Re: [PATCH 2/9] mm: implement new pkey_mprotect() system call

[PATCH 0/9] [v3] System Calls for Memory Protection Keys · Dave Hansen <hidden> · 2016-06-09
[PATCH 1/9] x86, pkeys: add fault handling for PF_PK page fault bit · Dave Hansen <hidden> · 2016-06-09
[PATCH 3/9] x86, pkeys: make mprotect_key() mask off additional vm_flags · Dave Hansen <hidden> · 2016-06-09
[PATCH 4/9] x86: wire up mprotect_key() system call · Dave Hansen <hidden> · 2016-06-09
[PATCH 6/9] x86, pkeys: add pkey set/get syscalls · Dave Hansen <hidden> · 2016-06-09
[PATCH 8/9] pkeys: add details of system call use to Documentation/ · Dave Hansen <hidden> · 2016-06-09
[PATCH 2/9] mm: implement new pkey_mprotect() system call · Dave Hansen <hidden> · 2016-06-09
Re: [PATCH 2/9] mm: implement new pkey_mprotect() system call · Thomas Gleixner <hidden> · 2016-06-11
Re: [PATCH 2/9] mm: implement new pkey_mprotect() system call · Dave Hansen <hidden> · 2016-06-13
[PATCH 9/9] x86, pkeys: add self-tests · Dave Hansen <hidden> · 2016-06-09
[PATCH 7/9] generic syscalls: wire up memory protection keys syscalls · Dave Hansen <hidden> · 2016-06-09
[PATCH 5/9] x86, pkeys: allocation/free syscalls · Dave Hansen <hidden> · 2016-06-09
Re: [PATCH 0/9] [v3] System Calls for Memory Protection Keys · Ingo Molnar <mingo@kernel.org> · 2016-06-30
Re: [PATCH 0/9] [v3] System Calls for Memory Protection Keys · Dave Hansen <hidden> · 2016-06-30
Re: [PATCH 0/9] [v3] System Calls for Memory Protection Keys · Andy Lutomirski <luto@amacapital.net> · 2016-06-30

From: Thomas Gleixner <hidden>
Date: 2016-06-11 09:49:47
Also in: linux-api, linux-mm, lkml

On Wed, 8 Jun 2016, Dave Hansen wrote:

Proposed semantics:
1. protection key 0 is special and represents the default,
   unassigned protection key.  It is always allocated.
2. mprotect() never affects a mapping's pkey_mprotect()-assigned
   protection key. A protection key of 0 (even if set explicitly)
   represents an unassigned protection key.
   2a. mprotect(PROT_EXEC) on a mapping with an assigned protection
       key may or may not result in a mapping with execute-only
       properties.  pkey_mprotect() plus pkey_set() on all threads
       should be used to _guarantee_ execute-only semantics.
3. mprotect(PROT_EXEC) may result in an "execute-only" mapping. The
   kernel will internally attempt to allocate and dedicate a
   protection key for the purpose of execute-only mappings.  This
   may not be possible in cases where there are no free protection
   keys available.

Shouldn't we just reserve a protection key for PROT_EXEC unconditionally?

Thanks,

	tglx

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help