GetWiki
Genode
ARTICLE SUBJECTS
being →
database →
ethics →
fiction →
history →
internet →
language →
linux →
logic →
method →
news →
policy →
purpose →
religion →
science →
software →
truth →
unix →
wiki →
ARTICLE TYPES
essay →
feed →
help →
system →
wiki →
ARTICLE ORIGINS
critical →
forked →
imported →
original →
Genode
please note:
- the content below is remote from Wikipedia
- it has been imported raw for GetWiki
{{Short description|Free and open-source software operating system}}- the content below is remote from Wikipedia
- it has been imported raw for GetWiki
factoids | |
---|---|
History
Genode was first conceived as the Bastei OS ArchitectureWEB,weblink TU Dresden technical report TUD-FI06-07, research report at the Technical University of Dresden (TU Dresden). The focus of the report was to determine the practicality of a component-based OS using capability-based security. This report was motivated in part by research into L4 microhypervisorsWEB,weblink NOVA Microhypervisor, conducted during the same time. Following the success of an early prototype, the authors of the report founded the company Genode Labs to develop Bastei as the Genode OS Framework.Releases
The project is developed publicly as an open source project released under the terms of the GNU Affero General Public License with a commercial entity offering alternative licensing. Releases are scheduled at three-month intervals to make changes to the system application binary interface (ABI), application programming interface (API), and issue documentation. The OS framework is available in source code form and following the 18.02 release a general purpose derivative named Sculpt is provided with on-target binary deployment.Architectural features
Genode builds on the general philosophy of microkernels: the smaller and simpler the code, the easier it is to verify for trustworthiness and correctness. Genode extends this philosophy to user space by composing complex applications from small components. Each component exists in a strict hierarchy of parent-child relationships. Any component acting as a parent may apply resource and inter-process communication (IPC) access policies to its children. This hierarchical system layout yields intuitive partitioning and privilege deescalation as specialized subsystems are nested within more general subsystems, mitigating the confused deputy problem endemic to centralized or superuser system policy.The framework is designed to be hosted by microkernels, however the features of any given microkernel fall mostly within a common set, and monolithic kernels implement a superset of those features. Abstracting these features allows Genode to act as user space for a variety of L4 microkernels,WEB, L4 Based Operating Systems,weblink L4hq.org, 2018-06-01, dead,weblink" title="web.archive.org/web/20180614095447weblink">weblink 2018-06-14, WEB, SeL4 Community Projects,weblink sel4.systems, and Linux.Criticism
C++
Genode is often criticized for the choice of its implementation language, C++ (a few other operating systems implemented in C++ include BeOS, Fuchsia, Ghost, Haiku, IncludeOS, Managarm, OSv, Palm OS, ReactOS, SerenityOS, Syllable, and Symbian). This critique usually asserts that C++ is a poor choice for implementing system libraries and APIs because of the inherent complexity of C++ and the difficulty in analyzing code for correct behavior. While Genode does make use of multiple inheritance and templates in its system library, the use of the C++ Standard Library is not allowed and language features that rely on implicit global state, such as thread-local storage and the global allocator, have been removed from the language runtime.WEB,weblink Genode's Conscious C++ dialect, genodians.org, 2019-11-29, Comprehensive static analysis of C++ is not possible. However, the Genode project publishes unit tests for empirical analysis.XML
Genode components consume and publish state using structured data serialized in XML, in contrast to the plain text model of Unix derivatives. The Genode framework makes use of XML in effectively all of its components because XML is easily parsed and generated programmatically while still being possible to understand and edit manually.Local namespacing
Genode lacks any practical global namespace; there is no global file system or registry of processes or IPC endpoints. This is in contrast to systems such as Unix which feature a ubiquitous file system and allow a superuser context to arbitrarily manage any process within the system. Explicitly declaring the permissions and routing of components may be perceived as labor-intensive relative to Unix. However, compartmentalizing administration allows subsystems to be managed by mutually untrusted system administrators on the same machine without resorting to virtualizing, a common isolation method.Sculpt
The Genode project publishes a desktop operating system named Sculpt that targets contemporary consumer laptops.WEB,weblink Release notes 18.02, Sculpt is a small base system with automatic device detection and configuration, some GUI control interfaces, and frontends to the Genode package manager. The system does not feature a full desktop environment, but requires users to deploy virtual machines hosting traditional OSes for a fully featured desktop. Sculpt is distinguished from the Genode operating system framework in that it relies heavily on dynamic reconfiguration using privileged control components in contrast to specialized systems with static policies.See also
- HelenOS, a desktop microkernel based operating system
- QNX, a proprietary Unix-like operating system hosted by a microkernel
- Qubes OS, a desktop operating system that provides security through virtualization
- Capability-based security
- Secure by default
References
{{Reflist}}External links
{{Commons}}- Official websites
- {{Official website|genode.org}}
- {{GitHub|genodelabs}}
- Research projects
- KV-Cache: A Scalable High-Performance Web-Object Cache for Manycore
- TrApps: Secure Compartments in the Evil Cloud
- Development of an Embedded Platform for Secure CPS Services
- Secure-OS project of IIT Madras
- Kernel isolation of a Capability-based security Operating System
- Mobile Device Security with ARM TrustZone
- content above as imported from Wikipedia
- "Genode" does not exist on GetWiki (yet)
- time: 4:01am EDT - Sat, May 18 2024
- "Genode" does not exist on GetWiki (yet)
- time: 4:01am EDT - Sat, May 18 2024
[ this remote article is provided by Wikipedia ]
LATEST EDITS [ see all ]
GETWIKI 23 MAY 2022
The Illusion of Choice
Culture
Culture
GETWIKI 09 JUL 2019
Eastern Philosophy
History of Philosophy
History of Philosophy
GETWIKI 09 MAY 2016
GetMeta:About
GetWiki
GetWiki
GETWIKI 18 OCT 2015
M.R.M. Parrott
Biographies
Biographies
GETWIKI 20 AUG 2014
GetMeta:News
GetWiki
GetWiki
© 2024 M.R.M. PARROTT | ALL RIGHTS RESERVED