CVS commit: src/sys

To: source-changes%NetBSD.org@localhost
Subject: CVS commit: src/sys
From: "Maxime Villard" <maxv%netbsd.org@localhost>
Date: Fri, 29 Sep 2017 17:08:00 +0000

Module Name:    src
Committed By:   maxv
Date:           Fri Sep 29 17:08:00 UTC 2017

Modified Files:
        src/sys/compat/linux/common: linux_mod.c linux_sysctl.c linux_sysctl.h
        src/sys/kern: kern_exec.c

Log Message:
Remove compat_linux from the autoload list, and add a sysctl to enable or
disable it - which defaults to disabled. The following command is now
required to use linux binaries:

        sysctl -w emul.linux.enabled=1

After a discussion on tech-kern@. All the other ideas to reduce the attack
surface have drawbacks, and this sysctl seems to be the best option.


To generate a diff of this commit:
cvs rdiff -u -r1.6 -r1.7 src/sys/compat/linux/common/linux_mod.c
cvs rdiff -u -r1.43 -r1.44 src/sys/compat/linux/common/linux_sysctl.c
cvs rdiff -u -r1.5 -r1.6 src/sys/compat/linux/common/linux_sysctl.h
cvs rdiff -u -r1.444 -r1.445 src/sys/kern/kern_exec.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: src/sys/netipsec
Next by Date: CVS commit: src/sys/miscfs/procfs
Previous by Thread: CVS commit: src/sys/netipsec
Next by Thread: CVS commit: src/sys/miscfs/procfs
Indexes:

Home | Main Index | Thread Index | Old Index