mirror of
https://github.com/genodelabs/genode.git
synced 2025-02-13 14:35:34 +00:00
b45242c50f
Since the recent move of the process creation into core, the original chroot trampoline mechanism implemented in 'os/src/app/chroot' does not work anymore. A process could simply escape the chroot environment by spawning a new process via core's PD service. Therefore, this patch moves the chroot support into core. So the chroot policy becomes mandatory part of the process creation. For each process created by core, core checks for 'root' argument of the PD session. If a path is present, core takes the precautions needed to execute the new process in the specified chroot environment. This conceptual change implies minor changes with respect to the Genode API and the configuration of the init process. The API changes are the enhancement of the 'Genode::Child' and 'Genode::Process' constructors to take the root path as argument. Init supports the specification of a chroot per process by specifying the new 'root' attribute to the '<start>' node of the process. In line with these changes, the 'Loader::Session::start' function has been enhanced with the additional (optional) root argument.
56 lines
1.5 KiB
C++
56 lines
1.5 KiB
C++
/*
|
|
* \brief Client-side loader-session interface
|
|
* \author Christian Prochaska
|
|
* \date 2009-10-05
|
|
*/
|
|
|
|
/*
|
|
* Copyright (C) 2009-2012 Genode Labs GmbH
|
|
*
|
|
* This file is part of the Genode OS framework, which is distributed
|
|
* under the terms of the GNU General Public License version 2.
|
|
*/
|
|
|
|
#ifndef _INCLUDE__LOADER_SESSION__CLIENT_H_
|
|
#define _INCLUDE__LOADER_SESSION__CLIENT_H_
|
|
|
|
#include <loader_session/loader_session.h>
|
|
#include <loader_session/capability.h>
|
|
#include <base/rpc_client.h>
|
|
#include <os/alarm.h>
|
|
|
|
namespace Loader {
|
|
|
|
struct Session_client : Rpc_client<Session>
|
|
{
|
|
explicit Session_client(Loader::Session_capability session)
|
|
: Rpc_client<Session>(session) { }
|
|
|
|
Dataspace_capability alloc_rom_module(Name const &name, size_t size) {
|
|
return call<Rpc_alloc_rom_module>(name, size); }
|
|
|
|
void commit_rom_module(Name const &name) {
|
|
call<Rpc_commit_rom_module>(name); }
|
|
|
|
void ram_quota(size_t quantum) {
|
|
call<Rpc_ram_quota>(quantum); }
|
|
|
|
void constrain_geometry(int width, int height) {
|
|
call<Rpc_constrain_geometry>(width, height); }
|
|
|
|
void view_ready_sigh(Signal_context_capability sigh) {
|
|
call<Rpc_view_ready_sigh>(sigh); }
|
|
|
|
void start(Name const &binary, Name const &label = "", Path const &root = "") {
|
|
call<Rpc_start>(binary, label, root); }
|
|
|
|
Nitpicker::View_capability view() {
|
|
return call<Rpc_view>(); }
|
|
|
|
View_geometry view_geometry() {
|
|
return call<Rpc_view_geometry>(); }
|
|
};
|
|
}
|
|
|
|
#endif /* _INCLUDE__PLUGIN_SESSION__CLIENT_H_ */
|