From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17]) by smtp.lore.kernel.org (Postfix) with ESMTP id 70399C021A1 for ; Wed, 12 Feb 2025 14:02:42 +0000 (UTC) Received: by kanga.kvack.org (Postfix) id A5F336B0082; Wed, 12 Feb 2025 09:02:41 -0500 (EST) Received: by kanga.kvack.org (Postfix, from userid 40) id A0FC56B0083; Wed, 12 Feb 2025 09:02:41 -0500 (EST) X-Delivered-To: int-list-linux-mm@kvack.org Received: by kanga.kvack.org (Postfix, from userid 63042) id 83B856B0085; Wed, 12 Feb 2025 09:02:41 -0500 (EST) X-Delivered-To: linux-mm@kvack.org Received: from relay.hostedemail.com (smtprelay0011.hostedemail.com [216.40.44.11]) by kanga.kvack.org (Postfix) with ESMTP id C12176B0082 for ; Wed, 12 Feb 2025 09:02:39 -0500 (EST) Received: from smtpin29.hostedemail.com (a10.router.float.18 [10.200.18.1]) by unirelay04.hostedemail.com (Postfix) with ESMTP id 102D31A1E14 for ; Wed, 12 Feb 2025 14:02:34 +0000 (UTC) X-FDA: 83111457828.29.752E71F Received: from mx0b-00069f02.pphosted.com (mx0b-00069f02.pphosted.com [205.220.177.32]) by imf19.hostedemail.com (Postfix) with ESMTP id 6697D1A0061 for ; Wed, 12 Feb 2025 14:02:26 +0000 (UTC) Authentication-Results: imf19.hostedemail.com; dkim=pass header.d=oracle.com header.s=corp-2023-11-20 header.b=MY9opPT9; dkim=pass header.d=oracle.onmicrosoft.com header.s=selector2-oracle-onmicrosoft-com header.b=aTBvCKDx; dmarc=pass (policy=reject) header.from=oracle.com; arc=pass ("microsoft.com:s=arcselector10001:i=1"); spf=pass (imf19.hostedemail.com: domain of lorenzo.stoakes@oracle.com designates 205.220.177.32 as permitted sender) smtp.mailfrom=lorenzo.stoakes@oracle.com ARC-Seal: i=2; s=arc-20220608; d=hostedemail.com; t=1739368946; a=rsa-sha256; cv=pass; b=WRRvd4rNo6m8wcR6vTUj4RDzqpPMfCTVAyrmqbxhSQPR1hPLBNS8xe1fM/Agq9f0YL6vc8 R3C6O0dbqWwD/7wm2FxASu4nP2ypiNHST8ekY8KTZWcdGtMZeWoMmWIb06ZT5kiNTJ2ZWv iWHDnTOa5i2u5bbTEbHkbQGfFKt5sU8= ARC-Authentication-Results: i=2; imf19.hostedemail.com; dkim=pass header.d=oracle.com header.s=corp-2023-11-20 header.b=MY9opPT9; dkim=pass header.d=oracle.onmicrosoft.com header.s=selector2-oracle-onmicrosoft-com header.b=aTBvCKDx; dmarc=pass (policy=reject) header.from=oracle.com; arc=pass ("microsoft.com:s=arcselector10001:i=1"); spf=pass (imf19.hostedemail.com: domain of lorenzo.stoakes@oracle.com designates 205.220.177.32 as permitted sender) smtp.mailfrom=lorenzo.stoakes@oracle.com ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=hostedemail.com; s=arc-20220608; t=1739368946; h=from:from:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references:dkim-signature; bh=4Rv0OGVxf3lGcjzi7xCcQfxMfGIKVt8l3wiNjfSVCT0=; b=fmHGdMOkURfZwL+yIRUXOCzik1pqqojw1dYcK3zrK15lldormPoNkVAIbIuN/q+DNvts59 +xX4JQdXd3v5wEk9SRpHWqt5Zr+opfmJVY7UIaAj9eCAisgSLzEfQICLEtNpN3o0PIKQbQ zmsjXRnfyaVgu3Ey2ARhbvkDkYrHhdo= Received: from pps.filterd (m0246632.ppops.net [127.0.0.1]) by mx0b-00069f02.pphosted.com (8.18.1.2/8.18.1.2) with ESMTP id 51CDEUAw009393; Wed, 12 Feb 2025 14:02:01 GMT DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=oracle.com; h=cc :content-transfer-encoding:content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to; s= corp-2023-11-20; bh=4Rv0OGVxf3lGcjzi7xCcQfxMfGIKVt8l3wiNjfSVCT0=; b= MY9opPT9ux8CXK7qsRjkFP9yuEw9gLVGXgO2j2S+qO2dpXRJY5m7+DGTZXo38Eqx Jveklfq4guRL/bdojjiowBjNJW/IS7VdE4tiGu3jute4YZmWkXRIXEMwjh0O78Ot PusOln1LVqx5cQG5FfqaiRVniPYWhd2aEDk7b1qohdoUhWBsvfls3Tn8jOwfb+gK sJkGq5LMxfXAmgY0rj9DkNPaGH2yR3Xa7dYvKuCnAJScLJd0VKeTHMsuzKl1wLMG W1N/3LoPZ85Q13JYtSsZpUStr80qSH78NF9Jz1qbpqIWZLaNWufkqTVmIPv18LrK wiVa9WPNgqlFuFL+O0Ie4g== Received: from iadpaimrmta01.imrmtpd1.prodappiadaev1.oraclevcn.com (iadpaimrmta01.appoci.oracle.com [130.35.100.223]) by mx0b-00069f02.pphosted.com (PPS) with ESMTPS id 44p0qafcj9-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK); Wed, 12 Feb 2025 14:02:01 +0000 (GMT) Received: from pps.filterd (iadpaimrmta01.imrmtpd1.prodappiadaev1.oraclevcn.com [127.0.0.1]) by iadpaimrmta01.imrmtpd1.prodappiadaev1.oraclevcn.com (8.18.1.2/8.18.1.2) with ESMTP id 51CCi7PT002625; Wed, 12 Feb 2025 14:02:00 GMT Received: from nam11-dm6-obe.outbound.protection.outlook.com (mail-dm6nam11lp2169.outbound.protection.outlook.com [104.47.57.169]) by iadpaimrmta01.imrmtpd1.prodappiadaev1.oraclevcn.com (PPS) with ESMTPS id 44nwqaaqu7-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK); Wed, 12 Feb 2025 14:02:00 +0000 ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=ZcRsOT29kOHaK9/W0nH3blyEyPsYmBFdaqH0lSeBCu3UeJSCkgE8Hvs71jIxCgOZAF900iJvw+UAQ3GT272KzrpZbKMEGp2lOC3xVxQJJgVeyyhzQyPmVSLPuA8j6Ee+8s0wOKuZpjLw8Zxmu4yIbrzzLUiX38xdmwkbJUYLpM3opEq7x6lvZ995G/1YmeJNU30pSKUQyk35Tlm+Dp+q7+d7NViXLTHVJrA523fgdmVD42B6QlOm1z2cVKqeSQK/nuNPugr4YH3snoAnIKJ3TQPAORHCwjQHv7jjY7s5AIAmzmvTxxG9JnyCTw0TKACkb6WWR8Qcia270bXdTWnfwg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=4Rv0OGVxf3lGcjzi7xCcQfxMfGIKVt8l3wiNjfSVCT0=; b=PBcsdeWYIJxlYEiI+CAbyy/mgqOf6j46u0+dLlFygJ/B/pmET3XWId9oIYFFteK0yxp1xOfke+r+cu4S4k+s5CObBNsctwpFomechGk3e04iWjaSaO7DL+92BvhmXMZ/7O1crb9MLg6hog6KeVcnyhMk9kURJueO2uZKLFyLm3NsuXprLMYH9J26NHzb5Qa0Yl5Pozgi6waVxKnvWSfEQCKqbk4SOYbMXckS/Cxkg1k5Ob3L2OhwMolvY2e3+FARSijROPXoB8gAROrjQ+Zhdu8AeRDLDXmlPyhL8NwNSeZf68wvhKLi31iVi+nRKddzHSY09B4hb8E2OqWA9zLDAw== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=oracle.com; dmarc=pass action=none header.from=oracle.com; dkim=pass header.d=oracle.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=oracle.onmicrosoft.com; s=selector2-oracle-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=4Rv0OGVxf3lGcjzi7xCcQfxMfGIKVt8l3wiNjfSVCT0=; b=aTBvCKDxzDX2bKk1NSi+qUfYHGfW0vn3K5Qa1ugqKITPgtTGRhbE+9skduKOLx7l8+kdK7FPdBz+KFR/Y7bctBBarXMOiDRoDCKk5TkcM1UZTU2/KzYNMoVb611BkTKEEfXhb1AN4lCW9mukOI28KXqo2Mte9DV3mJz2ACV2PBo= Received: from BYAPR10MB3366.namprd10.prod.outlook.com (2603:10b6:a03:14f::25) by CY8PR10MB6491.namprd10.prod.outlook.com (2603:10b6:930:5d::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8445.11; Wed, 12 Feb 2025 14:01:54 +0000 Received: from BYAPR10MB3366.namprd10.prod.outlook.com ([fe80::baf2:dff1:d471:1c9]) by BYAPR10MB3366.namprd10.prod.outlook.com ([fe80::baf2:dff1:d471:1c9%4]) with mapi id 15.20.8398.025; Wed, 12 Feb 2025 14:01:54 +0000 Date: Wed, 12 Feb 2025 14:01:42 +0000 From: Lorenzo Stoakes To: Pedro Falcato Cc: jeffxu@chromium.org, akpm@linux-foundation.org, keescook@chromium.org, jannh@google.com, torvalds@linux-foundation.org, vbabka@suse.cz, Liam.Howlett@oracle.com, adhemerval.zanella@linaro.org, oleg@redhat.com, avagin@gmail.com, benjamin@sipsolutions.net, linux-kernel@vger.kernel.org, linux-hardening@vger.kernel.org, linux-mm@kvack.org, jorgelo@chromium.org, sroettger@google.com, hch@lst.de, ojeda@kernel.org, thomas.weissschuh@linutronix.de, adobriyan@gmail.com, johannes@sipsolutions.net, hca@linux.ibm.com, willy@infradead.org, anna-maria@linutronix.de, mark.rutland@arm.com, linus.walleij@linaro.org, Jason@zx2c4.com, deller@gmx.de, rdunlap@infradead.org, davem@davemloft.net, peterx@redhat.com, f.fainelli@gmail.com, gerg@kernel.org, dave.hansen@linux.intel.com, mingo@kernel.org, ardb@kernel.org, mhocko@suse.com, 42.hyeyoo@gmail.com, peterz@infradead.org, ardb@google.com, enh@google.com, rientjes@google.com, groeck@chromium.org, mpe@ellerman.id.au, aleksandr.mikhalitsyn@canonical.com, mike.rapoport@gmail.com Subject: Re: [RFC PATCH v5 0/7] mseal system mappings Message-ID: <7545d5eb-a16e-4cc8-a9e3-5431be01aade@lucifer.local> References: <20250212032155.1276806-1-jeffxu@google.com> Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: X-ClientProxiedBy: LO4P265CA0096.GBRP265.PROD.OUTLOOK.COM (2603:10a6:600:2bc::14) To BYAPR10MB3366.namprd10.prod.outlook.com (2603:10b6:a03:14f::25) MIME-Version: 1.0 X-MS-PublicTrafficType: Email X-MS-TrafficTypeDiagnostic: BYAPR10MB3366:EE_|CY8PR10MB6491:EE_ X-MS-Office365-Filtering-Correlation-Id: 03ea9e17-3e2f-4216-5e9e-08dd4b6dce36 X-MS-Exchange-SenderADCheck: 1 X-MS-Exchange-AntiSpam-Relay: 0 X-Microsoft-Antispam: BCL:0;ARA:13230040|1800799024|7416014|376014|366016; X-Microsoft-Antispam-Message-Info: =?utf-8?B?dGFKbklQQmlHT2hhMU94elR3TkNoK25KaEVQMHl2eTVleEY3SXJhbDVRWXN1?= =?utf-8?B?SHByclVmN1p6bTE2eFpUelNIZURueTByZS80Q2ZQOW9BTUNlNDA2KzNyR1M0?= =?utf-8?B?OFZJZjFqM3pUZmhJYzJCbWNuQmNMVVlZenBpUkNQcEFqdnMwV1IrMlduYXVT?= =?utf-8?B?RUtvUUFYN0E3bDV2TTZncXlXZGhkVGkwV3VCZHFBdnc0TnNIcHA0VnY2bVdq?= =?utf-8?B?T0hVd2FSREJFd09ZMUI5ckd2NVFyMmFVSjhtc0NNbVhkVWtFRVcvQk8rQkQ0?= =?utf-8?B?L3NUMXQvQklrTld0bWNGTzFyTHJIbGpDZlRJTVRISzN0SzlUZWljMnhaZmJl?= =?utf-8?B?Q2E4UUNaQlFiZFlOOXBtYUlBWjZpcVBsSWxKK2xHbGpTN3pZYS9Pb09OVVZ3?= =?utf-8?B?c3FhYTV2ZU9lRVJvajlrSEsvanJuMGZqeGJCQ0VWYmwwSVFodHpleEMxSGtr?= =?utf-8?B?NDhST2lWaGNaU2c0Sm9SSCswcVRiUkVQWkxVWVc1TlpGaStVQ29zUW9TS2Ji?= =?utf-8?B?ek5tcC9Oa09KN3ZycXRzdk0wWVdWVXRhUlJNdmQzYTdVbTNrOXIyV2pJenh5?= =?utf-8?B?VGsvL3kyWnNxbk82TlBjMEJpM1RVZU5MQk5IWW1FckdSTkRiMVl2Y1NOWnBU?= =?utf-8?B?NzhsRVpOUGM0Mkt0aGNRanh5U0cvNVNxVEE1dWtmMTdrTE9KeGFVSjFHSEFw?= =?utf-8?B?VGk0TlJjT09oT2NEdGF3SmZNSjFTVFVzT2VkbVNtK3haT0FZRGsxRkZrTHpE?= =?utf-8?B?aS81VnFBVmpMN2QwZGQ2Qll6Y3Z3VzEzUEpQVUJZR1RIRGhGQllrcXUyc3dD?= =?utf-8?B?QVFRTXRCYnc5WkJZd2dGeTFUS293THhDQjlCSkYwTG9US1ErTFYwN29QZFZZ?= =?utf-8?B?T2FISFVFVzZBdlBCcWI3TU5JWkZwa2NvbUEyTkNXaTdxTVE2LzR4OEM4eEE1?= =?utf-8?B?bVJzRWl3VTBXanJGK2VpZXN6NyttdWRkMnJxUHZXVVFyRUJmOGFwK0FxM0dr?= =?utf-8?B?MTBBSXkrTkJaclpaRFdKQUNSTnNkbDdibFJaVFp2d1VMZVc2UGR5UWZ3Zzkx?= =?utf-8?B?TmR4WDNyaUVsVXJkRU9sNVBFYTR2emd0dGh6ZlorZFh5bWl4MmhPZkh1MTgr?= =?utf-8?B?RElGMmFXeTd4ejBYelp6UmVhbGZaMXVGY3ZJU2xrUU5pMnoxSHRqdzhNU0xP?= =?utf-8?B?dlZocDJkTEtWWlVhblVsOHpqRHUxMnY1amtKRVFpVjF2VkJ1YVUrRmN0SWxY?= =?utf-8?B?UlJHNis5ZTVjNVNiMkdsWkpUb0hKc0diTis2R29YVDhNOGhWaGZPWGc5aUU5?= =?utf-8?B?MFJMWlJSempONG1JaDdUdmFRd1Y5NDVORzlGRW12TUlmOHpIS2ZqR0t6aWxC?= =?utf-8?B?YmpMVi8yTFRsbXZCQm9EczQxZnY3S3R1NUZ0Snp3Q3Y5dUVtMUFpdGNiM0ZU?= =?utf-8?B?VWNET0lsa2ZDYTNLdXkxc3pyMDI5UE1DcVh4VlJ1WGI5MUxSKy9qWEN2SWhU?= =?utf-8?B?RzZoNE45dGpnNmlvdStsWUNMYmRDTzB1M0U2dkVmb3FVcUUvTUMwUmk1OGxN?= =?utf-8?B?c09SdDlML0hRVzBXRFRxNCtITkNCSXdMOE9ZQlFXNXJnamlDRXY1V0dYMTNa?= =?utf-8?B?TXJTSUxidm1sb2xQREN0K21mV2NSalhjSFVTc3VDRzVqSXpDMWJTOUhPcWlH?= =?utf-8?B?Q1ZXbzkwYm9MckhTZzV5RjVaK2NlMFFSRXZZc3lxYW52ZG1wZHNoRitCUXIx?= =?utf-8?B?TG5iZitDNTlUUUlVZDc0R2FvYzdoQTIyMXBOZy90aE5oeEMwWGhyZ2Z5bTRp?= =?utf-8?B?bG4zdFFxM1Eza2J5WGFGUjZUSTdQbWVORU03bjl1a1piMXZ2UEUvV0hwa3E1?= =?utf-8?Q?G1B0Zw8kttvPm?= X-Forefront-Antispam-Report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:BYAPR10MB3366.namprd10.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(1800799024)(7416014)(376014)(366016);DIR:OUT;SFP:1101; X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1 X-MS-Exchange-AntiSpam-MessageData-0: =?utf-8?B?NEM2ekxLWml4UDRZQUlpNFRxazRlQUtzVkwzd296RFFtc1ZUZnhkREhMYWx1?= =?utf-8?B?TVROZENYcWIzaE03MUVOL2hkYzFsVmkzWTZJeEdZcThGMGlPSzEvY3ZkbVNq?= =?utf-8?B?SzczY0dNMEpNbk1WeFN1bERQaGhsekpQekRpZG9HRlBMYmJZMDJuWUI5SUc4?= =?utf-8?B?a3g3U3A4K3NsaEJ5QmVTaEpnUWxOMVlsQTB2VkZIVWJGL25Mb0pMUjd4MXRm?= =?utf-8?B?Nkp2NENNaEZrcURpajJGZUJZVHUyQy8vTi9GUFhoT09sQ1dUN0J2cVI5YWxw?= =?utf-8?B?QURlZDA3ajc2LzQ1Qy9MbjZFL2VUNlFtbDVOallDaFQzU2krWFNUVGhjdkND?= =?utf-8?B?NXBFMndvd0RodUxoakc0OFdXbUt2V3NoTVJiU0VYSXlJSFcxZGtZanBuRzFa?= =?utf-8?B?SE0xOUZySWNlc2tsRW1zVzNySjg1SnlGZkVxTkh0Nm1vSGV3T1pORys4SGFv?= =?utf-8?B?eGkyOEQvWHpPdUVQQjRjYlVjcTdWeTgwelIvQWRPS09qa0ZsbE5vWXZGMjEz?= =?utf-8?B?bm1wR1Y1NVZDY2szQzE1TVVUN3R3aktDcis3VVFKSmNIbWc3bkU4YTZucUts?= =?utf-8?B?cGI4WW9FL25VYU9nK1hpMTgrN1g1cEdHU00vQTgvamxjZEY4L3lqMG1iRTRX?= =?utf-8?B?K0N5TC91VXZWMVk0UDNFZ2EvTmNvWGNaeG9acUxQcEVlWXVyTjVER3ZORWRn?= =?utf-8?B?Nkw5ZC9MMkJaSXB3Uk9XZmwzeEtTNStkWUpGYWg1MUxCaG1CZjNPUTRXK3o4?= =?utf-8?B?RmFuV1o4eFFVbUcvVWp4enFWRjdteTMxMzVwVENJdGN6dU5lSFd3QkhyTzQ4?= =?utf-8?B?NEhsL0FTcmdZUlN0Umg2bkxJellaa2hPU00yTFJXUmVnRTV0a1YrN1FNUndP?= =?utf-8?B?ckRrTEtoU29tNXE1aXBYWng5MU5GQWsyb25YUU9tTnlOTjdoTUlkQU9yM0Y5?= =?utf-8?B?MWdGTkxHYXMxSzVrVGpZSXRFTzU4YmtVdi94ZXIwV0Q2VnpZNUNIMTFIc2VT?= =?utf-8?B?RUxNQzdjdHM0aWMxUlZRdzIzWkwweERyalc5cUxNR0x0bnFjRXJmVlE2am9K?= =?utf-8?B?WSt1WlZIRlVPd3EvRWVtSXh2S2wrTjlXTzIra1FkcVpvcW1oaUpuVXZCSVlY?= =?utf-8?B?MC9XVk5aMGpzYmdCejFmdFM3QVNTMWdHVzVMOEhoRE9YR2JYWHg1SU52Q3Jw?= =?utf-8?B?VDdPdHRPaElOYVhYL05SN2tCTGNVOXpndDNnS0NCdXlBNzh6ckFXNWJDN0V0?= =?utf-8?B?UW0vM1U1c2p6OGNTRjNlYnVOOStZSjRjbnpPZ0F4YkJGZmRCWDdESVJyWnl5?= =?utf-8?B?TGxaV1NjQzBocm1RWjkyVDU4R0ZxOWZRQkIyWnhuSTBCSGFDWldEdU02N1J2?= =?utf-8?B?M1JBTHoxNmZ0bEtkYkMydkpuUWdtTE5ZRXNEZGo4cDFYZzNSOEdESGVmZUQz?= =?utf-8?B?YzBGUnczT1Nsc0RVVytZTlNwOXMyYndRU2hyWjF5VWJqTVZvSFo5R2dva0ZZ?= =?utf-8?B?OGg1M09ZVTl2VnY2V29qWmcreHNqZE5vWjdCUW5tVWk0Vzc3ZVBjRlRRSW42?= =?utf-8?B?SERJT2hQa0Z4eXp1UnhlWGZiZWFMNzlzR0ZaeFRDZU50L0xXMS9nMGs1Mnc4?= =?utf-8?B?azcyM1I5Sk1mL0lyT1NnV0JXWFFOeGJ3ZGIxNlBJUmIwZGw5RHp5NGd6bXJ1?= =?utf-8?B?VDZXQ2k0WkNqOEw2emhFS1I5Uko0dkJZUFlKeTBsZVhjS0VTZVNGei9kN1Bx?= =?utf-8?B?U2ZoMUtDRnZvdkxOK2h2QXRnbnBVVnZmWjVyUHBWNGFmNTF5V2c1NG1NdEkw?= =?utf-8?B?NkJMZWhYNVFZUUt0R3Z6dXJ6Mldwa1RScDM3cndUOFhNeGQ5SzN0cE9WMUIr?= =?utf-8?B?U2hFVDJiREhQcmlwSnNSbTd4aGZ5d2ZIekhJcXAyK1F3MlpBbHZnTUY0M3Nh?= =?utf-8?B?YjdGbTduVnRtOXRpbitqdDIzMHl6S0FXTnBoZmJkbFRTY3JyL0pPbTYrK2tn?= =?utf-8?B?RzJnR3JLNHg2Ykx4MWdLOTdFeG1BK1FHU0Z6UFBvZ1pxcW04eXhtSk5lUGpQ?= =?utf-8?B?aGhZbGFDMHM3c1BUcDdpamU0RHN5ZUliR1hBbmNEdldRTkVTbjBSTHU5WW9x?= =?utf-8?B?S2lMVE1SRmltZHZndHNSWVh3dEx2MmtGem9TRFphS2hjcXM3a2krYTNpeHVh?= =?utf-8?B?eGc9PQ==?= X-MS-Exchange-AntiSpam-ExternalHop-MessageData-ChunkCount: 1 X-MS-Exchange-AntiSpam-ExternalHop-MessageData-0: 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 X-OriginatorOrg: oracle.com X-MS-Exchange-CrossTenant-Network-Message-Id: 03ea9e17-3e2f-4216-5e9e-08dd4b6dce36 X-MS-Exchange-CrossTenant-AuthSource: BYAPR10MB3366.namprd10.prod.outlook.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-OriginalArrivalTime: 12 Feb 2025 14:01:54.1109 (UTC) X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-CrossTenant-Id: 4e2c6054-71cb-48f1-bd6c-3a9705aca71b X-MS-Exchange-CrossTenant-MailboxType: HOSTED X-MS-Exchange-CrossTenant-UserPrincipalName: 4ZNM893MI/EwtCoWOckM7Ggi1zukY7vTy0WH7nJafgtMMPM2Mfqj7gxRzp24wPqw8HR/B3PobGJdmM94u5GVRe/a1CerYnvgD48ycblaIA8= X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY8PR10MB6491 X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.293,Aquarius:18.0.1057,Hydra:6.0.680,FMLib:17.12.68.34 definitions=2025-02-12_04,2025-02-11_01,2024-11-22_01 X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 spamscore=0 mlxscore=0 mlxlogscore=999 phishscore=0 bulkscore=0 malwarescore=0 adultscore=0 suspectscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2501170000 definitions=main-2502120108 X-Proofpoint-GUID: ZjMCbtA3kUYjaa1q0QL4LNkeq39DDjh0 X-Proofpoint-ORIG-GUID: ZjMCbtA3kUYjaa1q0QL4LNkeq39DDjh0 X-Rspamd-Server: rspam02 X-Rspamd-Queue-Id: 6697D1A0061 X-Stat-Signature: hti6693ub6k4wg9tckz59xioiociuj98 X-Rspam-User: X-HE-Tag: 1739368946-982134 X-HE-Meta: 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 7/ucMtMi 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 X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4 Sender: owner-linux-mm@kvack.org Precedence: bulk X-Loop: owner-majordomo@kvack.org List-ID: List-Subscribe: List-Unsubscribe: (sorry I really am struggling to reply to mail as lore still seems to be broken). On Wed, Feb 12, 2025 at 12:37:50PM +0000, Pedro Falcato wrote: > On Wed, Feb 12, 2025 at 11:25 AM Lorenzo Stoakes > wrote: > > > > On Wed, Feb 12, 2025 at 03:21:48AM +0000, jeffxu@chromium.org wrote: > > > From: Jeff Xu > > > > > > The commit message in the first patch contains the full description of > > > this series. > > > > Sorry to nit, but it'd be useful to reproduce in the cover letter too! But > > this obviously isn't urgent, just be nice when we un-RFC. > > > > Thanks for sending as RFC, appreciated, keen to figure out a way forward > > with this series and this gives us space to discuss. > > > > One thing that came up recently with the LWN article (...!) was that rr is > > also impacted by this [0]. > > > > I think with this behind a config flag we're fine (this refers to my > > 'opt-in' comment in the reply on LWN) as my concerns about this being > > enabled in a broken way without an explicit kernel configuration are > > addressed, and actually we do expose a means by which a user can detect if > > the VDSO for instance is sealed via /proc/$pid/[s]maps. > > > > So tools like rr and such can be updated to check for this. I wonder if we > > ought to try to liaise with the known problematic ones? > > > > It'd be nice to update the documentation to have a list of 'known > > problematic userland software with sealed VDSO' so we make people aware. > > > > Hopefully we are acheiving the opt-in nature of the thing here, but it > > makes me wonder whether we need a prctl() interface to optionally disable > > even if the system has it enabled as a whole. > > Just noting that (as we discussed off-list) doing prctl() would not > work, because that would effectively be an munseal for those vdso > regions. > Possibly something like a personality() flag (that's *not* inherited > when AT_SECURE/secureexec). But personalities have other issues... Thanks, yeah that's a good point, it would have to be implemented as a personality or something similar otherwise you're essentially relying on 'unsealing' which can't be permitted. I'm not sure how useful that'd be for the likes of rr though. But I suppose if it makes everything exec'd by a child inherit it then maybe that works for a debugging session etc.? > > FWIW, although it would (at the moment) be hard to pull off in the > libc, I still much prefer it to playing these weird games with CONFIG > options and kernel command line options and prctl and personality and > whatnot. It seems to me like we're trying to stick policy where it > doesn't belong. The problem is, as a security feature, you don't want to make it trivially easy to disable. I mean we _need_ a config option to be able to strictly enforce only making the feature enable-able on architectures and configuration option combinations that work. But if there is userspace that will be broken, we really have to have some way of avoiding the disconnect between somebody making policy decision at the kernel level and somebody trying to run something. Because I can easily envision somebody enabling this as a 'good security feature' for a distro release or such, only for somebody else to later try rr, CRIU, or whatever else and for it to just not work or fail subtly and to have no idea why. I mean one option is to have it as a CONFIG_ flag _and_ you have to enable it via a tunable, so then it can become sysctl.d policy for instance. The CONFIG_ flag dependency is critical because we don't want to enable this on arches that have not been tested against it. It's vital at any rate that we document everywhere we can that _this might break some userland that depends on remapping the VDSO_. > > -- > Pedro