Re: [PATCH 08/10] x86, pkeys: default to a restrictive init PKRU

From: Dave Hansen
Date: Mon Aug 01 2016 - 11:00:23 EST

Next message: Alexander Potapenko: "[PATCH] kasan: avoid overflowing quarantine size on low memory systems"
Previous message: Rafael J. Wysocki: "Re: [RFC][PATCH 4/7] cpufreq / sched: Add flags argument to cpufreq_update_util()"
In reply to: Vlastimil Babka: "Re: [PATCH 08/10] x86, pkeys: default to a restrictive init PKRU"
Next in thread: Vlastimil Babka: "Re: [PATCH 08/10] x86, pkeys: default to a restrictive init PKRU"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 08/01/2016 07:42 AM, Vlastimil Babka wrote:
> On 07/29/2016 06:30 PM, Dave Hansen wrote:
>> This does not cause any practical problems with applications
>> using protection keys because we require them to specify initial
>> permissions for each key when it is allocated, which override the
>> restrictive default.
>
> Here you mean the init_access_rights parameter of pkey_alloc()? So will
> children of fork() after that pkey_alloc() inherit the new value or go
> default?

Hi Vlastimil,

Yes, exactly, the initial permissions are provided via pkey_alloc()'s
'init_access_rights' argument.

Do you mean fork() or clone()? In both cases, we actually copy the FPU
state from the parent, so children always inherit the state from their
parent which contains the permissions set by the parent's calls to
pkey_alloc().

Next message: Alexander Potapenko: "[PATCH] kasan: avoid overflowing quarantine size on low memory systems"
Previous message: Rafael J. Wysocki: "Re: [RFC][PATCH 4/7] cpufreq / sched: Add flags argument to cpufreq_update_util()"
In reply to: Vlastimil Babka: "Re: [PATCH 08/10] x86, pkeys: default to a restrictive init PKRU"
Next in thread: Vlastimil Babka: "Re: [PATCH 08/10] x86, pkeys: default to a restrictive init PKRU"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]