[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-devel] [PATCH v2 03/18] tests/vm/openbsd: Disable the W^X prot
From: |
Eric Blake |
Subject: |
Re: [Qemu-devel] [PATCH v2 03/18] tests/vm/openbsd: Disable the W^X protection on the build partition |
Date: |
Tue, 29 Jan 2019 15:58:10 -0600 |
User-agent: |
Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.4.0 |
On 1/29/19 11:53 AM, Philippe Mathieu-Daudé wrote:
> Since OpenBSD 6.0 [1], W^X is enforced by default [2].
> TCG requires WX access, and QEMU binaries are now built with the WX
> flag to disable the protection. However, WX allowed binaries need
> to be run on a WX allowed partition.
> To be able to run the QEMU test suite on the VM, mount the partition
> where QEMU is built/tested as WX allowed.
>
> [1] https://www.openbsd.org/faq/upgrade60.html
> [2] https://undeadly.org/cgi?action=article&sid=20160527203200
>
> Signed-off-by: Philippe Mathieu-Daudé <address@hidden>
> ---
> tests/vm/openbsd | 6 ++++++
> 1 file changed, 6 insertions(+)
>
> diff --git a/tests/vm/openbsd b/tests/vm/openbsd
> index 2105c01a26..6263c8956b 100755
> --- a/tests/vm/openbsd
> +++ b/tests/vm/openbsd
> @@ -41,6 +41,12 @@ class OpenBSDVM(basevm.BaseVM):
> if os.path.exists(img):
> os.remove(img)
> os.rename(img_tmp, img)
> + self.boot(img)
> + self.wait_ssh()
> + sys.stderr.write("Disabling W^X on the build partition...\n")
> + self.ssh_root_check("sed -E -i 's_(/tmp\ ffs)\ ([^\ ]*)_\\1
> \\2,wxallowed_' /etc/fstab")
sed -i is non-POSIX, but it looks like it works in OpenBSD.
> + self.ssh_root("shutdown -p now")
> + self.wait()
>
> if __name__ == "__main__":
> sys.exit(basevm.main(OpenBSDVM))
>
--
Eric Blake, Principal Software Engineer
Red Hat, Inc. +1-919-301-3226
Virtualization: qemu.org | libvirt.org
signature.asc
Description: OpenPGP digital signature
- [Qemu-devel] [PATCH v2 00/18] OpenBSD: Enable qtesting, Philippe Mathieu-Daudé, 2019/01/29
- [Qemu-devel] [PATCH v2 01/18] tests/vm: Be verbose while extracting compressed images, Philippe Mathieu-Daudé, 2019/01/29
- [Qemu-devel] [PATCH v2 02/18] configure: Disable W^X on OpenBSD, Philippe Mathieu-Daudé, 2019/01/29
- [Qemu-devel] [PATCH v2 03/18] tests/vm/openbsd: Disable the W^X protection on the build partition, Philippe Mathieu-Daudé, 2019/01/29
- Re: [Qemu-devel] [PATCH v2 03/18] tests/vm/openbsd: Disable the W^X protection on the build partition,
Eric Blake <=
- [Qemu-devel] [PATCH v2 04/18] ahci-test: Add dependency to qemu-img tool, Philippe Mathieu-Daudé, 2019/01/29
- [Qemu-devel] [PATCH v2 05/18] qemu-iotests: Add dependency to qemu-nbd tool, Philippe Mathieu-Daudé, 2019/01/29
- [Qemu-devel] [PATCH v2 07/18] tests/multiboot: Improve portability by searching bash in the $PATH, Philippe Mathieu-Daudé, 2019/01/29
- [Qemu-devel] [PATCH v2 06/18] qemu-iotests: Improve portability by searching bash in the $PATH, Philippe Mathieu-Daudé, 2019/01/29
- [Qemu-devel] [PATCH v2 08/18] tests/bios-tables: Improve portability by searching bash in the $PATH, Philippe Mathieu-Daudé, 2019/01/29