From owner-freebsd-hackers@FreeBSD.ORG Mon Apr 7 12:25:33 2014 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id F1B987F8 for ; Mon, 7 Apr 2014 12:25:33 +0000 (UTC) Received: from mail.feld.me (mail.feld.me [66.170.3.6]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (Client CN "mail.feld.me", Issuer "Gandi Standard SSL CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 947C87C7 for ; Mon, 7 Apr 2014 12:25:33 +0000 (UTC) Received: from mail.feld.me (mail.feld.me [66.170.3.6]); by mail.feld.me (OpenSMTPD) with ESMTP id a09eda8a; for ; Mon, 7 Apr 2014 07:25:24 -0500 (CDT) Received: from feld@feld.me by mail.feld.me (Archiveopteryx 3.2.0) with esmtpsa id 1396873523-54438-54435/5/1; Mon, 7 Apr 2014 12:25:23 +0000 Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Date: Mon, 7 Apr 2014 07:25:22 -0500 From: Mark Felder To: freebsd-hackers@freebsd.org Subject: Re: pipe() resource exhaustion In-Reply-To: References: Message-Id: X-Sender: feld@FreeBSD.org User-Agent: Roundcube Webmail/0.9.5 Sender: feld@feld.me X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 07 Apr 2014 12:25:34 -0000 On 2014-04-07 06:02, Ivan Voras wrote: > Hello, > > Last time I mentioned this it didn't get any attention, so I'll try > again. By accident (via a buggy synergy server process) I found that a > simple userland process can exhaust kernel pipe memory > (kern.ipc.pipekva > sysctl) which as a consequence has that new processes which use pipe > cannot be started, which includes "su", by which an administrator could > kill such a process. > That's a pretty painful local denial of service :(