PERFORCE change 173935 for review
Robert Watson
rwatson at FreeBSD.org
Sat Jan 30 01:27:27 UTC 2010
http://p4web.freebsd.org/chv.cgi?CH=173935
Change 173935 by rwatson at rwatson_fledge on 2010/01/30 01:27:18
Remove several todo items that are todone.
Affected files ...
.. //depot/projects/trustedbsd/capabilities/TODO#19 edit
Differences ...
==== //depot/projects/trustedbsd/capabilities/TODO#19 (text+ko) ====
@@ -13,16 +13,6 @@
user databases, libraries, etc, with a POSIX interface within the
capability mode process.
-- Get shared objects working in capability mode by creating a cap_ld-elf.so
- that will take the binary to run as a file descriptor argument in order
- to avoid needing to run the interpreter directly from the fexecve(2)
- context. Consider carefully the implications on creating binaries, ELF,
- etc.
-
-- Implement libcapability, a lightweight framework for starting code in a
- capability mode sandbox using fexecve(2), etc, and providing a simple
- local procedure call interface to compartmentalized services.
-
- ... bigger and better things ...
Low-level TODO list:
@@ -75,4 +65,5 @@
- Add support (a.k.a. find test platforms) for arm, ia64, etc. in lib/csu
-- It would be nice if we didn't need -rdynamic; can we export just _capstart? Should we add more information (a capability entry point) to ELF?
+- It would be nice if we didn't need -rdynamic; can we export just _capstart?
+ Should we add more information (a capability entry point) to ELF?
More information about the p4-projects
mailing list