-
Notifications
You must be signed in to change notification settings - Fork 13
/
wiki
74 lines (63 loc) · 3.73 KB
/
wiki
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
### Welcome to the Linux Features for Safety-Critical Systems (LFSCS) WG wiki!
You are invited to use this wiki as a collaborative scratch pad for any new ideas, proposals, feature design, or anything else related to the goals and purposes of the WG.
Jules' Work plan proposals
+ BPF current issue proposed by Daniel Borkmann
* Move samples/bpf to BPF selftests folder to improve on test_prog BPFci ==> currently ongoing, rewriting the Makefile
* Require reading on Makefile writing
* Duration: ongoing - one more week - expected to complete 26th May
* progress:
+ moved files, made them compiled correctly in the same directory
+ challenges :
+ merging two makefiles into one
+ Migrates tests from the samples/bpf to selftests/bpf
+ Create a bcc tool for network statistics using XDP/BPF technology
+ proposed tool to gather statisitics on per ip address connected to network event block an IP if suspicious
* Duration: two weeks
- 1 week reading xdp documents and practice
- 1 week coding
- 2 days for writing man page fof the tool
- expected completion 7th June.
+ Improving the eBPF verifier : work with Wenhui
+ Duration: One Month - starts 6th June
+ select which issue to work on
+ Improve eBPF
+ Write a test for it
+ Any other issues assigned by mentor
**********************************************************************************************
Işıl's work plan draft
Working on the mystikos project, a runtime and a set of tools for running Linux applications in a hardware trusted execution environment (TEE).
- https://github.com/deislabs/mystikos
Main steps:
+ Build and run tests in mystikos, read documentation ~2 weeks
+ Fix a minor issue ~2 weeks
- After getting comment from contributors, created a pull request: https://github.com/deislabs/mystikos/pull/1404 (17/8)
- Already fixed, PR closed
+ Communicate with maintainers (paul.c.allen@microsoft.com - email, Vikas Amar Tikoo - linkedin)
+ Work in improving debuggability
- writing gdb extensions,
- improvements to strace mechanism,
*** interactive shell support ***
- integration with native debugging tools like valgrind
+ An issue created in mystikos project: Interactive bash support issues - https://github.com/deislabs/mystikos/issues/1423
- Unsupported system call SYS_pselect6
- Look into bash source code to find a way to work around ioctl requests
- SGX resources
- Report with references to many papers: Intel SGX Explained (https://eprint.iacr.org/2016/086.pdf)
- Intel page with LibOS projects listed: https://www.intel.com/content/www/us/en/developer/tools/software-guard-extensions/get-started.html
Learning Linux security
- Learn about Open source development
- https://training.linuxfoundation.org/training/introduction-to-linux-open-source-development-and-git/
- Learn about security/safety
- https://www.coursera.org/learn/securing-linux-systems
- https://www.coursera.org/specializations/cyber-security
- https://www.coursera.org/learn/cloud-security-basics
- Security in Linux, Webinars, Papers
+ Attended SGX Community Day (https://community.intel.com/t5/Blogs/Tech-Innovation/Data-Center/Third-SGX-Community-Day/post/1393177)
- https://confidentialcomputing.io/webinars/
- ...
- A Tale of Two Worlds: Assessing the Vulnerability of Enclave Shielding Runtimes
- ...
- Research project proposal "Safety in embedded GPU systems"
- Security
- Reliability
**********************************************************************************************