| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20140220174422.GA27412@redacted.bos.redhat.com> Date: Thu, 20 Feb 2014 12:44:23 -0500 From: Kyle McMartin <kyle@...hat.com> To: linux-arm-kernel@...ts.infradead.org Cc: linux-kernel@...r.kernel.org Subject: [PATCH] arm/Kconfig.debug: CONFIG_DEBUG_SET_MODULE_RONX and insn patching are mutually exclusive With both options set, we're seeing an Oops while loading bridge.ko, as netfilter is trying to use jump labels on the module .text after it's been marked read-only. I'll cook up a patch to do what X86 does and remap the page read-write while it's being patched, but for 3.14, we should mark them as exclusive so others don't hit this crash. Signed-off-by: Kyle McMartin <kyle@...hat.com> --- a/arch/arm/Kconfig.debug +++ b/arch/arm/Kconfig.debug @@ -1197,7 +1197,7 @@ config PID_IN_CONTEXTIDR config DEBUG_SET_MODULE_RONX bool "Set loadable kernel module data as NX and text as RO" - depends on MODULES + depends on MODULES && !(JUMP_LABEL || KPROBES) ---help--- This option helps catch unintended modifications to loadable kernel module's text and read-only data. It also prevents execution -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists