last one I swear bro
This commit is contained in:
parent
0ebe8e731b
commit
a018810c9c
GPG Key ID:
5FE0CB25945EFAA2
@ -36,9 +36,8 @@ perform some memory management work to start allocating memory for the userboot
|
|||||||
binary. Userboot is a binary executable that will be loaded as a module, and
|
binary. Userboot is a binary executable that will be loaded as a module, and
|
||||||
it will be initialized as the very first process.
|
it will be initialized as the very first process.
|
||||||
|
|
||||||
> [!INFO]
|
The Userboot concept was taken from the Zircon kernel, used in Google's Fuchsia
|
||||||
> The Userboot concept was taken from the Zircon kernel, used in Google's
|
OS.
|
||||||
> Fuchsia OS.
|
|
||||||
|
|
||||||
Userboot has only one job, and that is to parse the compressed initramfs image
|
Userboot has only one job, and that is to parse the compressed initramfs image
|
||||||
and start the true init system based on the contents of that image. After that,
|
and start the true init system based on the contents of that image. After that,
|
||||||
|
|||||||
@ -118,10 +118,6 @@ the primary method processes will use to do useful things, but it will also
|
|||||||
affect shared memory regions. A process cannot establish IPC unless it is part
|
affect shared memory regions. A process cannot establish IPC unless it is part
|
||||||
of some namespace the target process is also part of.
|
of some namespace the target process is also part of.
|
||||||
|
|
||||||
Being part of a namespace entails holding a capability object referring to
|
|
||||||
that namespace, and that capability object will encode rights within that
|
|
||||||
namespace, such as IPC and shared memory.
|
|
||||||
|
|
||||||
### Capability based MAC
|
### Capability based MAC
|
||||||
|
|
||||||
Gila has no concept of ambient authority. Resource access is not governed
|
Gila has no concept of ambient authority. Resource access is not governed
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user