From: Hagen Paul Pfeifer <hagen@jauu.net>
To: Linus Torvalds <torvalds@linux-foundation.org>
Cc: Mike Rapoport <rppt@linux.ibm.com>,
Andrew Morton <akpm@linux-foundation.org>,
Arnd Bergmann <arnd@arndb.de>, Borislav Petkov <bp@alien8.de>,
Catalin Marinas <catalin.marinas@arm.com>,
Christoph Lameter <cl@linux.com>,
Dan Williams <dan.j.williams@intel.com>,
Dave Hansen <dave.hansen@linux.intel.com>,
David Hildenbrand <david@redhat.com>,
"Reshetova, Elena" <elena.reshetova@intel.com>,
Roman Gushchin <guro@fb.com>, Peter Anvin <hpa@zytor.com>,
James Bottomley <James.Bottomley@hansenpartnership.com>,
James Bottomley <jejb@linux.ibm.com>,
"Kirill A . Shutemov" <kirill@shutemov.name>,
Linux-MM <linux-mm@kvack.org>, kernel test robot <lkp@intel.com>,
Andrew Lutomirski <luto@kernel.org>,
Mark Rutland <mark.rutland@arm.com>,
Ingo Molnar <mingo@redhat.com>,
mm-commits@vger.kernel.org,
Michael Kerrisk-manpages <mtk.manpages@gmail.com>,
Palmer Dabbelt <palmer@dabbelt.com>,
Palmer Dabbelt <palmerdabbelt@google.com>,
Paul Walmsley <paul.walmsley@sifive.com>,
Peter Zijlstra <peterz@infradead.org>,
"Edgecombe, Rick P" <rick.p.edgecombe@intel.com>,
Shakeel Butt <shakeelb@google.com>, Shuah Khan <shuah@kernel.org>,
Thomas Gleixner <tglx@linutronix.de>,
Tycho Andersen <tycho@tycho.ws>,
Al Viro <viro@zeniv.linux.org.uk>, Will Deacon <will@kernel.org>,
Matthew Wilcox <willy@infradead.org>
Subject: Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas
Date: Thu, 8 Jul 2021 22:13:23 +0200 [thread overview]
Message-ID: <YOdcY5SYIjPDO7nG@laniakea> (raw)
In-Reply-To: <CAHk-=whEZT3f+-oDZ4kdz31GxxJ9QD_P1XrMBnM8DamdF9QHDg@mail.gmail.com>
* Linus Torvalds | 2021-07-08 11:38:51 [-0700]:
Hello Mike, Linus
>> This feature is off by default and should be explicitly enabled by a system
>> administrator.
>>
>> When it is enabled, a user cannot exceed RLIMIT_MEMLOCK.
Just an idea/proposal:
this feature could be granted based on capabilities (new or existing one,
hopefully not CAP_SYS_ADMIN). Capabilities would provide a very convenient,
simple and fine granular way to use this, at least from a user perspective. Or
do I forget something Mike?
If capability is the way, I think RLIMIT_MEMLOCK would also be redundant
in my view. It would be "just another parameter" which can only be set wrong
(too low or too high) and somehow always wrong by default. But yes, it doesn't
really hurt either, so I personally wouldn't care about that knob.
Hagen
next prev parent reply other threads:[~2021-07-08 20:13 UTC|newest]
Thread overview: 71+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-07-08 0:59 incoming Andrew Morton
2021-07-08 1:07 ` [patch 01/54] lib/test: fix spelling mistakes Andrew Morton
2021-07-08 1:07 ` [patch 02/54] lib: " Andrew Morton
2021-07-08 1:07 ` [patch 03/54] lib: fix spelling mistakes in header files Andrew Morton
2021-07-08 1:07 ` [patch 04/54] hexagon: handle {,SOFT}IRQENTRY_TEXT in linker script Andrew Morton
2021-07-08 1:07 ` [patch 05/54] hexagon: use common DISCARDS macro Andrew Morton
2021-07-08 1:07 ` [patch 06/54] hexagon: select ARCH_WANT_LD_ORPHAN_WARN Andrew Morton
2021-07-08 1:07 ` [patch 07/54] mm/slub: use stackdepot to save stack trace in objects Andrew Morton
2021-07-16 7:39 ` Christoph Hellwig
2021-07-16 8:57 ` Vlastimil Babka
2021-07-16 9:12 ` Christoph Hellwig
2021-07-16 20:12 ` Linus Torvalds
2021-07-16 22:37 ` Vlastimil Babka
2021-07-17 17:34 ` Randy Dunlap
2021-07-18 7:29 ` Vlastimil Babka
2021-07-18 14:17 ` Randy Dunlap
2021-07-08 1:07 ` [patch 08/54] mmap: make mlock_future_check() global Andrew Morton
2021-07-08 1:07 ` [patch 09/54] riscv/Kconfig: make direct map manipulation options depend on MMU Andrew Morton
2021-07-08 1:07 ` [patch 10/54] set_memory: allow querying whether set_direct_map_*() is actually enabled Andrew Morton
2021-07-08 1:08 ` [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas Andrew Morton
2021-07-08 3:13 ` Linus Torvalds
2021-07-08 5:21 ` Mike Rapoport
2021-07-08 18:38 ` Linus Torvalds
2021-07-08 20:13 ` Hagen Paul Pfeifer [this message]
2021-07-09 15:44 ` Mike Rapoport
2021-07-08 1:08 ` [patch 12/54] PM: hibernate: disable when there are active secretmem users Andrew Morton
2021-07-08 3:15 ` Linus Torvalds
2021-07-08 5:30 ` Mike Rapoport
2021-07-08 1:08 ` [patch 13/54] arch, mm: wire up memfd_secret system call where relevant Andrew Morton
2021-07-08 1:08 ` [patch 14/54] secretmem: test: add basic selftest for memfd_secret(2) Andrew Morton
2021-07-08 1:08 ` [patch 15/54] mm: fix spelling mistakes in header files Andrew Morton
2021-07-08 1:08 ` [patch 16/54] mm: add setup_initial_init_mm() helper Andrew Morton
2021-07-08 1:08 ` [patch 17/54] arc: convert to setup_initial_init_mm() Andrew Morton
2021-07-08 1:08 ` [patch 18/54] arm: " Andrew Morton
2021-07-08 1:08 ` [patch 19/54] arm64: " Andrew Morton
2021-07-08 1:08 ` [patch 20/54] csky: " Andrew Morton
2021-07-08 1:08 ` [patch 21/54] h8300: " Andrew Morton
2021-07-08 1:08 ` [patch 22/54] m68k: " Andrew Morton
2021-07-08 1:08 ` [patch 23/54] nds32: " Andrew Morton
2021-07-08 1:08 ` [patch 24/54] nios2: " Andrew Morton
2021-07-08 1:08 ` [patch 25/54] openrisc: " Andrew Morton
2021-07-08 1:08 ` [patch 26/54] powerpc: " Andrew Morton
2021-07-08 4:46 ` Christophe Leroy
2021-07-08 1:08 ` [patch 27/54] riscv: " Andrew Morton
2021-07-08 1:08 ` [patch 28/54] s390: " Andrew Morton
2021-07-08 1:09 ` [patch 29/54] sh: " Andrew Morton
2021-07-08 1:09 ` [patch 30/54] x86: " Andrew Morton
2021-07-08 1:09 ` [patch 31/54] buildid: only consider GNU notes for build ID parsing Andrew Morton
2021-07-08 1:09 ` [patch 32/54] buildid: add API to parse build ID out of buffer Andrew Morton
2021-07-08 1:09 ` [patch 33/54] buildid: stash away kernels build ID on init Andrew Morton
2021-07-08 1:09 ` [patch 34/54] dump_stack: add vmlinux build ID to stack traces Andrew Morton
2021-07-08 1:09 ` [patch 35/54] module: add printk formats to add module build ID to stacktraces Andrew Morton
2021-07-08 1:09 ` [patch 36/54] arm64: stacktrace: use %pSb for backtrace printing Andrew Morton
2021-07-08 1:09 ` [patch 37/54] x86/dumpstack: use %pSb/%pBb " Andrew Morton
2021-07-08 1:09 ` [patch 38/54] scripts/decode_stacktrace.sh: support debuginfod Andrew Morton
2021-07-08 1:09 ` [patch 39/54] scripts/decode_stacktrace.sh: silence stderr messages from addr2line/nm Andrew Morton
2021-07-08 1:09 ` [patch 40/54] scripts/decode_stacktrace.sh: indicate 'auto' can be used for base path Andrew Morton
2021-07-08 1:09 ` [patch 41/54] buildid: mark some arguments const Andrew Morton
2021-07-08 1:09 ` [patch 42/54] buildid: fix kernel-doc notation Andrew Morton
2021-07-08 1:09 ` [patch 43/54] kdump: use vmlinux_build_id to simplify Andrew Morton
2021-07-08 1:09 ` [patch 44/54] mm: rename pud_page_vaddr to pud_pgtable and make it return pmd_t * Andrew Morton
2021-07-08 1:09 ` [patch 45/54] mm: rename p4d_page_vaddr to p4d_pgtable and make it return pud_t * Andrew Morton
2021-07-08 1:09 ` [patch 46/54] selftest/mremap_test: update the test to handle pagesize other than 4K Andrew Morton
2021-07-08 1:10 ` [patch 47/54] selftest/mremap_test: avoid crash with static build Andrew Morton
2021-07-08 1:10 ` [patch 48/54] mm/mremap: convert huge PUD move to separate helper Andrew Morton
2021-07-08 1:10 ` [patch 49/54] mm/mremap: don't enable optimized PUD move if page table levels is 2 Andrew Morton
2021-07-08 1:10 ` [patch 50/54] mm/mremap: use pmd/pud_poplulate to update page table entries Andrew Morton
2021-07-08 1:10 ` [patch 51/54] mm/mremap: hold the rmap lock in write mode when moving " Andrew Morton
2021-07-08 1:10 ` [patch 52/54] mm/mremap: allow arch runtime override Andrew Morton
2021-07-08 1:10 ` [patch 53/54] powerpc/book3s64/mm: update flush_tlb_range to flush page walk cache Andrew Morton
2021-07-08 1:10 ` [patch 54/54] powerpc/mm: enable HAVE_MOVE_PMD support Andrew Morton
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=YOdcY5SYIjPDO7nG@laniakea \
--to=hagen@jauu.net \
--cc=James.Bottomley@hansenpartnership.com \
--cc=akpm@linux-foundation.org \
--cc=arnd@arndb.de \
--cc=bp@alien8.de \
--cc=catalin.marinas@arm.com \
--cc=cl@linux.com \
--cc=dan.j.williams@intel.com \
--cc=dave.hansen@linux.intel.com \
--cc=david@redhat.com \
--cc=elena.reshetova@intel.com \
--cc=guro@fb.com \
--cc=hpa@zytor.com \
--cc=jejb@linux.ibm.com \
--cc=kirill@shutemov.name \
--cc=linux-mm@kvack.org \
--cc=lkp@intel.com \
--cc=luto@kernel.org \
--cc=mark.rutland@arm.com \
--cc=mingo@redhat.com \
--cc=mm-commits@vger.kernel.org \
--cc=mtk.manpages@gmail.com \
--cc=palmer@dabbelt.com \
--cc=palmerdabbelt@google.com \
--cc=paul.walmsley@sifive.com \
--cc=peterz@infradead.org \
--cc=rick.p.edgecombe@intel.com \
--cc=rppt@linux.ibm.com \
--cc=shakeelb@google.com \
--cc=shuah@kernel.org \
--cc=tglx@linutronix.de \
--cc=torvalds@linux-foundation.org \
--cc=tycho@tycho.ws \
--cc=viro@zeniv.linux.org.uk \
--cc=will@kernel.org \
--cc=willy@infradead.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).