Capability-Based Security for Redox: Namespace and CWD as Capabilities
5 hours ago
- #Capability-based Security
- #Redox OS
- #Microkernel
- Ibuki Omatsu is working on 'Capability-based security for Redox', funded by NGI Zero Commons and NLnet.
- Redox OS uses 'Schemes' as resource provider services and 'relibc' as its C standard library.
- Previously, Redox managed namespaces in the kernel and CWD as strings, leading to inefficiencies.
- The transition to capability-based security introduces 'openat' for sandboxing and moves namespace management to userspace.
- Namespace Manager (nsmgr) now handles scheme routing, simplifying kernel responsibilities.
- CWD is now managed as a file descriptor, enabling better sandboxing and relative path handling.
- This shift improves security, reduces kernel complexity, and supports future sandboxing features in Redox OS.