{"id":103407,"date":"2022-10-17T09:03:07","date_gmt":"2022-10-17T00:03:07","guid":{"rendered":"https:\/\/softantenna.com\/blog\/?p=103407"},"modified":"2022-10-17T09:03:07","modified_gmt":"2022-10-17T00:03:07","slug":"google-announce-kata-os","status":"publish","type":"post","link":"https:\/\/softantenna.com\/blog\/google-announce-kata-os\/","title":{"rendered":"Google\u3001\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u306b\u30d5\u30a9\u30fc\u30ab\u30b9\u3057\u305f\u300cKataOS\u300d\u3092\u767a\u8868 - Rust\u3068seL4\u30de\u30a4\u30af\u30ed\u30ab\u30fc\u30cd\u30eb\u3092\u6d3b\u7528"},"content":{"rendered":"<p><img decoding=\"async\" style=\"display:block; margin-left:auto; margin-right:auto;\" src=\"https:\/\/softantenna.com\/blog\/wp-content\/uploads\/2022\/10\/OpenSource-announcing-sparrow-header-V2.jpg\" alt=\"OpenSource announcing sparrow header V2\" title=\"OpenSource-announcing-sparrow-header-V2.jpg\" border=\"0\" width=\"1280\" height=\"381\" \/><\/p>\n<p>Google\u306f10\u670814\u65e5(\u73fe\u5730\u6642\u9593)\u3001\u6a5f\u68b0\u5b66\u7fd2\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u3092\u5b9f\u884c\u3059\u308b\u7d44\u307f\u8fbc\u307f\u30c7\u30d0\u30a4\u30b9\u306b\u6700\u9069\u5316\u3055\u308c\u305f\u30d7\u30e9\u30c3\u30c8\u30d5\u30a9\u30fc\u30e0\u3092\u958b\u767a\u3059\u308b\u305f\u3081\u306e\u53d6\u308a\u7d44\u307f\u306e\u4e00\u8cab\u3068\u3057\u3066\u3001\u300cKataOS\u300d\u3092\u30ea\u30ea\u30fc\u30b9\u3057\u305f\u4e8b\u3092\u767a\u8868\u3057\u307e\u3057\u305f(<a href=\"https:\/\/www.phoronix.com\/news\/Google-KataOS\">Phoronix<\/a>)<\/p>\n<p>KataOS\u306f\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u306b\u914d\u616e\u3057\u3066\u3001Rust\u30d7\u30ed\u30b0\u30e9\u30df\u30f3\u30b0\u8a00\u8a9e\u306e\u307f\u3092\u4f7f\u7528\u3057\u3066\u5b9f\u88c5\u3055\u308c\u3001seL4\u30de\u30a4\u30af\u30ed\u30ab\u30fc\u30cd\u30eb\u3092\u57fa\u76e4\u306b\u3057\u3066\u69cb\u7bc9\u3055\u308c\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>\u5897\u3048\u7d9a\u3051\u308b\u30b9\u30de\u30fc\u30c8\u30c7\u30d0\u30a4\u30b9\u3067\u306e\u5229\u7528\u3092\u60f3\u5b9a\u3057\u3066\u304a\u308a\u3001\u7279\u306b\u6a5f\u68b0\u5b66\u7fd2\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u3092\u5b9f\u884c\u3059\u308b\u7d44\u307f\u8fbc\u307f\u30cf\u30fc\u30c9\u30a6\u30a7\u30a2\u306b\u91cd\u70b9\u3092\u7f6e\u3044\u3066\u3044\u307e\u3059\u3002\u696d\u754c\u3067\u306fRISC-V\u3078\u306e\u6ce8\u76ee\u304c\u9ad8\u307e\u3063\u3066\u3044\u308b\u305f\u3081\u3001\u3053\u306eCPU\u30a2\u30fc\u30ad\u30c6\u30af\u30c1\u30e3\u304cKataOS\u306e\u4e3b\u8981\u306a\u30b5\u30dd\u30fc\u30c8\u5bfe\u8c61\u306b\u306a\u3063\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>Google\u306f\u6b21\u306e\u3088\u3046\u306b\u8aac\u660e\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n<blockquote><p>\nAs the foundation for this new operating system, we chose seL4 as the microkernel because it puts security front and center; it is mathematically proven secure, with guaranteed confidentiality, integrity, and availability. Through the seL4 CAmkES framework, we're also able to provide statically-defined and analyzable system components. KataOS provides a verifiably-secure platform that protects the user's privacy because it is logically impossible for applications to breach the kernel's hardware security protections and the system components are verifiably secure. KataOS is also implemented almost entirely in Rust, which provides a strong starting point for software security, since it eliminates entire classes of bugs, such as off-by-one errors and buffer overflows.<\/p>\n<p>\u3053\u306e\u65b0\u3057\u3044OS\u306e\u57fa\u76e4\u3068\u3057\u3066seL4\u3092\u9078\u3093\u3060\u7406\u7531\u306f\u3001\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u3092\u6700\u91cd\u8981\u8996\u3057\u3001\u6570\u5b66\u7684\u306b\u8a3c\u660e\u3055\u308c\u305f\u6a5f\u5bc6\u6027\u3001\u5b8c\u5168\u6027\u3001\u53ef\u7528\u6027\u3092\u4fdd\u8a3c\u3059\u308b\u30de\u30a4\u30af\u30ed\u30ab\u30fc\u30cd\u30eb\u3067\u3042\u308b\u304b\u3089\u3067\u3059\u3002\u307e\u305f\u3001seL4 CAmkES\u30d5\u30ec\u30fc\u30e0\u30ef\u30fc\u30af\u306b\u3088\u308a\u3001\u9759\u7684\u306b\u5b9a\u7fa9\u3055\u308c\u3001\u5206\u6790\u53ef\u80fd\u306a\u30b7\u30b9\u30c6\u30e0\u30b3\u30f3\u30dd\u30fc\u30cd\u30f3\u30c8\u3092\u63d0\u4f9b\u3059\u308b\u3053\u3068\u304c\u3067\u304d\u307e\u3059\u3002KataOS\u306f\u3001\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u304c\u30ab\u30fc\u30cd\u30eb\u306e\u30cf\u30fc\u30c9\u30a6\u30a7\u30a2\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u4fdd\u8b77\u3092\u7834\u308b\u3053\u3068\u306f\u8ad6\u7406\u7684\u306b\u4e0d\u53ef\u80fd\u3067\u3042\u308a\u3001\u30b7\u30b9\u30c6\u30e0\u30b3\u30f3\u30dd\u30fc\u30cd\u30f3\u30c8\u304c\u691c\u8a3c\u53ef\u80fd\u306a\u307b\u3069\u5b89\u5168\u3067\u3042\u308b\u305f\u3081\u3001\u30e6\u30fc\u30b6\u30fc\u306e\u30d7\u30e9\u30a4\u30d0\u30b7\u30fc\u3092\u4fdd\u8b77\u3059\u308b\u691c\u8a3c\u53ef\u80fd\u306a\u5b89\u5168\u306a\u30d7\u30e9\u30c3\u30c8\u30d5\u30a9\u30fc\u30e0\u3092\u63d0\u4f9b\u3057\u307e\u3059\u3002KataOS\u306f\u307e\u305f\u3001\u307b\u307c\u5b8c\u5168\u306bRust\u3067\u5b9f\u88c5\u3055\u308c\u3066\u304a\u308a\u3001\u30aa\u30d5\u30d0\u30a4\u30ef\u30f3\u30a8\u30e9\u30fc\u3084\u30d0\u30c3\u30d5\u30a1\u30aa\u30fc\u30d0\u30fc\u30d5\u30ed\u30fc\u306a\u3069\u306e\u30d0\u30b0\u306e\u30af\u30e9\u30b9\u5168\u4f53\u3092\u6392\u9664\u3057\u3066\u3044\u308b\u305f\u3081\u3001\u30bd\u30d5\u30c8\u30a6\u30a7\u30a2\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u306e\u5f37\u529b\u306a\u51fa\u767a\u70b9\u3068\u306a\u308a\u307e\u3059\u3002<\/p>\n<p>The current GitHub release includes most of the KataOS core pieces, including the frameworks we use for Rust (such as the sel4-sys crate, which provides seL4 syscall APIs), an alternate rootserver written in Rust (needed for dynamic system-wide memory management), and the kernel modifications to seL4 that can reclaim the memory used by the rootserver.<\/p>\n<p>\u73fe\u5728\u306eGitHub\u30ea\u30ea\u30fc\u30b9\u306b\u306f\u3001Rust\u3067\u4f7f\u7528\u3059\u308b\u30d5\u30ec\u30fc\u30e0\u30ef\u30fc\u30af(seL4\u306e\u30b7\u30b9\u30c6\u30e0\u30b3\u30fc\u30ebAPI\u3092\u63d0\u4f9b\u3059\u308bsel4-sys\u30af\u30ec\u30fc\u30c8\u306a\u3069)\u3001Rust\u3067\u66f8\u304b\u308c\u305f\u4ee3\u66ff\u30eb\u30fc\u30c8\u30b5\u30fc\u30d0\u30fc)\u30b7\u30b9\u30c6\u30e0\u5168\u4f53\u306e\u52d5\u7684\u30e1\u30e2\u30ea\u7ba1\u7406\u306b\u5fc5\u8981)\u3001\u30eb\u30fc\u30c8\u30b5\u30fc\u30d0\u30fc\u304c\u4f7f\u7528\u3059\u308b\u30e1\u30e2\u30ea\u3092\u518d\u5229\u7528\u3059\u308b\u305f\u3081\u306eseL4\u3078\u306e\u30ab\u30fc\u30cd\u30eb\u4fee\u6b63\u306a\u3069\u3001KataOS\u30b3\u30a2\u90e8\u5206\u306e\u307b\u3068\u3093\u3069\u3092\u542b\u307f\u307e\u3059\n<\/p><\/blockquote>\n<p>KataOS\u306e\u8a73\u7d30\u306f<a href=\"https:\/\/opensource.googleblog.com\/2022\/10\/announcing-kataos-and-sparrow.html\">\u30d6\u30ed\u30b0<\/a>\u3067\u78ba\u8a8d\u53ef\u80fd\u3067\u3059\u3002\u30bd\u30fc\u30b9\u30b3\u30fc\u30c9\u306f<a href=\"https:\/\/github.com\/AmbiML\/sparrow-manifest\">\u3053\u306eGitHub\u30ea\u30dd\u30b8\u30c8\u30ea<\/a>\u3067\u7ba1\u7406\u3055\u308c\u3066\u3044\u307e\u3059\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Google\u306f10\u670814\u65e5(\u73fe\u5730\u6642\u9593)\u3001\u6a5f\u68b0\u5b66\u7fd2\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u3092\u5b9f\u884c\u3059\u308b\u7d44\u307f\u8fbc\u307f\u30c7\u30d0\u30a4\u30b9\u306b\u6700\u9069\u5316\u3055\u308c\u305f\u30d7\u30e9\u30c3\u30c8\u30d5\u30a9\u30fc\u30e0\u3092\u958b\u767a\u3059\u308b\u305f\u3081\u306e\u53d6\u308a\u7d44\u307f\u306e\u4e00\u8cab\u3068\u3057\u3066\u3001\u300cKataOS\u300d\u3092\u30ea\u30ea\u30fc\u30b9\u3057\u305f\u4e8b\u3092\u767a\u8868\u3057\u307e\u3057\u305f(Phoroni [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":103409,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"aside","meta":{"swell_btn_cv_data":"","footnotes":""},"categories":[75],"tags":[101],"class_list":["post-103407","post","type-post","status-publish","format-aside","has-post-thumbnail","hentry","category-software","tag-google","post_format-post-format-aside"],"_links":{"self":[{"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/posts\/103407","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/comments?post=103407"}],"version-history":[{"count":0,"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/posts\/103407\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/media\/103409"}],"wp:attachment":[{"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/media?parent=103407"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/categories?post=103407"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/softantenna.com\/blog\/wp-json\/wp\/v2\/tags?post=103407"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}