cgroups - Limit memory usage of firefox

README.md

Limit Memory Usage using cgroups

Example: firefox

Limiting memory per process with cgroups

cgroups (abbreviated from control groups) is a Linux kernel feature that limits, accounts for, and isolates the resource usage (CPU, memory, disk I/O, network, etc.) of a collection of processes. You can use it to make sure specific processes and their children cannot allocate more than a given amount of RAM.

On Ubuntu you must install the following package:

apt install cgroup-tools

Create a cgroup

sudo cgcreate -t hrishirt:hrishirt -a hrishirt:hrishirt -g memory:/cgBrowser

Replace hrishirt:hrishirt by your username and group and cgBrowser by the desired name for the control group

Set the maximum amount of RAM for the newly created cgroup.

(Again, replace cgBrowser with your desired name)

echo 3G | sudo tee /sys/fs/cgroup/memory/cgBrowser/memory.limit_in_bytes # 3 GB RAM

(Optional) If you have swap enabled, you can set a limit on that as well:

echo 3G | sudo tee /sys/fs/cgroup/memory/cgBrowser/memory.memsw.limit_in_bytes # 3 GB Swap

Launch your browser in the freshly created cgroup:

cgexec -g memory:cgBrowser firefox

Activate cgroups at boot with cgconfigparser

When this is all working you can make it permanent by placing this configuration in the file /etc/cgconfig.conf:

Contents: (Replace hrishirt with your own username)

group cgBrowser {
    perm {
        admin {
            uid = hrishirt;
        }
        task {
            uid = hrishirt;
        }
    }
    memory {
        memory.limit_in_bytes = "3G";
    }
}

Test the file for syntax errors:

sudo cgconfigparser -l /etc/cgconfig.conf

The command should not give any output.

systemd service for cgconfigparser

On Ubuntu, there is no systemd service to start cgconfigparser at boot. Here is a relatively simple service file to start cgconfigparser:

sudo vim /lib/systemd/system/cgconfigparser.service

Contents:

[Unit]
Description=cgroup config parser
After=network.target

[Service]
User=root
Group=root
ExecStart=/usr/sbin/cgconfigparser -l /etc/cgconfig.conf
Type=oneshot

[Install]
WantedBy=multi-user.target

Enable and start the service:

systemctl enable cgconfigparser
systemctl start cgconfigparser

On boot the cgroups will then be created via this service.

You can continue on with the next section to automatically place specific processes into specific cgroups via cgrulesengine but, for a simpler solution, you can edit your desktop launcher to run the command prefixed with cgexec. Or a simple cronjob every minute that runs cgclassify -g memory:cgBrowser $(pidof firefox) to put every running teams process in that cgroup.

Automatically put processes into a specific cgroup with cgrulesengined

Edit the following file:

sudo vim /etc/cgrules.conf

Contents:

hrishirt:firefox        memory          cgBrowser/

Replace hrishirt by your username, the processes (firefox) and the cgroups (cgBrowser) by your own. Save and check the file with:

/usr/sbin/cgrulesengd -vvv

No output means no errors.

You can omit :processname to limit everything by a user, memory can be replaced by other cgroup categories like cpu, but in our situation that is not applicable. I want to limit the memory of a few specific applications, not CPU cores or other resources.

systemd service for cgrulesengined

Just as with cfconfigparser, there is no default service on Ubuntu, but adding one is just as simple as the previous one.

Copy one of the configuration files:

cp /usr/share/doc/cgroup-tools/examples/cgred.conf /etc/cgred.conf

Add a systemd unit file:

sudo vim /lib/systemd/system/cgrulesgend.service

Contents:

[Unit]
Description=cgroup rules generator
After=network.target cgconfigparser.service

[Service]
User=root
Group=root
Type=forking
EnvironmentFile=-/etc/cgred.conf
ExecStart=/usr/sbin/cgrulesengd
Restart=on-failure

[Install]
WantedBy=multi-user.target

Enable and start the service:

systemctl enable cgrulesgend
systemctl start cgrulesgend

After a reboot you should have the processes you configured in.

To check if the process actually launches in the correct cgroup after a reboot you need to use the cgroup filesystem. The file /sys/fs/cgroup/memory/cgBrowser/tasks lists all the process ID's that run in that cgroup.

You can verify that it is working for firefox:

for pid in $(cat /sys/fs/cgroup/memory/cgBrowser/tasks); do pgrep $pid; done

I followed this tutorial to also limit Firefox's memory usage, but found nowadays in a cgroups v2 world it's easier to use systemd-run.

I modified my web browser launcher shortcut (in an XFCE desktop) from:

exo-open --launch WebBrowser %u

to:

systemd-run --scope --user --description "Limit web browser memory usage" --property MemoryMax=3G exo-open --launch WebBrowser %u

To verify: (note the max: 3.0G in the status output):

$ systemctl list-units --user --type scope
  UNIT                                        LOAD   ACTIVE SUB     DESCRIPTION
  init.scope                                  loaded active running System and Service Manager
  run-r6db93b6cc6094af59a5593f8e151d8e8.scope loaded active running Limit web browser memory usage

LOAD   = Reflects whether the unit definition was properly loaded.
ACTIVE = The high-level unit activation state, i.e. generalization of SUB.
SUB    = The low-level unit activation state, values depend on unit type.
2 loaded units listed. Pass --all to see loaded but inactive units, too.
To show all installed unit files use 'systemctl list-unit-files'.

$ systemctl status --user run-r6db93b6cc6094af59a5593f8e151d8e8.scope
● run-r6db93b6cc6094af59a5593f8e151d8e8.scope - Limit web browser memory usage
     Loaded: loaded (/run/user/1000/systemd/transient/run-r6db93b6cc6094af59a5593f8e151d8e8.scope; transient)
  Transient: yes
     Active: active (running) since Mon 2022-11-21 14:00:13 EST; 9min ago
      Tasks: 295 (limit: 28682)
     Memory: 1015.6M (max: 3.0G)
        CPU: 1min 22.222s
     CGroup: /user.slice/user-1000.slice/[email protected]/app.slice/run-r6db93b6cc6094af59a5593f8e151d8e8.scope
             ├─3589467 firefox-esr
             ├─3589535 /usr/lib/firefox-esr/firefox-esr -contentproc -childID 1 -isForBrowser -prefsLen 1 -prefMapSize 366571 -jsInit 285636 -parentBuildID 20220811191823 -appdir /usr/lib/firefox-e>
             ├─3589570 /usr/lib/firefox-esr/firefox-esr -contentproc -childID 2 -isForBrowser -prefsLen 56 -prefMapSize 366571 -jsInit 285636 -parentBuildID 20220811191823 -appdir /usr/lib/firefox->
             ├─3589584 /usr/lib/firefox-esr/firefox-esr -contentproc -childID 3 -isForBrowser -prefsLen 56 -prefMapSize 366571 -jsInit 285636 -parentBuildID 20220811191823 -appdir /usr/lib/firefox->
             ├─3589594 /usr/lib/firefox-esr/firefox-esr -contentproc -childID 4 -isForBrowser -prefsLen 56 -prefMapSize 366571 -jsInit 285636 -parentBuildID 20220811191823 -appdir /usr/lib/firefox->
             ├─3589612 /usr/lib/firefox-esr/firefox-esr -contentproc -childID 5 -isForBrowser -prefsLen 56 -prefMapSize 366571 -jsInit 285636 -parentBuildID 20220811191823 -appdir /usr/lib/firefox->
             ├─3589733 /usr/lib/firefox-esr/firefox-esr -contentproc -childID 6 -isForBrowser -prefsLen 5020 -prefMapSize 366571 -jsInit 285636 -parentBuildID 20220811191823 -appdir /usr/lib/firefo>
             ├─3589771 /usr/lib/firefox-esr/firefox-esr -contentproc -childID 7 -isForBrowser -prefsLen 5815 -prefMapSize 366571 -jsInit 285636 -parentBuildID 20220811191823 -appdir /usr/lib/firefo>
             ├─3589855 /usr/lib/firefox-esr/firefox-esr -contentproc -parentBuildID 20220811191823 -prefsLen 5815 -prefMapSize 366571 -appdir /usr/lib/firefox-esr/browser 3589467 true rdd
             ├─3589875 /usr/lib/firefox-esr/firefox-esr -contentproc -childID 8 -isForBrowser -prefsLen 5815 -prefMapSize 366571 -jsInit 285636 -parentBuildID 20220811191823 -appdir /usr/lib/firefo>
             └─3590659 /usr/lib/firefox-esr/firefox-esr -contentproc -childID 9 -isForBrowser -prefsLen 6147 -prefMapSize 366571 -jsInit 285636 -parentBuildID 20220811191823 -appdir /usr/lib/firefo>

Nov 21 14:00:13 desktop systemd[3348]: Started Limit web browser memory usage.

Thanks for the tutorial. Even though it's a bit outdated now I still learned a lot about cgroups from it.

Once you contain/limit firefox to 3G, will it help avoid OOO or is the objective to then have FF close it's self?

My tests have just shown that my system freezes up once I get to something like 5g

If MemoryMax is reached, OOM Killer will start killing processes within the unit.