Eric Dumazet 12987cd3a4 af_unix: limit recursion level ... [ Upstream commit 25888e3031 ] Its easy to eat all kernel memory and trigger NMI watchdog, using an exploit program that queues unix sockets on top of others. lkml ref : http://lkml.org/lkml/2010/11/25/8 This mechanism is used in applications, one choice we have is to have a recursion limit. Other limits might be needed as well (if we queue other types of files), since the passfd mechanism is currently limited by socket receive queue sizes only. Add a recursion_level to unix socket, allowing up to 4 levels. Each time we send an unix socket through sendfd mechanism, we copy its recursion level (plus one) to receiver. This recursion level is cleared when socket receive queue is emptied. Reported-by: Марк Коренберг <socketpair@gmail.com> Signed-off-by: Eric Dumazet <eric.dumazet@gmail.com> Signed-off-by: David S. Miller <davem@davemloft.net> Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>		2011-01-07 13:58:26 -08:00
..
acpi	ACPI: Fix typos	2010-09-28 21:38:19 -04:00
asm-generic	gpio: doc updates	2010-09-09 18:57:24 -07:00
crypto
drm	drm/ttm: Fix two race conditions + fix busy codepaths	2010-10-06 09:04:43 +10:00
keys
linux	bootmem: Add alloc_bootmem_align()	2011-01-07 13:58:19 -08:00
math-emu
media	V4L/DVB: videobuf-dma-sg: set correct size in last sg element	2010-09-27 22:22:01 -03:00
mtd	mtd: Update copyright notices	2010-08-08 20:58:20 +01:00
net	af_unix: limit recursion level	2011-01-07 13:58:26 -08:00
pcmcia
rdma
rxrpc
scsi	scsi: use __uX types for headers exported to user space	2010-08-11 08:59:01 -07:00
sound	ALSA: emu10k1 - delay the PCM interrupts (add pcm_irq_delay parameter)	2010-08-18 15:10:59 +02:00
trace	Merge branch 'perf-fixes-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/linux-2.6-tip	2010-08-24 12:21:49 -07:00
video	include: replace unifdef-y with header-y	2010-08-14 22:26:51 +02:00
xen	xen: pvhvm: make it clearer that XEN_UNPLUG_* define bits in a bitfield	2010-08-23 12:01:35 +01:00
Kbuild