Re: sbrk(2) broken

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

To: Dag-Erling Smørgrav <des@...>

Cc: <freebsd-current@...>, Jason Evans <jasone@...>, Poul-Henning Kamp <phk@...>

Date: Friday, January 4, 2008 - 9:26 am

On Fri, 4 Jan 2008, Dag-Erling Sm=F8rgrav wrote:

quoted text> Robert Watson <rwatson@FreeBSD.org> writes:
>> Dag-Erling Sm=F8rgrav <des@des.no> writes:
>>> Robert Watson <rwatson@FreeBSD.org> writes:
>>>> The right answer is presumably to introduce a new LIMIT_SWAP, which=20
>>>> limits the allocation of anonymous memory by processes, and size it to=
=20
quoted text>>>> something like 90% of swap space by default.
>>> Not a good solution on its own.  You need a per-process limit as well,=
=20
quoted text>>> otherwise a malloc() bomb will still cause other processes to fail=20
>>> randomly.
>> That was what I had in mind, the above should read RLIMIT_SWAP.
>
> You don't want the default to be so high.  You want a low default, with t=
he=20
quoted text> possibility for the admin to increase the limit for a particular user in=
=20
quoted text> login.conf or similar without rebooting (which is currently not possible=
=20
quoted text> since the default datasize =3D=3D maxdsiz, which can only be changed in t=
he=20
quoted text> kernel config or loader.conf)

I'm fine with also having global limits.

quoted text> You may also want to have a collective limit for unprivileged users, so r=
oot=20
quoted text> will still be able to log in if something goes wrong.

This will presumably only work for console logins, as sshd (etc) will depen=
d=20
on unprivileged users, but perhaps that is fine.  I'm less concerned with t=
he=20
details of the implementation or policy than that we simply be able to supp=
ort=20
even a basic policy and have it configured by default to prevent=20
foot-shooting.

Robert N M Watson
Computer Laboratory
University of Cambridge

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

sbrk(2) broken, Jason Evans, (Thu Jan 3, 2:38 am)

Re: sbrk(2) broken, Andrey Chernov, (Fri Jan 4, 8:21 am)

Re: sbrk(2) broken , Poul-Henning Kamp, (Fri Jan 4, 8:57 am)

Re: sbrk(2) broken, Andrey Chernov, (Fri Jan 4, 9:12 am)

Re: sbrk(2) broken, David Taylor, (Fri Jan 4, 9:25 am)

Re: sbrk(2) broken, Andrey Chernov, (Fri Jan 4, 10:22 am)

Re: sbrk(2) broken , Poul-Henning Kamp, (Fri Jan 4, 9:28 am)

Re: sbrk(2) broken, Kostik Belousov, (Thu Jan 3, 4:39 pm)

Re: sbrk(2) broken, Dag-Erling Smørgrav, (Thu Jan 3, 3:21 pm)

Re: sbrk(2) broken, Robert Watson, (Thu Jan 3, 8:26 pm)

Re: sbrk(2) broken, Igor Mozolevsky, (Fri Jan 4, 6:41 am)

Re: sbrk(2) broken, Robert Watson, (Fri Jan 4, 7:19 am)

Re: sbrk(2) broken, Dag-Erling Smørgrav, (Fri Jan 4, 6:55 am)

Re: sbrk(2) broken, Igor Mozolevsky, (Fri Jan 4, 7:18 am)

Re: sbrk(2) broken, Giorgos Keramidas, (Fri Jan 4, 11:26 pm)

Re: sbrk(2) broken, Dag-Erling Smørgrav, (Fri Jan 4, 8:45 am)

Re: sbrk(2) broken , Poul-Henning Kamp, (Fri Jan 4, 8:53 am)

Re: sbrk(2) broken, Igor Mozolevsky, (Fri Jan 4, 9:03 am)

Re: sbrk(2) broken, Dag-Erling Smørgrav, (Fri Jan 4, 9:12 am)

Re: sbrk(2) broken, Kostik Belousov, (Fri Jan 4, 9:48 am)

Re: sbrk(2) broken , Poul-Henning Kamp, (Mon Jan 7, 5:08 am)

Re: sbrk(2) broken, Peter Jeremy, (Mon Jan 7, 5:58 am)

Re: sbrk(2) broken , Poul-Henning Kamp, (Mon Jan 7, 6:05 am)

Re: sbrk(2) broken, Igor Mozolevsky, (Mon Jan 7, 9:15 am)

Re: sbrk(2) broken , Poul-Henning Kamp, (Mon Jan 7, 9:18 am)

Re: sbrk(2) broken, Andrew Reilly, (Mon Jan 7, 7:19 pm)

Re: sbrk(2) broken, Igor Mozolevsky, (Mon Jan 7, 8:06 pm)

Re: sbrk(2) broken , Poul-Henning Kamp, (Mon Jan 7, 8:17 pm)

Re: sbrk(2) broken, Peter Schuller, (Mon Jan 7, 9:37 pm)

Re: sbrk(2) broken, Dag-Erling Smørgrav, (Tue Jan 8, 2:36 pm)

Re: sbrk(2) broken, Peter Schuller, (Wed Jan 9, 2:22 pm)

Re: sbrk(2) broken, Dag-Erling Smørgrav, (Thu Jan 10, 6:04 am)

Re: sbrk(2) broken, Dag-Erling Smørgrav, (Thu Jan 10, 10:31 am)

Re: sbrk(2) broken, Igor Mozolevsky, (Mon Jan 7, 8:57 pm)

Re: sbrk(2) broken , Poul-Henning Kamp, (Tue Jan 8, 4:31 am)

Re: sbrk(2) broken, Alexander Kabaev, (Mon Jan 7, 10:34 pm)

Re: sbrk(2) broken, Andrew Reilly, (Mon Jan 7, 8:28 pm)

Re: sbrk(2) broken, Robert Watson, (Fri Jan 4, 9:24 am)

Re: sbrk(2) broken, Dag-Erling Smørgrav, (Sat Jan 5, 9:50 am)

Re: sbrk(2) broken, Kris Kennaway, (Fri Jan 4, 7:31 am)

Re: sbrk(2) broken, Robert Watson, (Fri Jan 4, 7:22 am)

Re: sbrk(2) broken, Igor Mozolevsky, (Fri Jan 4, 7:30 am)

Re: sbrk(2) broken, Robert Watson, (Fri Jan 4, 7:38 am)

Re: sbrk(2) broken, Dag-Erling Smørgrav, (Fri Jan 4, 8:48 am)

Re: sbrk(2) broken, Dag-Erling Smørgrav, (Fri Jan 4, 5:32 am)

Re: sbrk(2) broken, Robert Watson, (Fri Jan 4, 7:06 am)

Re: sbrk(2) broken, Skip Ford, (Fri Jan 4, 9:54 am)

Re: sbrk(2) broken, Kostik Belousov, (Fri Jan 4, 9:59 am)

Re: sbrk(2) broken, Skip Ford, (Fri Jan 4, 10:11 am)

Re: sbrk(2) broken, Kostik Belousov, (Fri Jan 4, 10:18 am)

Re: sbrk(2) broken, Skip Ford, (Fri Jan 4, 10:58 am)

Re: sbrk(2) broken, Dag-Erling Smørgrav, (Sat Jan 5, 10:01 am)

Re: sbrk(2) broken, Dag-Erling Smørgrav, (Fri Jan 4, 8:34 am)

Re: sbrk(2) broken, Robert Watson, (Fri Jan 4, 9:26 am)

Re: sbrk(2) broken , Ian FREISLICH, (Fri Jan 4, 2:27 am)

Re: sbrk(2) broken, Peter Jeremy, (Fri Jan 4, 5:51 am)

Re: sbrk(2) broken, Kostik Belousov, (Fri Jan 4, 8:47 am)

Re: sbrk(2) broken, Scott Long, (Thu Jan 3, 6:23 pm)

Re: sbrk(2) broken, John Baldwin, (Thu Jan 3, 6:46 pm)

Re: sbrk(2) broken, Scott Long, (Thu Jan 3, 7:08 pm)

Re: sbrk(2) broken, Robert Watson, (Thu Jan 3, 8:31 pm)

Re: sbrk(2) broken, Peter Schuller, (Thu Jan 3, 5:00 pm)

Re: sbrk(2) broken, Jason Fesler, (Thu Jan 3, 5:08 pm)

Re: sbrk(2) broken, Dag-Erling Smørgrav, (Fri Jan 4, 5:07 am)

Re: sbrk(2) broken, Tim Kientzle, (Fri Jan 4, 1:55 pm)

ELF dynamic loader name [was: sbrk(2) broken], Maxim Sobolev, (Fri Jan 4, 5:25 pm)

Re: ELF dynamic loader name [was: sbrk(2) broken], Peter Wemm, (Fri Jan 4, 5:42 pm)

Re: ELF dynamic loader name [was: sbrk(2) broken], Tim Kientzle, (Fri Jan 4, 11:51 pm)

Re: ELF dynamic loader name, Dag-Erling Smørgrav, (Sat Jan 5, 10:16 am)

Re: ELF dynamic loader name, Tim Kientzle, (Sun Jan 13, 3:33 pm)

Re: ELF dynamic loader name, John Baldwin, (Mon Jan 14, 9:51 am)

Re: ELF dynamic loader name, Dag-Erling Smørgrav, (Sun Jan 13, 3:48 pm)

Re: ELF dynamic loader name, John Baldwin, (Mon Jan 14, 9:46 am)

Re: ELF dynamic loader name, Alexander Leidinger, (Mon Jan 14, 7:03 am)

Re: ELF dynamic loader name [was: sbrk(2) broken] , Danny Braniss, (Sat Jan 5, 3:32 am)

Re: ELF dynamic loader name [was: sbrk(2) broken], Peter Wemm, (Sat Jan 5, 6:24 pm)

Re: ELF dynamic loader name [was: sbrk(2) broken] , Danny Braniss, (Sun Jan 6, 3:56 am)

Re: ELF dynamic loader name [was: sbrk(2) broken], Andrew Reilly, (Sun Jan 6, 4:42 pm)

Re: ELF dynamic loader name, Dag-Erling Smørgrav, (Mon Jan 7, 5:42 am)

Re: ELF dynamic loader name, Andrew Reilly, (Mon Jan 7, 7:30 pm)

Re: ELF dynamic loader name, Dag-Erling Smørgrav, (Tue Jan 8, 5:27 am)

Re: ELF dynamic loader name [was: sbrk(2) broken], Maxim Sobolev, (Fri Jan 4, 7:42 pm)

Re: ELF dynamic loader name [was: sbrk(2) broken], Maxim Sobolev, (Fri Jan 4, 7:38 pm)

Re: ELF dynamic loader name, Dag-Erling Smørgrav, (Sat Jan 5, 10:03 am)

Re: ELF dynamic loader name, Ollivier Robert, (Sat Jan 5, 4:56 pm)


linux-kernel:
David Miller	[GIT]: Networking
Greg KH	Re: Dual-Licensing Linux Kernel with GPL V2 and GPL V3
Geert Uytterhoeven	Re: linux-next: Tree for August 14
Bart Van Assche	Integration of SCST in the mainstream Linux kernel
git:

linux-netdev:
Arjan van de Ven	Re: [GIT]: Networking
Gerrit Renker	[PATCH 27/37] dccp: Integration of dynamic feature activation - part 2 (server side)
David Miller	Re: [PATCH] pkt_sched: Destroy gen estimators under rtnl_lock().
David Woodhouse	Re: [bug?] tg3: Failed to load firmware "tigon/tg3_tso.bin"
openbsd-misc:

Re: sbrk(2) broken

Online users