Genode as a reference for capability based OS tooling?February 26, 2019 at 3:02pm
(Scroll past the microkernal stuff) https://genode.org/documentation/general-overview/
While PWSIX/Cloud-abi should obviously be a priority, I that using "sub-sandboxes" and explicitly passing capabilities to those sub-programs makes a lot of sense. I might want to run a WASM vm in my WASM vm, but It shouldn't have to actually run another WASM interpreter to do that.
Genode looks like an interesting example of a "nested capabilities" based operating system. Any thoughts?