Post Syndicated from original https://lwn.net/Articles/890957/

When last we looked in on the proposed
trusted_for() system call, which would allow user-space interpreters
and other tools to ask the kernel whether a file is “trusted” for execution, it
looked like it was on-track for the mainline. That was back in
October 2020; the patch has been updated multiple times since then,
made its way into linux-next, and a pull
request was made by Mickaël Salaün for the 5.18 merge window. But
it seems that there will be more to the story of getting this functionality
into the kernel, as Linus Torvalds declined to pull trusted_for(),
at least partly because he did not like the name, but there were other
reasons as well. While he is not opposed
to the functionality it would provide, he also had strong feelings that a
new system call
was not the right approach.