ExternalVendorCode/genode
1
0
Fork 0
mirror of https://github.com/genodelabs/genode.git synced 2025-06-13 12:48:20 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Linux: Don't access file system outside of core

Browse Source 
This patch changes the way of how dataspace content is accessed by
processes outside of core. Dataspaces are opened by core only and the
corresponding file descriptors are handed out the other processes via
the 'Linux_dataspace::fd()' RPC function. At the client side, the
returned file descriptor is then used to mmap the file.

Consequently, this patch eliminates all files from 'lx_rpath'. The
path is still needed by core to temporarily create dataspaces and
unix domain sockets. However, those files are unlinked immediately
after their creation.
This commit is contained in:
Norman Feske
2012-08-10 14:21:26 +02:00
parent aee0a2061b
commit 7cb45e9648
7 changed files with 86 additions and 43 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
base-linux/include/linux_dataspace/linux_dataspace.h
View File

@ -24,23 +24,31 @@ namespace Genode {
struct Linux_dataspace : Dataspace
{
enum { FNAME_LEN = 32 };
struct Filename { char buf[FNAME_LEN]; };
virtual ~Linux_dataspace() { }
/**
* Request name of file that represents the dataspace on Linux
*
* This function is used for calling execve on files passed as ROM
* dataspaces.
*/
virtual Filename fname() = 0;
/**
* Request file descriptor of the dataspace
*/
virtual Untyped_capability fd() = 0;
/*********************
** RPC declaration **
*********************/
GENODE_RPC(Rpc_fname, Filename, fname);
GENODE_RPC_INTERFACE_INHERIT(Dataspace, Rpc_fname);
GENODE_RPC(Rpc_fd, Untyped_capability, fd);
GENODE_RPC_INTERFACE_INHERIT(Dataspace, Rpc_fname, Rpc_fd);
};
}