主权项 |
1. A method for enabling secure cross-process memory sharing, the method comprising:
creating, by a first user process executing on a computer system, a memory handle representing a memory space of the first user process; defining, by the first user process, one or more access restrictions with respect to the memory handle; transmitting, by the first user process, the memory handle to a second user process executing on the computer system, the memory handle enabling the second user process to access at least a portion of the first process' memory space through the memory handle, subject to the one or more access restrictions, without extending the memory address space of the first process or the memory space of the second process to include shared memory; transmitting, the by the first process, an input/output (I/O) request, directed to a storage volume; intercepting the I/O request by the second user process before the request reaches the storage volume; and performing, by the second user process, the I/O request on behalf of the first user process wherein the data that is associated with the I/O operation is transmitted through the memory handle directly between the storage volume and the first process' memory space. |