Re: [PATCH v2 0/2] mm,fork,security: introduce MADV_WIPEONFORK

From: Florian Weimer
Date: Wed Aug 09 2017 - 08:43:05 EST

Next message: John Crispin: "[PATCH 4/4] net-next: dsa: fix flow dissection"
Previous message: John Crispin: "[PATCH 3/4] net-next: tag_mtk: add flow_dissect callback to the ops struct"
In reply to: Rik van Riel: "Re: [PATCH v2 0/2] mm,fork,security: introduce MADV_WIPEONFORK"
Next in thread: Michal Hocko: "Re: [PATCH v2 0/2] mm,fork,security: introduce MADV_WIPEONFORK"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 08/09/2017 11:59 AM, Kirill A. Shutemov wrote:
> It's not obvious to me what would break if kernel would ignore
> MADV_DONTFORK or MADV_DONTDUMP.

Ignoring MADV_DONTDUMP could cause secrets to be written to disk,
contrary to the expected security policy of the system.

Thanks,
Florian

Next message: John Crispin: "[PATCH 4/4] net-next: dsa: fix flow dissection"
Previous message: John Crispin: "[PATCH 3/4] net-next: tag_mtk: add flow_dissect callback to the ops struct"
In reply to: Rik van Riel: "Re: [PATCH v2 0/2] mm,fork,security: introduce MADV_WIPEONFORK"
Next in thread: Michal Hocko: "Re: [PATCH v2 0/2] mm,fork,security: introduce MADV_WIPEONFORK"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]