Re: [PATCH 0/3] userfaultfd: allow to forbid unprivileged users

From: Paolo Bonzini
Date: Wed Mar 13 2019 - 15:12:37 EST

Next message: Sasha Levin: "[PATCH AUTOSEL 4.20 49/60] phonet: fix building with clang"
Previous message: Sasha Levin: "[PATCH AUTOSEL 4.20 48/60] ARCv2: don't assume core 0x54 has dual issue"
In reply to: Andrea Arcangeli: "Re: [PATCH 0/3] userfaultfd: allow to forbid unprivileged users"
Next in thread: Andrea Arcangeli: "Re: [PATCH 0/3] userfaultfd: allow to forbid unprivileged users"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> On Wed, Mar 13, 2019 at 09:22:31AM +0100, Paolo Bonzini wrote:
> Unless somebody suggests a consistent way to make hugetlbfs "just
> work" (like we could achieve clean with CRIU and KVM), I think Oracle
> will need a one liner change in the Oracle setup to echo into that
> file in addition of running the hugetlbfs mount.

Hi Andrea, can you explain more in detail the risks of enabling
userfaultfd for unprivileged users?

Paolo

> Note that DPDK host bridge process will also need a one liner change
> to do a dummy open/close of /dev/kvm to unblock the syscall.
>
> Thanks,
> Andrea
>

Next message: Sasha Levin: "[PATCH AUTOSEL 4.20 49/60] phonet: fix building with clang"
Previous message: Sasha Levin: "[PATCH AUTOSEL 4.20 48/60] ARCv2: don't assume core 0x54 has dual issue"
In reply to: Andrea Arcangeli: "Re: [PATCH 0/3] userfaultfd: allow to forbid unprivileged users"
Next in thread: Andrea Arcangeli: "Re: [PATCH 0/3] userfaultfd: allow to forbid unprivileged users"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]