[$] Memory sealing for the GNU C Library
Date:
Wed, 12 Jun 2024 13:49:45 +0000
Description:
The mseal() system call allows a
process to prevent any future changes to portions of its address space
(thus "sealing" them); it was patterned after the mimmutable() system call in OpenBSD. mseal() generated a lot of discussion, but it was finally merged
for the upcoming 6.10 kernel release. While mseal() was initially
aimed at securing the Chrome browser, the hope was that it would be useful elsewhere; as a step toward realizing that hope, Adhemerval Zanella has
posted a
patch series adding support for and use of mseal() to the
GNU C library (glibc).
======================================================================
Link to news story:
https://lwn.net/Articles/978010/
--- Mystic BBS v1.12 A47 (Linux/64)
* Origin: tqwNet UK HUB @ hub.uk.erb.pw (1337:1/100)