https://docs.matildes.dev/tags/memory-protection/Recent content in Memory-Protection on Samuel Matildes - Knowledge BaseHugoenTue, 26 May 2026 14:15:13 +0100https://docs.matildes.dev/linux/kernel/kernel-mode-vs-user-mode/Tue, 14 Jan 2025 00:00:00 +0000https://docs.matildes.dev/linux/kernel/kernel-mode-vs-user-mode/<p><i class="fas fa-shield-alt" aria-hidden="true"></i> CPU Privilege Levels and Execution Contexts</p> <h2 id="summary">Summary<a class="td-heading-self-link" href="#summary" aria-label="Heading self-link"></a></h2> <p>Modern processors implement hardware-enforced privilege levels to isolate untrusted user code from critical kernel services. Linux uses two primary modes: <strong>kernel mode</strong> (ring 0, CPL 0, EL1) and <strong>user mode</strong> (ring 3, CPL 3, EL0). Kernel mode grants unrestricted access to CPU features, physical memory, I/O ports, and privileged instructions. User mode restricts access to a virtualized, isolated address space and requires kernel mediation for hardware resources. The transition between modes occurs via system calls, interrupts, and exceptions, all managed by the kernel&rsquo;s interrupt and system call handlers. Understanding this separation is fundamental to security, performance optimization, and kernel debugging.</p>