Kernel_page-table_isolation.svg

Summary

Description Kernel page-table isolation.svg	English: Kernel page-table isolation Русский: Сейчас в операционных системах один набор страниц для каждого процесса. В KPTI (Kernel page-table isolation) будет два набора. Во-первых, в режиме ядра набор страниц будет включать страницы и пространства ядра, и пространства пользователя. Во-вторых, в режиме пользователя набор страниц будет включать копию страниц пространства пользователя и минимальный набор обработчиков вызовов и прерываний из пространства ядра.
Date	9 January 2018
Source	Own work Source: ( 2017-11-15 ). " KAISER: hiding the kernel from user space ". LWN.net . "Whereas current systems have a single set of page tables for each process, KAISER implements two. One set is essentially unchanged; it includes both kernel-space and user-space addresses, but it is only used when the system is running in kernel mode. The second "shadow" page table contains a copy of all of the user-space mappings, but leaves out the kernel side. Instead, there is a minimal set of kernel-space mappings that provides the information needed to handle system calls and interrupts, but no more."
Author	Phoenix7777

I, the copyright holder of this work, hereby publish it under the following license:

You are free:

Under the following conditions:

attribution – You must give appropriate credit, provide a link to the license, and indicate if changes were made. You may do so in any reasonable manner, but not in any way that suggests the licensor endorses you or your use.
share alike – If you remix, transform, or build upon the material, you must distribute your contributions under the same or compatible license as the original.