Re: Fwd: Started to get "memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL"

From: Stuart Foster
Date: Fri Jun 02 2023 - 03:14:16 EST

Next message: Tan Tee Min: "Re: [PATCH net v1] net/sched: taprio: fix cycle time extension logic"
Previous message: Ilkka Koskinen: "Re: [PATCH v2 5/5] perf: arm_cspmu: ampere_cspmu: Add support for Ampere SoC PMU"
In reply to: Bagas Sanjaya: "Re: Fwd: Started to get "memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL""
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 02/06/2023 03:15, Bagas Sanjaya wrote:

On 6/1/23 21:12, Kees Cook wrote:

Hm indeed it seems to have introduced 2 new flags and immediately warn if
any process doesn't use them. Maybe it would make sense for some of the
non-default values of vm.memfd_noexec, but it's too early to warn
unconditionally everywhere, no?

This is pretty standard for getting new options like this noticed by
userspace -- there is no regression in _behavior_. It's just a reminder
to fix userspace code.

Telling regzbot:

#regzbot invalid: not a kernel regression, but userspace fix is needed

Thanks.

Issue raised with XOrg:

https://gitlab.freedesktop.org/xorg/xserver/-/issues/1553

Next message: Tan Tee Min: "Re: [PATCH net v1] net/sched: taprio: fix cycle time extension logic"
Previous message: Ilkka Koskinen: "Re: [PATCH v2 5/5] perf: arm_cspmu: ampere_cspmu: Add support for Ampere SoC PMU"
In reply to: Bagas Sanjaya: "Re: Fwd: Started to get "memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL""
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]