isa/sudo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Sudo doesn't require such a large stack.

Browse Source
This commit is contained in:
Todd C. Miller
2019-12-25 13:13:20 -07:00
parent 047f37ade3
commit dbc905fdf8
1 changed files with 8 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
src/limits.c
View File

@@ -47,13 +47,19 @@
# define SUDO_OPEN_MAX 256
#endif
#ifdef __LP64__
# define SUDO_STACK_MIN (4 * 1024 * 1024)
#else
# define SUDO_STACK_MIN (2 * 1024 * 1024)
#endif
/*
* macOS doesn't allow nofile soft limit to be infinite or
* the stack hard limit to be infinite.
* Linux containers have a problem with an infinite stack soft limit.
*/
static struct rlimit nofile_fallback = { SUDO_OPEN_MAX, RLIM_INFINITY };
static struct rlimit stack_fallback = { 8192 * 1024, 65532 * 1024 };
static struct rlimit stack_fallback = { SUDO_STACK_MIN, 65532 * 1024 };
static struct saved_limit {
const char *name;
@@ -76,7 +82,7 @@ static struct saved_limit {
#ifdef RLIMIT_RSS
{ "RLIMIT_RSS", RLIMIT_RSS, false, NULL, { RLIM_INFINITY, RLIM_INFINITY } },
#endif
{ "RLIMIT_STACK", RLIMIT_STACK, false, &stack_fallback, { 8192 * 1024, RLIM_INFINITY } }
{ "RLIMIT_STACK", RLIMIT_STACK, false, &stack_fallback, { SUDO_STACK_MIN, RLIM_INFINITY } }
};
static struct rlimit corelimit;