On Fri, Aug 11, 2023 at 05:38:24PM +0100, Catalin Marinas wrote: > Given that we won't have an mmap(PROT_SHADOW_STACK), are we going to > have restrictions on mprotect()? E.g. it would be useful to reject a > PROT_EXEC on the shadow stack. mprotect() uses arch_validate_flags() which we're already having cover this so it's already covered.
Attachment:
signature.asc
Description: PGP signature
