[GSOC] capsicum week9 report

Loganaden Velvindron loganaden at gmail.com
Mon Aug 19 11:09:12 PDT 2013


On Mon, Aug 19, 2013 at 4:54 PM, Joris Giovannangeli
<joris at giovannangeli.fr> wrote:
> Hi,
>
> this week I've been mostly fixing (tons of) bugs. I've ported the tests
> from freeBSD and ran them on a vkernel, and I spent the first part of
> the week fixing the panics and assertions failure.
>
> * The panic in ioctls_limit is fixed.
>
> * The code to pass filedescriptor through AF_UNIX sockets pass
> capability rights in addition to file pointers.
>
> * I've fixed some bugs in the nlookup code, and I ran a custom test
> programm to check that there is no race in nlookup which could permit a
> programm to escape its sandbox. I'm not totally convinced yet, more
> tests are needed in this area.
>
> * I've done a port of dntpd to capsicum (code not pushed yet), but I'm
> still fixing bugs because it only segfaults for now.

Awesome !


It would be nice to work on integrating the changes into DragonflyBSD
kernel, after the gsoc :-)


>
> More testing is planned for next week,
>
> best regards,
> Joris



-- 
This message is strictly personal and the opinions expressed do not
represent those of my employers, either past or present.



More information about the Kernel mailing list