On Wed, Dec 07, 2016 at 04:39:13PM +0100, Federico Reghenzani wrote: > Hello, > > I'm working on Real-Time applications in Linux. `mlockall()` is a typical > syscall used in RT processes in order to avoid page faults. However, the > use of this syscall is strongly limited by ulimits, so basically all RT > processes that want to call `mlockall()` have to be executed with root > privileges. For raising rlimits, you don't really need full root, only CAP_SYS_RESOURCES (I'm not sure if it's any safer than full root in practice). It gives one other possible approach: set the capability for the binary. Real-time proceses is already somewhat priviledged, right? I mean CAP_SYS_NICE. -- Kirill A. Shutemov -- To unsubscribe, send a message with 'unsubscribe linux-mm' in the body to majordomo@xxxxxxxxx. For more info on Linux MM, see: http://www.linux-mm.org/ . Don't email: <a href=mailto:"dont@xxxxxxxxx";> email@xxxxxxxxx </a>