GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE

  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Andrew Zonenberg (azonenberg@ioc.exchange)'s status on Friday, 20-Jun-2025 02:20:00 JST

  1. Embed this notice
    Andrew Zonenberg (azonenberg@ioc.exchange)'s status on Friday, 20-Jun-2025 02:20:00 JST Andrew Zonenberg Andrew Zonenberg
    in reply to
    • asm & tamsyn & forth, oh my!

    @mwk @millihertz @becomethewaifu the basic idea is, you run a tiny trusted loader stub that creates a page table with maps for a subset of the RAM and one axi interface to PL, sets the interrupt vector table to an unmapped address, disables interrupts, and drops to userspace.

    Now you're stuck running your application in a "padded cell" with no access to the outside world except a single mailbox channel via that axi interface to the PL (most notably, no access to other hard peripherals or the DRP).

    And it's locked in userspace with no way to ever get back into kernel mode (since there's no interrupts and even if you did manage to trigger one you'd just hard fault with a bad vector table)

    So great, you have an isolated application security domain, but how do you do threading?

    In conversation about 7 days ago from gnusocial.jp permalink

Feeds

  • Activity Streams
  • Atom
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.