I want to turn on a part of the kernel to make SELinux checking more stringent.

drago01 drago01 at gmail.com
Sun Jan 26 20:53:43 UTC 2014

On Sun, Jan 26, 2014 at 9:38 PM, Richard W.M. Jones <rjones at redhat.com> wrote:
> Slightly OT, but is SELinux stopping programs from executing code at
> address zero?  (And how can I stop it doing that?)
> JONESFORTH, a public domain FORTH I wrote, is written in x86 assembler
> and prefers to put its threaded interpreter at address 0.  This worked
> fine before, but has now stopped working, and this is reported to be
> due to SELinux.
> http://rwmj.wordpress.com/2010/08/07/jonesforth-git-repository/#comment-6591

Maybe you just need to set /proc/sys/vm/mmap_min_addr to 0 ? But
that's a bad idea as it makes kernel bugs (null pointer deference)
easy to exploit.

More information about the devel mailing list