-
Notifications
You must be signed in to change notification settings - Fork 10
Interface
One element of our security model is to contain our kernel calls to the "popular paths". To ensure this, SafePOSIX-Rust must only call to libraries (via the Rust standard libraries, and any crates) via paths that limit kernel calls to these popular paths.
The SafePOSIX-Rust interface exposes SafePOSIX to these libraries in four files:
- file.rs - filesystem related calls
- comm.rs - network related calls
- timer.rs - time related calls
- misc.rs - locks, serialization, etc.
These files make up our interface module, and are the only place libraries are imported via use. This allows us to fuzz this slimmer interface for kernel access to ensure the broader SafePOSIX code can only access the popular paths.
SafePOSIX is then built using this interface. No library imports via use are allowed in any of the files that implement SafePOSIX. Any attempts to import outside libraries will be rejected via code review.