[cap-talk] Using C strings to hold capabilities.
Jonathan S. Shapiro
shap at eros-os.org
Wed Oct 13 12:01:50 EDT 2004
Guys, capabilities as strings just isn't going to work. The closest we
are going to get is "strings as capability designators".
By this I mean that the app presents a string to (e.g.) the open call,
and some independent body of software performs a lookup to determine
whether a correspondence can be established between that path and some
capability known to the independent checker.
This, note, is equivalent to privatizing all process namespaces, which
has been done in several systems.
shap
More information about the cap-talk
mailing list