Received: by 2002:a05:7412:d8a:b0:e2:908c:2ebd with SMTP id b10csp3249095rdg; Tue, 17 Oct 2023 08:46:49 -0700 (PDT) X-Google-Smtp-Source: AGHT+IHWh6WQG5WuHbk6LuB6SdZYuC4B9IW6B3bc17Iq/X3Hk4/A/H2Juz6HyDdgDj+fz7vDpMnO X-Received: by 2002:a05:6a00:1501:b0:6b1:e876:168b with SMTP id q1-20020a056a00150100b006b1e876168bmr2774728pfu.11.1697557609148; Tue, 17 Oct 2023 08:46:49 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1697557609; cv=none; d=google.com; s=arc-20160816; b=0Druf7Qa36Kyug1LDr0srumz+NZBOH+qq9QY3j3L0HmqSsUBbB0s1Sshm5ysIKGKCq epOO1BSf40lgYBedt96HdpH3VdQDIkEAiDopdvG7+z001V6/FAxwCuYISrLlyR0CvYfK Mn1E3bYHCpwcX1/KgyJ+9kPKNHW2quKucPXS+UBi4vTNNQv1cnTs12MtpBG3VRJBhH2i eDQqnudYMZwR7OA23cbwTbOLkVy0bKYokzeil7wYOz9it7PQ/+Bp40dwsNHK9E7tHSGD UgWo1MnDZKHPp/b8JWa4IVZNQxmi4L8sFnGuCrvIq4BCjeEfcS4wooDEFQrQ9FDgRKwe 0RIg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:in-reply-to:from :references:cc:to:content-language:subject:user-agent:mime-version :date:message-id:dkim-signature; bh=HqpYto28NsMabgIUb0zwF/UIwjSPedBpjPncERhM0sc=; fh=JipzRrjvMChJ2/jMQPTilouJvWAgSI7BGjKIk0eIBMo=; b=LJAglDJ1+4yaOkZXhmf19IVMWBz8ciJsp6Z7z8+Ut0n3WHjdPt3UqgjmOZbQa498UV SDt+3G2rakMVvMQiGo+Ihd4EuusNthkqSqUA07TjddikazbEgauMvS8dkZnLKdMmgKqe tT5da97hNeGSB88RpZSuFvU7Sv62Y1QS/MclBQA7cPpVhPI2OsxkYnqLvUQHB8kDCyMd SzPzo1uzKVnImfuR+ZUSg8w506/+XdgLG0PMU6LmaY+lQXKkmubOcrOCIBHjYsnv+OfH CUlUZCQDANcI5bbGnWG3qIDTKvEi/kjHzdrv4B4J37mZ21QPn+3Y8DeAw6fol4/uJBlR fHEA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@infradead.org header.s=bombadil.20210309 header.b=OiWj523w; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::3:4 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from howler.vger.email (howler.vger.email. [2620:137:e000::3:4]) by mx.google.com with ESMTPS id p12-20020a056a000b4c00b00690dbcb75d8si1934152pfo.386.2023.10.17.08.46.48 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 17 Oct 2023 08:46:49 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::3:4 as permitted sender) client-ip=2620:137:e000::3:4; Authentication-Results: mx.google.com; dkim=pass header.i=@infradead.org header.s=bombadil.20210309 header.b=OiWj523w; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::3:4 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: from out1.vger.email (depot.vger.email [IPv6:2620:137:e000::3:0]) by howler.vger.email (Postfix) with ESMTP id 918F18031F2C; Tue, 17 Oct 2023 08:46:45 -0700 (PDT) X-Virus-Status: Clean X-Virus-Scanned: clamav-milter 0.103.10 at howler.vger.email Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1344341AbjJQPqX (ORCPT + 99 others); Tue, 17 Oct 2023 11:46:23 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:32996 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S235111AbjJQPp7 (ORCPT ); Tue, 17 Oct 2023 11:45:59 -0400 Received: from bombadil.infradead.org (bombadil.infradead.org [IPv6:2607:7c80:54:3::133]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id C952A19B; Tue, 17 Oct 2023 08:45:44 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=infradead.org; s=bombadil.20210309; h=Content-Transfer-Encoding: Content-Type:In-Reply-To:From:References:Cc:To:Subject:MIME-Version:Date: Message-ID:Sender:Reply-To:Content-ID:Content-Description; bh=HqpYto28NsMabgIUb0zwF/UIwjSPedBpjPncERhM0sc=; b=OiWj523wh1qqOURtI8D0fP9yhq BpKtVJH7f5xAmh2kV4g4NT4z4JCMxhFGYGPOrZCkl4DqWtTsCqR2kAJKLehXRyjoJy8IBgRrRJNEh 8NrJ34NME2vvCbPyOhJfxLbveH0Nxa9Vokt6hgrKueEQQ3VqlTDXoHQ4nvsG1nhBM1rxXqRLHPiQB ZJ6LG7BelIHi3Fd0NmRghWkmDZR2/bHfaZ+7B/ddgE/8+nXlP3aL+OWbawfYnKCqgSTyy7mbP4CMk LBoMUXzHKzYsa4du5552XOyNkQ/99AV1qORCdGhqM1+87tmw7wkoXKQV8Qmx2GFCNOM4J8KfFinUY RYs6oXpA==; Received: from [50.53.46.231] (helo=[192.168.254.15]) by bombadil.infradead.org with esmtpsa (Exim 4.96 #2 (Red Hat Linux)) id 1qsmGI-00Cm99-1U; Tue, 17 Oct 2023 15:45:38 +0000 Message-ID: Date: Tue, 17 Oct 2023 08:45:36 -0700 MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: Re: [RFC PATCH v2 1/8] mseal: Add mseal(2) syscall. Content-Language: en-US To: jeffxu@chromium.org, akpm@linux-foundation.org, keescook@chromium.org, jannh@google.com, sroettger@google.com, willy@infradead.org, gregkh@linuxfoundation.org, torvalds@linux-foundation.org Cc: jeffxu@google.com, jorgelo@chromium.org, groeck@chromium.org, linux-kernel@vger.kernel.org, linux-kselftest@vger.kernel.org, linux-mm@kvack.org, surenb@google.com, alex.sierra@amd.com, apopple@nvidia.com, aneesh.kumar@linux.ibm.com, axelrasmussen@google.com, ben@decadent.org.uk, catalin.marinas@arm.com, david@redhat.com, dwmw@amazon.co.uk, ying.huang@intel.com, hughd@google.com, joey.gouly@arm.com, corbet@lwn.net, wangkefeng.wang@huawei.com, Liam.Howlett@oracle.com, lstoakes@gmail.com, mawupeng1@huawei.com, linmiaohe@huawei.com, namit@vmware.com, peterx@redhat.com, peterz@infradead.org, ryan.roberts@arm.com, shr@devkernel.io, vbabka@suse.cz, xiujianfeng@huawei.com, yu.ma@intel.com, zhangpeng362@huawei.com, dave.hansen@intel.com, luto@kernel.org, linux-hardening@vger.kernel.org References: <20231017090815.1067790-1-jeffxu@chromium.org> <20231017090815.1067790-2-jeffxu@chromium.org> From: Randy Dunlap In-Reply-To: <20231017090815.1067790-2-jeffxu@chromium.org> Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit X-Spam-Status: No, score=-0.8 required=5.0 tests=DKIM_SIGNED,DKIM_VALID, DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI, SPF_HELO_NONE,SPF_PASS autolearn=unavailable autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on howler.vger.email Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org X-Greylist: Sender passed SPF test, not delayed by milter-greylist-4.6.4 (howler.vger.email [0.0.0.0]); Tue, 17 Oct 2023 08:46:45 -0700 (PDT) nit: On 10/17/23 02:08, jeffxu@chromium.org wrote: | diff --git a/mm/Kconfig b/mm/Kconfig | index 264a2df5ecf5..db8a567cb4d3 100644 | --- a/mm/Kconfig | +++ b/mm/Kconfig | @@ -1258,6 +1258,14 @@ config LOCK_MM_AND_FIND_VMA | bool | depends on !STACK_GROWSUP | | +config MSEAL | + default n | + bool "Enable mseal() system call" | + depends on MMU | + help | + Enable the mseal() system call. Make memory areas's metadata immutable areas' $search_engine is your friend. | + by selected system calls, i.e. mprotect(), munmap(), mremap(), mmap(). -- ~Randy