[patch] unprivileged mlock(2)
Andrey Zonov
zont at FreeBSD.org
Thu Oct 4 11:01:50 UTC 2012
On 9/28/12 5:24 PM, Andrey Zonov wrote:
> On 9/27/12 7:25 PM, Simon L. B. Nielsen wrote:
>> On Tue, Sep 25, 2012 at 1:06 PM, Andrey Zonov <zont at freebsd.org> wrote:
>>> Hi,
>>>
>>> Please review this patch [1] which allows unprivileged users call
>>> mlock()/munlock() and mlockall()/munlockall().
>>>
>>> AFAIK, these calls were not allowed for every-one because accounting for
>>> mlockall(MCL_FUTURE) was not implemented.
>>
>> I can't comment on the implementation details (don't know much about
>> VM system), but do you have tests to show that the new code actually
>> works in preventing users from mlocking more than 8MB by default?
>>
>
> Sure, test is attached.
>
Hi Simon,
Have you got a chance to look at that?
--
Andrey Zonov
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 535 bytes
Desc: OpenPGP digital signature
Url : http://lists.freebsd.org/pipermail/freebsd-security/attachments/20121004/467f9cb7/signature.pgp
More information about the freebsd-security
mailing list