|Sandboxing in Fuchsia|
|By Thom Holwerda on 2017-06-16 22:53:15|
On Fuchsia, a newly created process has nothing. A newly created process cannot access any kernel objects, cannot allocate memory, and cannot even execute code. Of course, such a process isn't very useful, which is why we typically create processes with some initial resources and capabilities.
Most commonly, a process starts executing some code with an initial stack, some command line arguments, environment variables, a set of initial handles. One of the most important initial handles is the
Not the most detailed description just yet, but Fuchsia seems to be getting fleshed out more and more.
- The benefits and costs of writing a POSIX kernel in Go - 2018-10-08
- Visopsys 0.8.3 released - 2018-10-02
- Arcan 0.5.5, Durden 0.5 released - 2018-10-02
- CirnOS: new Lua-based OS - 2018-10-02
- More related articles