Date: Thu, 27 Sep 2012 16:25:29 +0100 From: "Simon L. B. Nielsen" <simon@FreeBSD.org> To: Andrey Zonov <zont@freebsd.org> Cc: freebsd-security@freebsd.org Subject: Re: [patch] unprivileged mlock(2) Message-ID: <CAC8HS2G84_t5G0KrwEhkwhfRWY%2B6Cck8vQYRJnv3vQOsBPPD_g@mail.gmail.com> In-Reply-To: <50619E5D.3010503@FreeBSD.org> References: <50619E5D.3010503@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Sep 25, 2012 at 1:06 PM, Andrey Zonov <zont@freebsd.org> wrote: > Hi, > > Please review this patch [1] which allows unprivileged users call > mlock()/munlock() and mlockall()/munlockall(). > > AFAIK, these calls were not allowed for every-one because accounting for > mlockall(MCL_FUTURE) was not implemented. I can't comment on the implementation details (don't know much about VM system), but do you have tests to show that the new code actually works in preventing users from mlocking more than 8MB by default? -- Simon L. B. Nielsen
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAC8HS2G84_t5G0KrwEhkwhfRWY%2B6Cck8vQYRJnv3vQOsBPPD_g>