RFR: 8292083: Detected container memory limit may exceed physical machine memory [v8]
Severin Gehwolf
sgehwolf at openjdk.org
Fri Aug 19 16:22:43 UTC 2022
On Fri, 19 Aug 2022 16:08:04 GMT, Jonathan Dowland <jdowland at openjdk.org> wrote:
>> We discovered some systems configured with cgroups v1 which report a bogus container memory limit value which is above the physical memory of the host. OpenJDK then calculates flags such as InitialHeapSize based on this invalid value; this can be larger than the available memory which can result in the OS terminating the process due to OOM.
>>
>> hotspot's container awareness attempts to sanity check the limit value by ensuring it's below `_unlimited_memory = (LONG_MAX / os::vm_page_size()) * os::vm_page_size()`, but that still leaves a large range of potential invalid values between physical RAM and that ceiling value.
>>
>> Cgroups V1 in particular returns an uninitialised value for the memory limit when one has not been explicitly set. Cgroups v2 does not suffer the same problem: however, it's possible for any value to be set for the max memory, including values exceeding the available physical memory, in either v1 or v2.
>>
>> This fixes the problem in two places. Further work may be required in the area of Java metrics / MXBeans. I'd also look again at whether the existing ceiling value `_unlimited_memory` serves any useful purpose. I personally don't feel those improvements should hold up this fix.
>
> Jonathan Dowland has updated the pull request incrementally with one additional commit since the last revision:
>
> Remove cgroup sanity checking logic from os::Linux::available_memory
>
> and rely upon it from os::physical_memory instead.
src/hotspot/os/linux/osContainer_linux.cpp line 65:
> 63: // We need to update the amount of physical memory now that
> 64: // cgroup subsystem files have been processed.
> 65: if ((mem_limit = cgroup_subsystem->memory_limit_in_bytes()) > 0) {
I'm concerned that this removal of the cgroup lookup re-introduces part of https://bugs.openjdk.org/browse/JDK-8232207
Without this call in early init we could potentially lose some of the caching effects we previously had.
-------------
PR: https://git.openjdk.org/jdk/pull/9880
More information about the hotspot-runtime-dev
mailing list