From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by smtp.lore.kernel.org (Postfix) with ESMTP id D5975C4707C for ; Tue, 9 Jan 2024 19:47:17 +0000 (UTC) Received: by kanga.kvack.org (Postfix) id 630498D0017; Tue, 9 Jan 2024 14:47:17 -0500 (EST) Received: by kanga.kvack.org (Postfix, from userid 40) id 5DFB48D0002; Tue, 9 Jan 2024 14:47:17 -0500 (EST) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id 47F798D0017; Tue, 9 Jan 2024 14:47:17 -0500 (EST) X-Delivered-To: linux-mm@kvack.org Received: from relay.hostedemail.com (smtprelay0011.hostedemail.com [216.40.44.11]) by kanga.kvack.org (Postfix) with ESMTP id 3234B8D0002 for ; Tue, 9 Jan 2024 14:47:17 -0500 (EST) Received: from smtpin19.hostedemail.com (a10.router.float.18 [10.200.18.1]) by unirelay05.hostedemail.com (Postfix) with ESMTP id 03EB7409AB for ; Tue, 9 Jan 2024 19:47:16 +0000 (UTC) X-FDA: 81660806514.19.F4AAD13 Received: from mail-il1-f173.google.com (mail-il1-f173.google.com [209.85.166.173]) by imf22.hostedemail.com (Postfix) with ESMTP id 43653C0019 for ; Tue, 9 Jan 2024 19:47:15 +0000 (UTC) Authentication-Results: imf22.hostedemail.com; dkim=pass header.d=chromium.org header.s=google header.b=n7EZIw96; spf=pass (imf22.hostedemail.com: domain of keescook@chromium.org designates 209.85.166.173 as permitted sender) smtp.mailfrom=keescook@chromium.org; dmarc=pass (policy=none) header.from=chromium.org ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com; s=arc-20220608; t=1704829635; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type:content-transfer-encoding: in-reply-to:in-reply-to:references:references:dkim-signature; bh=jp3sPNgDn5/w+4+SQ1Qzo5FCSJIVAu5zu+xhNcaS+RE=; b=uspQPNbRXn6P1L6ZYImGOoxSZopsPim4b31Xj9Vu31cqoEddNt0tNv7HiIj8CmFrWKMLk8 mUMwzcOI36BlVFhY6unJnCaeIzTrIa8Qr03Z03zNtzmGlEtwZZ1K8rceS/EMbp/al5sPnW 6V5ETynWDBnAUCeZgF4jkGvvUuDYdQg= ARC-Seal: i=1; s=arc-20220608; d=hostedemail.com; t=1704829635; a=rsa-sha256; cv=none; b=kVwJJonCeh9oxdiu6SH6wbQwL/ft8J126RvH46K7uLoJTWI2W7wgtg4A+/yO8Li8IlKAU9 latmfhsSdMmcH93dEJs7yzb/elhIjWUcXA6tAODC751rZVsTXSJdDV06Cs7vu/ZGnIrnF0 sIg2AhvXvZm7HB0jNbChdVJ4jQ+Flzk= ARC-Authentication-Results: i=1; imf22.hostedemail.com; dkim=pass header.d=chromium.org header.s=google header.b=n7EZIw96; spf=pass (imf22.hostedemail.com: domain of keescook@chromium.org designates 209.85.166.173 as permitted sender) smtp.mailfrom=keescook@chromium.org; dmarc=pass (policy=none) header.from=chromium.org Received: by mail-il1-f173.google.com with SMTP id e9e14a558f8ab-3608e206f27so15456085ab.1 for ; Tue, 09 Jan 2024 11:47:15 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; t=1704829634; x=1705434434; darn=kvack.org; h=in-reply-to:content-disposition:mime-version:references:message-id :subject:cc:to:from:date:from:to:cc:subject:date:message-id:reply-to; bh=jp3sPNgDn5/w+4+SQ1Qzo5FCSJIVAu5zu+xhNcaS+RE=; b=n7EZIw96CPlxnwRJtAIwWW8ifQSSROdgA4JgLZsLQDthwUobVGc39k4AOqKb5GsAsl x74EfBnPpPfacx45vkSgdYzStyA6dF7r7OwqU1mUP3ngMqfhkqIMqIB4+5jin5JmTGPY OwSHUBY0OBxVg5lgAo97i+i5s70hzGkgvjYiE= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1704829634; x=1705434434; h=in-reply-to:content-disposition:mime-version:references:message-id :subject:cc:to:from:date:x-gm-message-state:from:to:cc:subject:date :message-id:reply-to; bh=jp3sPNgDn5/w+4+SQ1Qzo5FCSJIVAu5zu+xhNcaS+RE=; b=NSLUH/+BA+DmG48w77hD3wS5yfVEGo/gdN/pucjb37aRcDFjDuA10Zm93d5Y72V3U7 bwSbQwZXuZrj5J7cnSYbCzcvNCRiWf08c+Cgk4cXH2CArlszQkeHAxOtA3ncXMI4Ek7J /c6zdpCOwDfboO/3v8RAj2mnWR5cRRlvsyn6sLQU7Q9FHXm8xcdwRnKid6ZC4X5gzLEk fc5S0jeTUaNcAL5Ov63d6Ky0hGWBUVNcT6Qi1elGlRsQsndbLGxYG2LJFWgsQfm7MYx9 RyaXDGUPleum4xYebINt2bqfLXH5MC9FwnIBwjarXeud3iQzNaBUjXWcCxVEIG8XcWjV ab0g== X-Gm-Message-State: AOJu0YxWoXFCkzqI/F4LCP2S17HMs2fjiV8NM14fiIeHpunVs30BznP9 9XxT+tr5WYYoDWPvesZKEtFE5FB/75UD X-Google-Smtp-Source: AGHT+IF2+p52+a/uGcKh/I7JeXkJJoDrdwxg8dNkuNsj9eVicHWq61t6V8lQJDA2Rjq6uoJanlNaeg== X-Received: by 2002:a05:6e02:1989:b0:360:637:f64d with SMTP id g9-20020a056e02198900b003600637f64dmr9062346ilf.6.1704829634495; Tue, 09 Jan 2024 11:47:14 -0800 (PST) Received: from www.outflux.net (198-0-35-241-static.hfc.comcastbusiness.net. [198.0.35.241]) by smtp.gmail.com with ESMTPSA id n68-20020a632747000000b005cd8044c6fesm2019222pgn.23.2024.01.09.11.47.13 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 09 Jan 2024 11:47:14 -0800 (PST) Date: Tue, 9 Jan 2024 11:47:13 -0800 From: Kees Cook To: jeffxu@chromium.org Cc: akpm@linux-foundation.org, jannh@google.com, sroettger@google.com, willy@infradead.org, gregkh@linuxfoundation.org, torvalds@linux-foundation.org, usama.anjum@collabora.com, jeffxu@google.com, jorgelo@chromium.org, groeck@chromium.org, linux-kernel@vger.kernel.org, linux-kselftest@vger.kernel.org, linux-mm@kvack.org, pedro.falcato@gmail.com, dave.hansen@intel.com, linux-hardening@vger.kernel.org, deraadt@openbsd.org Subject: Re: [RFC PATCH v5 0/4] Introduce mseal() Message-ID: <202401091144.2C203AA7@keescook> References: <20240109154547.1839886-1-jeffxu@chromium.org> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20240109154547.1839886-1-jeffxu@chromium.org> X-Rspamd-Queue-Id: 43653C0019 X-Rspam-User: X-Rspamd-Server: rspam11 X-Stat-Signature: rznnfse5p8re64raqoumxn9zhcs7m984 X-HE-Tag: 1704829635-422460 X-HE-Meta: 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 98LMHE/1 0KXYvas/kMy66llceFcSopPJjfNV6Rot5qJn8lArUO7/L0iMvQFFFEngI91+QXqov3vKE6eeSf5fzxrdpu7FSmPVeZ5dXD62nhI59yxQiPKXx0a5YiJ9/6a4Zwv8aS9mlu2V6qTb4yqBUzA8zGTY0t4m+Mrb2zxyamGK0wgcMGWa5w+Flscx+9wUmHs5zpnEWdy/nx0uAa4hR1zw2l1vA/kDI1I+asYHBFeh0WvKNUQTj1FRklBUAgLEXTUY8xNSMBpp6QQYYwkBjPic7S0UFaTFghXZVDUM0EvXYDUSa84/Yleab/8gf/I0atLwQanKwTspKaqM7cvRIBL+xfQ+wlnnZn8FGfa8ha1MI3bySDAnvZmNOe57N4wVWi6UHULbeK7pdhu9mqpL+lpkGSzVg01+hrmPQpejrAYuNuSzApbTDP2XgaMTdZoHHnusD7rqsb9nX8uzcg8KrvPzsllbp1sz0xvIeGzYeI6Ei X-Bogosity: Ham, tests=bogofilter, spamicity=0.000118, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: List-Subscribe: List-Unsubscribe: On Tue, Jan 09, 2024 at 03:45:38PM +0000, jeffxu@chromium.org wrote: > This patchset proposes a new mseal() syscall for the Linux kernel. Thanks for continuing to work on this! Given Linus's general approval on the v4, I think this series can also drop the "RFC" part -- this code is looking to land. :) Since we're in the merge window right now, it'll likely be a couple weeks before akpm will consider putting this in -next. But given timing, this means it'll have a long time to bake in -next, which is good. -Kees -- Kees Cook