OSDev.org

The Place to Start for Operating System Developers
http://f.osdev.org/

How to prevent user processes accessing I/O ports directly?

http://f.osdev.org/viewtopic.php?t=28995

Page 1 of 1

How to prevent user processes accessing I/O ports directly?

Posted: Sat Feb 07, 2015 5:02 am
by angwer
Just as the title, how to prevent user processes accessing I/O ports directly? I know on some archs I/O ports are mapped to memory. So I can prevent user processes accessing the given memory range. But how about isolated I/O? Is there any way to prevent the user process, for example, directly using in and out instructions to manipulate hardwares? I want to force them to use system calls.

Re: How to prevent user processes accessing I/O ports direct

Posted: Sat Feb 07, 2015 5:19 am
by Techel
When the CPU encounters an in or out, it checks weather the IOPL is greater or equal to the CPL. If not, it checks the IOMAP in the TSS. If the corresponding entry is 1, the task has no access to the port and a GPF is triggered.

Re: How to prevent user processes accessing I/O ports direct

Posted: Sat Feb 07, 2015 6:07 am
by angwer
Thanks!!!!!
All times are UTC-06:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited