[cap-talk] Userspace virtual machine for running guest code
James A. Donald
jamesd at echeque.com
Thu Dec 4 04:06:10 EST 2008
Baldur Johannsson wrote:
> h'lo cap-talk
> I recently came across the vx32 user space virtual machine library
> that enables an host application to run untrusted x86 quest code.
> The homepage for the vx32 library is http://pdos.csail.mit.edu/~baford/vm/
> could this help running legacy code on capability based operating
> systems like KeyKos, Eros and Capros?
> probably
> could this also allow oneself to implement capability based security
> where one has only an unprivileged shell account on machine of the
> x86 architecture?
> yes definitely
This is a framework, within which one can launch standard executable
file - but you will have write a library for that file to interact with
the outside world. The good thing is that the executable file will
*only* be able to interact with the outside world through your library.
That is a fairly big job.
More information about the cap-talk
mailing list