Re: [PATCH 0/3] userfaultfd: allow to forbid unprivileged users

From: Mike Kravetz
Date: Tue Mar 12 2019 - 16:00:11 EST

Next message: J. Bruce Fields: "Re: [PATCH 3/7] kthreads: allow multiple kthreadd's"
Previous message: Theodore Ts'o: "[GIT PULL] ext4 changes for 5.1"
In reply to: Peter Xu: "Re: [PATCH 0/3] userfaultfd: allow to forbid unprivileged users"
Next in thread: Peter Xu: "Re: [PATCH 0/3] userfaultfd: allow to forbid unprivileged users"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 3/11/19 2:36 AM, Peter Xu wrote:
>
> The "kvm" entry is a bit special here only to make sure that existing
> users like QEMU/KVM won't break by this newly introduced flag. What
> we need to do is simply set the "unprivileged_userfaultfd" flag to
> "kvm" here to automatically grant userfaultfd permission for processes
> like QEMU/KVM without extra code to tweak these flags in the admin
> code.

Another user is Oracle DB, specifically with hugetlbfs. For them, we would
like to add a special case like kvm described above. The admin controls
who can have access to hugetlbfs, so I think adding code to the open
routine as in patch 2 of this series would seem to work.

However, I can imagine more special cases being added for other users. And,
once you have more than one special case then you may want to combine them.
For example, kvm and hugetlbfs together.
--
Mike Kravetz

Next message: J. Bruce Fields: "Re: [PATCH 3/7] kthreads: allow multiple kthreadd's"
Previous message: Theodore Ts'o: "[GIT PULL] ext4 changes for 5.1"
In reply to: Peter Xu: "Re: [PATCH 0/3] userfaultfd: allow to forbid unprivileged users"
Next in thread: Peter Xu: "Re: [PATCH 0/3] userfaultfd: allow to forbid unprivileged users"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]