1. Design

   The goal of KERNEXEC is to prevent the injection and execution of code into
   the kernel's address space.

   ...


2. Implementation

   The Linux implementation of KERNEXEC is split into two main feature sets: the
   actual non-executable page implementations based on the segmentation logic of
   IA-32, and the page protection restrictions based on the paging logic.