On Tue, Dec 12, 2023 at 11:16:55PM +0000, jeffxu@xxxxxxxxxxxx wrote: > +config MSEAL > + default n Minor nit, "n" is always the default, no need to call it out here. > + bool "Enable mseal() system call" > + depends on MMU > + help > + Enable the virtual memory sealing. > + This feature allows sealing each virtual memory area separately with > + multiple sealing types. You might want to include more documentation as to what this is for, otherwise distros / users will not know if they need to enable this or not. thanks, greg k-h
