How To Cgroup

Get An Overview

tree /sys/fs/cgroup/pids

How To Create Cgroup V1

1. create a cgroup filesystem –> sudo mount -t tmpfs -o size=10M tmpfs /mnt/mytmpfs
2. mount filesystem with restriction –> mount -t cgroup -o cpu,cpuacct none sys/fs/cgroup/cpu,cpuacct
3. create file group with folder –> mkdir /sys/fs/cgroup/cpu/cg1
4. move a process into cgroup –> echo $$ > /sys/fs/cgroup/cpu/cg1/cgroup.procs

Limit Access To Device V1

1. ls /dev/null
2. mkdir /sys/fs/cgroup/devices/group0
3. cat /sys/fs/cgroup/devices/group0/devices.list
4. echo ‘c 1:3 rmw’ > /sys/fs/cgroup/devices/group0/devices.deny –> essential, restricts rmw
5. echo 0> /sys/fs/cgroup/devices/group0/tasks

Differences with V2

1. all in one unified hierarchy –> mount | grep cgroup2
2. different controllers –> io (instead of blkio), memory, pids, perf_event, rdma, cpu, freezer