Google proposes new mseal() memory sealing syscall for Linux

Google is proposing a new mseal() memory sealing system call for the Linux kernel. Google intends for this architecture independent system call to be initially used by the Google Chrome web browser on Chrome OS while experiments are underway for use by Glibc in the dynamic linker to seal all non-writable segments at startup.

The discussion is ongoing, so you can read the original proposed patchset and go from there.


  1. 2023-10-19 6:06 am
  2. 2023-10-19 8:42 am
  3. 2023-10-19 8:12 pm