwZzpH11XHRrWbV6Pb9o9ViTMNd9cydI2mwJL60ZU0XLcgSPqH2MXaWIOqyiUGT190 Humg92UPduklzc2tSWcXCjW+3dQm5HyH4JRNo1S+yUa1B35Lo6b3s4Jv4K6BGzT6WHW2 GoFQ== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id e6-v6si7476747plk.441.2018.09.14.07.08.01; Fri, 14 Sep 2018 07:08:23 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1728171AbeINTWS (ORCPT + 99 others); Fri, 14 Sep 2018 15:22:18 -0400 Received: from usa-sjc-mx-foss1.foss.arm.com ([217.140.101.70]:33976 "EHLO foss.arm.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1727623AbeINTWS (ORCPT ); Fri, 14 Sep 2018 15:22:18 -0400 Received: from usa-sjc-imap-foss1.foss.arm.com (unknown [10.72.51.249]) by usa-sjc-mx-foss1.foss.arm.com (Postfix) with ESMTP id 3F21B18A; Fri, 14 Sep 2018 07:07:38 -0700 (PDT) Received: from e110439-lin (e110439-lin.emea.arm.com [10.4.12.126]) by usa-sjc-imap-foss1.foss.arm.com (Postfix) with ESMTPSA id 710C03F575; Fri, 14 Sep 2018 07:07:35 -0700 (PDT) Date: Fri, 14 Sep 2018 15:07:32 +0100 From: Patrick Bellasi To: Peter Zijlstra Cc: Juri Lelli , linux-kernel@vger.kernel.org, linux-pm@vger.kernel.org, Ingo Molnar , Tejun Heo , "Rafael J . Wysocki" , Viresh Kumar , Vincent Guittot , Paul Turner , Quentin Perret , Dietmar Eggemann , Morten Rasmussen , Todd Kjos , Joel Fernandes , Steve Muckle , Suren Baghdasaryan Subject: Re: [PATCH v4 14/16] sched/core: uclamp: request CAP_SYS_ADMIN by default Message-ID: <20180914140732.GR1413@e110439-lin> References: <20180828135324.21976-1-patrick.bellasi@arm.com> <20180828135324.21976-15-patrick.bellasi@arm.com> <20180904134748.GA4974@localhost.localdomain> <20180906144053.GD25636@e110439-lin> <20180914111003.GC24082@hirez.programming.kicks-ass.net> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20180914111003.GC24082@hirez.programming.kicks-ass.net> User-Agent: Mutt/1.5.24 (2015-08-30) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 14-Sep 13:10, Peter Zijlstra wrote: > On Thu, Sep 06, 2018 at 03:40:53PM +0100, Patrick Bellasi wrote: > > 1) _I think_ we don't want to depend on capable(CAP_SYS_NICE) but > > instead on capable(CAP_SYS_ADMIN) > > > > Does that make sense ? > > Neither of them really makes sense to me. > > The max clamp makes a task 'consume' less and you should always be able > to reduce yourself. > > The min clamp doesn't avoid while(1); and is therefore also not a > problem. > > So I think setting clamps on a task should not be subject to additional > capabilities. > > Now, of course, there is a problem of clamp resources, which are > limited. Consuming those _is_ a problem. Right, that problem could be solved if we convince ourself that the quantization approach proposed in: [PATCH v4 15/16] sched/core: uclamp: add clamp group discretization support https://lore.kernel.org/lkml/20180828135324.21976-16-patrick.bellasi@arm.com/ could make sense and specifically, the other limitation it imposes (i.e. the quantizaiton) is within reasonable rounding control errors/ > I think the problem here is that the two are conflated in the very same > interface. > > Would it make sense to move the available clamp values out to some sysfs > interface like thing and guard that with a capability, while keeping the > task interface unprivilidged? You mean something like: $ cat /proc/sys/kernel/sched_uclamp_min_utils 0 10 20 ... 100 to notify users about the set of clamp values which are available ? > Another thing that has me 'worried' about this interface is the direct > tie to CPU capacity (not that I have a better suggestion). But it does > raise the point of how userspace is going to discover the relevant > values of the platform. This point worries me too, and that's what I think is addressed in a sane way in: [PATCH v4 13/16] sched/core: uclamp: use percentage clamp values https://lore.kernel.org/lkml/20180828135324.21976-14-patrick.bellasi@arm.com/ IMHO percentages are a reasonably safe and generic API to expose to user-space. Don't you think this should address your concern above ? -- #include Patrick Bellasi