From: Pavel Machek <pavel@ucw.cz>
To: Arjan van de Ven <arjanvandeven@gmail.com>
Cc: kernel list <linux-kernel@vger.kernel.org>,
Arjan van de Ven <arjan@infradead.org>,
Ingo Molnar <mingo@elte.hu>, Thomas Gleixner <tglx@linutronix.de>
Subject: Re: 4.10 kernel on thinkpad x220: rodata_test: test data was not read only
Date: Thu, 23 Feb 2017 23:16:56 +0100 [thread overview]
Message-ID: <20170223221656.GA6435@amd> (raw)
In-Reply-To: <CADyApD3UMZaSwBSDVvx1=NLfE14r-zspty=9EDJ7YXs8Oejz8Q@mail.gmail.com>
[-- Attachment #1: Type: text/plain, Size: 1505 bytes --]
On Tue 2017-02-21 16:12:01, Arjan van de Ven wrote:
> is NX enabled in the bios?
Yes. (Plus, read-only should work even without NX, right?)
Pavel
> On Tue, Feb 21, 2017 at 2:14 PM, Pavel Machek <pavel@ucw.cz> wrote:
>
> > Hi!
> >
> > I'm getting
> >
> > [ 3.822386] VFS: Mounted root (ext4 filesystem) readonly on device
> > 8:4.
> > [ 3.840420] devtmpfs: mounted
> > [ 3.842346] Freeing unused kernel memory: 536K
> > [ 3.844081] Write protecting the kernel text: 11764k
> > [ 3.845753] Write protecting the kernel read-only data: 4780k
> > [ 3.847326] rodata_test: test data was not read only
> > [ 3.848906] NX-protecting the kernel data: 6668k
> > [ 3.850662] x86/mm: Checked W+X mappings: passed, no W+X pages
> > found.
> >
> > I guess that means that kernel hardening does not work as
> > expected... 32bit kernel on thinkpad x220.
> >
> > Git blame points to
> >
> > commit edeed30589f5defe63ce6aaae56f2b7c855e4520
> > Author: Arjan van de Ven <arjan@infradead.org>
> > Date: Wed Jan 30 13:34:08 2008 +0100
> >
> > x86: add testcases for RODATA and NX protections/attributes
> >
> > Any ideas?
> >
> > Pavel
> >
> > --
> > (english) http://www.livejournal.com/~pavelmachek
> > (cesky, pictures) http://atrey.karlin.mff.cuni.
> > cz/~pavel/picture/horses/blog.html
> >
--
(english) http://www.livejournal.com/~pavelmachek
(cesky, pictures) http://atrey.karlin.mff.cuni.cz/~pavel/picture/horses/blog.html
[-- Attachment #2: Digital signature --]
[-- Type: application/pgp-signature, Size: 181 bytes --]
prev parent reply other threads:[~2017-02-23 22:17 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2017-02-21 22:14 4.10 kernel on thinkpad x220: rodata_test: test data was not read only Pavel Machek
[not found] ` <CADyApD3UMZaSwBSDVvx1=NLfE14r-zspty=9EDJ7YXs8Oejz8Q@mail.gmail.com>
2017-02-23 22:16 ` Pavel Machek [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20170223221656.GA6435@amd \
--to=pavel@ucw.cz \
--cc=arjan@infradead.org \
--cc=arjanvandeven@gmail.com \
--cc=linux-kernel@vger.kernel.org \
--cc=mingo@elte.hu \
--cc=tglx@linutronix.de \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox