Re: CVS commit: src/sys/arch/aarch64

To: Ryo Shimizu <ryo%nerv.org@localhost>
Subject: Re: CVS commit: src/sys/arch/aarch64
From: Maxime Villard <max%m00nbsd.net@localhost>
Date: Wed, 8 Aug 2018 20:37:37 +0200

Le 08/08/2018 à 20:13, Ryo Shimizu a écrit :

It would be nice to set SCTLR_EL1.WXN, by the way.


Yes, It is easy. But should this be synchronized with
security.pax.mprotect.enabled? If so, we need a md-hook in the sysctl helper
of pax.mprotect.enable.


Ah, I misunderstood the meaning of SCTLR_EL1; in fact it also controls EL0.
So no, we probably can't set SCTLR_EL1.WXN, because it affects userland too
and not just the kernel...

References:
- Re: CVS commit: src/sys/arch/aarch64
  - From: Ryo Shimizu

Prev by Date: re: CVS commit: src/sys/arch/mips/mips
Next by Date: re: CVS commit: src/sys/arch/x86
Previous by Thread: Re: CVS commit: src/sys/arch/aarch64
Next by Thread: Re: CVS commit: src/sys/arch/aarch64
Indexes:

Home | Main Index | Thread Index | Old Index