mmolloy/Cognition-OS
1
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
6f2a1aa4b1e6df534c255bdc1d4e799d7b940443
Cognition-OS/freebsd/mapping.md
deamonkai a59d4b6515 Framework design upload
2026-02-08 07:53:24 -06:00

635 B
Raw Blame History

FreeBSD mapping notes (draft)

Isolation domains

  • Use jails to isolate tools/workers.
  • Map domain_id to a jail instance.

Capabilities

  • Use Capsicum to restrict tool runners.
  • Capabilities are represented as scoped grants in the cognitive kernel and realized via Capsicum + pre-opened descriptors.

Eventing

  • Use kqueue for event-driven IO in the cognitive runtime.
  • Provenance logs are append-only files (optionally per-domain datasets on ZFS).

Resource control

  • rctl, login classes, cpuset can enforce limits.
  • Budgeting logic lives in the cognitive runtime; enforcement uses kernel primitives.
Reference in New Issue View Git Blame Copy Permalink