Re: [PATCH 1/1 v2] x86: pkey-mprotect must allow pkey-0

From: Dave Hansen
Date: Wed Mar 14 2018 - 14:58:46 EST


On 03/14/2018 11:54 AM, Ram Pai wrote:
>>> (e) it bypasses key-permission checks when assigned.
>> I don't think this is necessary. I think the only rule we *need* is:
>>
>> pkey-0 is allocated implicitly at execve() time. You do not
>> need to call pkey_alloc() to allocate it.
> And can be explicitly associated with any address range ?

Yes, it should ideally be available for use just like any other key when
allocated.