On Wed, Aug 26, 2009 at 4:07 PM, David
Holland<dholland-sourcechan...@netbsd.org> wrote:

> All recycled kernel memory, including stack frames, is considered
> security-sensitive and not supposed to be exposed to the world. (Given
> that you're working on the security system, you ought to know this.)
> It is a matter of proper copyout() usage.

If your world is userland only, as I presume by your mentioning of
copyout(), then it's rather obvious. I'm more interested in separation
between different kernel entities in the (far? :) future.

-e.

Reply via email to