Ubuntu
linux-rt package

linux-rt does not provide hardware NX protection

Bug #449340 reported by Laurent Bonnaud
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
linux-rt (Ubuntu)
Fix Released
Wishlist
Unassigned
Ubuntu ubuntu-10.04-beta-1

Bug Description

Hi,

here is the problem:

$ dmesg | grep NX
[ 0.000000] Using x86 segment limits to approximate NX protection
[...]

And indeed, PAE, which is necessary to have NX protection, is not set in the kernel config:

$ grep PAE /boot/config-2.6.31-7-rt
[nothing]

This contrasts with linux-image-2.6.31-13-generic-pae where:

$ dmesg | grep NX
[ 0.000000] NX (Execute Disable) protection: active
[...]

$ grep PAE /boot/config-2.6.31-13-generic-pae
CONFIG_X86_PAE=y

So currently I have to choose between increased security and low latency (my choice is security).

How about providing a linux-rt-pae kernel flavor ?

ProblemType: Bug
Architecture: i386
Date: Mon Oct 12 10:30:17 2009
DistroRelease: Ubuntu 9.10
Package: linux-image-2.6.31-7-rt 2.6.31-7.9
ProcVersionSignature: Ubuntu 2.6.31-7.9-rt
SourcePackage: linux-rt
Uname: Linux 2.6.31-7-rt i686
XsessionErrors:
 (polkit-gnome-authentication-agent-1:4324): GLib-CRITICAL **: g_once_init_leave: assertion `initialization_value != 0' failed
 (gnome-settings-daemon:4341): GLib-CRITICAL **: g_propagate_error: assertion `src != NULL' failed

Revision history for this message
Laurent Bonnaud (laurent-bonnaud) wrote :
Revision history for this message
Alessio Igor Bogani (abogani) wrote :

Laurent,

Unfortunately there is no way to add a flavour (-PAE) for rt kernel in Karmic so if your still interested we'll could address that issue for Lucid (Ubuntu 10.04).

Thanks!

Changed in linux-rt (Ubuntu):
importance: Undecided → Wishlist
Revision history for this message
Laurent Bonnaud (laurent-bonnaud) wrote : Re: [Bug 449340] Re: linux-rt does not provide hardware NX protection

On Mon, 2009-10-12 at 12:22 +0000, Alessio Igor Bogani wrote:

> Unfortunately there is no way to add a flavour (-PAE) for rt kernel in
> Karmic

Too bad :<.

> so if your still interested we'll could address that issue for
> Lucid (Ubuntu 10.04).

Of course I'm still interested in running a -rt kernel. karmic is not
even out that I am already looking forward to lucid !

--
Laurent Bonnaud.
http://www.lis.inpg.fr/pages_perso/bonnaud/

Alessio Igor Bogani (abogani)
Changed in linux-rt (Ubuntu):
status: New → Confirmed
Revision history for this message
Robert Rose (rrose) wrote :

I just installed the karmic rt kernel and was also disappointed to discover it does not include PAE, as I have 8gb RAM. (And I cannot run the 64bit kernel for compatibility reasons...)

Revision history for this message
Laurent Bonnaud (laurent-bonnaud) wrote :

Does anybody know if lucid offers a RT+PAE kernel ?

Revision history for this message
Andy Whitcroft (apw) wrote :

@Robert -- why can you not run the 64 bit kernel. You can use that with the 32 bit userspace if you are forceful about it.

Changed in linux-rt (Ubuntu):
milestone: none → ubuntu-10.04-beta-1
Revision history for this message
Laurent Bonnaud (laurent-bonnaud) wrote :

I just tested lucid beta1+updates and the proposed -rt kernel is still a 2.6.31 version and PAE is not enabled.

Revision history for this message
Laurent Bonnaud (laurent-bonnaud) wrote :

NX is still not active in the lowlatency maverick kernel:

$ grep PAE /boot/config-2.6.35-20-lowlatency
[nothing]

Revision history for this message
Laurent Bonnaud (laurent-bonnaud) wrote :

NX protection is now available in natty in the -lowlatency-pae kernel flavor. Thanks !

Laurent Bonnaud (laurent-bonnaud)
Changed in linux-rt (Ubuntu):
status: Confirmed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.