We're sorry but this page doesn't work properly without JavaScript enabled. Please enable it to continue.
Feedback

CloudABI for FreeBSD

8
 Zitieren
 Teilen
 Herunterladen
 Bestellen
Logo von FOSDEM VZWFOSDEM VZW
 Schouten, Ed

Formale Metadaten

Titel
CloudABI for FreeBSD
Untertitel
How does it work?
Serientitel
Anzahl der Teile
611
Autor
Lizenz
CC-Namensnennung 2.0 Belgien:
Sie dürfen das Werk bzw. den Inhalt zu jedem legalen Zweck nutzen, verändern und in unveränderter oder veränderter Form vervielfältigen, verbreiten und öffentlich zugänglich machen, sofern Sie den Namen des Autors/Rechteinhabers in der von ihm festgelegten Weise nennen.
Identifikatoren
Herausgeber
Erscheinungsjahr
Sprache
Produktionsjahr2017

Inhaltliche Metadaten

Fachgebiet
Genre
Abstract
One of the fundamental problems with UNIX-like operating systems is that theydon't seem to make it easy and intuitive to develop applications that arestrongly hardened against exploits through sandboxing. With CloudABI, we'retrying to make this process a lot easier, by having an environment that ispurely based on capability-based security. In another talk in the main track I'm going to give a more general talk aboutCloudABI, explaining what the mindset behind the project. During this talk inthe BSD devroom I want to focus on one specific aspect, namely how FreeBSD'sruntime environment for CloudABI works. CloudABI is a simplified POSIX-like runtime environment that is inspired byFreeBSD's Capsicum. It allows you to create programs that can solely interactwith the environment through file descriptors (capabilities). Compared totraditional UNIX-like systems, this approach has three advantages: 1. It reduces the impact of exploits. If an attacker manages to take over control of a CloudABI application, it can only access those resources that the application was designed to use (for a networked service: typically an already bound TCP socket and some data directories). This is different from most traditional UNIX-like systems, where an attacker would gain access to all resources that the user running the application can access, which is very broad. 2. It makes applications easier to test. By knowing that an application can only access those resources that are provided explicitly, the entire environment in which the application runs can be customized for testing. 3. Similarly, it makes applications easier to deploy. This model tends to reduce the need for using containers and virtual machines. Applications can be started directly, while still providing the necessary isolation from the rest of the system. An interesting aspect of CloudABI is that it's cross-platform. You can compilea CloudABI program once and run exactly the same executable both on FreeBSD,macOS and Linux. In this talk I want to focus on this specifically: how isFreeBSD capable of running these programs? Topics I'll be covering during thistalk include: * FreeBSD's image activator framework: the code that parses and loads executables. * The ELF file format * System calls and system call tables * vDSOs: Virtual Dynamic Shared Objects