Kevin Lawton wrote:
> > I want to run prescanned code in ring0, actually.
> > I don't quite see the problems here (it requires
> > to be more careful with page permissions, that's
> > all.) Am I missing something?
>
> Yeah, it can not be our end-all architecture, because running at
> ring0 is quite dangerous. We need something that works reasonably
> well at ring3, with perhaps a config option that changes behaviour
> to work at ring0 for the adventurous types.
Okay, so it requires us to be careful because a bug
in plex86 may be a security hole. But plex is
quite dangerous anyway... assuming we can fix all the
bugs, I don't think running at ring0 HAS to be a problem..
that's what prescanning is for, after all!
-- Ramon
