Re: Pentium DEATH in user-mode

Alexander Kjeldaas (astor@guardian.no)
Sun, 9 Nov 1997 15:15:11 +0100 (MET)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Bill Hawes: "Re: OOPS in 2.1.62 in refile_buffer"
Previous message: Miquel van Smoorenburg: "linux-2.0.32 + ben-inode.diff hangs on NFS"
In reply to: Garst R. Reese: "inline x-gzip patches"

On Sat, 8 Nov 1997, Albert D. Cahalan wrote:

>
> Adam Wiggins writes:
>
> > Is is possible to make a kernel patch or something else to keep an
> > eye out for these byte codes? Without some sort of protection this
> > could case some major problems with pentium based linux boxes.
>
> Sure, at a cost.
>
> 1. Add the patch to stop execution on the stack.
> 2. Check every page that becomes executable.
> 3. Check every page that is swapped in as executable.
> 4. Enforce read-only for executable pages.
> 5. Watch out for the debugger.
>
> When a process tries to make a page writeable _and_ executable,
> remove one permission or the other. (the one that does not
> break too many programs)

AFAIK, you don't have that option on the x86 architecture. The pages are
read-only _or_ readable, writeable and executable. Unfortunately, that's
the available granularity.

astor

--
 Alexander Kjeldaas, Guardian Networks AS, Trondheim, Norway
 http://www.guardian.no/

Next message: Bill Hawes: "Re: OOPS in 2.1.62 in refile_buffer"
Previous message: Miquel van Smoorenburg: "linux-2.0.32 + ben-inode.diff hangs on NFS"
In reply to: Garst R. Reese: "inline x-gzip patches"