Google yalengeza za kupezeka kwa zomwe zikuchitika zokhudzana ndi pulojekiti ya KataOS, yomwe cholinga chake ndi kupanga makina otetezeka opangira zida zophatikizika. Zida za dongosolo la KataOS zimalembedwa mu Rust ndipo zimayendetsa pamwamba pa microkernel ya seL4, yomwe umboni wa masamu wodalirika waperekedwa pamakina a RISC-V, kusonyeza kuti codeyo ikugwirizana kwathunthu ndi zomwe zafotokozedwa m'chinenero chovomerezeka. Khodi ya polojekiti imatsegulidwa pansi pa layisensi ya Apache 2.0.
Dongosololi limapereka chithandizo pamapulatifomu otengera RISC-V ndi ma ARM64. Kuti muyese ntchito ya seL4 ndi chilengedwe cha KataOS pamwamba pa hardware, ndondomeko ya Renode imagwiritsidwa ntchito panthawi yachitukuko. Monga kukhazikitsidwa kwaumboni, pulogalamu ya Sparrow ndi hardware zovuta zikuperekedwa, kuphatikiza KataOS ndi tchipisi totetezedwa kutengera OpenTitan nsanja. Njira yothetsera vutoli imakulolani kuti muphatikize kernel yotsimikiziridwa yotsimikiziridwa ndi zida zodalirika (RoT, Root of Trust), zomangidwa pogwiritsa ntchito nsanja ya OpenTitan ndi zomangamanga za RISC-V. Kuphatikiza pa code ya KataOS, ikukonzekera kutsegula zigawo zina zonse za Sparrow, kuphatikizapo chigawo cha hardware, m'tsogolomu.
Pulatifomu ikupangidwa ndi diso logwiritsa ntchito tchipisi chapadera chomwe chimapangidwira kugwiritsa ntchito makina ophunzirira ndi kukonza zinsinsi zachinsinsi, zomwe zimafuna chitetezo chapadera ndikutsimikizira kusakhalapo kwa zolephera. Zitsanzo za mapulogalamuwa ndi monga machitidwe omwe amawongolera zithunzi za anthu ndi mawu ojambulidwa. Kugwiritsa ntchito kwa KataOS kutsimikizira kudalirika kumatsimikizira kuti ngati gawo limodzi la dongosololi likulephera, kulephera sikungafalikire ku dongosolo lonselo ndipo, makamaka, ku kernel ndi magawo ovuta.
Zomangamanga za seL4 ndizodziwikiratu pakusuntha magawo oyang'anira kernel m'malo ogwiritsa ntchito ndikugwiritsa ntchito zida zowongolera zomwe zimathandizira pazida monga za ogwiritsa ntchito. Ma microkernel samapereka zotsalira zomwe zakonzedwa kale zowongolera mafayilo, njira, kulumikizana ndi maukonde, ndi zina zotero; m'malo mwake, imapereka njira zochepa zowongolera mwayi wopezeka ndi malo adilesi, zosokoneza, ndi purosesa. Zolemba zapamwamba kwambiri ndi madalaivala olumikizirana ndi ma Hardware amakhazikitsidwa padera pamwamba pa ma microkernel mu mawonekedwe a ntchito zogwiritsa ntchito. Kupezeka kwa ntchito zoterezi kuzinthu zomwe zimapezeka ku microkernel zimakonzedwa kudzera mu kutanthauzira kwa malamulo.
Kuti mutetezedwenso, zigawo zonse kupatula ma microkernel amapangidwa mwachilengedwe ku Rust pogwiritsa ntchito njira zotetezedwa zomwe zimachepetsa zolakwika zamakumbukidwe zomwe zimadzetsa mavuto monga kukumbukira kukumbukira pambuyo pomasulidwa, kuchotsedwa kwa null pointer, ndi buffer overruns. Chojambulira chogwiritsira ntchito mu chilengedwe cha seL4, ntchito zamakina, chimango cha chitukuko cha mapulogalamu, API yofikira mafoni amtundu, woyang'anira ndondomeko, njira yogawa kukumbukira kukumbukira, ndi zina zotero zinalembedwa ku Rust. Msonkhano wotsimikiziridwa umagwiritsa ntchito zida za CAmkES, zopangidwa ndi polojekiti ya seL4. Zida za CAmkES zitha kupangidwanso mu Rust.
Dzimbiri imalimbitsa chitetezo cham'makumbukiro panthawi yophatikiza kudzera pakuwunika, umwini wa chinthu ndi kutsata kwa moyo wonse (zochuluka), ndikuwunika kulondola kwa kukumbukira komwe kumafikira panthawi yothamanga. Dzimbiri imaperekanso chitetezo ku kusefukira kwazinthu zonse, imafuna kuti zikhalidwe zosinthika zikhazikitsidwe musanagwiritse ntchito, zimagwiritsa ntchito lingaliro la maumboni osasinthika ndi zosintha mwachisawawa, ndipo zimapereka zilembo zolimba kuti muchepetse zolakwika zomveka.
Source: opennet.ru