On Tue, Sep 25, 2012 at 1:06 PM, Andrey Zonov <[email protected]> wrote: > Hi, > > Please review this patch [1] which allows unprivileged users call > mlock()/munlock() and mlockall()/munlockall(). > > AFAIK, these calls were not allowed for every-one because accounting for > mlockall(MCL_FUTURE) was not implemented. I can't comment on the implementation details (don't know much about VM system), but do you have tests to show that the new code actually works in preventing users from mlocking more than 8MB by default? -- Simon L. B. Nielsen _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "[email protected]"