The Featureless Linux Library stable version 0.6.7 is released.

With this release I hope to see a very stable 0.6 release series.

Only a single functional feature is added and then it is a bug fix in the guise of a feature. The Featureless Make program has an oversight in regards to "specify a custom path" within the buid settings paths. I discovered this while working on the TacocaT program in the Kevux Tools project.

A new FSS standard, FSS-0010 (Encrypted Simple Packet), is added. This specification is generally going to be implemented in the 0.7.x and greater versions.

There are several changes to the FSS specifications. The FSS standards themselves now have a "version" date added. The specifications are currently versioned by the dates rather than some arbitrary number. Should I get to an FLL 1.0.0, I will have to decide on whether or not to use a numeric version as well. I very likely will have the specifications at 1.0.0 at that point as well.

I discovered a regression in the 0.6.6 release and possibly earlier regarding the dependencies in the stand alone builds. This should no longer be a problem as of 0.6.7.

Several security concerns have been discovered and fixed in this release. There are no known reported exploits, but I decided to also start having an Exploit Fixes section. If there is any confusion, the Security Fixes involve areas of concern that may or may not potentially lead to a security problem or an exploit. Whereas the Exploit Fixes are focused around actual exploits rather than security concerns. There is also a fine line between a security fix and a bug fix. Unlike bug fixes, security fixes tend to have strong correlations to security problems and exploits or are of a significant security concern.

The following are changes since the 0.6.6 stable release.

Exploit Fixes:

  • None.

Security Fixes:

  • FLL: The f_iki allocation functions are calling f_memory_destroy() and f_memory_delete() when they should not, causing memory leak.
  • FLL: Add additional checks against the parameters in fll_execute_program().
  • FLL: Invalid allocation size for fll_execute_arguments_add_parameter_set().

Features:

  • FSS: Add specification FSS-0010 (Encrypted Simple Packet).
  • Fake: Add -U/--under parameter to Featureless Make.

Bug Fixes:

  • FLL: Incorrect version numbers in some of the extra projects files.
  • FLL: Incorrect sizeof() values for f_thread_mutex_attribute functions and f_thread_lock functions.
  • FLL: Incorrect sizeof() values for numerous type array functions.
  • FLL: Add missing parameter checking to fll_program_* functions, add "const" to parameter pointers, and add missing documentation comment for parameter.
  • FLL: Problems exposed by CLang version 13.
  • FSS: Mistakes in the FSS-000f (Simple Packet) specification.
  • Byte Dump:: Program binary mode is printing wrong number of padding.
  • Controller:: Incorrect function name in error message.

Refactors:

  • None.

Regressions:

  • FLL: Incorrect dependencies breaking some builds, specifically the stand alone builds.

Updates:

  • FLL: The defines in cygwin.txt documentation are out of date
  • FSS: FSS-000F (Simple Packet) Specification.
  • FSS: Specifications, replacing "emphasis" with "italic".
  • FSS: Specifications, adding explicit version date and change license line format.
  • FSS: FSS-000F (Simple Packet) specification, adding reasoning and improve the wording.

Check out the project on the FLL release page.

The project is built like a tool chest. Individuals who are unfamiliar with the project should have an easier time trying out the pre-packaged monolithic sources. These programs, by default, are designed to build against a library built using the monolithic source tree.

The stand alone sources for the several programs can be found pre-packaged at Sourceforge.

Kevin Day