* RFC: time_namespaces(7) manual page
@ 2020-04-04 11:08 Michael Kerrisk (man-pages)
2020-04-06 7:38 ` Andrey Vagin
` (2 more replies)
0 siblings, 3 replies; 10+ messages in thread
From: Michael Kerrisk (man-pages) @ 2020-04-04 11:08 UTC (permalink / raw)
To: Andrei Vagin, Dmitry Safonov
Cc: mtk.manpages, Christian Brauner, linux-man, lkml, Linux API,
Eric W. Biederman, Dmitry Safonov, Containers, Cyrill Gorcunov,
Andy Lutomirski, Thomas Gleixner, Adrian Reber,
Vincenzo Frascino
Hello Dmitry, Andrei, et al.
I have written a manual page to document time namespaces.
Could you please take a look and let me know of any
corrections, improvements, etc.
The rendered page is shown below. Th epage source is at the foot of
this mail.
Thanks,
Michael
NAME
time_namespaces - overview of Linux time namespaces
DESCRIPTION
Time namespaces virtualize the values of two system clocks:
· CLOCK_MONOTONIC (and likewise CLOCK_MONOTONIC_COARSE and
CLOCK_MONOTONIC_RAW), a nonsettable clock that represents mono‐
tonic time since—as described by POSIX—"some unspecified
point in the past".
· CLOCK_BOOTTIME (and likewise CLOCK_BOOTTIME_ALARM), a clock that
is identical to CLOCK_MONOTONIC, except that it also includes
any time that the system is suspended.
Thus, the processes in a time namespace share per-namespace values
for these clocks. This affects various APIs that measure against
these clocks, including: clock_nanosleep(2), nanosleep(2),
clock_gettime(2), and /proc/uptime.
Currently, the only way to create a time namespace is by calling
unshare(2) with the CLONE_NEWTIME flag. This call creates a new
time namespace but does not place the calling process in the new
namespace. Instead, the calling process's subsequently created
children are placed in the new namespace. This allows clock off‐
sets (see below) for the new namespace to be set before the first
process is placed in the namespace. The
/proc/[pid]/ns/time_for_children symbolic link shows the time
namespace in which the children of a process will be created.
/proc/PID/timens_offsets
Associated with each time namespace are offsets, expressed with
respect to the initial time namespace, that define the values of
the monotonic and boot clocks in that namespace. These offsets
are exposed via the file /proc/PID/timens_offsets. Within this
file, the offsets are expressed as lines consisting of three
space-delimited fields:
<clock-id> <offset-secs> <offset-nanosecs>
The clock-id identifies the clock whose offsets are being shown.
This field is either 1, for CLOCK_MONOTONIC, or 7, for CLOCK_BOOT‐
TIME. The remaining fields express the offset (seconds plus
nanoseconds) for the clock in this time namespace. These offsets
are expressed relative to the clock values in the initial time
namespace. In the initial time namespace, the contents of this
file are as follows:
$ cat /proc/self/timens_offsets
1 0 0
7 0 0
In a new time namespace that has had no member processes, the
clock offsets can be modified by writing newline-terminated
records of the same form to the file. The file can be written to
multiple times, but after the first process has been created in or
has entered the namespace, write(2)s on this file fail with the
error EACCES. In order to write to the timens_offsets file, a
process must have the CAP_SYS_TIME capability in the user names‐
pace that owns the time namespace.
In a new time namespace created by unshare(2), the contents of the
timens_offsets file are inherited from the time namespace of the
creating process.
NOTES
Use of time namespaces requires a kernel that is configured with
the CONFIG_TIME_NS option.
Note that time namespaces do not virtualize the CLOCK_REALTIME
clock. Virtualization of this clock was avoided for reasons of
complexity and overhead within the kernel.
The motivation for adding time namespaces was to allow the mono‐
tonic and boot-time clocks to maintain consistent values during
container migration and checkpoint/restore.
EXAMPLE
The following shell session demonstrates the operation of time
namespaces. We begin by displaying the inode number of the time
namespace of a shell in the initial time namespace:
$ readlink /proc/$$/ns/time
time:[4026531834]
Continuing in the initial time namespace, we display the system
uptime using uptime(1) and use the clock_times example program
shown in clock_getres(2) to display the values of various clocks:
$ uptime --pretty
up 21 hours, 17 minutes
$ ./clock_times
CLOCK_REALTIME : 1585989401.971 (18356 days + 8h 36m 41s)
CLOCK_TAI : 1585989438.972 (18356 days + 8h 37m 18s)
CLOCK_MONOTONIC: 56338.247 (15h 38m 58s)
CLOCK_BOOTTIME : 76633.544 (21h 17m 13s)
We then use unshare(1) to create a time namespace and execute a
bash(1) shell. From the new shell, we use the built-in echo com‐
mand to write records to the timens_offsets file adjusting the
offset for the CLOCK_MONOTONIC clock forward 2 days and the offset
for the CLOCK_BOOTTIME clock forward 7 days:
$ PS1="ns2# " sudo unshare -T -- bash --norc
ns2# echo "1 $((2*24*60*60)) 0" > /proc/$$/timens_offsets
ns2# echo "7 $((7*24*60*60)) 0" > /proc/$$/timens_offsets
Above, we started the bash(1) shell with the --norc options so
that no start-up scripts were executed. This ensures that no
child processes are created from the shell before we have a chance
to update the timens_offsets file.
We then use cat(1) to display the contents of the timens_offsets
file. The execution of cat(1) creates the first process in the
new time namespace, after which further attempts to update the
timens_offsets file produce an error.
ns2# cat /proc/$$/timens_offsets
1 172800 0
7 604800 0
ns2# echo "7 $((9*24*60*60)) 0" > /proc/$$/timens_offsets
bash: echo: write error: Permission denied
Continuing in the new namespace, we execute uptime(1) and the
clock_times example program:
ns2# uptime --pretty
up 1 week, 21 hours, 18 minutes
ns2# ./clock_times
CLOCK_REALTIME : 1585989457.056 (18356 days + 8h 37m 37s)
CLOCK_TAI : 1585989494.057 (18356 days + 8h 38m 14s)
CLOCK_MONOTONIC: 229193.332 (2 days + 15h 39m 53s)
CLOCK_BOOTTIME : 681488.629 (7 days + 21h 18m 8s)
From the above output, we can see that the monotonic and boot-time
clocks have new values in the new time namespace.
Examining the /proc/[pid]/ns/time and
/proc/[pid]/ns/time_for_children symbolic links, we see that the
shell is a member of the initial time namespace, but its children
are created in a different namespace.
ns2# readlink /proc/$$/ns/time
time:[4026531834]
ns2# readlink /proc/$$/ns/time_for_children
time:[4026532900]
ns2# readlink /proc/self/ns/time # Creates a child process
time:[4026532900]
Returning to the shell in the initial time namespace, we see that
the monotonic and boot-time clocks are unaffected by the
timens_offsets changes that were made in the other time namespace:
$ uptime --pretty
up 21 hours, 19 minutes
$ ./clock_times
CLOCK_REALTIME : 1585989401.971 (18356 days + 8h 38m 51s)
CLOCK_TAI : 1585989438.972 (18356 days + 8h 39m 28s)
CLOCK_MONOTONIC: 56338.247 (15h 41m 8s)
CLOCK_BOOTTIME : 76633.544 (21h 19m 23s)
SEE ALSO
nsenter(1), unshare(1), clock_settime(2). setns(2), unshare(2),
namespaces(7), time(7)
Linux 2020-04-01 TIME_NAMESPACES(7)
========== Page source below ==========
.\" Copyright (c) 2020 by Michael Kerrisk <mtk.manpages@gmail.com>
.\"
.\" %%%LICENSE_START(VERBATIM)
.\" Permission is granted to make and distribute verbatim copies of this
.\" manual provided the copyright notice and this permission notice are
.\" preserved on all copies.
.\"
.\" Permission is granted to copy and distribute modified versions of this
.\" manual under the conditions for verbatim copying, provided that the
.\" entire resulting derived work is distributed under the terms of a
.\" permission notice identical to this one.
.\"
.\" Since the Linux kernel and libraries are constantly changing, this
.\" manual page may be incorrect or out-of-date. The author(s) assume no
.\" responsibility for errors or omissions, or for damages resulting from
.\" the use of the information contained herein. The author(s) may not
.\" have taken the same level of care in the production of this manual,
.\" which is licensed free of charge, as they might when working
.\" professionally.
.\"
.\" Formatted or processed versions of this manual, if unaccompanied by
.\" the source, must acknowledge the copyright and authors of this work.
.\" %%%LICENSE_END
.\"
.\"
.TH TIME_NAMESPACES 7 2020-04-01 "Linux" "Linux Programmer's Manual"
.SH NAME
time_namespaces \- overview of Linux time namespaces
.SH DESCRIPTION
Time namespaces virtualize the values of two system clocks:
.IP \(bu 2
.BR CLOCK_MONOTONIC
(and likewise
.BR CLOCK_MONOTONIC_COARSE
and
.BR CLOCK_MONOTONIC_RAW ),
a nonsettable clock that represents monotonic time since\(emas
described by POSIX\(em"some unspecified point in the past".
.IP \(bu
.BR CLOCK_BOOTTIME
(and likewise
.BR CLOCK_BOOTTIME_ALARM ),
a clock that is identical to
.BR CLOCK_MONOTONIC ,
except that it also includes any time that the system is suspended.
.PP
Thus, the processes in a time namespace share per-namespace values
for these clocks.
This affects various APIs that measure against these clocks, including:
.BR clock_nanosleep (2),
.BR nanosleep (2),
.BR clock_gettime (2),
and
.IR /proc/uptime .
.PP
Currently, the only way to create a time namespace is by calling
.BR unshare (2)
with the
.BR CLONE_NEWTIME
flag.
This call creates a new time namespace but does
.I not
place the calling process in the new namespace.
Instead, the calling process's
subsequently created children are placed in the new namespace.
This allows clock offsets (see below) for the new namespace
to be set before the first process is placed in the namespace.
The
.IR /proc/[pid]/ns/time_for_children
symbolic link shows the time namespace in which
the children of a process will be created.
.\"
.SS /proc/PID/timens_offsets
Associated with each time namespace are offsets,
expressed with respect to the initial time namespace,
that define the values of the monotonic and boot clocks in that namespace.
These offsets are exposed via the file
.IR /proc/PID/timens_offsets .
Within this file,
the offsets are expressed as lines consisting of
three space-delimited fields:
.PP
.in +4n
.EX
<clock-id> <offset-secs> <offset-nanosecs>
.EE
.in
.PP
The
.I clock-id
identifies the clock whose offsets are being shown.
This field is either 1, for
.BR CLOCK_MONOTONIC ,
or 7, for
.BR CLOCK_BOOTTIME .
The remaining fields express the offset (seconds plus nanoseconds) for the
clock in this time namespace.
These offsets are expressed relative to the clock values in
the initial time namespace.
In the initial time namespace, the contents of this file are as follows:
.PP
.in +4n
.EX
$ \fBcat /proc/self/timens_offsets\fP
1 0 0
7 0 0
.EE
.in
.PP
In a new time namespace that has had no member processes,
the clock offsets can be modified by writing newline-terminated
records of the same form to the file.
The file can be written to multiple times,
but after the first process has been created in or has entered the namespace,
.BR write (2)s
on this file fail with the error
.BR EACCES .
In order to write to the
.IR timens_offsets
file, a process must have the
.BR CAP_SYS_TIME
capability in the user namespace that owns the time namespace.
.PP
In a new time namespace created by
.BR unshare (2),
the contents of the
.I timens_offsets
file are inherited from the time namespace of the creating process.
.SH NOTES
.PP
Use of time namespaces requires a kernel that is configured with the
.B CONFIG_TIME_NS
option.
.PP
Note that time namespaces do not virtualize the
.BR CLOCK_REALTIME
clock.
Virtualization of this clock was avoided for reasons of complexity
and overhead within the kernel.
.PP
The motivation for adding time namespaces was to allow
the monotonic and boot-time clocks to maintain consistent values
during container migration and checkpoint/restore.
.SH EXAMPLE
.PP
The following shell session demonstrates the operation of time namespaces.
We begin by displaying the inode number of the time namespace
of a shell in the initial time namespace:
.PP
.in +4n
.EX
$ \fBreadlink /proc/$$/ns/time\fP
time:[4026531834]
.EE
.in
.PP
Continuing in the initial time namespace, we display the system uptime using
.BR uptime (1)
and use the
.I clock_times
example program shown in
.BR clock_getres (2)
to display the values of various clocks:
.PP
.in +4n
.EX
$ \fBuptime \-\-pretty\fP
up 21 hours, 17 minutes
$ \fB./clock_times\fP
CLOCK_REALTIME : 1585989401.971 (18356 days + 8h 36m 41s)
CLOCK_TAI : 1585989438.972 (18356 days + 8h 37m 18s)
CLOCK_MONOTONIC: 56338.247 (15h 38m 58s)
CLOCK_BOOTTIME : 76633.544 (21h 17m 13s)
.EE
.in
.PP
We then use
.BR unshare (1)
to create a time namespace and execute a
.BR bash (1)
shell.
From the new shell, we use the built-in
.B echo
command to write records to the
.I timens_offsets
file adjusting the offset for the
.B CLOCK_MONOTONIC
clock forward 2 days
and the offset for the
.B CLOCK_BOOTTIME
clock forward 7 days:
.PP
.in +4n
.EX
$ \fBPS1="ns2# " sudo unshare \-T \-\- bash \-\-norc\fP
ns2# \fBecho "1 $((2*24*60*60)) 0" > /proc/$$/timens_offsets\fP
ns2# \fBecho "7 $((7*24*60*60)) 0" > /proc/$$/timens_offsets\fP
.EE
.in
.PP
Above, we started the
.BR bash (1)
shell with the
.B \-\-norc
options so that no start-up scripts were executed.
This ensures that no child processes are created from the
shell before we have a chance to update the
.I timens_offsets
file.
.PP
We then use
.BR cat (1)
to display the contents of the
.I timens_offsets
file.
The execution of
.BR cat (1)
creates the first process in the new time namespace,
after which further attempts to update the
.I timens_offsets
file produce an error.
.PP
.in +4n
.EX
ns2# \fBcat /proc/$$/timens_offsets\fP
1 172800 0
7 604800 0
ns2# \fBecho "7 $((9*24*60*60)) 0" > /proc/$$/timens_offsets\fP
bash: echo: write error: Permission denied
.EE
.in
.PP
Continuing in the new namespace, we execute
.BR uptime (1)
and the
.I clock_times
example program:
.PP
.in +4n
.EX
ns2# \fBuptime \-\-pretty\fP
up 1 week, 21 hours, 18 minutes
ns2# \fB./clock_times\fP
CLOCK_REALTIME : 1585989457.056 (18356 days + 8h 37m 37s)
CLOCK_TAI : 1585989494.057 (18356 days + 8h 38m 14s)
CLOCK_MONOTONIC: 229193.332 (2 days + 15h 39m 53s)
CLOCK_BOOTTIME : 681488.629 (7 days + 21h 18m 8s)
.EE
.in
.PP
From the above output, we can see that the monotonic
and boot-time clocks have new values in the new time namespace.
.PP
Examining the
.I /proc/[pid]/ns/time
and
.I /proc/[pid]/ns/time_for_children
symbolic links, we see that the shell is a member of the initial time
namespace, but its children are created in a different namespace.
.PP
.in +4n
.EX
ns2# \fBreadlink /proc/$$/ns/time\fP
time:[4026531834]
ns2# \fBreadlink /proc/$$/ns/time_for_children\fP
time:[4026532900]
ns2# \fBreadlink /proc/self/ns/time\fP # Creates a child process
time:[4026532900]
.EE
.in
.PP
Returning to the shell in the initial time namespace,
we see that the monotonic and boot-time clocks
are unaffected by the
.I timens_offsets
changes that were made in the other time namespace:
.PP
.in +4n
.EX
$ \fBuptime \-\-pretty\fP
up 21 hours, 19 minutes
$ \fB./clock_times\fP
CLOCK_REALTIME : 1585989401.971 (18356 days + 8h 38m 51s)
CLOCK_TAI : 1585989438.972 (18356 days + 8h 39m 28s)
CLOCK_MONOTONIC: 56338.247 (15h 41m 8s)
CLOCK_BOOTTIME : 76633.544 (21h 19m 23s)
.EE
.in
.SH SEE ALSO
.BR nsenter (1),
.BR unshare (1),
.BR clock_settime (2).
.\" clone3() support for time namespaces is a work in progress
.\" .BR clone3 (2),
.BR setns (2),
.BR unshare (2),
.BR namespaces (7),
.BR time (7)
--
Michael Kerrisk
Linux man-pages maintainer; http://www.kernel.org/doc/man-pages/
Linux/UNIX System Programming Training: http://man7.org/training/
^ permalink raw reply [flat|nested] 10+ messages in thread
* Re: RFC: time_namespaces(7) manual page
2020-04-04 11:08 RFC: time_namespaces(7) manual page Michael Kerrisk (man-pages)
@ 2020-04-06 7:38 ` Andrey Vagin
2020-04-06 11:50 ` Dmitry Safonov
2020-04-07 3:23 ` Andrei Vagin
2 siblings, 0 replies; 10+ messages in thread
From: Andrey Vagin @ 2020-04-06 7:38 UTC (permalink / raw)
To: Michael Kerrisk (man-pages)
Cc: Dmitry Safonov, linux-man, Vincenzo Frascino, Linux API,
Containers, Dmitry Safonov, lkml, Cyrill Gorcunov,
Eric W. Biederman, Andy Lutomirski, Thomas Gleixner,
Adrian Reber
Hi Michael,
Thank you for writing this man page. I appreciate this. I will review
it on Mon or Tue.
^ permalink raw reply [flat|nested] 10+ messages in thread
* Re: RFC: time_namespaces(7) manual page
2020-04-04 11:08 RFC: time_namespaces(7) manual page Michael Kerrisk (man-pages)
2020-04-06 7:38 ` Andrey Vagin
@ 2020-04-06 11:50 ` Dmitry Safonov
2020-04-07 12:12 ` Michael Kerrisk (man-pages)
2020-04-07 3:23 ` Andrei Vagin
2 siblings, 1 reply; 10+ messages in thread
From: Dmitry Safonov @ 2020-04-06 11:50 UTC (permalink / raw)
To: Michael Kerrisk (man-pages), Andrei Vagin
Cc: Christian Brauner, linux-man, lkml, Linux API, Eric W. Biederman,
Dmitry Safonov, Containers, Cyrill Gorcunov, Andy Lutomirski,
Thomas Gleixner, Adrian Reber, Vincenzo Frascino
Hi Michael,
On 4/4/20 12:08 PM, Michael Kerrisk (man-pages) wrote:
> Hello Dmitry, Andrei, et al.
>
> I have written a manual page to document time namespaces.
> Could you please take a look and let me know of any
> corrections, improvements, etc.
Thanks a lot for the man page. It looks good to me.
Maybe Andrei will find some nits, but I don't have any in mind.
Thanks for you work,
Dima
^ permalink raw reply [flat|nested] 10+ messages in thread
* Re: RFC: time_namespaces(7) manual page
2020-04-04 11:08 RFC: time_namespaces(7) manual page Michael Kerrisk (man-pages)
2020-04-06 7:38 ` Andrey Vagin
2020-04-06 11:50 ` Dmitry Safonov
@ 2020-04-07 3:23 ` Andrei Vagin
2020-04-07 10:30 ` Thomas Gleixner
2020-04-07 12:53 ` Michael Kerrisk (man-pages)
2 siblings, 2 replies; 10+ messages in thread
From: Andrei Vagin @ 2020-04-07 3:23 UTC (permalink / raw)
To: Michael Kerrisk (man-pages)
Cc: Andrei Vagin, Dmitry Safonov, linux-man, Vincenzo Frascino,
Linux API, Containers, Dmitry Safonov, lkml, Cyrill Gorcunov,
Eric W. Biederman, Andy Lutomirski, Thomas Gleixner,
Adrian Reber
Hi Michael,
The man page looks good to me. A few comments are inline.
On Sat, Apr 04, 2020 at 01:08:50PM +0200, Michael Kerrisk (man-pages) wrote:
> Hello Dmitry, Andrei, et al.
>
> I have written a manual page to document time namespaces.
> Could you please take a look and let me know of any
> corrections, improvements, etc.
>
> The rendered page is shown below. Th epage source is at the foot of
> this mail.
>
> Thanks,
>
> Michael
>
>
> NAME
> time_namespaces - overview of Linux time namespaces
>
> DESCRIPTION
> Time namespaces virtualize the values of two system clocks:
>
> · CLOCK_MONOTONIC (and likewise CLOCK_MONOTONIC_COARSE and
> CLOCK_MONOTONIC_RAW), a nonsettable clock that represents mono‐
> tonic time since—as described by POSIX—"some unspecified
> point in the past".
>
> · CLOCK_BOOTTIME (and likewise CLOCK_BOOTTIME_ALARM), a clock that
> is identical to CLOCK_MONOTONIC, except that it also includes
> any time that the system is suspended.
>
> Thus, the processes in a time namespace share per-namespace values
> for these clocks. This affects various APIs that measure against
> these clocks, including: clock_nanosleep(2), nanosleep(2),
> clock_gettime(2), and /proc/uptime.
timer_settime, timerfd_settime
>
> Currently, the only way to create a time namespace is by calling
> unshare(2) with the CLONE_NEWTIME flag. This call creates a new
> time namespace but does not place the calling process in the new
> namespace. Instead, the calling process's subsequently created
> children are placed in the new namespace. This allows clock off‐
> sets (see below) for the new namespace to be set before the first
> process is placed in the namespace. The
> /proc/[pid]/ns/time_for_children symbolic link shows the time
> namespace in which the children of a process will be created.
We can mention that the current process can enter the namespace if it
call setns on /proc/self/ns/time_for_children.
>
> /proc/PID/timens_offsets
> Associated with each time namespace are offsets, expressed with
> respect to the initial time namespace, that define the values of
> the monotonic and boot clocks in that namespace. These offsets
> are exposed via the file /proc/PID/timens_offsets. Within this
> file, the offsets are expressed as lines consisting of three
> space-delimited fields:
>
> <clock-id> <offset-secs> <offset-nanosecs>
>
> The clock-id identifies the clock whose offsets are being shown.
> This field is either 1, for CLOCK_MONOTONIC, or 7, for CLOCK_BOOT‐
> TIME. The remaining fields express the offset (seconds plus
> nanoseconds) for the clock in this time namespace. These offsets
> are expressed relative to the clock values in the initial time
> namespace. In the initial time namespace, the contents of this
> file are as follows:
I think we can mention that offset-secs can be negative, but
offset-nanosleep has to be 0 or positive.
Thanks,
Andrei
^ permalink raw reply [flat|nested] 10+ messages in thread
* Re: RFC: time_namespaces(7) manual page
2020-04-07 3:23 ` Andrei Vagin
@ 2020-04-07 10:30 ` Thomas Gleixner
2020-04-07 13:06 ` Michael Kerrisk (man-pages)
2020-04-07 12:53 ` Michael Kerrisk (man-pages)
1 sibling, 1 reply; 10+ messages in thread
From: Thomas Gleixner @ 2020-04-07 10:30 UTC (permalink / raw)
To: Andrei Vagin, Michael Kerrisk (man-pages)
Cc: Andrei Vagin, Dmitry Safonov, linux-man, Vincenzo Frascino,
Linux API, Containers, Dmitry Safonov, lkml, Cyrill Gorcunov,
Eric W. Biederman, Andy Lutomirski, Adrian Reber
Andrei Vagin <avagin@gmail.com> writes:
> On Sat, Apr 04, 2020 at 01:08:50PM +0200, Michael Kerrisk (man-pages) wrote:
>> /proc/PID/timens_offsets
>> Associated with each time namespace are offsets, expressed with
>> respect to the initial time namespace, that define the values of
>> the monotonic and boot clocks in that namespace. These offsets
>> are exposed via the file /proc/PID/timens_offsets. Within this
>> file, the offsets are expressed as lines consisting of three
>> space-delimited fields:
>>
>> <clock-id> <offset-secs> <offset-nanosecs>
>>
>> The clock-id identifies the clock whose offsets are being shown.
>> This field is either 1, for CLOCK_MONOTONIC, or 7, for CLOCK_BOOT‐
>> TIME. The remaining fields express the offset (seconds plus
>> nanoseconds) for the clock in this time namespace. These offsets
>> are expressed relative to the clock values in the initial time
>> namespace. In the initial time namespace, the contents of this
>> file are as follows:
>
> I think we can mention that offset-secs can be negative, but
> offset-nanosleep has to be 0 or positive.
I assume you meant offset-nanosecs :)
That aside, there are also limitations in place.
1) Negative offsets which would offset time into negative space are
rejected, i.e. its enforced that
now(CLOCK) + offset[CLOCK] >= 0
This is necessary as the kernel expects and also enforces that time
cannot be negative.
2) Positive offsets which would offset time above KTTIME_SEC_MAX / 2 are
rejected, i.e. it's enforced that
now(CLOCK) + offset[CLOCK] <= KTIME_SEC_MAX / 2
That is done to prevent that clocks wrap around if the offset would
bring it close enough to the wrap around point.
The cutoff value is a pretty arbitrary choice (~146 years). So to
hit this you'd need a system which has an uptime of > 146 years,
which is pretty much unrealistic.
Thanks,
tglx
^ permalink raw reply [flat|nested] 10+ messages in thread
* Re: RFC: time_namespaces(7) manual page
2020-04-06 11:50 ` Dmitry Safonov
@ 2020-04-07 12:12 ` Michael Kerrisk (man-pages)
0 siblings, 0 replies; 10+ messages in thread
From: Michael Kerrisk (man-pages) @ 2020-04-07 12:12 UTC (permalink / raw)
To: Dmitry Safonov, Andrei Vagin
Cc: mtk.manpages, Christian Brauner, linux-man, lkml, Linux API,
Eric W. Biederman, Dmitry Safonov, Containers, Cyrill Gorcunov,
Andy Lutomirski, Thomas Gleixner, Adrian Reber,
Vincenzo Frascino
On 4/6/20 1:50 PM, Dmitry Safonov wrote:
> Hi Michael,
>
> On 4/4/20 12:08 PM, Michael Kerrisk (man-pages) wrote:
>> Hello Dmitry, Andrei, et al.
>>
>> I have written a manual page to document time namespaces.
>> Could you please take a look and let me know of any
>> corrections, improvements, etc.
>
> Thanks a lot for the man page. It looks good to me.
> Maybe Andrei will find some nits, but I don't have any in mind.
Thanks for checking it, Dima!
--
Michael Kerrisk
Linux man-pages maintainer; http://www.kernel.org/doc/man-pages/
Linux/UNIX System Programming Training: http://man7.org/training/
^ permalink raw reply [flat|nested] 10+ messages in thread
* Re: RFC: time_namespaces(7) manual page
2020-04-07 3:23 ` Andrei Vagin
2020-04-07 10:30 ` Thomas Gleixner
@ 2020-04-07 12:53 ` Michael Kerrisk (man-pages)
1 sibling, 0 replies; 10+ messages in thread
From: Michael Kerrisk (man-pages) @ 2020-04-07 12:53 UTC (permalink / raw)
To: Andrei Vagin
Cc: mtk.manpages, Andrei Vagin, Dmitry Safonov, linux-man,
Vincenzo Frascino, Linux API, Containers, Dmitry Safonov, lkml,
Cyrill Gorcunov, Eric W. Biederman, Andy Lutomirski,
Thomas Gleixner, Adrian Reber
Hello Andrei,
On 4/7/20 5:23 AM, Andrei Vagin wrote:
> Hi Michael,
>
> The man page looks good to me. A few comments are inline.
Thanks for looking the page over!
> On Sat, Apr 04, 2020 at 01:08:50PM +0200, Michael Kerrisk (man-pages) wrote:
>> Hello Dmitry, Andrei, et al.
>>
>> I have written a manual page to document time namespaces.
>> Could you please take a look and let me know of any
>> corrections, improvements, etc.
>>
>> The rendered page is shown below. Th epage source is at the foot of
>> this mail.
>>
>> Thanks,
>>
>> Michael
>>
>>
>> NAME
>> time_namespaces - overview of Linux time namespaces
>>
>> DESCRIPTION
>> Time namespaces virtualize the values of two system clocks:
>>
>> · CLOCK_MONOTONIC (and likewise CLOCK_MONOTONIC_COARSE and
>> CLOCK_MONOTONIC_RAW), a nonsettable clock that represents mono‐
>> tonic time since—as described by POSIX—"some unspecified
>> point in the past".
>>
>> · CLOCK_BOOTTIME (and likewise CLOCK_BOOTTIME_ALARM), a clock that
>> is identical to CLOCK_MONOTONIC, except that it also includes
>> any time that the system is suspended.
>>
>> Thus, the processes in a time namespace share per-namespace values
>> for these clocks. This affects various APIs that measure against
>> these clocks, including: clock_nanosleep(2), nanosleep(2),
>> clock_gettime(2), and /proc/uptime.
>
> timer_settime, timerfd_settime
Added.
>> Currently, the only way to create a time namespace is by calling
>> unshare(2) with the CLONE_NEWTIME flag. This call creates a new
>> time namespace but does not place the calling process in the new
>> namespace. Instead, the calling process's subsequently created
>> children are placed in the new namespace. This allows clock off‐
>> sets (see below) for the new namespace to be set before the first
>> process is placed in the namespace. The
>> /proc/[pid]/ns/time_for_children symbolic link shows the time
>> namespace in which the children of a process will be created.
>
> We can mention that the current process can enter the namespace if it
> call setns on /proc/self/ns/time_for_children.
Yes, thanks. I overlooked that, and I was puzzled about how setns() could
be useful before the first process was created in a time NS.
I added:
(A process can use a file descriptor opened on this symbolic
link in a call to setns(2) in order to move into the namespace.)
>> /proc/PID/timens_offsets
>> Associated with each time namespace are offsets, expressed with
>> respect to the initial time namespace, that define the values of
>> the monotonic and boot clocks in that namespace. These offsets
>> are exposed via the file /proc/PID/timens_offsets. Within this
>> file, the offsets are expressed as lines consisting of three
>> space-delimited fields:
>>
>> <clock-id> <offset-secs> <offset-nanosecs>
>>
>> The clock-id identifies the clock whose offsets are being shown.
>> This field is either 1, for CLOCK_MONOTONIC, or 7, for CLOCK_BOOT‐
>> TIME. The remaining fields express the offset (seconds plus
>> nanoseconds) for the clock in this time namespace. These offsets
>> are expressed relative to the clock values in the initial time
>> namespace. In the initial time namespace, the contents of this
>> file are as follows:
>
> I think we can mention that offset-secs can be negative, but
> offset-nanosleep has to be 0 or positive.
Thanks. See my upcoming reply to Thomas.
Cheers,
Michael
--
Michael Kerrisk
Linux man-pages maintainer; http://www.kernel.org/doc/man-pages/
Linux/UNIX System Programming Training: http://man7.org/training/
^ permalink raw reply [flat|nested] 10+ messages in thread
* Re: RFC: time_namespaces(7) manual page
2020-04-07 10:30 ` Thomas Gleixner
@ 2020-04-07 13:06 ` Michael Kerrisk (man-pages)
2020-04-07 14:19 ` Thomas Gleixner
0 siblings, 1 reply; 10+ messages in thread
From: Michael Kerrisk (man-pages) @ 2020-04-07 13:06 UTC (permalink / raw)
To: Thomas Gleixner, Andrei Vagin
Cc: mtk.manpages, Andrei Vagin, Dmitry Safonov, linux-man,
Vincenzo Frascino, Linux API, Containers, Dmitry Safonov, lkml,
Cyrill Gorcunov, Eric W. Biederman, Andy Lutomirski,
Adrian Reber
On 4/7/20 12:30 PM, Thomas Gleixner wrote:
> Andrei Vagin <avagin@gmail.com> writes:
>> On Sat, Apr 04, 2020 at 01:08:50PM +0200, Michael Kerrisk (man-pages) wrote:
>>> /proc/PID/timens_offsets
>>> Associated with each time namespace are offsets, expressed with
>>> respect to the initial time namespace, that define the values of
>>> the monotonic and boot clocks in that namespace. These offsets
>>> are exposed via the file /proc/PID/timens_offsets. Within this
>>> file, the offsets are expressed as lines consisting of three
>>> space-delimited fields:
>>>
>>> <clock-id> <offset-secs> <offset-nanosecs>
>>>
>>> The clock-id identifies the clock whose offsets are being shown.
>>> This field is either 1, for CLOCK_MONOTONIC, or 7, for CLOCK_BOOT‐
>>> TIME. The remaining fields express the offset (seconds plus
>>> nanoseconds) for the clock in this time namespace. These offsets
>>> are expressed relative to the clock values in the initial time
>>> namespace. In the initial time namespace, the contents of this
>>> file are as follows:
>>
>> I think we can mention that offset-secs can be negative, but
>> offset-nanosleep has to be 0 or positive.
>
> I assume you meant offset-nanosecs :)
>
> That aside, there are also limitations in place.
>
> 1) Negative offsets which would offset time into negative space are
> rejected, i.e. its enforced that
>
> now(CLOCK) + offset[CLOCK] >= 0
>
> This is necessary as the kernel expects and also enforces that time
> cannot be negative.
>
> 2) Positive offsets which would offset time above KTTIME_SEC_MAX / 2 are
> rejected, i.e. it's enforced that
>
> now(CLOCK) + offset[CLOCK] <= KTIME_SEC_MAX / 2
>
> That is done to prevent that clocks wrap around if the offset would
> bring it close enough to the wrap around point.
>
> The cutoff value is a pretty arbitrary choice (~146 years). So to
> hit this you'd need a system which has an uptime of > 146 years,
> which is pretty much unrealistic.
Thanks Thomas!
I've tried to capture this info, as well some other relevant errors
in the following text. Does it look okay?
Writes to the timens_offsets file can fail with the following
errors:
EINVAL An offset-nanosecs value is greater than 999,999,999.
EINVAL A clock-id value is not valid.
EPERM The caller does not have the the CAP_SYS_TIME capability.
ERANGE An offset-secs value is out of range. In particular;
· offset-secs can't be set to a value which would make the
current time on the corresponding clock inside the names‐
pace a negative value; and
· offset-secs can't be set to a value such that the time on
the corresponding clock inside the namespace would exceed
half of the value of the kernel constant KTIME_SEC_MAX
(this limits the clock value to a maximum of approxi‐
mately 146 years).
Thanks,
Michael
--
Michael Kerrisk
Linux man-pages maintainer; http://www.kernel.org/doc/man-pages/
Linux/UNIX System Programming Training: http://man7.org/training/
^ permalink raw reply [flat|nested] 10+ messages in thread
* Re: RFC: time_namespaces(7) manual page
2020-04-07 13:06 ` Michael Kerrisk (man-pages)
@ 2020-04-07 14:19 ` Thomas Gleixner
2020-04-07 15:32 ` Michael Kerrisk (man-pages)
0 siblings, 1 reply; 10+ messages in thread
From: Thomas Gleixner @ 2020-04-07 14:19 UTC (permalink / raw)
To: Michael Kerrisk (man-pages), Andrei Vagin
Cc: mtk.manpages, Andrei Vagin, Dmitry Safonov, linux-man,
Vincenzo Frascino, Linux API, Containers, Dmitry Safonov, lkml,
Cyrill Gorcunov, Eric W. Biederman, Andy Lutomirski,
Adrian Reber
"Michael Kerrisk (man-pages)" <mtk.manpages@gmail.com> writes:
> I've tried to capture this info, as well some other relevant errors
> in the following text. Does it look okay?
>
> Writes to the timens_offsets file can fail with the following
> errors:
>
> EINVAL An offset-nanosecs value is greater than 999,999,999.
>
> EINVAL A clock-id value is not valid.
>
> EPERM The caller does not have the the CAP_SYS_TIME capability.
>
> ERANGE An offset-secs value is out of range. In particular;
>
> · offset-secs can't be set to a value which would make the
> current time on the corresponding clock inside the names‐
> pace a negative value; and
>
> · offset-secs can't be set to a value such that the time on
> the corresponding clock inside the namespace would exceed
> half of the value of the kernel constant KTIME_SEC_MAX
> (this limits the clock value to a maximum of approxi‐
> mately 146 years).
Yes.
Thanks,
tglx
^ permalink raw reply [flat|nested] 10+ messages in thread
* Re: RFC: time_namespaces(7) manual page
2020-04-07 14:19 ` Thomas Gleixner
@ 2020-04-07 15:32 ` Michael Kerrisk (man-pages)
0 siblings, 0 replies; 10+ messages in thread
From: Michael Kerrisk (man-pages) @ 2020-04-07 15:32 UTC (permalink / raw)
To: Thomas Gleixner, Andrei Vagin
Cc: mtk.manpages, Andrei Vagin, Dmitry Safonov, linux-man,
Vincenzo Frascino, Linux API, Containers, Dmitry Safonov, lkml,
Cyrill Gorcunov, Eric W. Biederman, Andy Lutomirski,
Adrian Reber
On 4/7/20 4:19 PM, Thomas Gleixner wrote:
> "Michael Kerrisk (man-pages)" <mtk.manpages@gmail.com> writes:
>> I've tried to capture this info, as well some other relevant errors
>> in the following text. Does it look okay?
>>
>> Writes to the timens_offsets file can fail with the following
>> errors:
>>
>> EINVAL An offset-nanosecs value is greater than 999,999,999.
>>
>> EINVAL A clock-id value is not valid.
>>
>> EPERM The caller does not have the the CAP_SYS_TIME capability.
>>
>> ERANGE An offset-secs value is out of range. In particular;
>>
>> · offset-secs can't be set to a value which would make the
>> current time on the corresponding clock inside the names‐
>> pace a negative value; and
>>
>> · offset-secs can't be set to a value such that the time on
>> the corresponding clock inside the namespace would exceed
>> half of the value of the kernel constant KTIME_SEC_MAX
>> (this limits the clock value to a maximum of approxi‐
>> mately 146 years).
>
> Yes.
Thanks!
Cheers,
Michael
--
Michael Kerrisk
Linux man-pages maintainer; http://www.kernel.org/doc/man-pages/
Linux/UNIX System Programming Training: http://man7.org/training/
^ permalink raw reply [flat|nested] 10+ messages in thread
end of thread, other threads:[~2020-04-07 15:32 UTC | newest]
Thread overview: 10+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-04-04 11:08 RFC: time_namespaces(7) manual page Michael Kerrisk (man-pages)
2020-04-06 7:38 ` Andrey Vagin
2020-04-06 11:50 ` Dmitry Safonov
2020-04-07 12:12 ` Michael Kerrisk (man-pages)
2020-04-07 3:23 ` Andrei Vagin
2020-04-07 10:30 ` Thomas Gleixner
2020-04-07 13:06 ` Michael Kerrisk (man-pages)
2020-04-07 14:19 ` Thomas Gleixner
2020-04-07 15:32 ` Michael Kerrisk (man-pages)
2020-04-07 12:53 ` Michael Kerrisk (man-pages)
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.