[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20250502115553.27803-1-roypat@amazon.co.uk>
Date: Fri, 2 May 2025 11:55:54 +0000
From: "Roy, Patrick" <roypat@...zon.co.uk>
To: "peterz@...radead.org" <peterz@...radead.org>
CC: "da.gomez@...sung.com" <da.gomez@...sung.com>,
"gregkh@...uxfoundation.org" <gregkh@...uxfoundation.org>,
"hch@...radead.org" <hch@...radead.org>, "hpa@...or.com" <hpa@...or.com>,
"linux-kbuild@...r.kernel.org" <linux-kbuild@...r.kernel.org>,
"linux-kernel@...r.kernel.org" <linux-kernel@...r.kernel.org>,
"linux-modules@...r.kernel.org" <linux-modules@...r.kernel.org>,
"masahiroy@...nel.org" <masahiroy@...nel.org>, "mcgrof@...nel.org"
<mcgrof@...nel.org>, "nathan@...nel.org" <nathan@...nel.org>,
"nicolas@...sle.eu" <nicolas@...sle.eu>, "petr.pavlu@...e.com"
<petr.pavlu@...e.com>, "samitolvanen@...gle.com" <samitolvanen@...gle.com>,
"x86@...nel.org" <x86@...nel.org>
Subject: RE: [PATCH -v2 0/7] module: Strict per-modname namespaces
Hi Peter,
Are you still working on this patch series? I'm working on having KVM remove
virtual machine memory from the kernel's direct map, to harden again
speculative execution attacks [1]. At David H.'s LSF/MM/BPF task on
guest_memfd, it was suggested to use per-modname namespaces to export
set_direct_map_valid() specifically for use in KVM to achieve this.
Is there anything I can do to help get this across the finish line
(testing/etc.)?
Best,
Patrick
[1]: https://lore.kernel.org/kvm/20250221160728.1584559-1-roypat@amazon.co.uk/
Powered by blists - more mailing lists