Re: [PATCH v9 4/8] Reimplement RLIMIT_NPROC on top of ucounts

From: Alexey Gladkov
Date: Tue Apr 06 2021 - 11:44:53 EST

Next message: Rafael J. Wysocki: "Re: [PATCH v2] ACPI: processor: Fix build when CONFIG_ACPI_PROCESSOR=m"
Previous message: Florent Revest: "Re: [PATCH bpf-next v2 4/6] libbpf: Initialize the bpf_seq_printf parameters array field by field"
In reply to: Eric W. Biederman: "Re: [PATCH v9 4/8] Reimplement RLIMIT_NPROC on top of ucounts"
Next in thread: Eric W. Biederman: "Re: [PATCH v9 4/8] Reimplement RLIMIT_NPROC on top of ucounts"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Apr 05, 2021 at 11:56:35AM -0500, Eric W. Biederman wrote:
>
> Also when setting ns->ucount_max[] in create_user_ns because one value
> is signed and the other is unsigned. Care should be taken so that
> rlimit_infinity is translated into the largest positive value the
> type can hold.

You mean like that ?

ns->ucount_max[UCOUNT_RLIMIT_NPROC] = rlimit(RLIMIT_NPROC) <= LONG_MAX ?
rlimit(RLIMIT_NPROC) : LONG_MAX;
ns->ucount_max[UCOUNT_RLIMIT_MSGQUEUE] = rlimit(RLIMIT_MSGQUEUE) <= LONG_MAX ?
rlimit(RLIMIT_MSGQUEUE) : LONG_MAX;
ns->ucount_max[UCOUNT_RLIMIT_SIGPENDING] = rlimit(RLIMIT_SIGPENDING) <= LONG_MAX ?
rlimit(RLIMIT_SIGPENDING) : LONG_MAX;
ns->ucount_max[UCOUNT_RLIMIT_MEMLOCK] = rlimit(RLIMIT_MEMLOCK) <= LONG_MAX ?
rlimit(RLIMIT_MEMLOCK) : LONG_MAX;

--
Rgrds, legion

Next message: Rafael J. Wysocki: "Re: [PATCH v2] ACPI: processor: Fix build when CONFIG_ACPI_PROCESSOR=m"
Previous message: Florent Revest: "Re: [PATCH bpf-next v2 4/6] libbpf: Initialize the bpf_seq_printf parameters array field by field"
In reply to: Eric W. Biederman: "Re: [PATCH v9 4/8] Reimplement RLIMIT_NPROC on top of ucounts"
Next in thread: Eric W. Biederman: "Re: [PATCH v9 4/8] Reimplement RLIMIT_NPROC on top of ucounts"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]