Re: [PATCH] selftests: mm: Fix build errors on armhf

Hi Muhammad On Mon, Aug 19, 2024 at 3:05 AM Muhammad Usama Anjum wrote: > > On 8/14/24 3:29 AM, Jeff Xu wrote: > > Hi Muhammad > > > > On Fri, Aug 9, 2024 at 1:25 AM Muhammad Usama Anjum > > wrote: > >> > >> The __NR_mmap isn't found on arm

Re: [PATCH] selftests: mm: Fix build errors on armhf

On Mon, Aug 19, 2024 at 3:05 AM Muhammad Usama Anjum wrote: > > On 8/14/24 3:29 AM, Jeff Xu wrote: > > Hi Muhammad > > > > On Fri, Aug 9, 2024 at 1:25 AM Muhammad Usama Anjum > > wrote: > >> > >> The __NR_mmap isn't found on armhf. The mmap()

Re: [RFC PATCH v1 1/2] mm/memfd: Add support for F_SEAL_FUTURE_EXEC to memfd

+ Kees because this is related to W^X memfd and security. On Fri, Jan 3, 2025 at 7:14 AM Jann Horn wrote: > > On Fri, Dec 6, 2024 at 7:19 PM Lorenzo Stoakes > wrote: > > On Thu, Dec 05, 2024 at 05:09:22PM -0800, Isaac J. Manjarres wrote: > > > + if (is_exec_sealed(seals)) { > > > > A

Re: [RFC PATCH RESEND v2 1/2] mm/memfd: Add support for F_SEAL_FUTURE_EXEC to memfd

+ Kees because this is related to W^X memfd and security. On Fri, Jan 3, 2025 at 7:04 AM Jann Horn wrote: > > On Fri, Jan 3, 2025 at 12:32 AM Isaac J. Manjarres > wrote: > > Android currently uses the ashmem driver [1] for creating shared memory > > regions between processes. Ashmem buffers can

Re: [RFC PATCH RESEND v2 1/2] mm/memfd: Add support for F_SEAL_FUTURE_EXEC to memfd

On Mon, Jan 6, 2025 at 5:26 PM Isaac Manjarres wrote: > > On Mon, Jan 06, 2025 at 09:35:09AM -0800, Jeff Xu wrote: > > + Kees because this is related to W^X memfd and security. > > > > On Fri, Jan 3, 2025 at 7:04 AM Jann Horn wrote: > > > > > > On Fri,

Re: [PATCH v1] selftests/memfd: Run sysctl tests when PID namespace support is enabled

EC_SEAL > MFD_EXEC") > Cc: sta...@vger.kernel.org # v6.6+ > Cc: Jeff Xu > Cc: Suren Baghdasaryan > Cc: Kalesh Singh > Signed-off-by: Isaac J. Manjarres > --- > tools/testing/selftests/memfd/memfd_test.c | 14 -- > 1 file changed, 12 insertions(+), 2 d

Re: [RFC PATCH RESEND v2 1/2] mm/memfd: Add support for F_SEAL_FUTURE_EXEC to memfd

On Wed, Jan 8, 2025 at 5:57 AM Alice Ryhl wrote: > > On Tue, Jan 7, 2025 at 6:21 AM Jeff Xu wrote: > > Do you know which code checks for VM_MAYEXEC flag in the mprotect code > > path ? it isn't obvious to me, i.e. when I grep the VM_MAYEXEC inside > > mm pat

Re: [RFC PATCH v1 1/2] mm/memfd: Add support for F_SEAL_FUTURE_EXEC to memfd

On Wed, Jan 8, 2025 at 11:06 AM Lorenzo Stoakes wrote: > > On Mon, Jan 06, 2025 at 04:44:33PM -0800, Kees Cook wrote: > > On Mon, Jan 06, 2025 at 10:26:27AM -0800, Jeff Xu wrote: > > > + Kees because this is related to W^X memfd and security. > > > > > > O

Re: [RFC PATCH v1 1/2] mm/memfd: Add support for F_SEAL_FUTURE_EXEC to memfd

On Tue, Jan 14, 2025 at 3:41 PM Jeff Xu wrote: > > On Tue, Jan 14, 2025 at 2:42 PM Isaac Manjarres > wrote: > > > > On Tue, Jan 14, 2025 at 01:29:44PM -0800, Kees Cook wrote: > > > On Tue, Jan 14, 2025 at 12:02:28PM -0800, Isaac Manjarres wrote: > > >

Re: [RFC PATCH v1 1/2] mm/memfd: Add support for F_SEAL_FUTURE_EXEC to memfd

On Tue, Jan 14, 2025 at 2:42 PM Isaac Manjarres wrote: > > On Tue, Jan 14, 2025 at 01:29:44PM -0800, Kees Cook wrote: > > On Tue, Jan 14, 2025 at 12:02:28PM -0800, Isaac Manjarres wrote: > Alternatively, MFD_NOEXEC_SEAL could be extended > to prevent executable mappings, and MEMFD_NOEXEC_SCOPE_NO