Re: [PATCH] net/unix: drop obsolete fd-recursion limits

From: David Miller
Date: Mon Jul 17 2017 - 11:58:29 EST

Next message: Colin King: "[PATCH][next] ubifs: fix uninitialized error variable err"
Previous message: Mel Gorman: "Re: [PATCH v4 00/10] PCID and improved laziness"
In reply to: Tom Gundersen: "Re: [PATCH] net/unix: drop obsolete fd-recursion limits"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: David Herrmann <dh.herrmann@xxxxxxxxx>
Date: Mon, 17 Jul 2017 11:35:54 +0200

...
> With all of this in mind, lets drop the recursion limit. It has no
> additional security value, anymore. On the contrary, it randomly
> confuses message brokers that try to forward file-descriptors, since
> any sendmsg(2) call can fail spuriously with ETOOMANYREFS if a client
> maliciously modifies the FD while inflight.
>
> Cc: Alban Crequy <alban.crequy@xxxxxxxxxxxxxxx>
> Cc: Simon McVittie <simon.mcvittie@xxxxxxxxxxxxxxx>
> Signed-off-by: David Herrmann <dh.herrmann@xxxxxxxxx>

Applied, thanks.

Next message: Colin King: "[PATCH][next] ubifs: fix uninitialized error variable err"
Previous message: Mel Gorman: "Re: [PATCH v4 00/10] PCID and improved laziness"
In reply to: Tom Gundersen: "Re: [PATCH] net/unix: drop obsolete fd-recursion limits"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]