cvs commit: src/sys/kern kern_linker.c kern_memio.c kern_mib.c src/sys/machine/vkernel/platform init.c src/sys/sys systm.h
Matthew Dillon
dillon at crater.dragonflybsd.org
Mon Jan 15 12:54:56 PST 2007
dillon 2007/01/15 12:51:17 PST
DragonFly src repository
Modified files:
sys/kern kern_linker.c kern_memio.c kern_mib.c
sys/machine/vkernel/platform init.c
sys/sys systm.h
Log:
We want the virtual kernel to be default-secure. Disable writes to kernel
memory and disable module loading by default when running a virtual kernel.
Run the virtual kernel with the -U option (for Unsecure) to run with these
enabled.
Reads are still allowed since the virtual kernel's memory does not
contain any compromising data from the real kernel.
Revision Changes Path
1.33 +4 -4 src/sys/kern/kern_linker.c
1.28 +5 -3 src/sys/kern/kern_memio.c
1.14 +1 -0 src/sys/kern/kern_mib.c
1.28 +6 -1 src/sys/machine/vkernel/platform/init.c
1.65 +1 -0 src/sys/sys/systm.h
http://www.dragonflybsd.org/cvsweb/src/sys/kern/kern_linker.c.diff?r1=1.32&r2=1.33&f=u
http://www.dragonflybsd.org/cvsweb/src/sys/kern/kern_memio.c.diff?r1=1.27&r2=1.28&f=u
http://www.dragonflybsd.org/cvsweb/src/sys/kern/kern_mib.c.diff?r1=1.13&r2=1.14&f=u
http://www.dragonflybsd.org/cvsweb/src/sys/machine/vkernel/platform/init.c.diff?r1=1.27&r2=1.28&f=u
http://www.dragonflybsd.org/cvsweb/src/sys/sys/systm.h.diff?r1=1.64&r2=1.65&f=u
More information about the Commits
mailing list