# Linux
* [Linux - wikipedia](https://en.wikipedia.org/wiki/Linux)
* [The Linux Kernel Archives](https://www.kernel.org/)

In [None]:
!echo $SHELL

/usr/bin/zsh


In [None]:
!source ~/.zshrc

# Linux Foundation Referenced Specifications
* https://refspecs.linuxfoundation.org/


* Linux Standard Base (LSB)
* Filesystem Hierarchy Standard (FHS)
* Application Programming Interface (API) Standards
  * [POSIX.1-2024](https://pubs.opengroup.org/onlinepubs/9799919799/mindex.html): The Open Group Base Specifications Issue 8, IEEE Std 1003.1™-2024 Edition
  * [POSIX.1-2017 - local](file:///D:/GoogleDrive/obsidian/_References/computer-architecture/susv4/index.html)
* DWARF Standards
* ELF and ABI Standards
  * Processor Specific ELF documents
* Application Binary Interface (ABI) Specifications/Standards

## LSB(Linux Standard Base)
* [Linux Standard Base](https://refspecs.linuxfoundation.org/lsb.shtml): LSB

* Common
* Core
	* Generic
	* IA32
	* IA64
	* PPC32
	* PPC64
	* S390
	* S390X
	* AMD64

* Desktop
	* Generic
	* IA32
	* IA64
	* PPC32
	* PPC64
	* S390
	* S390X
	* AMD64

* Runtime Languages

* Imaging

* Gtk3, Graphics

# Man Pages

[The Linux man-pages project](https://www.kernel.org/doc/man-pages/):

- 1: [User commands](http://man7.org/linux/man-pages/dir_section_1.html); man-pages includes a very few Section 1 pages that document programs supplied by the GNU C library. [菜鸟教程, Linux 命令大全](https://www.runoob.com/linux/linux-command-manual.html)
- 2: [System calls](http://man7.org/linux/man-pages/dir_section_2.html) documents the system calls provided by the Linux kernel.
- 3: [Library functions](http://man7.org/linux/man-pages/dir_section_3.html) documents the functions provided by the standard C library.
- 4: [Devices](http://man7.org/linux/man-pages/dir_section_4.html) documents details of various devices, most of which reside in /dev.
- 5: [Files](http://man7.org/linux/man-pages/dir_section_5.html) describes various file formats, and includes proc(5), which documents the /proc file system.
- 7: [Overviews, conventions, and miscellaneous](http://man7.org/linux/man-pages/dir_section_7.html).
- 8: [Superuser and system administration commands](http://man7.org/linux/man-pages/dir_section_8.html); man-pages includes a very few Section 8 pages that document programs supplied by the GNU C library.

# Kernel Parameters
* [Kernel parameters - ArchWiki](https://wiki.archlinux.org/index.php/kernel_parameters)

1. When building the kernel. See Kernel Compilation for details.
2. When starting the kernel (usually, when invoked from a boot loader).
3. At runtime (through the files in `/proc` and `/sys`). See `sysctl` for details. 
  * http://man7.org/linux/man-pages/man5/proc.5.html
  * http://man7.org/linux/man-pages/man8/sysctl.8.html

# Vendors

## Ubuntu

In [None]:
# 版本查看
# fix lsb_release command not found
# $ sudo apt-get update && sudo apt-get install -y lsb-release && sudo apt-get clean all
!lsb_release -a

No LSB modules are available.
Distributor ID:	Ubuntu
Description:	Ubuntu 22.04 LTS
Release:	22.04
Codename:	jammy


In [3]:
!hostnamectl

 Static hostname: zhoujiagen
       Icon name: computer-container
         Chassis: container
      Machine ID: c8a65033ea75404ca744592746eca2dd
         Boot ID: f1d0dac8db994ef7bb663f1b5013c603
  Virtualization: wsl
Operating System: ]8;;https://www.ubuntu.com/Ubuntu 22.04 LTS]8;;                        
          Kernel: Linux 5.15.153.1-microsoft-standard-WSL2
    Architecture: x86-64


In [4]:
!cat /etc/*ease

DISTRIB_ID=Ubuntu
DISTRIB_RELEASE=22.04
DISTRIB_CODENAME=jammy
DISTRIB_DESCRIPTION="Ubuntu 22.04 LTS"
PRETTY_NAME="Ubuntu 22.04 LTS"
NAME="Ubuntu"
VERSION_ID="22.04"
VERSION="22.04 (Jammy Jellyfish)"
VERSION_CODENAME=jammy
ID=ubuntu
ID_LIKE=debian
HOME_URL="https://www.ubuntu.com/"
SUPPORT_URL="https://help.ubuntu.com/"
BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/"
PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy"
UBUNTU_CODENAME=jammy


## WSL
* https://github.com/microsoft/WSL2-Linux-Kernel.git

use `root` as default user:

```shell
ubuntu2004.exe config --default-user root
```

# User Commands(1)
* https://man7.org/linux/man-pages/dir_section_1.html

## time
* [How to get execution millisecond time of a command in zsh?](https://unix.stackexchange.com/questions/453338/how-to-get-execution-millisecond-time-of-a-command-in-zsh)

In [5]:
!echo $TIMEFMT

%J  %U user %S system %P cpu %*E total


In [4]:
!man time

TIME(1)                     General Commands Manual                    TIME(1)

NAME
       time - run programs and summarize system resource usage

SYNOPSIS
       time   [ -apqvV ] [ -f FORMAT ] [ -o FILE ]
              [ --append ] [ --verbose ] [ --quiet ] [ --portability ]
              [ --format=FORMAT ] [ --output=FILE ] [ --version ]
              [ --help ] COMMAND [ ARGS ]

DESCRIPTION
       time run the program COMMAND with any given arguments ARG....  When
       COMMAND finishes, time displays information about resources used by
       COMMAND (on the standard error output, by default).  If COMMAND exits
       status.

       time determines which information to display about the resources used
       by the COMMAND from the string FORMAT.  If no format is specified on
       the command line, but the TIME environment variable is set, its value
       is used as the format.  Otherwise, a default format built into time is
       used.

       Options to time must appear

In [7]:
!time --help

['zsh:1: command not found: --help',
 '--help  0.00s user 0.01s system 5% cpu 0.254 total']

In [6]:
!time -p sleep 3
!time sleep 3

zsh:1: command not found: -p
-p sleep 3  0.00s user 0.01s system 5% cpu 0.250 total
sleep 3  0.00s user 0.00s system 0% cpu 3.001 total


## base64

- [RFC4648 The Base16, Base32, and Base64 Data Encodings](https://datatracker.ietf.org/doc/html/rfc4648)
- [base64 - base64 encode/decode data and print to standard output](https://man7.org/linux/man-pages/man1/base64.1.html)
- [Linux Command Line Base64 Encoding and Decoding of Strings](https://www.baeldung.com/linux/cli-base64-encode-decode)
- [base64](https://www.liaoxuefeng.com/wiki/1016959663602400/1017684507717184): with Python, remove tailing `=`

## dd

```shell
1 dd写
每次写入8k的数据，执行300000次, /data/testio为目标文件
time dd if=/dev/zero of=/data/testio bs=8k count=300000

记录了300000+0 的读入
记录了300000+0 的写出
2457600000字节(2.5 GB)已复制，2.70734 秒，908 MB/秒
real    0m2.709s
user    0m0.038s
sys    0m2.486s

2 dd读
time dd if=/data/testio of=/dev/null bs=8k

记录了300000+0 的读入
记录了300000+0 的写出
2457600000字节(2.5 GB)已复制，0.746326 秒，3.3 GB/秒
real    0m0.748s
user    0m0.021s
sys    0m0.727s

3 dd读写
(3.1) /data/testio2不存在
time dd if=/data/testio of=/data/testio2 bs=8k
记录了300000+0 的读入
记录了300000+0 的写出
2457600000字节(2.5 GB)已复制，2.96432 秒，829 MB/秒

real    0m2.966s
user    0m0.033s
sys    0m2.714s

(3.2) /data/testio2由(3.1)生成
记录了300000+0 的读入
记录了300000+0 的写出
2457600000字节(2.5 GB)已复制，34.3415 秒，71.6 MB/秒

real    0m54.907s
user    0m0.040s
sys    0m5.030s

4 hdparm读
/dev/vdb1为挂载点
hdparm -Tt /dev/vdb1

/dev/vdb1:
 Timing cached reads:   16718 MB in  2.00 seconds = 8367.73 MB/sec
 Timing buffered disk reads: 194 MB in  3.01 seconds =  64.35 MB/sec
```

## df

文件系统类型

```shell
# df -ahT
Filesystem     Type         Size  Used Avail Use% Mounted on
/dev/vda1      ext4          40G  7.0G   31G  19% /
proc           proc            0     0     0    - /proc
sysfs          sysfs           0     0     0    - /sys
devpts         devpts          0     0     0    - /dev/pts
tmpfs          tmpfs        7.8G     0  7.8G   0% /dev/shm
none           binfmt_misc     0     0     0    - /proc/sys/fs/binfmt_misc
/dev/vdb1      ext4         197G   40G  148G  21% /data
```

# System calls(2)
- [linux-systemcall.ipynb](./linux-systemcall.ipynb)

# Miscellaneous Information Manual(7)
* https://man7.org/linux/man-pages/dir_section_7.html

## Cgroups
- cgroups(7): https://www.man7.org/linux/man-pages/man7/cgroups.7.html

- Control Group v1 and v2
	- 2004-2006 https://www.kernel.org/doc/html/latest/admin-guide/cgroup-v1/cgroups.html
	- 2015 Control Group v2 https://www.kernel.org/doc/html/latest/admin-guide/cgroup-v2.html

### v1

```shell
mount -t cgroup -o cpu none /sys/fs/cgroup/cpu

mount -t cgroup -o cpu,cpuacct none /sys/fs/cgroup/cpu,cpuacct

mount -t cgroup -o all cgroup /sys/fs/cgroup

umount /sys/fs/cgroup/pids
```

Controllers:

- cpu (since Linux 2.6.24; CONFIG_CGROUP_SCHED)

Cgroups can be guaranteed a minimum number of "CPU shares" when a system is busy.  This does not limit a cgroup's CPU usage if the CPUs are not busy.

In Linux 3.2, this controller was extended to provide CPU "bandwidth" control.

- cpuacct (since Linux 2.6.24; CONFIG_CGROUP_CPUACCT)

This provides accounting for CPU usage by groups of processes.

- cpuset (since Linux 2.6.24; CONFIG_CPUSETS)

This cgroup can be used to bind the processes in a cgroup to a specified set of CPUs and NUMA nodes.

- memory (since Linux 2.6.25; CONFIG_MEMCG)

The memory controller supports reporting and limiting of process memory, kernel memory, and swap used by cgroups.

- devices (since Linux 2.6.26; CONFIG_CGROUP_DEVICE)

This supports controlling which processes may create (mknod) devices as well as open them for reading or writing.

- freezer (since Linux 2.6.28; CONFIG_CGROUP_FREEZER)

The freezer cgroup can suspend and restore (resume) all processes in a cgroup.  Freezing a cgroup /A also causes its children, for example, processes in /A/B, to be frozen.

- net_cls (since Linux 2.6.29; CONFIG_CGROUP_NET_CLASSID)

This places a classid, specified for the cgroup, on network packets created by a cgroup.

- blkio (since Linux 2.6.33; CONFIG_BLK_CGROUP)

The blkio cgroup controls and limits access to specified block devices by applying IO control in the form of throttling and upper limits against leaf nodes and intermediate nodes in the storage hierarchy.

- perf_event (since Linux 2.6.39; CONFIG_CGROUP_PERF)

This controller allows perf monitoring of the set of processes grouped in a cgroup.

- net_prio (since Linux 3.3; CONFIG_CGROUP_NET_PRIO)

This allows priorities to be specified, per network interface, for cgroups.

- hugetlb (since Linux 3.5; CONFIG_CGROUP_HUGETLB)

This supports limiting the use of huge pages by cgroups.

- pids (since Linux 4.3; CONFIG_CGROUP_PIDS)

This controller permits limiting the number of process that may be created in a cgroup (and its descendants).

- rdma (since Linux 4.11; CONFIG_CGROUP_RDMA)

The RDMA controller permits limiting the use of RDMA/IB-specific resources per cgroup.

> RDMA: Remote Direct Memory Access.

Creating cgroups and moving processes:

```shell
mkdir /sys/fs/cgroup/cpu/cg1
echo $$ > /sys/fs/cgroup/cpu/cg1/cgroup.procs
```

### v2

In cgroups v2, all mounted controllers reside in a single unified hierarchy.  While (different) controllers may be simultaneously mounted under the v1 and v2 hierarchies, it is not possible to mount the same controller simultaneously under both the v1 and the v2 hierarchies.

### Relationships Between Subsystems, Hierarchies, Control Groups and Tasks


- https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/6/html/resource_management_guide/sec-relationships_between_subsystems_hierarchies_control_groups_and_tasks

Rule 1: A single hierarchy can have one or more subsystems attached to it.

![](https://access.redhat.com/webassets/avalon/d/Red_Hat_Enterprise_Linux-6-Resource_Management_Guide-en-US/images/fe94409bf79906ecb380e8fbd8063016/RMG-rule1.png)

Rule 2: A subsystem attached to hierarchy A cannot be attached to hierarchy B if hierarchy B has a different subsystem already attached to it.

![](https://access.redhat.com/webassets/avalon/d/Red_Hat_Enterprise_Linux-6-Resource_Management_Guide-en-US/images/c4b0445881422c88d957e352911bccd8/RMG-rule2.png)

Rule 3: A task cannot be a member of two different cgroup in the same hierarchy.

![](https://access.redhat.com/webassets/avalon/d/Red_Hat_Enterprise_Linux-6-Resource_Management_Guide-en-US/images/fb48098033d1c4ccdb5a55516c9cb816/RMG-rule3.png)

Rule 4: A forked task inherits the exact same cgroups as its parent task.

![](https://access.redhat.com/webassets/avalon/d/Red_Hat_Enterprise_Linux-6-Resource_Management_Guide-en-US/images/67e2c07808671294692acde9baf0b452/RMG-rule4.png)


## Namespaces


- namespaces(7): https://man7.org/linux/man-pages/man7/namespaces.7.html 

| Namespace | Flag            | Isolates                             | Page                                                            |
| :-------- | :-------------- | :----------------------------------- | :-------------------------------------------------------------- |
| Cgroup    | CLONE_NEWCGROUP | Cgroup root directory                | https://man7.org/linux/man-pages/man7/cgroup_namespaces.7.html  |
| IPC       | CLONE_NEWIPC    | System V IPC, POSIX message queues   | https://man7.org/linux/man-pages/man7/ipc_namespaces.7.html     |
| Network   | CLONE_NEWNET    | Network devices, stacks, ports, etc. | https://man7.org/linux/man-pages/man7/network_namespaces.7.html |
| Mount     | CLONE_NEWNS     | Mount points                         | https://man7.org/linux/man-pages/man7/mount_namespaces.7.html   |
| PID       | CLONE_NEWPID    | Process IDs                          | https://man7.org/linux/man-pages/man7/pid_namespaces.7.html     |
| Time      | CLONE_NEWTIME   | Boot and monotonic clocks            | https://man7.org/linux/man-pages/man7/time_namespaces.7.html    |
| User      | CLONE_NEWUSER   | User and group IDs                   | https://man7.org/linux/man-pages/man7/user_namespaces.7.html    |
| UTS       | CLONE_NEWUTS    | Hostname and NIS domain name         | https://man7.org/linux/man-pages/man7/uts_namespaces.7.html     |


- Michael Kerrisk. Namespaces in operation. 2013. url: https://lwn.net/Articles/531114/

Contents:

Namespaces in operation, part 1: namespaces overview<br/>
Part 2: the namespaces API<br/>
Part 3: PID namespaces<br/>
Part 4: more on PID namespaces<br/>
Part 5: user namespaces<br/>
Part 6: more on user namespaces<br/>
Part 7: network namespaces<br/>
Mount namespaces and shared subtrees<br/>
Mount namespaces, mount propagation, and unbindable mounts

> The Namespaces API

System calls:

- `clone(2)`

The `clone(2)` system call creates a new process.
If the flags argument of the call specifies one or more of the `CLONE_NEW*` flags, then new namespaces are created for each flag, and the child process is made a member of those namespaces.

- `setns(2)`

The `setns(2)` system call allows the calling process to join an existing namespace.
The namespace to join is specified via a file descriptor that refers to one of the `/proc/[pid]/ns` files.

- `unshare(2)`

The `unshare(2)` system call moves the calling process to a new namespace.
If the flags argument of the call specifies one or more of the `CLONE_NEW*` flags, then new namespaces are created for each flag, and the calling process is made a member of those namespaces.

- `ioctl(2)`, `ioctl_ns(2)`

Various `ioctl(2)` operations can be used to discover information about namespaces.
These operations are described in `ioctl_ns(2)`.

> The `/proc/[pid]/ns/` Directory

Each process has a `/proc/[pid]/ns/` subdirectory containing one entry for each namespace that supports being manipulated by `setns(2)`.

The symbolic links in this subdirectory are as follows:

- `/proc/[pid]/ns/cgroup` (since Linux 4.6)
- `/proc/[pid]/ns/ipc`  (since Linux 3.0)
- `/proc/[pid]/ns/mnt` (since Linux 3.8)
- `/proc/[pid]/ns/net` (since Linux 3.0)
- `/proc/[pid]/ns/pid` (since Linux 3.8)
- `/proc/[pid]/ns/pid_for_children` (since Linux 4.12)
- `/proc/[pid]/ns/time` (since Linux 5.6)
- `/proc/[pid]/ns/time_for_children` (since Linux 5.6)
- `/proc/[pid]/ns/user` (since Linux 3.8)
- `/proc/[pid]/ns/uts` (since Linux 3.0)

> The `/proc/sys/user` Directory

The files in the `/proc/sys/user` directory (Linux 4.9) expose limits on the number of namespaces of various types that can be created.

- `max_cgroup_namespaces`
- `max_ipc_namespaces`
- `max_mnt_namespaces`
- `max_net_namespaces`
- `max_pid_namespaces`
- `max_time_namespaces` (since Linux 5.7)
- `max_user_namespaces`
- `max_uts_namespaces`

> Namespace Lifetime

Absent any other factors, a namespace is automatically *torn down* when the last process in the namespace terminates or leaves the namespace.  
       
However, there are a number of other factors that may *pin* a namespace into existence even though it has no member processes.

- An open file descriptor or a bind mount exists for the corresponding `/proc/[pid]/ns/*` file.
- The namespace is hierarchical (i.e., a PID or user namespace), and has a child namespace.
- It is a user namespace that owns one or more nonuser namespaces.
- It is a PID namespace, and there is a process that refers to the namespace via a `/proc/[pid]/ns/pid_for_children` symbolic link.
- It is a time namespace, and there is a process that refers to the namespace via a `/proc/[pid]/ns/time_for_children` symbolic link.
- It is an IPC namespace, and a corresponding mount of an mqueue filesystem (see `mq_overview(7)`) refers to this namespace.
- It is a PID namespace, and a corresponding mount of a `proc(5)` filesystem refers to this namespace.
