6.4.1.1 Restricting Addressable Domain
The concept of privilege for pages is implemented by assigning each page to one of two levels:- Supervisor level (U/S=0) -- for the operating system and other systems software and related data.
- User level (U/S=1) -- for applications procedures and data.
When the processor is executing at supervisor level, all pages are addressable, but, when the processor is executing at user level, only pages that belong to the user level are addressable.
6.4.1.2 Type Checking
At the level of page addressing, two types are defined:- Read-only access (R/W=0)
- Read/write access (R/W=1)
6.4.2 Combining Protection of Both Levels of Page Tables
For any one page, the protection attributes of its page directory entry may differ from those of its page table entry. The 80386 computes the effective protection attributes for a page by examining the protection attributes in both the directory and the page table. Table 6-5 shows the effective protection provided by the possible combinations of protection attributes.6.4.3 Overrides to Page Protection
Certain accesses are checked as if they are privilege-level 0 references, even if CPL = 3:
up:
Chapter 6 -- Protection
prev: 6.3 Segment-Level Protection
next: 6.5 Combining Page and Segment Protection