Information on implementing L4
andreww591 at gmail.com
Sat Sep 15 03:35:14 CEST 2018
On Fri, Sep 14, 2018, 7:22 PM John <john.r.moser at gmail.com> wrote:
> It doesn't have to run at Ring-0 you know. Think about if you loaded a
> malicious network card driver into L4.
No L4 kernel I'm aware of has any facility for loading drivers into the
kernel. Drivers on L4 OSes are either regular processes that are allowed
limited hardware access ore are libraries loaded into such processes. From
what it sounds like, you are wanting to run all privileged services in the
same address space and hardware privilege level, relying solely on the CLR
to enforce protection domains, which would be less secure than a formally
verified microkernel using hardware protection.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the l4-hackers