diff options
author | Linus Torvalds <torvalds@linux-foundation.org> | 2022-10-09 16:24:05 -0700 |
---|---|---|
committer | Linus Torvalds <torvalds@linux-foundation.org> | 2022-10-09 16:24:05 -0700 |
commit | 493ffd6605b2d3d4dc7008ab927dba319f36671f (patch) | |
tree | 116e94c55fc708946ef62a5241bb0cc9a4ee9d3f /kernel/sys.c | |
parent | e572410e47a4e9647d5d7a49ca699a1497378707 (diff) | |
parent | de399236e240743ad2dd10d719c37b97ddf31996 (diff) | |
download | lwn-493ffd6605b2d3d4dc7008ab927dba319f36671f.tar.gz lwn-493ffd6605b2d3d4dc7008ab927dba319f36671f.zip |
Merge tag 'ucount-rlimits-cleanups-for-v5.19' of git://git.kernel.org/pub/scm/linux/kernel/git/ebiederm/user-namespace
Pull ucounts update from Eric Biederman:
"Split rlimit and ucount values and max values
After the ucount rlimit code was merged a bunch of small but
siginificant bugs were found and fixed. At the time it was realized
that part of the problem was that while the ucount rlimits were very
similar to the oridinary ucounts (in being nested counts with limits)
the semantics were slightly different and the code would be less error
prone if there was less sharing.
This is the long awaited cleanup that should hopefully keep things
more comprehensible and less error prone for whoever needs to touch
that code next"
* tag 'ucount-rlimits-cleanups-for-v5.19' of git://git.kernel.org/pub/scm/linux/kernel/git/ebiederm/user-namespace:
ucounts: Split rlimit and ucount values and max values
Diffstat (limited to 'kernel/sys.c')
-rw-r--r-- | kernel/sys.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/kernel/sys.c b/kernel/sys.c index b911fa6d81ab..8a6432465dc5 100644 --- a/kernel/sys.c +++ b/kernel/sys.c @@ -496,7 +496,7 @@ static void flag_nproc_exceeded(struct cred *new) * for programs doing set*uid()+execve() by harmlessly deferring the * failure to the execve() stage. */ - if (is_ucounts_overlimit(new->ucounts, UCOUNT_RLIMIT_NPROC, rlimit(RLIMIT_NPROC)) && + if (is_rlimit_overlimit(new->ucounts, UCOUNT_RLIMIT_NPROC, rlimit(RLIMIT_NPROC)) && new->user != INIT_USER) current->flags |= PF_NPROC_EXCEEDED; else |