Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret"... | linux-mm

incoming · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 01/54] lib/test: fix spelling mistakes · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 02/54] lib: fix spelling mistakes · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 03/54] lib: fix spelling mistakes in header files · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 04/54] hexagon: handle {,SOFT}IRQENTRY_TEXT in linker script · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 05/54] hexagon: use common DISCARDS macro · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 06/54] hexagon: select ARCH_WANT_LD_ORPHAN_WARN · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Christoph Hellwig <hch@infradead.org> · 2021-07-16
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Vlastimil Babka <hidden> · 2021-07-16
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Christoph Hellwig <hch@infradead.org> · 2021-07-16
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Linus Torvalds <torvalds@linux-foundation.org> · 2021-07-16
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Vlastimil Babka <hidden> · 2021-07-16
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Randy Dunlap <hidden> · 2021-07-17
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Vlastimil Babka <hidden> · 2021-07-18
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Randy Dunlap <hidden> · 2021-07-18
[patch 08/54] mmap: make mlock_future_check() global · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 09/54] riscv/Kconfig: make direct map manipulation options depend on MMU · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 10/54] set_memory: allow querying whether set_direct_map_*() is actually enabled · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas · Linus Torvalds <torvalds@linux-foundation.org> · 2021-07-08
Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas · Mike Rapoport <hidden> · 2021-07-08
Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas · Linus Torvalds <torvalds@linux-foundation.org> · 2021-07-08
Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas · Hagen Paul Pfeifer <hidden> · 2021-07-08
Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas · Mike Rapoport <hidden> · 2021-07-09
[patch 12/54] PM: hibernate: disable when there are active secretmem users · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
Re: [patch 12/54] PM: hibernate: disable when there are active secretmem users · Linus Torvalds <torvalds@linux-foundation.org> · 2021-07-08
Re: [patch 12/54] PM: hibernate: disable when there are active secretmem users · Mike Rapoport <hidden> · 2021-07-08
[patch 13/54] arch, mm: wire up memfd_secret system call where relevant · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 14/54] secretmem: test: add basic selftest for memfd_secret(2) · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 15/54] mm: fix spelling mistakes in header files · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 16/54] mm: add setup_initial_init_mm() helper · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 17/54] arc: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 18/54] arm: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 19/54] arm64: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 20/54] csky: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 21/54] h8300: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 22/54] m68k: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 23/54] nds32: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 24/54] nios2: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 25/54] openrisc: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 26/54] powerpc: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
Re: [patch 26/54] powerpc: convert to setup_initial_init_mm() · Christophe Leroy <hidden> · 2021-07-08
[patch 27/54] riscv: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 28/54] s390: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 29/54] sh: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 30/54] x86: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 31/54] buildid: only consider GNU notes for build ID parsing · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 32/54] buildid: add API to parse build ID out of buffer · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 33/54] buildid: stash away kernels build ID on init · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 34/54] dump_stack: add vmlinux build ID to stack traces · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 35/54] module: add printk formats to add module build ID to stacktraces · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 36/54] arm64: stacktrace: use %pSb for backtrace printing · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 37/54] x86/dumpstack: use %pSb/%pBb for backtrace printing · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 38/54] scripts/decode_stacktrace.sh: support debuginfod · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 39/54] scripts/decode_stacktrace.sh: silence stderr messages from addr2line/nm · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 40/54] scripts/decode_stacktrace.sh: indicate 'auto' can be used for base path · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 41/54] buildid: mark some arguments const · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 42/54] buildid: fix kernel-doc notation · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 43/54] kdump: use vmlinux_build_id to simplify · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 44/54] mm: rename pud_page_vaddr to pud_pgtable and make it return pmd_t * · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 45/54] mm: rename p4d_page_vaddr to p4d_pgtable and make it return pud_t * · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 46/54] selftest/mremap_test: update the test to handle pagesize other than 4K · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 47/54] selftest/mremap_test: avoid crash with static build · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 49/54] mm/mremap: don't enable optimized PUD move if page table levels is 2 · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 50/54] mm/mremap: use pmd/pud_poplulate to update page table entries · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 51/54] mm/mremap: hold the rmap lock in write mode when moving page table entries. · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 52/54] mm/mremap: allow arch runtime override · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 53/54] powerpc/book3s64/mm: update flush_tlb_range to flush page walk cache · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 54/54] powerpc/mm: enable HAVE_MOVE_PMD support · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 48/54] mm/mremap: convert huge PUD move to separate helper · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08

Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas

From: Linus Torvalds <torvalds@linux-foundation.org>
Date: 2021-07-08 18:39:20
Also in: mm-commits

On Wed, Jul 7, 2021 at 10:22 PM Mike Rapoport [off-list ref] wrote:

This feature is off by default and should be explicitly enabled by a system
administrator.

I really don't think that matters, since people would go "oh, I want
secretmem" without being aware of the consequences.

But:

When it is enabled, a user cannot exceed RLIMIT_MEMLOCK.

I had missed that, even though it was mentioned in the long commit
description. I just read the patch, and was looking at the
secretmem_file_create() and missed how the the limit was there in the
mmap path.

So I'm fine with this.

I still suspect that the "don't hibernate" should maybe at least alert
the sysadmin about *why* the hibernate failed, but let's see if that
ends up being an actual problem.

                 Linus

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help