From 8acbe033427fb798df97833bd8da6863657cd2fd Mon Sep 17 00:00:00 2001
From: Brian Gianforcaro <bgianf@serenityos.org>
Date: Fri, 23 Jul 2021 08:24:55 -0700
Subject: [PATCH] Kernel: Annotate kernel_base and friends as
 READONLY_AFTER_INIT

We don't want kernel_base to be modifiable by an attacker or a stray
memory scribbler bug, so lets mark it as READONLY_AFTER_INIT.
---
 Kernel/init.cpp | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/Kernel/init.cpp b/Kernel/init.cpp
index e37f5a6a26..9530ec5c4a 100644
--- a/Kernel/init.cpp
+++ b/Kernel/init.cpp
@@ -107,9 +107,9 @@ static Processor s_bsp_processor; // global but let's keep it "private"
 // init_stage2() function. Initialization continues there.
 
 extern "C" {
-PhysicalAddress start_of_prekernel_image;
-PhysicalAddress end_of_prekernel_image;
-FlatPtr kernel_base;
+READONLY_AFTER_INIT PhysicalAddress start_of_prekernel_image;
+READONLY_AFTER_INIT PhysicalAddress end_of_prekernel_image;
+READONLY_AFTER_INIT FlatPtr kernel_base;
 #if ARCH(X86_64)
 PhysicalAddress boot_pml4t;
 #endif