Re: Stack size limit

To: Kevin Chadwick <kc-usenet@chadwicks.me.uk>
Cc: debian-devel@lists.debian.org
Subject: Re: Stack size limit
From: Florian Weimer <fweimer@redhat.com>
Date: Mon, 24 Nov 2025 17:33:35 +0100
Message-id: <[🔎] lhuh5ujl7a8.fsf@oldenburg.str.redhat.com>
In-reply-to: <[🔎] 10g1g84$2c8i0$1@dont-email.me> (Kevin Chadwick's message of "Mon, 24 Nov 2025 11:40:52 -0000 (UTC)")
References: <[🔎] 10g1g84$2c8i0$1@dont-email.me>

* Kevin Chadwick:

> My research has led me to believe that limiting stack size is unfair to
> languages like Ada and Rust that prioritise security. Whilst there are a
> number of invalid reasons posted online for limiting it more than the heap.
> The real reason was limited virtual address space which is not an issue on
> 64-bit systems. The stack is also faster generally (the heap is useful for
> some data structures of course) and so discouraging it's use so heavily for
> programs without root seems sub optimal?
>
> Even if the kernel probably shouldn't. There might be an issue of the kernel
> expecting it to be limited even though it probably shouldn't. Does anyone
> know if that is true?

What prompts your concern?  I don't think Debian sets a hard stack
limit.

Unlimited stack tends to trigger less-tested ASLR code paths and breaks
things.  It's also not great from an overall system robustness
perspective because unbounded recursion seems to be more common than
rapid, unbounded allocation.  So the current setting (lower limit by
default that can be increased if needed) seems reasonable.

Thanks,
Florian

Reply to:

References:
- Stack size limit
  - From: Kevin Chadwick <kc-usenet@chadwicks.me.uk>

Prev by Date: Re: MBF: Removal of iptables-legacy
Next by Date: Re: MBF: Removal of iptables-legacy
Previous by thread: Stack size limit
Next by thread: Re: Stack size limit
Index(es):
- Date
- Thread