uqs's projects / games.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 307ae84) | patch
We want the virtual kernel to be default-secure. Disable writes to kernel
authorMatthew Dillon <dillon@dragonflybsd.org>
Mon, 15 Jan 2007 20:51:16 +0000 (20:51 +0000)
committerMatthew Dillon <dillon@dragonflybsd.org>
Mon, 15 Jan 2007 20:51:16 +0000 (20:51 +0000)
commit7e42c0077197e05da0331548ec59d1ecf5bf9dfe
treeb3f2f91ddfc54ec69b315b2caae4429cd6f4d8fctree | snapshot
parent307ae84dfc892ef0e7d9caebcb1f73831c21bb5ccommit | diff
We want the virtual kernel to be default-secure.  Disable writes to kernel
memory and disable module loading by default when running a virtual kernel.
Run the virtual kernel with the -U option (for Unsecure) to run with these
enabled.

Reads are still allowed since the virtual kernel's memory does not
contain any compromising data from the real kernel.
sys/kern/kern_linker.c diff | blob | blame | history
sys/kern/kern_memio.c diff | blob | blame | history
sys/kern/kern_mib.c diff | blob | blame | history
sys/platform/vkernel/platform/init.c diff | blob | blame | history
sys/sys/systm.h diff | blob | blame | history
games(6) overhaul