lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <6738ca0d-ee66-7dde-3307-e8a55a115757@lwfinger.net>
Date:   Thu, 31 Aug 2023 15:56:40 -0500
From:   Larry Finger <Larry.Finger@...inger.net>
To:     Aleksa Sarai <cyphar@...har.com>
Cc:     LKML <linux-kernel@...r.kernel.org>
Subject: Comment on "memfd: improve userspace warnings for missing
 exec-related flags"

Aleksa,

In commit 434ed3350f57 ("memfd: improve userspace warnings for missing 
exec-related flags"), your changing of pr_warn_once() to pr_info_ratelimited() 
was justified as it would "... incentivise userspace to switch to passing 
MFD_EXEC and MFD_NOEXEC_SEAL, we need to provide a warning on each attempt to 
call memfd_create() without the new flags."

It would be easier to get userspace to implement these flags if they were 
documented somewhere other than the kernel source. The man page for 
memfd_create() does not mention them at all.

Larry

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ