Re: [RFC PATCH v1 1/2] mm/memfd: Add support for F_SEAL_FUTURE_EXEC to memfd

From: Isaac Manjarres
Date: Fri Dec 06 2024 - 15:50:22 EST

Next message: Vitaly Chikunov: "Re: v6.13-rc1: Internal error: Oops - Undefined instruction: 0000000002000000 [#1] SMP"
Previous message: Yury Norov: "Re: [PATCHv2] cpumask: work around false-postive stringop-overread errors"
In reply to: Kalesh Singh: "Re: [RFC PATCH v1 1/2] mm/memfd: Add support for F_SEAL_FUTURE_EXEC to memfd"
Next in thread: Lorenzo Stoakes: "Re: [RFC PATCH v1 1/2] mm/memfd: Add support for F_SEAL_FUTURE_EXEC to memfd"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Dec 06, 2024 at 09:49:35AM -0800, Kalesh Singh wrote:
> On Thu, Dec 5, 2024 at 5:09 PM Isaac J. Manjarres
> <isaacmanjarres@xxxxxxxxxx> wrote:
> > --- a/mm/mmap.c
> > +++ b/mm/mmap.c
> > @@ -375,6 +375,17 @@ unsigned long do_mmap(struct file *file, unsigned long addr,
> > if (!file_mmap_ok(file, inode, pgoff, len))
> > return -EOVERFLOW;
> >
> > + if (is_exec_sealed(seals)) {
> > + /* No new executable mappings if the file is exec sealed. */
> > + if (prot & PROT_EXEC)
> > + return -EACCES;
>
> I think this should be -EPERM to be consistent with seal_check_write()
> and mmap(2) man page:
>
> " EPERM The operation was prevented by a file seal; see fcntl(2)."
>
> Thanks,
> Kalesh
>

Thanks for catching that Kalesh! I agree and will fix this in v2 of the
series.

Thanks,
Isaac

Next message: Vitaly Chikunov: "Re: v6.13-rc1: Internal error: Oops - Undefined instruction: 0000000002000000 [#1] SMP"
Previous message: Yury Norov: "Re: [PATCHv2] cpumask: work around false-postive stringop-overread errors"
In reply to: Kalesh Singh: "Re: [RFC PATCH v1 1/2] mm/memfd: Add support for F_SEAL_FUTURE_EXEC to memfd"
Next in thread: Lorenzo Stoakes: "Re: [RFC PATCH v1 1/2] mm/memfd: Add support for F_SEAL_FUTURE_EXEC to memfd"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]