Re: [RISC-V] [tech-tee] [RISC-V] [tech-privileged] Proposed deprecation of N extension
Jonathan Behrens <behrensj@...>
toggle quoted message Show quoted text
Wouldn't you also want to isolate different interrupt handlers from each other and from any non-interrupt handler user code running on the system? With the N-extension itself none of that would be possible. In fact, I suspect that a lot of the performance that you might get out of the N-extension specifically comes from running all that code in the same privilege domain.
On Sat, Jun 5, 2021 at 10:08 PM Gernot via lists.riscv.org <gernot.heiser=data61.csiro.au@...> wrote:
The thread model is any attacks on buggy software, and the defence has been known for 45 years: Satzer & Schroder’s Principle of Least Privilege. This means a highly modularised system with almost everything at user level, including device drivers.