| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 1 Aug 2016 07:58:08 -0700 From: Dave Hansen <dave@...1.net> To: Vlastimil Babka <vbabka@...e.cz>, linux-kernel@...r.kernel.org Cc: x86@...nel.org, linux-api@...r.kernel.org, linux-arch@...r.kernel.org, linux-mm@...ck.org, torvalds@...ux-foundation.org, akpm@...ux-foundation.org, luto@...nel.org, mgorman@...hsingularity.net, dave.hansen@...ux.intel.com, arnd@...db.de Subject: Re: [PATCH 08/10] x86, pkeys: default to a restrictive init PKRU On 08/01/2016 07:42 AM, Vlastimil Babka wrote: > On 07/29/2016 06:30 PM, Dave Hansen wrote: >> This does not cause any practical problems with applications >> using protection keys because we require them to specify initial >> permissions for each key when it is allocated, which override the >> restrictive default. > > Here you mean the init_access_rights parameter of pkey_alloc()? So will > children of fork() after that pkey_alloc() inherit the new value or go > default? Hi Vlastimil, Yes, exactly, the initial permissions are provided via pkey_alloc()'s 'init_access_rights' argument. Do you mean fork() or clone()? In both cases, we actually copy the FPU state from the parent, so children always inherit the state from their parent which contains the permissions set by the parent's calls to pkey_alloc().
Powered by blists - more mailing lists