From: Rik van Riel (riel_at_surriel.com)
Date: Fri 05 Sep 2003 - 12:58:04 BST
On Fri, 5 Sep 2003, Herbert Poetzl wrote:
> here is a preliminary patch to allow Per Context
> Virtual Memory Limits for ctx17a ...
Looks exactly like the non-overcommit AS accounting in the
-ac kernel, so I guess it's correct. The only thing I can't
verify this early in the morning is whether all the required
changes have been changed ... though it certainly looks right
> I'm not sure if virtual memory limits really are
> a GoodThing(tm) but without trying it, nobody will
> know ...
It means you can configure your system to not run out of
memory+swap ever, in essence making it impossible for any
vserver to DoS the others.
Definately a good thing.
Now we just want per-vserver RSS limits too ;)
(but those are in CKRM and we can probably wait until 2.6)
-- "Debugging is twice as hard as writing the code in the first place. Therefore, if you write the code as cleverly as possible, you are, by definition, not smart enough to debug it." - Brian W. Kernighan