On Monday 30 July 2007, maximilian attems wrote: > On Mon, Jul 30, 2007 at 03:21:23PM +0200, Wolfgang Walter wrote: > > > > Don't know. /usr/lib/libGL.so.100.14.11 may does not need PROT_EXEC > > and nvidia can change this easily. > > again holler nvidia. > > > But mounting /dev noexec is a change which can break applications in a rather > > subtle way. You can't mmap /dev/zero PROT_EXEC even if you really need to do > > so. > > please name those applications?
The point is: it es well defined that * the zero-device is found as /dev/zero * that mmap of the zero deivce has special meaning * that you may use PROT_EXEC if you want the shared memory to be executable. Changing this will break existing and future applications which depend on it. And yes, there are others application which break. See i.e. example lguest-launcher. Documentation/lguest /lguest.c from current kernel-tree. > > you may want to read the udev changelog and corresponding bug report > why that change was made!? > Regards, -- Wolfgang Walter Studentenwerk München Anstalt des öffentlichen Rechts Leiter EDV Leopoldstraße 15 80802 München
