diff options
author | Eric W. Biederman <ebiederm@xmission.com> | 2016-08-08 14:37:37 -0500 |
---|---|---|
committer | Eric W. Biederman <ebiederm@xmission.com> | 2016-08-31 07:28:35 -0500 |
commit | 537f7ccb396804c6d0057b93ba8eb104ba44f851 (patch) | |
tree | 0fbb44ee9bb13aed8c9e3fedede97c07dcf2a4da /kernel/ucount.c | |
parent | 703286608a220d53584cca5986aad5305eec75ed (diff) | |
download | op-kernel-dev-537f7ccb396804c6d0057b93ba8eb104ba44f851.zip op-kernel-dev-537f7ccb396804c6d0057b93ba8eb104ba44f851.tar.gz |
mntns: Add a limit on the number of mount namespaces.
v2: Fixed the very obvious lack of setting ucounts
on struct mnt_ns reported by Andrei Vagin, and the kbuild
test report.
Reported-by: Andrei Vagin <avagin@openvz.org>
Acked-by: Kees Cook <keescook@chromium.org>
Signed-off-by: "Eric W. Biederman" <ebiederm@xmission.com>
Diffstat (limited to 'kernel/ucount.c')
-rw-r--r-- | kernel/ucount.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/kernel/ucount.c b/kernel/ucount.c index 205f1a0..9d20d5d 100644 --- a/kernel/ucount.c +++ b/kernel/ucount.c @@ -72,6 +72,7 @@ static struct ctl_table user_table[] = { UCOUNT_ENTRY("max_uts_namespaces"), UCOUNT_ENTRY("max_ipc_namespaces"), UCOUNT_ENTRY("max_net_namespaces"), + UCOUNT_ENTRY("max_mnt_namespaces"), UCOUNT_ENTRY("max_cgroup_namespaces"), { } }; |