Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret"... | linux-mm

incoming · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 01/54] lib/test: fix spelling mistakes · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 02/54] lib: fix spelling mistakes · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 03/54] lib: fix spelling mistakes in header files · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 04/54] hexagon: handle {,SOFT}IRQENTRY_TEXT in linker script · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 05/54] hexagon: use common DISCARDS macro · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 06/54] hexagon: select ARCH_WANT_LD_ORPHAN_WARN · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Christoph Hellwig <hch@infradead.org> · 2021-07-16
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Vlastimil Babka <hidden> · 2021-07-16
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Christoph Hellwig <hch@infradead.org> · 2021-07-16
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Linus Torvalds <torvalds@linux-foundation.org> · 2021-07-16
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Vlastimil Babka <hidden> · 2021-07-16
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Randy Dunlap <hidden> · 2021-07-17
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Vlastimil Babka <hidden> · 2021-07-18
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Randy Dunlap <hidden> · 2021-07-18
[patch 08/54] mmap: make mlock_future_check() global · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 09/54] riscv/Kconfig: make direct map manipulation options depend on MMU · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 10/54] set_memory: allow querying whether set_direct_map_*() is actually enabled · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas · Linus Torvalds <torvalds@linux-foundation.org> · 2021-07-08
Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas · Mike Rapoport <hidden> · 2021-07-08
Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas · Linus Torvalds <torvalds@linux-foundation.org> · 2021-07-08
Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas · Hagen Paul Pfeifer <hidden> · 2021-07-08
Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas · Mike Rapoport <hidden> · 2021-07-09
[patch 12/54] PM: hibernate: disable when there are active secretmem users · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
Re: [patch 12/54] PM: hibernate: disable when there are active secretmem users · Linus Torvalds <torvalds@linux-foundation.org> · 2021-07-08
Re: [patch 12/54] PM: hibernate: disable when there are active secretmem users · Mike Rapoport <hidden> · 2021-07-08
[patch 13/54] arch, mm: wire up memfd_secret system call where relevant · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 14/54] secretmem: test: add basic selftest for memfd_secret(2) · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 15/54] mm: fix spelling mistakes in header files · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 16/54] mm: add setup_initial_init_mm() helper · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 17/54] arc: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 18/54] arm: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 19/54] arm64: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 20/54] csky: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 21/54] h8300: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 22/54] m68k: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 23/54] nds32: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 24/54] nios2: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 25/54] openrisc: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 26/54] powerpc: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
Re: [patch 26/54] powerpc: convert to setup_initial_init_mm() · Christophe Leroy <hidden> · 2021-07-08
[patch 27/54] riscv: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 28/54] s390: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 29/54] sh: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 30/54] x86: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 31/54] buildid: only consider GNU notes for build ID parsing · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 32/54] buildid: add API to parse build ID out of buffer · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 33/54] buildid: stash away kernels build ID on init · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 34/54] dump_stack: add vmlinux build ID to stack traces · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 35/54] module: add printk formats to add module build ID to stacktraces · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 36/54] arm64: stacktrace: use %pSb for backtrace printing · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 37/54] x86/dumpstack: use %pSb/%pBb for backtrace printing · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 38/54] scripts/decode_stacktrace.sh: support debuginfod · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 39/54] scripts/decode_stacktrace.sh: silence stderr messages from addr2line/nm · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 40/54] scripts/decode_stacktrace.sh: indicate 'auto' can be used for base path · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 41/54] buildid: mark some arguments const · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 42/54] buildid: fix kernel-doc notation · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 43/54] kdump: use vmlinux_build_id to simplify · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 44/54] mm: rename pud_page_vaddr to pud_pgtable and make it return pmd_t * · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 45/54] mm: rename p4d_page_vaddr to p4d_pgtable and make it return pud_t * · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 46/54] selftest/mremap_test: update the test to handle pagesize other than 4K · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 47/54] selftest/mremap_test: avoid crash with static build · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 49/54] mm/mremap: don't enable optimized PUD move if page table levels is 2 · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 50/54] mm/mremap: use pmd/pud_poplulate to update page table entries · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 51/54] mm/mremap: hold the rmap lock in write mode when moving page table entries. · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 52/54] mm/mremap: allow arch runtime override · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 53/54] powerpc/book3s64/mm: update flush_tlb_range to flush page walk cache · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 54/54] powerpc/mm: enable HAVE_MOVE_PMD support · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 48/54] mm/mremap: convert huge PUD move to separate helper · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08

Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas

From: Mike Rapoport <hidden>
Date: 2021-07-08 05:21:54
Also in: mm-commits

On Wed, Jul 07, 2021 at 08:13:10PM -0700, Linus Torvalds wrote:

On Wed, Jul 7, 2021 at 6:08 PM Andrew Morton [off-list ref] wrote:

quoted

From: Mike Rapoport <redacted>
Subject: mm: introduce memfd_secret system call to create "secret" memory areas

Introduce "memfd_secret" system call with the ability to create memory
areas visible only in the context of the owning process and not mapped not
only to other processes but in the kernel page tables as well.

Am I missing something?

From what I can't tell, this must not be enabled for regular users,
because the secret mapping is effectively mlock'ed into the address
space.

But there does not seem to be any permission checks or any limits, so
this looks like a trivial way for a bad user to force the kernel to
run out of memory.

This feature is off by default and should be explicitly enabled by a system
administrator. 
When it is enabled, a user cannot exceed RLIMIT_MEMLOCK.
 
-- 
Sincerely yours,
Mike.

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help