of 24
7/28/2019 Gnome Asia 2013 Apps
1/24
Sandboxed Applications for GNOME
gnome.asia 2013
Lennart Poettering
May 2013
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
2/24
Who we are
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
3/24
Our goal: We want GNOME to be the modern, general purpose OS
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
4/24
And Apps are a crucial part of it
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
5/24
Apps =
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
6/24
7/28/2019 Gnome Asia 2013 Apps
7/24
RPMs/DEBs =
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
8/24
RPMs/DEBs =installable only by root,
live in a common namespace,
vendor APIs,huge test matrix
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
9/24
We want both, RPMs/DEBs for building the system, andsandboxed user apps to run on top of it.
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
10/24
RPMs/DEBs: primarily focussed around distributions as singleprovider, builder, tester of programs
Apps: many sources from the internet, untrusted code
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
11/24
7/28/2019 Gnome Asia 2013 Apps
12/24
We want kernel-level isolation
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
13/24
We want a free, community-based, vendor-agnostic solution
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
14/24
9 Steps
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
15/24
1 Make kdbus work, so that we can have kernel-enforced bussandboxes, and so that we can use it to transfer major data in and
out of the sandbox via the bus.
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
16/24
2 App sandboxes build on Linux namespaces, seccomp, cgroups,capabilities.
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
17/24
3 Introduce Portals infrastracture as primary way in and out ofthe sandbox for applications. Portals are an interactive security
scheme that doubles as integration technology.
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
18/24
4 App images as compressed file systems with multiple partitionsin a loopback file, one for each architecture plus a common base
set.
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
19/24
5 An extended search path logic
In GLib and friends
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
20/24
6 A sandbox aware display manager
Wayland
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
21/24
7 A apps-aware configuration scheme
dconf
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
22/24
8 A system for building apps
Profiles
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
23/24
9 App stores, by any community or vendor
Lennart Poettering Sandboxed Applications for GNOME
http://find/7/28/2019 Gnome Asia 2013 Apps
24/24
Thats all, folks!
Lennart Poettering Sandboxed Applications for GNOME
http://find/