Re: [PATCH] per-user signal pending and message queue limits

From: Marcelo Tosatti
Date: Tue Apr 20 2004 - 18:17:19 EST

Next message: Chris Stromsoe: "two lockups with 2.4.25"
Previous message: Eamonn Hamilton: "Re: e100 NETDEV WATCHDOG transmit timeout since 2.6.4"
In reply to: Andrew Morton: "Re: [PATCH] per-user signal pending and message queue limits"
Next in thread: Andrew Morton: "Re: [PATCH] per-user signal pending and message queue limits"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Apr 20, 2004 at 01:04:39PM -0700, Andrew Morton wrote:
> Marcelo Tosatti <marcelo.tosatti@xxxxxxxxxxxx> wrote:
> >
> > I wonder if it is a good idea to base mqueue limitation on the number of
> > > message queues and not take into account how big they are.
> > > 64 message queues with 1 byte msgsize and 1 maxmsg is certainly quite
> > > harmless and the system could have even more queues for such a user,
> > > while 64 message queues with 16K msgsize (current default) and 40 maxmsg
> > > (also default) eats ~ 40M of kernel memory.
> >
> > Indeed, it seems more correct to account for something else than "nr of message queues".
> >
> > Memory occupied sounds better, yeap?
> >
> > I'm sending the patch anyway, we can use the same RLIMIT_MSGQUEUE and user->msg_queues later
> > on with another meaning.
> >
> > Here it goes the update version, Andrew:
>
> But we still have the global mq and signal limits? These permit local
> denials of service attacks. See
> http://seclists.org/lists/linux-kernel/2004/Apr/2065.html

Right, but one user can't starve the whole system anymore. You need 4 users starving
their quotas for it to become a local denial of service attack. But you are right,
we can remove the global pending signal. I will prepare and test
another patch tomorrow morning.

As for mqueues, currently root is allowed to allocate infinite number of mqueues. We
want to remove that and calculate on the amount of memory allocated. I'll also think
about it and come with an implementation tomorrow morning.

> The major advantage of your work is that we can now remove those limits.
> You'll be needing a 2.4 backport ;)

Yeap. :)

And we also need to do the userspace part. ulimit is part of bash, so
probably all shell's should be awared of this? I never looked
how "ulimit" utility works.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Chris Stromsoe: "two lockups with 2.4.25"
Previous message: Eamonn Hamilton: "Re: e100 NETDEV WATCHDOG transmit timeout since 2.6.4"
In reply to: Andrew Morton: "Re: [PATCH] per-user signal pending and message queue limits"
Next in thread: Andrew Morton: "Re: [PATCH] per-user signal pending and message queue limits"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]