[Prex-devel] Prex 0.9.0 Released
Status: Beta
Brought to you by:
kohtani
From: Kohsuke O. <ko...@us...> - 2009-10-01 17:21:55
|
Prex 0.9.0 has been released. This release adds new security framework which enables pathname-based access control. It can assign the set of specific capabilities for any applications depending on its role. --------------------------------------------------------------------- * New: Enable capability based security by default. * New: Support resource limit to prevent DoS attack. * New: Add task_chkcap() kernel call to trace the capability violations. * New: Support pipe and redirection in shell. * New: Support LCD off timer. * New: Handle PATH variable for exec in shell. * New: Add 'more' command to verify the pipe feature in shell. * New: Support Sun Studio compiler. * New: Change name of real-time task to *.rt to identify it easily. * New: Support pathname-based capability mapping. * New: Support getenv()/putenv(). * New: Add 'set', 'unset' and 'export' command in shell. * New: Add power server - 'pow'. * New: Add 'fstab' - file system table. * New: Run 'rc' script at boot. * New: Add script loader in exec server. * New: Add 'pmctrl' - power management utility. * New: Support protected name for system object. * New: Add 'diskutil' - disk management utilitiy. * New: Add 'install' - software installer. * New: Add 'ktrace' - system call tracer. * New: Add workstation console multiplexer driver - 'wscons'. * New: Initial PowerPC support. * New: Add new device flag (D_PROT) for protected devices. * New: Initial version of kernel debugger. * New: Add 'lock' - terminal lock utility. * Fix: Page fault in realloc(). * Fix: exception_return() breaks the return value of subsequent syscall. * Fix: 'tty' - the new line is not handled properly. * Fix: Intermittent hang during task_terminate(). * Fix: 'lr' register is broken after fork(). (ARM). * Fix: Enable interrupts during system call (ARM). * Fix: Page fault under sub-shell (NOMMU). * Fix: The pipe() system call fails at second call. * Fix: Fix to increment the file reference in dup2(). * Fix: The byte count for writing fifo is always 0. * Fix: Memory leak in task_terminate(). * Fix: Fix the compile error with gcc 2.95. Correct the format of printf. * Fix: Fix to reject changing the capability of the kernel task. * Fix: Fix system hang when kernel is compiled with PCC. * Fix: Add signal number in the return code of waitpid(). * Fix: Remove workaround for ioctl() buffering issue. * Fix: Prevent format string attack with sys_log(). * Fix: Fix many codes to prevent buffer overflow caused by strcpy/strcat. * Fix: Page fault in 'nice'. The first item of the envp is lost. * Fix: setpriority() returns error even if it is success. * Fix: 'proc' - some process data are not initialized for fork(). * Fix: 'tty' - fix for big endian. * Fix: Fix many other bugs. --------------------------------------------------------------------- Kohsuke http://prex.sf.net |