Re: [PATCH v6 3/6] mm: introduce memfd_secret system call to create "secret" memory areas

2020-10-11 Thread Mike Rapoport
On Wed, Sep 30, 2020 at 08:11:28PM +, Edgecombe, Rick P wrote: > On Wed, 2020-09-30 at 13:35 +0300, Mike Rapoport wrote: > > > > Our thinking was that copy_*user() would work in the context of the > > process that "owns" the secretmem and gup() would not allow access in > > general, unless

Re: [PATCH v6 3/6] mm: introduce memfd_secret system call to create "secret" memory areas

2020-09-30 Thread Edgecombe, Rick P
On Wed, 2020-09-30 at 13:35 +0300, Mike Rapoport wrote: > On Tue, Sep 29, 2020 at 08:06:03PM +, Edgecombe, Rick P wrote: > > On Tue, 2020-09-29 at 16:06 +0300, Mike Rapoport wrote: > > > On Tue, Sep 29, 2020 at 04:58:44AM +, Edgecombe, Rick P > > > wrote: > > > > On Thu, 2020-09-24 at

Re: [PATCH v6 3/6] mm: introduce memfd_secret system call to create "secret" memory areas

2020-09-30 Thread Mike Rapoport
On Tue, Sep 29, 2020 at 08:06:03PM +, Edgecombe, Rick P wrote: > On Tue, 2020-09-29 at 16:06 +0300, Mike Rapoport wrote: > > On Tue, Sep 29, 2020 at 04:58:44AM +, Edgecombe, Rick P wrote: > > > On Thu, 2020-09-24 at 16:29 +0300, Mike Rapoport wrote: > > > > Introduce "memfd_secret" system

Re: [PATCH v6 3/6] mm: introduce memfd_secret system call to create "secret" memory areas

2020-09-29 Thread Edgecombe, Rick P
On Tue, 2020-09-29 at 16:06 +0300, Mike Rapoport wrote: > On Tue, Sep 29, 2020 at 04:58:44AM +, Edgecombe, Rick P wrote: > > On Thu, 2020-09-24 at 16:29 +0300, Mike Rapoport wrote: > > > Introduce "memfd_secret" system call with the ability to create > > > memory > > > areas visible only in

Re: [PATCH v6 3/6] mm: introduce memfd_secret system call to create "secret" memory areas

2020-09-29 Thread Mike Rapoport
On Tue, Sep 29, 2020 at 04:58:44AM +, Edgecombe, Rick P wrote: > On Thu, 2020-09-24 at 16:29 +0300, Mike Rapoport wrote: > > Introduce "memfd_secret" system call with the ability to create > > memory > > areas visible only in the context of the owning process and not > > mapped not > > only to

Re: [PATCH v6 3/6] mm: introduce memfd_secret system call to create "secret" memory areas

2020-09-28 Thread Edgecombe, Rick P
On Thu, 2020-09-24 at 16:29 +0300, Mike Rapoport wrote: > Introduce "memfd_secret" system call with the ability to create > memory > areas visible only in the context of the owning process and not > mapped not > only to other processes but in the kernel page tables as well. > > The user will

[PATCH v6 3/6] mm: introduce memfd_secret system call to create "secret" memory areas

2020-09-24 Thread Mike Rapoport
From: Mike Rapoport Introduce "memfd_secret" system call with the ability to create memory areas visible only in the context of the owning process and not mapped not only to other processes but in the kernel page tables as well. The user will create a file descriptor using the memfd_secret()