Received: by 2002:ac0:950e:0:0:0:0:0 with SMTP id f14csp1262341imc; Sun, 17 Mar 2019 08:41:27 -0700 (PDT) X-Google-Smtp-Source: APXvYqxUiFTsPITZ5+h/FfhOdzQ6WLaUIZCtbGXPA44Jqusya3g8TI5w2nP1hYPQiwA0LExv8k+g X-Received: by 2002:a65:4547:: with SMTP id x7mr13054238pgr.350.1552837287382; Sun, 17 Mar 2019 08:41:27 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1552837287; cv=none; d=google.com; s=arc-20160816; b=ll22uCAXngUNK37oX9E9sRuNebSJApMJCaSvHLbSeGD23omMiF07CcvN2MnuCbfICH 8feeIbZBtjpdJ7UCUySTOx2CIc789uvegam3DwQBWn6rDdoEpjOyIWNSUQ9BVtweXTNY JzV8d1o/Rl7fb9KRn3H+htarRf5STAfTqwy1Jsw2Cf8vmd1petRmRp0SWwIXX1ujPhwK NXNd8nuSY0KFJm4J+yhmX2FXq5fg4yTJ7sTxRrnGkWcud3UYCycQ67+ZtRsfTOt9nOsv iMyCznzt58PB5L1OQF9noFohV57znoEd+0ReKrlFJjMHvlFe2H2WtUqAecP5Rkbd1KAB RQsA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:dkim-signature; bh=uRH84zMSNkoWRWrJsHwt4NmuXl/D8tIAUOCC/ZExN6o=; b=DqTORqervM4gQ0DJ3iWtWPX4y/MuWK6T89Nufberl7bv+1EYS2vbPrYtvbXGwq3LrA Mk7PaTrhh0/jA1tH4ZJ4mOiwrafPgsBeeaZ+cEK0ezGmjKsDbr/3A0NZuBssReTqsP8m cIflFkgFJkOZCPTQfpVK0g+/fs90wkzYNwKVmJao8UV0zxyeztpk8vDl/EO97uKMKF1G yoA+ECJDJYFIQBEa8rB1NwwnI0Oz61kFuZs29gpwzpC5Jm516WMSl6FaqD73OCKQ+80N eQdVQOjw5cdBdJTXpE/xewDp2yZgLF/BaPMZgbGJAjTB0yuIMHSmsIjWTNOvMlQHlEqW BYDQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=cK+2LvO7; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id f1si6565532pgv.418.2019.03.17.08.41.12; Sun, 17 Mar 2019 08:41:27 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20161025 header.b=cK+2LvO7; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1727357AbfCQPke (ORCPT + 99 others); Sun, 17 Mar 2019 11:40:34 -0400 Received: from mail-ua1-f66.google.com ([209.85.222.66]:41890 "EHLO mail-ua1-f66.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1726677AbfCQPkd (ORCPT ); Sun, 17 Mar 2019 11:40:33 -0400 Received: by mail-ua1-f66.google.com with SMTP id 46so3064619uan.8 for ; Sun, 17 Mar 2019 08:40:32 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=uRH84zMSNkoWRWrJsHwt4NmuXl/D8tIAUOCC/ZExN6o=; b=cK+2LvO7twyFsrNnxVjFaFldfCp/e/oZKDKV7f/QBYI9+2PX+odMRXjA0vHXW6qNrO bEHQTtPQ2Nt3fFPk/6j3D35NFl/ayQUt+PxL7EQG3Q43NSkk/pybdMLbdhsJMNKFHAxJ 9hqbuOBX9aQa+HYrVGnSk7Zb37OsVCoa8f4Qh29ghIJoD8AvykGdvTYgAzvS9U60/bLr xggdP/UoYsK8LdgGWkiAfyfH+wlVseBOzovFs0GFdhrI4uFXs47g8qX/rylR5AMzXmAt 6o7VQUw0/OrVaOBATJHx/WQylAoJrCHKoar6bFX592oosCxS5u9SbUo04NvRGqWM4/xJ kyLQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=uRH84zMSNkoWRWrJsHwt4NmuXl/D8tIAUOCC/ZExN6o=; b=Sfy9c0ypA0tfd4zENU9wZIoDasj2/NhiwXOZkTFfmbgChIIy89munYoUdvjZr7amuV hqJh0DmiyM/lZFQWIB9WG/c11LW1ZSgYj2jRKeKlpsXTPZtEX+4H5tnHg3EqLCuSm7B9 xxXGHKtWpPD8ln1+NGWg2cqBYVrYHb4+E2uaVYLBpnxr9XZK08uE8sslSSsWBLue4Q91 1CnGwqv9FpTTZqSxrloQ2veju4YCKsHMXY6FcyNom/i1uvVqOQ1Nf6nIs1g/tJieSt1t XCh9/Avu6DtyJOffEtI66tqhmORRKrBzxnIH6cBJDswBnybyWFNa0UM+eLD/P1L8GyT9 B/9A== X-Gm-Message-State: APjAAAV/OoApmVGVtOps6SoG77LXhefgAz53TX1avPZxeYedMP4roKCf pWMw3hCDClvw6X5wJtqGTvldZvBCoL9vl6SuNh91Gg== X-Received: by 2002:ab0:660c:: with SMTP id r12mr4264496uam.139.1552837231701; Sun, 17 Mar 2019 08:40:31 -0700 (PDT) MIME-Version: 1.0 References: <20190315180306.sq3z645p3hygrmt2@brauner.io> <20190315181324.GA248160@google.com> <20190315182426.sujcqbzhzw4llmsa@brauner.io> <20190315184903.GB248160@google.com> <20190316185726.jc53aqq5ph65ojpk@brauner.io> <20190317015306.GA167393@google.com> <20190317114238.ab6tvvovpkpozld5@brauner.io> In-Reply-To: <20190317114238.ab6tvvovpkpozld5@brauner.io> From: Daniel Colascione Date: Sun, 17 Mar 2019 08:40:19 -0700 Message-ID: Subject: Re: [RFC] simple_lmk: Introduce Simple Low Memory Killer for Android To: Christian Brauner Cc: Joel Fernandes , Suren Baghdasaryan , Steven Rostedt , Sultan Alsawaf , Tim Murray , Michal Hocko , Greg Kroah-Hartman , =?UTF-8?B?QXJ2ZSBIasO4bm5ldsOlZw==?= , Todd Kjos , Martijn Coenen , Ingo Molnar , Peter Zijlstra , LKML , "open list:ANDROID DRIVERS" , linux-mm , kernel-team , Oleg Nesterov , Andy Lutomirski , "Serge E. Hallyn" Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Sun, Mar 17, 2019 at 4:42 AM Christian Brauner wrote: > > On Sat, Mar 16, 2019 at 09:53:06PM -0400, Joel Fernandes wrote: > > On Sat, Mar 16, 2019 at 12:37:18PM -0700, Suren Baghdasaryan wrote: > > > On Sat, Mar 16, 2019 at 11:57 AM Christian Brauner wrote: > > > > > > > > On Sat, Mar 16, 2019 at 11:00:10AM -0700, Daniel Colascione wrote: > > > > > On Sat, Mar 16, 2019 at 10:31 AM Suren Baghdasaryan wrote: > > > > > > > > > > > > On Fri, Mar 15, 2019 at 11:49 AM Joel Fernandes wrote: > > > > > > > > > > > > > > On Fri, Mar 15, 2019 at 07:24:28PM +0100, Christian Brauner wrote: > > > > > > > [..] > > > > > > > > > why do we want to add a new syscall (pidfd_wait) though? Why not just use > > > > > > > > > standard poll/epoll interface on the proc fd like Daniel was suggesting. > > > > > > > > > AFAIK, once the proc file is opened, the struct pid is essentially pinned > > > > > > > > > even though the proc number may be reused. Then the caller can just poll. > > > > > > > > > We can add a waitqueue to struct pid, and wake up any waiters on process > > > > > > > > > death (A quick look shows task_struct can be mapped to its struct pid) and > > > > > > > > > also possibly optimize it using Steve's TIF flag idea. No new syscall is > > > > > > > > > needed then, let me know if I missed something? > > > > > > > > > > > > > > > > Huh, I thought that Daniel was against the poll/epoll solution? > > > > > > > > > > > > > > Hmm, going through earlier threads, I believe so now. Here was Daniel's > > > > > > > reasoning about avoiding a notification about process death through proc > > > > > > > directory fd: http://lkml.iu.edu/hypermail/linux/kernel/1811.0/00232.html > > > > > > > > > > > > > > May be a dedicated syscall for this would be cleaner after all. > > > > > > > > > > > > Ah, I wish I've seen that discussion before... > > > > > > syscall makes sense and it can be non-blocking and we can use > > > > > > select/poll/epoll if we use eventfd. > > > > > > > > > > Thanks for taking a look. > > > > > > > > > > > I would strongly advocate for > > > > > > non-blocking version or at least to have a non-blocking option. > > > > > > > > > > Waiting for FD readiness is *already* blocking or non-blocking > > > > > according to the caller's desire --- users can pass options they want > > > > > to poll(2) or whatever. There's no need for any kind of special > > > > > configuration knob or non-blocking option. We already *have* a > > > > > non-blocking option that works universally for everything. > > > > > > > > > > As I mentioned in the linked thread, waiting for process exit should > > > > > work just like waiting for bytes to appear on a pipe. Process exit > > > > > status is just another blob of bytes that a process might receive. A > > > > > process exit handle ought to be just another information source. The > > > > > reason the unix process API is so awful is that for whatever reason > > > > > the original designers treated processes as some kind of special kind > > > > > of resource instead of fitting them into the otherwise general-purpose > > > > > unix data-handling API. Let's not repeat that mistake. > > > > > > > > > > > Something like this: > > > > > > > > > > > > evfd = eventfd(0, EFD_NONBLOCK | EFD_CLOEXEC); > > > > > > // register eventfd to receive death notification > > > > > > pidfd_wait(pid_to_kill, evfd); > > > > > > // kill the process > > > > > > pidfd_send_signal(pid_to_kill, ...) > > > > > > // tend to other things > > > > > > > > > > Now you've lost me. pidfd_wait should return a *new* FD, not wire up > > > > > an eventfd. > > > > > > > > > > > Ok, I probably misunderstood your post linked by Joel. I though your > > > original proposal was based on being able to poll a file under > > > /proc/pid and then you changed your mind to have a separate syscall > > > which I assumed would be a blocking one to wait for process exit. > > > Maybe you can describe the new interface you are thinking about in > > > terms of userspace usage like I did above? Several lines of code would > > > explain more than paragraphs of text. > > > > Hey, Thanks Suren for the eventfd idea. I agree with Daniel on this. The idea > > from Daniel here is to wait for process death and exit events by just > > referring to a stable fd, independent of whatever is going on in /proc. > > > > What is needed is something like this (in highly pseudo-code form): > > > > pidfd = opendir("/proc/",..); > > wait_fd = pidfd_wait(pidfd); > > read or poll wait_fd (non-blocking or blocking whichever) > > > > wait_fd will block until the task has either died or reaped. In both these > > cases, it can return a suitable string such as "dead" or "reaped" although an > > integer with some predefined meaning is also Ok. I want to return a siginfo_t: we already use this structure in other contexts to report exit status. > > What that guarantees is, even if the task's PID has been reused, or the task > > has already died or already died + reaped, all of these events cannot race > > with the code above and the information passed to the user is race-free and > > stable / guaranteed. > > > > An eventfd seems to not fit well, because AFAICS passing the raw PID to > > eventfd as in your example would still race since the PID could have been > > reused by another process by the time the eventfd is created. > > > > Also Andy's idea in [1] seems to use poll flags to communicate various tihngs > > which is still not as explicit about the PID's status so that's a poor API > > choice compared to the explicit syscall. > > > > I am planning to work on a prototype patch based on Daniel's idea and post something > > soon (chatted with Daniel about it and will reference him in the posting as > > well), during this posting I will also summarize all the previous discussions > > and come up with some tests as well. I hope to have something soon. Thanks. > Having pidfd_wait() return another fd will make the syscall harder to > swallow for a lot of people I reckon. > What exactly prevents us from making the pidfd itself readable/pollable > for the exit staus? They are "special" fds anyway. I would really like > to avoid polluting the api with multiple different types of fds if possible. If pidfds had been their own file type, I'd agree with you. But pidfds are directories, which means that we're beholden to make them behave like directories normally do. I'd rather introduce another FD than heavily overload the semantics of a directory FD in one particular context. In no other circumstances are directory FDs also weird IO-data sources. Our providing a facility to get a new FD to which we *can* give pipe-like behavior does no harm and *usage* cleaner and easier to reason about.