* kernel: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
@ 2024-06-18 17:43 BTD Master
0 siblings, 0 replies; only message in thread
From: BTD Master @ 2024-06-18 17:43 UTC (permalink / raw)
To: bpf
Hi,
I would like to report the call to memfd_create in `src/libbpf.c` does
not specify MFD_NOEXEC_SEAL on newer kernels that allow
this feature, which is used to prevent code execution on the memory
area. It only specifies MFD_CLOEXEC.
This is reflected in the kernel logs:
[ 4.853311] systemd[1]: memfd_create() called without MFD_EXEC or
MFD_NOEXEC_SEAL set
There is a similar patch in wayland for checking and versioning this
flag: https://gitlab.freedesktop.org/wayland/wayland/-/merge_requests/343/
Thanks!
btdmaster
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2024-06-18 17:43 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2024-06-18 17:43 kernel: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set BTD Master
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox