hi all,
we know nacl is a sandbox, it won't allow syscall in untrusted nacl code.
for example, function 'open' in linux for creating a new file is processed by the
service runtime. but after read some source files and view some assembly code, i still can't
see the exactly execution flow when i use 'open' in a nacl module.
Now, in my mind, if i use 'open' in nacl module,
1. code will try to call trampline ?
2. the trampline code will reset ds,cs and es etc. ?
3. service_runtime will send 'open' arguments by SRPC to the hoster-process(Chrome) ?
4. hoster-process will process the 'open' request by self-defined function ?
Am i wrong on descripting the execution flow ?
Second question, what's the difference between 'sel_ldr' and 'sel_ldr_universal' ?
after compiling the src project, I got these two files but still don't know the difference.
Third question, actually i wanna one standalone sandbox based on nacl while I can do my
own wrapper on syscalls(system apis), so which interface source files should I focus on ?
Need help, thanks !