On Saturday 04 April 2020 11:35:06 andy pugh wrote: > Another interesting one. > The default(?) kconfig has SECURITY_DMESG_RESTRICT set. > This means that three of the LinuxCNC runtests fail. > I can't decide of that is important or not. > It can be overridden with: sudo sysctl kernel.dmesg_restrict=0 > Which makes the three tests pass. My version (armhf) of Linux rpi4.coyote.den 4.19.71-rt24-v7l+ #1 SMP PREEMPT RT Thu Feb 6 07:09:18 EST 2020 armv7l GNU/Linux.
grepping the srcs for that kernel says thats set, but its set in an odd place. pi@rpi4:/media/pi/workspace/rpi-kernel/linux/kernel $ grep -R -a1 SECURITY_DMESG_RESTRICT ../* ../Documentation/sysctl/kernel.txt- ../Documentation/sysctl/kernel.txt:The kernel config option CONFIG_SECURITY_DMESG_RESTRICT sets the ../Documentation/sysctl/kernel.txt-default value of dmesg_restrict. -- ../kernel/printk/printk.c- ../kernel/printk/printk.c:int dmesg_restrict = IS_ENABLED(CONFIG_SECURITY_DMESG_RESTRICT); ../kernel/printk/printk.c- -- ../security/Kconfig- ../security/Kconfig:config SECURITY_DMESG_RESTRICT ../security/Kconfig- bool "Restrict unprivileged access to the kernel syslog" Yet it passes all but an RTAI check in runtests. And I've worked out a way to only update /boot and /lib with the small rt-kernel file on my web page, which amounts to about 1% of the 3.6G build. So I'm inclined to think it may be getting a finger pointed at the wrong item. No proof of coarse other than it works for me. Cheers, Gene Heskett -- "There are four boxes to be used in defense of liberty: soap, ballot, jury, and ammo. Please use in that order." -Ed Howdershelt (Author) If we desire respect for the law, we must first make the law respectable. - Louis D. Brandeis Genes Web page <http://geneslinuxbox.net:6309/gene> _______________________________________________ Emc-developers mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/emc-developers
