Re: shmget with SHM_HUGETLB flag: Operation not permitted
From: Zlatko Calusic
Date: Fri Feb 27 2004 - 11:43:22 EST
William Lee Irwin III <wli@xxxxxxxxxxxxxx> writes:
> On Fri, Feb 27, 2004 at 05:32:46PM +0100, Zlatko Calusic wrote:
>> Of course! Appended simple patch is what i did (ugly, I know) and that
>> helped me install Oracle10g on Debian unstable (with two other
>> adaptations). I don't know how in the hell I forgot to put that
>> important patch on my page where I explain how to install Oracle10g on
>> Debian?! Sorry, it'll be on http://linux.inet.hr/oracle10g_on_debian.html
>> later today or tomorrow, after I check some other problems people have
>> reported to me (and you Jochen, too :)).
>
> You have to be a bit more careful than this; this gives any user the
> ability to consume locked memory via shmget().
Yes, I know! But hopefully this security implication is not so
important for people who just want to test new database on their
workstations (like me), or even install it on the production database
server where you mostly don't see any other shell user beside the
administrator of the machine.
But yes, you're right, we need to warn people.
DON'T use the patch if you have untrusty shell users on your machine!!!
--
Zlatko
P.S. Although, if superuser properly limits the number of hugepages
that can be allocated (echo "valid nr of pages" > nr_hugepages)
what does attacker do to consume more pages than that? Just
curious...
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/