Part 3/4:
mseal
seeks to address this by allowing the kernel to "seal" a memory page, making it impossible to change its permissions. This effectively removes the ability for hackers to use techniques like ROP to gain control of the system.
Controversy and Challenges
The introduction of mseal
has not been without controversy. Linus Torvalds, the creator of the Linux kernel, has expressed concerns about the design and implementation of the feature. Torvalds is known for his passionate and direct approach, and he has been vocal in his criticism of mseal
.
One of the key challenges with mseal
is its impact on the way the heap and stack operate. These memory regions require the ability to expand and contract, which is not possible with mseal
. As a result, the stack and heap will not be sealed by default, as it would break the functionality of these critical components.
The Ongoing Battle
[...]