Marcus Brinkmann schrieb:
... I have the feeling that this is an obvious threat scenario and thus is probably addressed already, but I can't find where.
So far we mostly ignored this problem as far as the main-stream implementations go. One of the reasons I think was that map and unmap were not used by real-time tasks so their potentially unbounded execution time was not much of a problem. Volkmar's Beleg discusses some ideas how to solve this problem.
Is some of that material online?
Yes, but unfortunately only in german:
http://os.inf.tu-dresden.de/papers_ps/micro_kernel_memory_management.pdf
Best regards
Marcus