On Wed, Mar 08, 2017 at 10:52:18AM +0100, Krzysztof Opasiak wrote: > Well detecting failures of open is not enough and it has couple of problems: > > 1) open(2) is not the only syscall which creates fd. In addition to other > syscalls like socket(2), dup(2), some ioctl() on drivers (for example video) > also creates fds. I'm not sure if we have any other mechanism than grep > through kernel source to find out which ioctl() creates fd or and which not. > > 2) As far as I know (I'm not a bpf specialist so please correct me if I'm > wrong), with bpf we are able only to detect such events but we are unable to > prevent them from getting to caller. It means that service will know that it > run out of fds and will need to handle this properly. If there is a bug in > this error path service may crash. > What we would like to get is just a notification to external process that > some limit has been reached without returning error to service itself. > > 3) Theoretically we could do this using bpf or syscall auditing and count > fds for each userspace process or check /proc/<PID> after each notification > but it's getting very heavy for production environment. We simply can't design the kernel to accomodate bandaid workarounds for grossly misbehaving applications. If you can find something which can solve the problem using wider scope tools like bpf, seccomp, and what not, great. If not, too bad, but we can't burdern everyone else with workarounds for the extremely specific and contrived issues that you're seeing. Thanks. -- tejun -- To unsubscribe from this list: send the line "unsubscribe cgroups" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html