Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret"... | linux-mm

incoming · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 01/54] lib/test: fix spelling mistakes · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 02/54] lib: fix spelling mistakes · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 03/54] lib: fix spelling mistakes in header files · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 04/54] hexagon: handle {,SOFT}IRQENTRY_TEXT in linker script · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 05/54] hexagon: use common DISCARDS macro · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 06/54] hexagon: select ARCH_WANT_LD_ORPHAN_WARN · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Christoph Hellwig <hch@infradead.org> · 2021-07-16
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Vlastimil Babka <hidden> · 2021-07-16
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Christoph Hellwig <hch@infradead.org> · 2021-07-16
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Linus Torvalds <torvalds@linux-foundation.org> · 2021-07-16
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Vlastimil Babka <hidden> · 2021-07-16
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Randy Dunlap <hidden> · 2021-07-17
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Vlastimil Babka <hidden> · 2021-07-18
Re: [patch 07/54] mm/slub: use stackdepot to save stack trace in objects · Randy Dunlap <hidden> · 2021-07-18
[patch 08/54] mmap: make mlock_future_check() global · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 09/54] riscv/Kconfig: make direct map manipulation options depend on MMU · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 10/54] set_memory: allow querying whether set_direct_map_*() is actually enabled · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas · Linus Torvalds <torvalds@linux-foundation.org> · 2021-07-08
Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas · Mike Rapoport <hidden> · 2021-07-08
Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas · Linus Torvalds <torvalds@linux-foundation.org> · 2021-07-08
Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas · Hagen Paul Pfeifer <hidden> · 2021-07-08
Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas · Mike Rapoport <hidden> · 2021-07-09
[patch 12/54] PM: hibernate: disable when there are active secretmem users · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
Re: [patch 12/54] PM: hibernate: disable when there are active secretmem users · Linus Torvalds <torvalds@linux-foundation.org> · 2021-07-08
Re: [patch 12/54] PM: hibernate: disable when there are active secretmem users · Mike Rapoport <hidden> · 2021-07-08
[patch 13/54] arch, mm: wire up memfd_secret system call where relevant · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 14/54] secretmem: test: add basic selftest for memfd_secret(2) · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 15/54] mm: fix spelling mistakes in header files · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 16/54] mm: add setup_initial_init_mm() helper · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 17/54] arc: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 18/54] arm: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 19/54] arm64: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 20/54] csky: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 21/54] h8300: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 22/54] m68k: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 23/54] nds32: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 24/54] nios2: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 25/54] openrisc: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 26/54] powerpc: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
Re: [patch 26/54] powerpc: convert to setup_initial_init_mm() · Christophe Leroy <hidden> · 2021-07-08
[patch 27/54] riscv: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 28/54] s390: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 29/54] sh: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 30/54] x86: convert to setup_initial_init_mm() · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 31/54] buildid: only consider GNU notes for build ID parsing · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 32/54] buildid: add API to parse build ID out of buffer · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 33/54] buildid: stash away kernels build ID on init · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 34/54] dump_stack: add vmlinux build ID to stack traces · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 35/54] module: add printk formats to add module build ID to stacktraces · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 36/54] arm64: stacktrace: use %pSb for backtrace printing · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 37/54] x86/dumpstack: use %pSb/%pBb for backtrace printing · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 38/54] scripts/decode_stacktrace.sh: support debuginfod · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 39/54] scripts/decode_stacktrace.sh: silence stderr messages from addr2line/nm · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 40/54] scripts/decode_stacktrace.sh: indicate 'auto' can be used for base path · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 41/54] buildid: mark some arguments const · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 42/54] buildid: fix kernel-doc notation · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 43/54] kdump: use vmlinux_build_id to simplify · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 44/54] mm: rename pud_page_vaddr to pud_pgtable and make it return pmd_t * · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 45/54] mm: rename p4d_page_vaddr to p4d_pgtable and make it return pud_t * · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 46/54] selftest/mremap_test: update the test to handle pagesize other than 4K · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 47/54] selftest/mremap_test: avoid crash with static build · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 49/54] mm/mremap: don't enable optimized PUD move if page table levels is 2 · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 50/54] mm/mremap: use pmd/pud_poplulate to update page table entries · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 51/54] mm/mremap: hold the rmap lock in write mode when moving page table entries. · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 52/54] mm/mremap: allow arch runtime override · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 53/54] powerpc/book3s64/mm: update flush_tlb_range to flush page walk cache · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 54/54] powerpc/mm: enable HAVE_MOVE_PMD support · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08
[patch 48/54] mm/mremap: convert huge PUD move to separate helper · Andrew Morton <akpm@linux-foundation.org> · 2021-07-08

Re: [patch 11/54] mm: introduce memfd_secret system call to create "secret" memory areas

From: Mike Rapoport <hidden>
Date: 2021-07-09 15:45:43
Also in: mm-commits

Hello Hagen,

On Thu, Jul 08, 2021 at 10:13:23PM +0200, Hagen Paul Pfeifer wrote:

* Linus Torvalds | 2021-07-08 11:38:51 [-0700]:

Hello Mike, Linus

quoted

This feature is off by default and should be explicitly enabled by a system
administrator.

When it is enabled, a user cannot exceed RLIMIT_MEMLOCK.

Just an idea/proposal:

this feature could be granted based on capabilities (new or existing one,
hopefully not CAP_SYS_ADMIN). Capabilities would provide a very convenient,
simple and fine granular way to use this, at least from a user perspective. Or
do I forget something Mike?

Our preference is to have secretmem available to everybody.

As James nicely put it [1]:

	I don't think dividing the world into people who can and can't use
	secret memory would be useful since the design is to be usable for
	anyone who might have a secret to keep; it would become like the
	kvm group permissions: something which is theoretically an access
	control but which in practise is given to everyone on the system.
 

[1] https://lore.kernel.org/lkml/73738cda43236b5ac2714e228af362b67a712f5d.camel@linux.ibm.com/ (local)

-- 
Sincerely yours,
Mike.

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help