exec: Use sane stack rlimit under secureexec - kernel

diff options

author	Kees Cook <[email protected]>	2017-07-18 22:25:35 +0000
committer	Kees Cook <[email protected]>	2017-08-01 19:03:14 +0000
commit	64701dee4178eb4a771b8b36cd86560f5b0e2460 (patch)
tree	1a0012699f1c5ba4fb7909eb0db75aaf10168e7a /lib/dump_stack.c
parent	exec: Consolidate dumpability logic (diff)
download	kernel-64701dee4178eb4a771b8b36cd86560f5b0e2460.tar.gz kernel-64701dee4178eb4a771b8b36cd86560f5b0e2460.zip

exec: Use sane stack rlimit under secureexec

For a secureexec, before memory layout selection has happened, reset the stack rlimit to something sane to avoid the caller having control over the resulting layouts. $ ulimit -s 8192 $ ulimit -s unlimited $ /bin/sh -c 'ulimit -s' unlimited $ sudo /bin/sh -c 'ulimit -s' 8192 Cc: Linus Torvalds <[email protected]> Signed-off-by: Kees Cook <[email protected]> Reviewed-by: James Morris <[email protected]> Acked-by: Serge Hallyn <[email protected]>

Diffstat (limited to 'lib/dump_stack.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: