upstream/opnsense-src
1
0
Fork 0
mirror of https://github.com/opnsense/src.git synced 2026-06-11 01:30:30 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

As a safety measure, disable lowering pid_max too much.

Browse source 
Requested by:	Peter Jeremy <peter@rulingia.com>
MFC after:	1 week
This commit is contained in:
Konstantin Belousov 2012-08-16 13:04:21 +00:00
parent abce621c3a
commit 3fa615bc11
2 changed files with 9 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
sys/kern/kern_mib.c
View file

@ -510,8 +510,12 @@ sysctl_kern_pid_max(SYSCTL_HANDLER_ARGS)
return (error);
sx_xlock(&proctree_lock);
sx_xlock(&allproc_lock);
/* Only permit the values less then PID_MAX. */
if (pm > PID_MAX)
/*
* Only permit the values less then PID_MAX.
* As a safety measure, do not allow to limit the pid_max too much.
*/
if (pm < 300 || pm > PID_MAX)
error = EINVAL;
else
pid_max = pm;

3
sys/kern/subr_param.c
View file

@ -255,10 +255,13 @@ init_param1(void)
/*
* Only allow to lower the maximal pid.
* Prevent setting up a non-bootable system if pid_max is too low.
*/
TUNABLE_INT_FETCH("kern.pid_max", &pid_max);
if (pid_max > PID_MAX)
pid_max = PID_MAX;
else if (pid_max < 300)
pid_max = 300;
}
/*