Home Explore Help
Sign In
GfA
/
linux_kernel
5
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

userns: When the per user per user namespace limit is reached return ENOSPC

The current error codes returned when a the per user per user
namespace limit are hit (EINVAL, EUSERS, and ENFILE) are wrong.  I
asked for advice on linux-api and it we made clear that those were
the wrong error code, but a correct effor code was not suggested.

The best general error code I have found for hitting a resource limit
is ENOSPC.  It is not perfect but as it is unambiguous it will serve
until someone comes up with a better error code.

Signed-off-by: "Eric W. Biederman" <ebiederm@xmission.com>
Eric W. Biederman 9 years ago
parent
9c722e406a
commit
df75e7748b
7 changed files with 7 additions and 7 deletions
Split View Show Diff Stats
  1. 1 1
      fs/namespace.c
  2. 1 1
      ipc/namespace.c
  3. 1 1
      kernel/cgroup.c
  4. 1 1
      kernel/pid_namespace.c
  5. 1 1
      kernel/user_namespace.c
  6. 1 1
      kernel/utsname.c
  7. 1 1
      net/core/net_namespace.c

+ 1 - 1
fs/namespace.c
View File 

@@ -2754,7 +2754,7 @@ static struct mnt_namespace *alloc_mnt_ns(struct user_namespace *user_ns)
 
 
 	ucounts = inc_mnt_namespaces(user_ns);
 
 	if (!ucounts)
 
-		return ERR_PTR(-ENFILE);
 
+		return ERR_PTR(-ENOSPC);
 
 
 	new_ns = kmalloc(sizeof(struct mnt_namespace), GFP_KERNEL);
 
 	if (!new_ns) {

+ 1 - 1
ipc/namespace.c
View File 

@@ -33,7 +33,7 @@ static struct ipc_namespace *create_ipc_ns(struct user_namespace *user_ns,
 
 	struct ucounts *ucounts;
 
 	int err;
 
 
-	err = -ENFILE;
 
+	err = -ENOSPC;
 
 	ucounts = inc_ipc_namespaces(user_ns);
 
 	if (!ucounts)
 
 		goto fail;

+ 1 - 1
kernel/cgroup.c
View File 

@@ -6354,7 +6354,7 @@ struct cgroup_namespace *copy_cgroup_ns(unsigned long flags,
 
 
 	ucounts = inc_cgroup_namespaces(user_ns);
 
 	if (!ucounts)
 
-		return ERR_PTR(-ENFILE);
 
+		return ERR_PTR(-ENOSPC);
 
 
 	/* It is not safe to take cgroup_mutex here */
 
 	spin_lock_irq(&css_set_lock);

+ 1 - 1
kernel/pid_namespace.c
View File 

@@ -98,7 +98,7 @@ static struct pid_namespace *create_pid_namespace(struct user_namespace *user_ns
 
 	int i;
 
 	int err;
 
 
-	err = -EINVAL;
 
+	err = -ENOSPC;
 
 	if (level > MAX_PID_NS_LEVEL)
 
 		goto out;
 
 	ucounts = inc_pid_namespaces(user_ns);

+ 1 - 1
kernel/user_namespace.c
View File 

@@ -76,7 +76,7 @@ int create_user_ns(struct cred *new)
 
 	struct ucounts *ucounts;
 
 	int ret, i;
 
 
-	ret = -EUSERS;
 
+	ret = -ENOSPC;
 
 	if (parent_ns->level > 32)
 
 		goto fail;

+ 1 - 1
kernel/utsname.c
View File 

@@ -49,7 +49,7 @@ static struct uts_namespace *clone_uts_ns(struct user_namespace *user_ns,
 
 	struct ucounts *ucounts;
 
 	int err;
 
 
-	err = -ENFILE;
 
+	err = -ENOSPC;
 
 	ucounts = inc_uts_namespaces(user_ns);
 
 	if (!ucounts)
 
 		goto fail;

+ 1 - 1
net/core/net_namespace.c
View File 

@@ -370,7 +370,7 @@ struct net *copy_net_ns(unsigned long flags,
 
 
 	ucounts = inc_net_namespaces(user_ns);
 
 	if (!ucounts)
 
-		return ERR_PTR(-ENFILE);
 
+		return ERR_PTR(-ENOSPC);
 
 
 	net = net_alloc();
 
 	if (!net) {