New approach: user processes get two cspaces, upper and lower, mapped such that upper capabilities are addressed 0xAA...... and lower caps are 0x00....BB. Services go in the upper cspace and file descriptors in the lower. User processes lose the ability to modify their own cspace, and all lower capabilities are managed by sysinit.
New filetab interface (implemented by proc) is used to manage the lower cspace, you pass it to a filesystem on open.
Drew DeVault /
npub1qk…khctl
2023-08-14 08:15:23
in reply to nevent1q…094t
Author Public Key
npub1qka6mt4yr5cv8nem07csya3zavqvefnxxh7fq3c98hmlnf2vkrrsykhctlPublished at
2023-08-14 08:15:23Event JSON
{
"id": "b0a807561fc9dbbef9a17e3e06d57345378610096d7398cf835cbaf7ba7b3bb1",
"pubkey": "05bbadaea41d30c3cf3b7fb1027622eb00cca66635fc9047053df7f9a54cb0c7",
"created_at": 1692000923,
"kind": 1,
"tags": [
[
"e",
"3da348e896f0f6ac7369b18499410fa4a4cb1dfda80bd9f1878de0bfac586705",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://fosstodon.org/users/drewdevault/statuses/110886972516531567",
"activitypub"
]
],
"content": "New approach: user processes get two cspaces, upper and lower, mapped such that upper capabilities are addressed 0xAA...... and lower caps are 0x00....BB. Services go in the upper cspace and file descriptors in the lower. User processes lose the ability to modify their own cspace, and all lower capabilities are managed by sysinit.\n\nNew filetab interface (implemented by proc) is used to manage the lower cspace, you pass it to a filesystem on open.",
"sig": "fdbe706624a44a0dbd4f513cded28c566a69bf289ae5e3d77e44ac4599cc13e82edb81f76e354bcc9e0decadb1f8555fab9eb6d3775a20168d5dda76fc1af888"
}