On x86 CPUs, NetBSD currently maps the currently running userland process inside kernel VA. This allows for easy access to userland data, but also is a security risk and hides kernel programming errors. Other architectures are not doing it and require explicit copyin(9)/copyout(9) to access such pointers.

Newer x86 CPUs provide features called SMAP or SMEP to help with this. This project is about making use of these features if available and modify the x86 pmap modules accordingly.

The influence on XEN needs to be evaluated, the concepts may not apply 1:1 there but of course XEN has to stay functional.

Add a comment
Contact | Disclaimer | Copyright © 1994-2017 The NetBSD Foundation, Inc. ALL RIGHTS RESERVED.
NetBSD® is a registered trademark of The NetBSD Foundation, Inc.