git.ipfire.org Git - thirdparty/systemd.git/commit - src/libsystemd/sd-bus/bus-socket.c

author	Lennart Poettering <lennart@poettering.net>
	Mon, 26 Nov 2018 15:06:26 +0000 (16:06 +0100)
committer	Lennart Poettering <lennart@poettering.net>
	Sat, 1 Dec 2018 11:50:45 +0000 (12:50 +0100)
commit	595225af7a4f663788d26b8720e994fed71f9410
tree	ca656b1aaa5655b0697472e7165272db02bc8a22	tree \| snapshot
parent	909106ebdf9a128627cd5974d4d388c71d694464	commit \| diff

tree-wide: invoke rlimit_nofile_safe() before various exec{v,ve,l}() invocations

Whenever we invoke external, foreign code from code that has
RLIMIT_NOFILE's soft limit bumped to high values, revert it to 1024
first. This is a safety precaution for compatibility with programs using
select() which cannot operate with fds > 1024.

This commit adds the call to rlimit_nofile_safe() to all invocations of
exec{v,ve,l}() and friends that either are in code that we know runs
with RLIMIT_NOFILE bumped up (which is PID 1 and all journal code for
starters) or that is part of shared code that might end up there.

The calls are placed as early as we can in processes invoking a flavour
of execve(), but after the last time we do fd manipulations, so that we
can still take benefit of the high fd limits for that.

src/basic/process-util.c		diff \| blob \| blame \| history
src/core/main.c		diff \| blob \| blame \| history
src/core/shutdown.c		diff \| blob \| blame \| history
src/fsck/fsck.c		diff \| blob \| blame \| history
src/import/pull-common.c		diff \| blob \| blame \| history
src/journal-remote/journal-remote-main.c		diff \| blob \| blame \| history
src/libsystemd/sd-bus/bus-socket.c		diff \| blob \| blame \| history
src/nspawn/nspawn-setuid.c		diff \| blob \| blame \| history
src/shared/exec-util.c		diff \| blob \| blame \| history
src/shared/pager.c		diff \| blob \| blame \| history
src/systemctl/systemctl.c		diff \| blob \| blame \| history
src/udev/udev-event.c		diff \| blob \| blame \| history