Package: pam
Version: 1.1.1-6.1
Severity: important
Tags: patch
User: [email protected]
Usertags: kfreebsd
Hi,
the current version of pam_limits sets too low
RLIMIT_MEMLOCK default for GNU/kFreeBSD.
Please note that on GNU/kFreeBSD, the
mlock()/munlock() calls are allowed only for superuser.
Please alter current patch as shown bellow.
I am not sure about severity, due to current situation,
there are problems like #596142, #598901, #596382.
Thanks in advance
Petr
--- debian/patches-applied/027_pam_limits_better_init_allow_explicit_root.STD
+++ debian/patches-applied/027_pam_limits_better_init_allow_explicit_root
@@ -4,13 +4,17 @@
===================================================================
--- pam.deb.orig/modules/pam_limits/pam_limits.c
+++ pam.deb/modules/pam_limits/pam_limits.c
-@@ -45,6 +45,10 @@
+@@ -45,6 +45,14 @@
#include <libaudit.h>
#endif
+#ifndef MLOCK_LIMIT
++#ifdef __FreeBSD_kernel__
++#define MLOCK_LIMIT RLIM_INFINITY
++#else
+#define MLOCK_LIMIT (64*1024)
+#endif
++#endif
+
/* Module defines */
#define LINE_LENGTH 1024
--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]