d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Further refine the PAE_TABLES entry, based on feedback from

Browse Source 
alc.

Sponsored by:	The FreeBSD Foundation
This commit is contained in:
Glen Barber 2015-07-26 17:57:35 +00:00
parent 9af0c69a15
commit d77ddeb88e
1 changed files with 10 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

17
release/doc/en_US.ISO8859-1/relnotes/article.xml
View File

@ -803,13 +803,16 @@
<para revision="281495" contrib="sponsor" sponsor="&ff;">The
<literal>PAE_TABLES</literal> kernel configuration option has
been added for &os;/&arch.i386;, which instructs &man.pmap.9;
to use <acronym>PAE</acronym> format for page tables with
32-bit physical addresses. Unlike the <literal>PAE</literal>
option, <literal>PAE_TABLES</literal> preserves kernel binary
interface (<acronym>KBI</acronym>) compatibility with
non-<literal>PAE</literal> kernels, allowing
non-<literal>PAE</literal> kernel modules and drivers to work
with a <literal>PAE_TABLES</literal>-enabled kernel.
to use <acronym>PAE</acronym> format for page tables while
maintaining a 32-bit physical address size elsewhere in the
kernel. The use of this option can enhance application-level
security by enabling the creation of <quote>no execute</quote>
mappings on modern &arch.i386; processors. Unlike the
<literal>PAE</literal> option, <literal>PAE_TABLES</literal>
preserves kernel binary interface (<acronym>KBI</acronym>)
compatibility with non-<literal>PAE</literal> kernels,
allowing non-<literal>PAE</literal> kernel modules and drivers
to work with a <literal>PAE_TABLES</literal>-enabled kernel.
Additionally, system limits are tuned for 4GB maximum
<acronym>RAM</acronym>, avoiding kernel virtual address space
(<acronym>KVA</acronym>) exhaustion.</para>