[coyotos-dev] Status and roadmap
Jonathan S. Shapiro
shap at eros-os.com
Fri Jan 19 09:40:06 CST 2007
On Fri, 2007-01-19 at 11:03 +0100, Pierre THIERRY wrote:
> Scribit Jonathan S. Shapiro dies 18/01/2007 hora 04:57:
> > The kernel specification has been public for quite some time,
>
> I thought you were referng to a formal specification.
>
> BTW, I didn't see in the spec how should the capability invocation
> system call be implemented on other architectures than Coldfire.
This would be part of the architecture-specific annex, and it isn't
defined yet. For issues at this level we will wait until we have at
least one working implementation.
> > Speaking for myself, I don't think it makes sense to try to rewrite
> > the great bulk of code out there. There is a lot of C code that is
> > horrible but relatively non-sensitive.
>
> Even, in the long term, to have the whole TCB in a single language?
Even so. The problem is that the TCB is not a small thing. When you are
printing, the print subsystem is in your TCB...
There are many untrusted programs whose behavior can be bounded by
externally imposed controls such as confinement. There is no real reason
to convert these.
shap
--
Jonathan S. Shapiro, Ph.D.
Managing Director
The EROS Group, LLC
+1 443 927 1719 x5100
More information about the coyotos-dev
mailing list