config-linux: Many config properties without RFC 2119 language

[wking]

I've filed #745 to add RFC 2119 language to disableOOMKiller, but there are many other settings in config-linux.md without RFC 2119 wording to connect them with compliance testing (e.g. oomScoreAdj, memory, …). Without RFC 2119 language, it is not very clear what config-author and runtime responsibilities are intended to be. And it is clear that, whatever the intentions were:

• A config would be technically valid with ridiculous values in the setting (e.g. "oomScoreAdj" = 999999999999999999999999999999999999999999999999999999999999999999).
• A runtime would be technically valid if it silently ignored the setting.

I think we should address this before cutting 1.0. #745 is a (small) step in that direction, but I wanted to open this issue to get feedback on the issue in general (without getting bogged down on a specific setting).

[wking]

#728 is another PR that is partially addressing this.

[wking]

In the meeting today, folks were asking for a way to close this issue, so here's a checklist of all the properties in config-linux for whether or not they have sufficient runtime-facing RFC 2119 language for compliance testing (as of 138ad89):

• namespaces (config-linux: RFC 2119 tightening for namespaces #767, config-linux: Specify relationships for new namespaces #795)
• uidMappings
• gidMappings
• devices
  • type (config-linux: Clearer punt to kernel for linux.devices #829)
  • path (config-linux: Clearer punt to kernel for linux.devices #829)
  • major (config-linux: Clearer punt to kernel for linux.devices #829)
  • minor (config-linux: Clearer punt to kernel for linux.devices #829)
  • fileMode (config-linux: Clearer punt to kernel for linux.devices #829)
  • uid (config-linux: Clearer punt to kernel for linux.devices #829)
  • gid (config-linux: Clearer punt to kernel for linux.devices #829)
• default devices
  • /dev/null
  • /dev/zero
  • /dev/random
  • /dev/urandom
  • /dev/tty
  • /dev/console
  • /dev/ptmx
• cgroupsPath (Clarify cgroups path handling behavior #834)
• resources (Clarify cgroups path handling behavior #834)
  • devices (config-linux: RFC 2119 wording for linux.resources.devices #841)
    • allow (config-linux: RFC 2119 wording for linux.resources.devices #841)
    • type (config-linux: RFC 2119 wording for linux.resources.devices #841)
    • major (config-linux: RFC 2119 wording for linux.resources.devices #841)
    • minor (config-linux: RFC 2119 wording for linux.resources.devices #841)
    • access (config-linux: RFC 2119 wording for linux.resources.devices #841)
  • disableOOMKiller (config-linux: RFC 2119 wording for disableOOMKiller #745)
  • oomScoreAdj (config-linux: RFC 2119 wording for oomScoreAdj #781) (moved to config.md in config: Shift oomScoreAdj from linux.resources to process #789)
  • memory
    • limit
    • reservation
    • swap
    • kernel
    • kernelTCP
    • swappiness
  • cpu
    • shares
    • quota
    • period
    • realtimeRuntime
    • realitimePeriod
    • cpus
    • mems
  • blockIO
    • blkioWeight
    • blkioLeafWeight
    • blkioWeightDevice
    • blkioThrottleReadBpsDevice
    • blkioThrottleWriteBpsDevice
    • blkioThrottleReadIOPSDevice
    • blkioThrottleWriteIOPSDevice
  • hugepageLimits
    • pageSize
    • limit
  • network
    • classID
    • priorities
  • pids
    • limit
• intelRdt (config-linux: RFC 2119 wording for intelRdt #787)
  • l3CacheSchema (config-linux: RFC 2119 wording for intelRdt #787)
• sysctl
• seccomp
  • defaultAction
  • architectures
  • syscalls
    • names
    • action
    • args
• rootfsPropagation
• maskedPaths
• readonlyPaths
• mountLabel

Ideally we'd close each of these with a compliance test in runtime-tools, but I'm currently checking them off when I feel like there is sufficient spec clarity, regardless of the existence of compliance tests. If folks feel like I should be checking something off that is unchecked, landing runtime-tools compliance tests (or pointing out the existing runtime-tools tests which I've overlooked) would be a convincing way to argue for checking the property off. In some cases (e.g. oomScoreAdj), I have left the entry unchecked because the current test assumes /proc/1/oom_score_adj which is not backed by spec language (and which is only correct when the config calls for a new PID namespace).

I'll come back and update this comment as work continues.