netbsd-bugs: kern/35821: /dev/mem is not readable any more

Subject: kern/35821: /dev/mem is not readable any more
To: None <kern-bug-people@netbsd.org, gnats-admin@netbsd.org,>
From: None <martin@duskware.de>
List: netbsd-bugs
Date: 02/24/2007 01:05:00

>Number:         35821
>Category:       kern
>Synopsis:       /dev/mem is not readable any more
>Confidential:   no
>Severity:       serious
>Priority:       high
>Responsible:    kern-bug-people
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Sat Feb 24 01:05:00 +0000 2007
>Originator:     Martin Husemann
>Release:        NetBSD 4.99.12
>Organization:
>Environment:
System: NetBSD night-porter.duskware.de 4.99.12 NetBSD 4.99.12 (PORTER) #2: Thu Feb 22 18:58:55 CET 2007 martin@night-porter.duskware.de:/usr/src/sys/arch/i386/compile/PORTER i386
Architecture: i386
Machine: i386
>Description:

At securelevel > 0 - aka:

security.models.bsd44.name = Traditional NetBSD (4.4BSD)
security.models.bsd44.securelevel = 1
security.models.bsd44.curtain = 0

/dev/mem is not readable any more. It can be openend readonly, but any
attempts to read from it fail with EPERM.

>How-To-Repeat:
On i386, just run acpidump(8) after checking the securelevel. It will be
unable to find any ACPI tables.

>Fix:
n/a