Re: [announce] [patch] NX (No eXecute) support for x86, 2.6.7-rc2-bk2
From: Arjan van de Ven
Date: Fri Jun 04 2004 - 10:57:49 EST
On Fri, Jun 04, 2004 at 08:47:11AM -0700, Linus Torvalds wrote:
>
>
> On Fri, 4 Jun 2004, Arjan van de Ven wrote:
> >
> > the prelink rpm on Fedora has such a tool already fwiw.
> > (it's part of prelink because the elf manipulations needed are quite similar
> > to the ones prelink does so infrastructure is shared)
>
> Just for fun, can somebody that has the required hardware just test old
> apps with NX turned on?
well anyone with an amd64 qualifies.. old apps work for me.
(fwiw FC1 and FC2 already run without the stack being executable if you use
the default distro kernel even on "traditional" x86 cpus, via the segment limit hack)
> In fact, it would be interesting to just hear somebody running an older
> distribution with a new CPU and a new kernel, and see just how many
> programs need to be marked non-NX in "normal running".
I know that in a FC1 full install there are less than 5 binaries that don't
run with NX. (one uses nested functions in C and passes function pointers to
the inner function around which causes gcc to emit a stack trampoline, and
gcc then marks the binary as non-NX, the others have asm in them that we
didn't fix in time to be properly marked).
Attachment:
pgp00000.pgp
Description: PGP signature