[cap-talk] More Heresey: ACLs not inherently bad
Mark Miller
erights at gmail.com
Sun Sep 14 14:36:34 CDT 2008
On Sun, Sep 14, 2008 at 12:26 PM, Jonathan S. Shapiro <shap at eros-os.com>wrote:
> Finally, we have
> long since agreed that no feasible design exists for a transitively
> extended horton-style membrane in an OS-based capability system.
>
IIRC, the argument that horton is impractical in a OS-based ocap system is
really: We have no good answers about who pays for the extra allocations or
gets to reclaim that memory. In other list traffic, it seems like you're
staring to consider OS design points which are somewhat sloppy on memory
accounting issues. If the memory accounting constraints are relaxed, the
horton question should be revisited.
--
Text by me above is hereby placed in the public domain
Cheers,
--MarkM
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.eros-os.org/pipermail/cap-talk/attachments/20080914/51ada8d4/attachment.html
More information about the cap-talk
mailing list