* Ram Pai: > Hi Dave! :) So what is needed? Support a new flag PKEY_DISABLE_READ, > and make it return error for all architectures? PKEY_DISABLE_READ | PKEY_DISABLE_WRITE should be equivalent to PKEY_DISABLE_ACCESS. PKEY_DISABLE_READ without any other flag on x86 should return EINVAL (as for other invalid access rights specified for pkey_alloc). > Or are we enhancing the symantics of pkey_alloc() to allocate keys with > just disable-read permissions.? And if so, will x86 be able to support > that semantics? I think x86 cannot do this, but POWER can, but it's currently not possible to express this via pkey_alloc. That could be fixed, too. Thanks, Florian
