Re: [PATCH] doc: self-protection: provide initial details

On Mon, 16 May 2016, Kees Cook wrote: > + Segregation of kernel memory from userspace memory > + > +The kernel must never execute userspace memory. The kernel must also never > +access userspace memory without explicit expectation to do so. These > +rules can be enforced either by support of

Re: [PATCH] doc: self-protection: provide initial details

On Tue, May 17, 2016 at 6:26 PM, Jonathan Corbet wrote: > On Mon, 16 May 2016 19:27:28 -0700 > Kees Cook wrote: > >> This document attempts to codify the intent around kernel self-protection >> along with discussion of both existing and desired

Re: [PATCH] doc: self-protection: provide initial details

On 05/16/16 19:27, Kees Cook wrote: > This document attempts to codify the intent around kernel self-protection > along with discussion of both existing and desired technologies, with > attention given to the rationale behind them, and the expectations of > their usage. > > Signed-off-by: Kees

Re: [kernel-hardening] [PATCH] doc: self-protection: provide initial details

On Mon, May 16, 2016 at 07:27:28PM -0700, Kees Cook wrote: > This document attempts to codify the intent around kernel self-protection > along with discussion of both existing and desired technologies, with > attention given to the rationale behind them, and the expectations of > their usage. > >

[PATCH] doc: self-protection: provide initial details

This document attempts to codify the intent around kernel self-protection along with discussion of both existing and desired technologies, with attention given to the rationale behind them, and the expectations of their usage. Signed-off-by: Kees Cook ---