[Prex-devel] Prex 0.9.0 Released

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

Prex 0.9.0 has been released.

This release adds new security framework which enables pathname-based 
access control. It can assign the set of specific capabilities for any 
applications depending on its role.

---------------------------------------------------------------------
  * New: Enable capability based security by default.
  * New: Support resource limit to prevent DoS attack.
  * New: Add task_chkcap() kernel call to trace the capability violations.
  * New: Support pipe and redirection in shell.
  * New: Support LCD off timer.
  * New: Handle PATH variable for exec in shell.
  * New: Add 'more' command to verify the pipe feature in shell.
  * New: Support Sun Studio compiler.
  * New: Change name of real-time task to *.rt to identify it easily.
  * New: Support pathname-based capability mapping.
  * New: Support getenv()/putenv().
  * New: Add 'set', 'unset' and 'export' command in shell.
  * New: Add power server - 'pow'.
  * New: Add 'fstab' - file system table.
  * New: Run 'rc' script at boot.
  * New: Add script loader in exec server.
  * New: Add 'pmctrl' - power management utility.
  * New: Support protected name for system object.
  * New: Add 'diskutil' - disk management utilitiy.
  * New: Add 'install' - software installer.
  * New: Add 'ktrace' - system call tracer.
  * New: Add workstation console multiplexer driver - 'wscons'.
  * New: Initial PowerPC support.
  * New: Add new device flag (D_PROT) for protected devices.
  * New: Initial version of kernel debugger.
  * New: Add 'lock' - terminal lock utility.
  * Fix: Page fault in realloc().
  * Fix: exception_return() breaks the return value of subsequent syscall.
  * Fix: 'tty' - the new line is not handled properly.
  * Fix: Intermittent hang during task_terminate().
  * Fix: 'lr' register is broken after fork(). (ARM).
  * Fix: Enable interrupts during system call (ARM).
  * Fix: Page fault under sub-shell (NOMMU).
  * Fix: The pipe() system call fails at second call.
  * Fix: Fix to increment the file reference in dup2().
  * Fix: The byte count for writing fifo is always 0.
  * Fix: Memory leak in task_terminate().
  * Fix: Fix the compile error with gcc 2.95. Correct the format of printf.
  * Fix: Fix to reject changing the capability of the kernel task.
  * Fix: Fix system hang when kernel is compiled with PCC.
  * Fix: Add signal number in the return code of waitpid().
  * Fix: Remove workaround for ioctl() buffering issue.
  * Fix: Prevent format string attack with sys_log().
  * Fix: Fix many codes to prevent buffer overflow caused by strcpy/strcat.
  * Fix: Page fault in 'nice'. The first item of the envp is lost.
  * Fix: setpriority() returns error even if it is success.
  * Fix: 'proc' - some process data are not initialized for fork().
  * Fix: 'tty' - fix for big endian.
  * Fix: Fix many other bugs.
---------------------------------------------------------------------

Kohsuke
http://prex.sf.net