On Fri, Jul 19, 2024 at 07:58:40AM -0400, Mary Strodl wrote: > Maybe some of the stuff the driver does right now could be moved into > vmalloc? In other words, we could provide a different function that > allocates an executable page, copies memory into it, then marks it > read-only. Would that do better to alleviate concerns? No. We are not running arbitrary x86 code. That is a security nightmare.
