Received: by 2002:a05:6358:d09b:b0:dc:cd0c:909e with SMTP id jc27csp3389242rwb; Fri, 16 Dec 2022 14:17:55 -0800 (PST) X-Google-Smtp-Source: AA0mqf7jdY1ZQaU66ESFbeKCvzvRaZHxVRg8Q90HfC/1VFRLLm7yXf+8w1c0i/MJf2h7HJpkRwUZ X-Received: by 2002:a17:906:7fc3:b0:7bb:5cd8:ec93 with SMTP id r3-20020a1709067fc300b007bb5cd8ec93mr27786940ejs.17.1671229075736; Fri, 16 Dec 2022 14:17:55 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1671229075; cv=none; d=google.com; s=arc-20160816; b=qBeqabRyFrPFrhvVSOZgOIBzi03XBpmzwkXqcrGFUEvRxnVHNP77mcHpVZ5GAel6za oXQlZoC62u4EPsjGcUs/RgnB97D3ayIEOnWyvivoTNHr4kBdN17BMZPuM86XN2ViAZCF axPKocF5NaP0bqNXbVsPFCe1FwkAd206qtFvDqlMrNKdSvH9pFUhfgnSCKSGPaQ+5RBP m/LvH3SWQNoUPpJrvKCm0Fn3S57kcjubTNkPQjsaWqPRtgJZgpg7DiUxSgJ8u1c8g2ND PYY/5+HuhYklamNlCPi2v2wKwRPrYduyz4okXehUG5E/xx7maIrnrI7RrEFQZWYYwbRz k/Lg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to :references:mime-version:dkim-signature; bh=6nVEs5xFKdjJrb7rw+tJ+EGskEE/XSoBaU5tE1Of2UM=; b=nkLHQkoEvkephWTIDFnKzP+HTVHkPLJ99MMQZc/ORqUWWmVwqPhOG51gqioTeBZVz3 NNEOIagW6C6TACTyj8ULHW0GZHX+li7kTw0L3dr8NHdKX+5NqT3cHNoClutZJmGhHHQi OHU0reRpMLwzuGyu8XI+xCycalR28AX3guwJGKwfGnfsPe1D4KNpDxIXNOGKJJcjh6IP h7XJpi9q5QNRONbTW1QqxCAlgz7Qfz8lnRUf8NpNLcGTHs77DLlP9ejuoD9MbKt1+2hW 9Nao5FbAOlt7ZDAd9IajRO/Z4gQVg0MAOVRkKZs0suEKiHeeobNLSUXMWJSUrjyeUkd1 M6mg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20210112 header.b=imch457w; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id dt22-20020a170907729600b007be53f03fa7si3821518ejc.211.2022.12.16.14.17.39; Fri, 16 Dec 2022 14:17:55 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20210112 header.b=imch457w; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S229660AbiLPVr6 (ORCPT + 69 others); Fri, 16 Dec 2022 16:47:58 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:34560 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229744AbiLPVrn (ORCPT ); Fri, 16 Dec 2022 16:47:43 -0500 Received: from mail-pl1-x634.google.com (mail-pl1-x634.google.com [IPv6:2607:f8b0:4864:20::634]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 30F4227F for ; Fri, 16 Dec 2022 13:47:36 -0800 (PST) Received: by mail-pl1-x634.google.com with SMTP id 4so3607373plj.3 for ; Fri, 16 Dec 2022 13:47:36 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=6nVEs5xFKdjJrb7rw+tJ+EGskEE/XSoBaU5tE1Of2UM=; b=imch457wLU85EdPzcALjROdhazTLRL8lGUTPNwvtmi9e/Zx5tvC5qObvSwlPANkyp7 IbI5E4saBVEEk8pKdB8uc9IxGwWPBvM9xjE8D9Opdg1/orL++y/vOMdMKASdhvX0/1mt cQ8ks02Vdm62J08IecNC24yv+sglbd382CWEybZDHpvlzWPAcR7m8k8CaYYL+7bY/Fsd U+wIMsGKUpqvjcTyRzT8D1vT+Yx/q0ViD/qBaWXyVKjK69WcKqRySzzK4a4iOaX60vWU tw1r1xQAEiAzoK/2AARS4tOiF/Uwf6la+eYVZNPyuaTrycHB9PtkJ9brVbyAreybaBbo Wi4w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=6nVEs5xFKdjJrb7rw+tJ+EGskEE/XSoBaU5tE1Of2UM=; b=Wvi0NPMbGNB93wT+7ihYgWVaKlEtyw8iryN+CVnyEOPd49WQWUzHZg3kobYBUpdaHC TsHyZhxYQY/PnYXduPgkwEXOQOuUyimQeOXfxvJGpvc7GbJZpQqpgiCoPVRtYjyL6Ot3 ELj6x1PENLmWh1UAXLGJS2seKV+p5Bm8RHHwwdAXgabuNDSpkuBnLxHDD5Uvya8mt6hd jTsd5twpgd9asKiC0FZeT/pAR0g0Tmd4BrVUPlHXHmbPrVk/QDmYrfw5peV/o1h40Mui J2EQO8Dqn3LbgscIAex0e9ApsUF5upYdT+3uLOFinpE5cCVIkp8j95usCFFTQmNxyn/I S5Hg== X-Gm-Message-State: AFqh2kqP3h44klmz8mSBw+7igFIzi7gljD32a4l7nKLny20/3rEgsPuo Iw30G15mFQHKGu6YnaUTBpmCnU+Z9chPG4Ddr6EOOw== X-Received: by 2002:a17:90a:4612:b0:219:a43b:1006 with SMTP id w18-20020a17090a461200b00219a43b1006mr1266289pjg.195.1671227255426; Fri, 16 Dec 2022 13:47:35 -0800 (PST) MIME-Version: 1.0 References: <20221207154939.2532830-1-jeffxu@google.com> <20221207154939.2532830-4-jeffxu@google.com> <202212080821.5AE7EE99@keescook> <20221216094259.bec91e4abd6cf54a05ce2813@linux-foundation.org> <202212161233.85C9783FB@keescook> In-Reply-To: <202212161233.85C9783FB@keescook> From: Jeff Xu Date: Fri, 16 Dec 2022 13:46:58 -0800 Message-ID: Subject: Re: [PATCH v6 3/6] mm/memfd: add MFD_NOEXEC_SEAL and MFD_EXEC To: Kees Cook Cc: Andrew Morton , Peter Xu , jeffxu@chromium.org, skhan@linuxfoundation.org, dmitry.torokhov@gmail.com, dverkamp@chromium.org, hughd@google.com, jorgelo@chromium.org, linux-kernel@vger.kernel.org, linux-kselftest@vger.kernel.org, linux-mm@kvack.org, jannh@google.com, linux-hardening@vger.kernel.org, kernel test robot Content-Type: text/plain; charset="UTF-8" X-Spam-Status: No, score=-17.6 required=5.0 tests=BAYES_00,DKIMWL_WL_MED, DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF, ENV_AND_HDR_SPF_MATCH,RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS, USER_IN_DEF_DKIM_WL,USER_IN_DEF_SPF_WL autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Fri, Dec 16, 2022 at 12:35 PM Kees Cook wrote: > > On Fri, Dec 16, 2022 at 10:11:44AM -0800, Jeff Xu wrote: > > Once per boot seems too little, it would be nice if we can list all processes. > > I agree ratelimited might be too much. > > There is a feature gap here for logging. > > > > Kees, what do you think ? > > I agree once per boot is kind of frustrating "I fixed the one warning, > oh, now it's coming from a different process". But ratelimit is, in > retrospect, still too often. > > Let's go with per boot -- this should be noisy "enough" to get the > changes in API into the callers without being too much of a hassle. > Agreed. Let's go with per boot. Hi Andrew, what is your preference ? I can send a patch or you directly fix it in mm-unstable ? Thanks -Jeff > -- > Kees Cook