On Thu 22-04-21 13:50:59, Greg KH wrote: > On Thu, Apr 22, 2021 at 01:44:59PM +0200, Michal Hocko wrote: > > On Thu 22-04-21 13:23:21, Greg KH wrote: > > > On Thu, Apr 22, 2021 at 01:37:53PM +0300, Vasily Averin wrote: > > > > At each login the user forces the kernel to create a new terminal and > > > > allocate up to ~1Kb memory for the tty-related structures. > > > > > > Does this tiny amount of memory actually matter? > > > > The primary question is whether an untrusted user can trigger an > > unbounded amount of these allocations. > > Can they? They are not bounded by some other resource limit? I dunno. This is not my area. I am not aware of any direct rlimit (maybe RLIMIT_NPROC) and maybe pid controller would help. But the changelog should definitely mention that. Other patches tend to mention the scenario they protect from this one should be more specific. -- Michal Hocko SUSE Labs
