[PATCH] exitz syscall
Theodore Ts'o
tytso at mit.edu
Sun Nov 12 04:52:17 UTC 2023
On Sat, Nov 11, 2023 at 02:24:31PM +0100, Willy Tarreau wrote:
> Hello,
>
> On Sat, Nov 11, 2023 at 01:51:26PM +0100, York Jasper Niebuhr wrote:
> > Adds a system call to flag a process' resources to be cleared on
> > exit (or, in the case of memory, on free). Currently, only zeroing
> > memory is implemented.
> (...)
>
> IMHO it does not make sense to add a syscall for this, please have a
> look at prctl(2) instead, which is already used for similar settings.
Another reason to use prctl() is there are other cases when you'd want
to zero a process's memory. For example, if the process gets killed
to some kind of signal, or when it gets OOM killed (where there is no
system call which forces the process to exit). Also, if you want to
zero memory when the process exits, you'd want to zero the process
memory on an exec(2).
Cheers,
- Ted
More information about the Linux-security-module-archive
mailing list