Setting up instruction execution protection

Edit online

SUSE Linux Enterprise Server 15 SP5 LPAR mode z/VM guest KVM guest

By default, SUSE Linux® Enterprise Server 15 SP5 for IBM Z® uses the instruction execution protection feature if it is available. You can use the noexec kernel parameter to disable the feature in Linux.

Figure 1. Kernel parameter for instruction execution protection

1! noexec=on
1? noexec=off

If set to on, noexec enables instruction execution protection, this is the default. If set to off, noexec disables instruction execution protection.