On 1/9/2017 6:16 PM, Jarkko Sakkinen wrote:
Here's my cuts for the kernel: - Kernel virtualizes handle areas. It's mechanical. - Kernel does not virtualize bodies. It's not mechanical. - At least the first version of the RM will not do other than session isolation for sessions.
Is it correct that "bodies" are the parameter area of the commands and responses?
if so, eventually something should virtualize getcapability. It may be safer in user space, but it can mask RM issues.
