Re: [PATCH v2] [x86] detect and report lack of NX protections

From: H. Peter Anvin
Date: Mon Oct 19 2009 - 22:25:54 EST

Next message: Trond Myklebust: "Re: nfs oops in 2.6.32-rc5-00041-g1d91624"
Previous message: Ralf Baechle: "Re: [PATCH] Make MIPS dynamic clocksource/clockevent clock codegeneric"
In reply to: Kees Cook: "Re: [PATCH v2] [x86] detect and report lack of NX protections"
Next in thread: Kees Cook: "Re: [PATCH v2] [x86] detect and report lack of NX protections"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 10/20/2009 11:04 AM, Kees Cook wrote:

It is possible for x86_64 systems to lack the NX bit (see check_efer())
either due to the hardware lacking support or the BIOS having turned
off the CPU capability, so NX status should be reported. Additionally,
anyone booting NX-capable CPUs in 32bit mode without PAE will lack NX
functionality, so this change provides feedback for that case as well.

v2: use "Alert:" instead of "Warning:" to avoid confusiong with WARN_ON()

They're both wrong. Both imply that the user needs to take an action, which is wrong because the kernel is working as intended. If you need to use any kind of alert word, it should be something like "Notice:", and it should be KERN_NOTICE or even KERN_INFO.

-hpa
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Trond Myklebust: "Re: nfs oops in 2.6.32-rc5-00041-g1d91624"
Previous message: Ralf Baechle: "Re: [PATCH] Make MIPS dynamic clocksource/clockevent clock codegeneric"
In reply to: Kees Cook: "Re: [PATCH v2] [x86] detect and report lack of NX protections"
Next in thread: Kees Cook: "Re: [PATCH v2] [x86] detect and report lack of NX protections"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]