undefined | Better HN

Skip to content

Top Best Ask Show New Jobs

0 pointswinternewt1y ago0 comments

What do you mean by I/O exactly? Because to me handling HTTP requests definitely requires I/O, no matter how you technically implement it. Does the program start anew with new arguments for each HTTP request, and if so how is that an improvement over I/O syscalls?

0 comments

5 comments · 2 top-level

cryptonector1y ago· 2 in thread

I mean you don't get to open files, sockets, devices, etc. in the sandboxed program. You get to do just a few minimal things like I/O on stdin/stdout/stderr, use shared memory, maybe allocate memory.

winternewtOP1y ago

So how do you do I/O on stdin/stdiout/stderr without syscalls?

cryptonector1y ago

There's a tiny kernel, and there are syscalls, because after all the executable is -though ELF- a statically linked executable with a statically linked libc, but that mini kernel only handles very few system calls, and does not provide the full generality of Linux. Yes I shouldn't have said "there's no syscalls", just no generic I/O.

nine_k1y ago· 1 in thread

Handling HTTP requests can be done entirely via stdin + stdout. But it won't be too useful if you could not even talk to a database.

The VM may (and should) be limited to a small subset of what's available on the host though.

winternewtOP1y ago

But in order to read from stdin and write to stdout, you must make I/O syscalls.

j / k navigate · click thread line to collapse