Re: [PATCH 14/16] vfs: Implement mount_super_once

From: Austin S. Hemmelgarn
Date: Wed Apr 20 2016 - 07:51:35 EST

Next message: tip-bot for Sebastian Andrzej Siewior: "[tip:locking/urgent] futex: Handle unlock_pi race gracefully"
Previous message: Kedareswara rao Appana: "[PATCH v2 2/2] dmaengine: vdma: Add clock support"
In reply to: Eric W. Biederman: "Re: [PATCH 14/16] vfs: Implement mount_super_once"
Next in thread: H. Peter Anvin: "Re: [PATCH 14/16] vfs: Implement mount_super_once"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 2016-04-19 23:27, Eric W. Biederman wrote:

"H. Peter Anvin" <hpa@xxxxxxxxx> writes:

On April 19, 2016 12:25:03 PM PDT, "H. Peter Anvin" <hpa@xxxxxxxxx> wrote:

Perhaps a (privileged) option to exempt from the global limit, then.
Something we can implement if asked for.

However, I wouldn't be 100% that the reserved pool isn't used. Someone
added it presumably for a reason. An administrator could say it and
we'd have no idea.

... and if I personally was running a container-hosting system, I
would *absolutely* set it to make sure the administrator could not get
locked out.

That is likely easier done by setting:
echo RIDICULOUSLY_LARGE_NUMBER > /proc/sys/kernel/pty/max

This may protect against administrative lockout on a sane system with responsible users, but it doesn't protect you from lockout due to a DoS attack, while the reserved pool does (or at least, it makes sure you can still allocate a few PTY's even when under attack).

Next message: tip-bot for Sebastian Andrzej Siewior: "[tip:locking/urgent] futex: Handle unlock_pi race gracefully"
Previous message: Kedareswara rao Appana: "[PATCH v2 2/2] dmaengine: vdma: Add clock support"
In reply to: Eric W. Biederman: "Re: [PATCH 14/16] vfs: Implement mount_super_once"
Next in thread: H. Peter Anvin: "Re: [PATCH 14/16] vfs: Implement mount_super_once"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]