Cage the bugs -- can be implemented something similar in JNode architecture ?????

Most of the protection are part of the java platform and of JNode :

- the AccessController can control each call to a method (if that method is doing the control itself). So, if that method is dangerous (formating a harddrive for example), it can check that the call hierarchy (by inspecting the stacktrace) has the right to do that.

- the drivers are fully implemented in java, so they inherits from the java security

- the buffer underrun/overflow can't happen in java since the VM will throw the appropriate exception instead

- the access to native code is not allowed (that's a choice we made) : so, it's probably impossible to run assembler code from JNode.

The only interesting point in the article is the one about infinite loops. For now, that can happen in JNode. But, we can also implement the algorithm explained there to avoid such things.

Another interesting point is the restart of drivers (but we may also apply that to applications) when they are blocked (maybe some deadlocks). We should probably think about that for JNode.

Fabien

my blog (in english and french)