Re: Local DoS (was: Strange 'zombie' problem both in 2.4 and 2.6)

From: Denis Vlasenko
Date: Fri Apr 09 2004 - 09:50:21 EST

Next message: Dave Airlie: "[patch] Trying to get DRM up to date in 2.6"
Previous message: Philippe Elie: "Re: io_apic & timer_ack fix"
In reply to: Nikita V. Youshchenko: "Local DoS (was: Strange 'zombie' problem both in 2.4 and 2.6)"
Next in thread: Marcelo Tosatti: "Re: Local DoS (was: Strange 'zombie' problem both in 2.4 and 2.6)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Friday 09 April 2004 12:11, Nikita V. Youshchenko wrote:
> Hello.
>
> Several days ago I've posted to linux-kernel describing "zombie problem"
> related to sigqueue overflow.
>
> Futher exploration of the problem showed that the reason of the described
> behaviour is in user-space. There is a process that blocks a signal and
> later receives tons of such signals. This effectively causes sigqueue
> overflow.

One solution would be to watermark sigqueue and upon reaching
high mark, find the process with most signals queued and drop those.
This prevents one buggy process, even root-launched, from interfering
with non-buggy ones.

If low watermark is not reached, find _UID_ which have max # of
signals pending, and drop them all. This will work against rogue
user trying to DoS box who's careful enough to do it from multiple
processes.
--
vda

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Dave Airlie: "[patch] Trying to get DRM up to date in 2.6"
Previous message: Philippe Elie: "Re: io_apic & timer_ack fix"
In reply to: Nikita V. Youshchenko: "Local DoS (was: Strange 'zombie' problem both in 2.4 and 2.6)"
Next in thread: Marcelo Tosatti: "Re: Local DoS (was: Strange 'zombie' problem both in 2.4 and 2.6)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]