Re: [PATCH 5/8] x86, pkeys: allocation/free syscalls

[PATCH 0/8] System Calls for Memory Protection Keys · Dave Hansen <hidden> · 2016-05-31
[PATCH 3/8] x86, pkeys: make mprotect_key() mask off additional vm_flags · Dave Hansen <hidden> · 2016-05-31
[PATCH 4/8] x86: wire up mprotect_key() system call · Dave Hansen <hidden> · 2016-05-31
[PATCH 8/8] x86, pkeys: add self-tests · Dave Hansen <hidden> · 2016-05-31
[PATCH 6/8] x86, pkeys: add pkey set/get syscalls · Dave Hansen <hidden> · 2016-05-31
[PATCH 7/8] pkeys: add details of system call use to Documentation/ · Dave Hansen <hidden> · 2016-05-31
Re: [PATCH 7/8] pkeys: add details of system call use to Documentation/ · Jonathan Corbet <corbet@lwn.net> · 2016-06-01
Re: [PATCH 7/8] pkeys: add details of system call use to Documentation/ · Dave Hansen <hidden> · 2016-06-01
Re: [PATCH 7/8] pkeys: add details of system call use to Documentation/ · Jonathan Corbet <corbet@lwn.net> · 2016-06-01
Re: [PATCH 7/8] pkeys: add details of system call use to Documentation/ · Dave Hansen <hidden> · 2016-06-01
[PATCH 5/8] x86, pkeys: allocation/free syscalls · Dave Hansen <hidden> · 2016-05-31
Re: [PATCH 5/8] x86, pkeys: allocation/free syscalls · Jonathan Corbet <corbet@lwn.net> · 2016-06-01
Re: [PATCH 5/8] x86, pkeys: allocation/free syscalls · Dave Hansen <hidden> · 2016-06-01
Re: [PATCH 5/8] x86, pkeys: allocation/free syscalls · Michael Kerrisk (man-pages) <hidden> · 2016-06-02
Re: [PATCH 5/8] x86, pkeys: allocation/free syscalls · Dave Hansen <hidden> · 2016-06-02
Re: [PATCH 5/8] x86, pkeys: allocation/free syscalls · Michael Kerrisk (man-pages) <hidden> · 2016-06-03
Re: [PATCH 5/8] x86, pkeys: allocation/free syscalls · Dave Hansen <hidden> · 2016-06-03
Re: [PATCH 5/8] x86, pkeys: allocation/free syscalls · Michael Kerrisk (man-pages) <hidden> · 2016-06-03
Re: [PATCH 5/8] x86, pkeys: allocation/free syscalls · Arnd Bergmann <arnd@arndb.de> · 2016-06-02
Re: [PATCH 5/8] x86, pkeys: allocation/free syscalls · Dave Hansen <hidden> · 2016-06-02
[PATCH 2/8] mm: implement new pkey_mprotect() system call · Dave Hansen <hidden> · 2016-05-31
[PATCH 1/8] x86, pkeys: add fault handling for PF_PK page fault bit · Dave Hansen <hidden> · 2016-05-31

From: Michael Kerrisk (man-pages) <hidden>
Date: 2016-06-03 00:26:26
Also in: linux-arch, linux-mm, lkml

On 06/01/2016 07:17 PM, Dave Hansen wrote:

On 06/01/2016 05:11 PM, Michael Kerrisk (man-pages) wrote:

quoted

If I read this right, it doesn't actually remove any pkey restrictions
that may have been applied while the key was allocated.  So there could be
pages with that key assigned that might do surprising things if the key is
reallocated for another use later, right?  Is that how the API is intended
to work?

Yeah, that's how it works.

It's not ideal.  It would be _best_ if we during mm_pkey_free(), we
ensured that no VMAs under that mm have that vma_pkey() set.  But, that
search would be potentially expensive (a walk over all VMAs), or would
force us to keep a data structure with a count of all the VMAs with a
given key.

I should probably discuss this behavior in the manpages and address it

s/probably//

And, did I miss it. Was there an updated man-pages patch in the latest
series? I did not notice it.

There have been to changes to the patches that warranted updating the
manpages until now.  I'll send the update immediately.

Do those updated pages include discussion of the point noted above?
I could not see it mentioned there.

Just by the way, the above behavior seems to offer possibilities
for users to shoot themselves in the foot, in a way that has security
implications. (Or do I misunderstand?)

Thanks,

Michael


-- 
Michael Kerrisk
Linux man-pages maintainer; http://www.kernel.org/doc/man-pages/
Linux/UNIX System Programming Training: http://man7.org/training/

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help