Re: [RFC PATCH v3 01/11] mseal: Add mseal syscall.

On Tue, Dec 12, 2023 at 11:16:55PM +0000, jeffxu@chromium.org wrote:

+config MSEAL

• default n

Minor nit, "n" is always the default, no need to call it out here.

• bool "Enable mseal() system call"
• depends on MMU
• help

•  Enable the virtual memory sealing.
  

•  This feature allows sealing each virtual memory area separately with
  

•  multiple sealing types.
  

You might want to include more documentation as to what this is for, otherwise distros / users will not know if they need to enable this or not.

thanks,

greg k-h