netbsd-bugs: Re: kern/35821: /dev/mem is not readable any more

Subject: Re: kern/35821: /dev/mem is not readable any more
To: None <kern-bug-people@netbsd.org, gnats-admin@netbsd.org,>
From: Elad Efrat <elad@bsd.org.il>
List: netbsd-bugs
Date: 02/24/2007 23:10:02

The following reply was made to PR kern/35821; it has been noted by GNATS.

From: Elad Efrat <elad@bsd.org.il>
To: gnats-bugs@NetBSD.org
Cc: 
Subject: Re: kern/35821: /dev/mem is not readable any more
Date: Sun, 25 Feb 2007 01:09:05 +0200

 when did it (=acpidump thing) work with securelevel > 0? and did you try
 with securelevel <= 0?
 
 -e.
 
 martin@duskware.de wrote:
 >> Number:         35821
 >> Category:       kern
 >> Synopsis:       /dev/mem is not readable any more
 >> Confidential:   no
 >> Severity:       serious
 >> Priority:       high
 >> Responsible:    kern-bug-people
 >> State:          open
 >> Class:          sw-bug
 >> Submitter-Id:   net
 >> Arrival-Date:   Sat Feb 24 01:05:00 +0000 2007
 >> Originator:     Martin Husemann
 >> Release:        NetBSD 4.99.12
 >> Organization:
 >> Environment:
 > System: NetBSD night-porter.duskware.de 4.99.12 NetBSD 4.99.12 (PORTER) #2: Thu Feb 22 18:58:55 CET 2007 martin@night-porter.duskware.de:/usr/src/sys/arch/i386/compile/PORTER i386
 > Architecture: i386
 > Machine: i386
 >> Description:
 > 
 > At securelevel > 0 - aka:
 > 
 > security.models.bsd44.name = Traditional NetBSD (4.4BSD)
 > security.models.bsd44.securelevel = 1
 > security.models.bsd44.curtain = 0
 > 
 > /dev/mem is not readable any more. It can be openend readonly, but any
 > attempts to read from it fail with EPERM.
 > 
 >> How-To-Repeat:
 > On i386, just run acpidump(8) after checking the securelevel. It will be
 > unable to find any ACPI tables.
 > 
 >> Fix:
 > n/a
 > 
 >