[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [MirageOS-devel] Type enforced security

  • To: mirageos-devel@xxxxxxxxxxxxxxxxxxxx
  • From: Hannes Mehnert <hannes@xxxxxxxxxxx>
  • Date: Wed, 16 Sep 2015 15:16:52 +0100
  • Delivery-date: Wed, 16 Sep 2015 14:17:13 +0000
  • List-id: Developer list for MirageOS <mirageos-devel.lists.xenproject.org>
  • Openpgp: id=11B5464249B5BD858FFF6328BC896588DF7C28EE
On 09/16/2015 14:46, Anil Madhavapeddy wrote:
> Hannes, is there an example of how to run the nqsb-TLS trace checker
> command-line tool anywhere?

Not really (talking about https://github.com/hannesm/trace-checker).  I
'documented' the dependencies in travis.yml
(https://github.com/hannesm/trace-checker/blob/master/.travis.yml), namely:
- tcpip which allows to set the random to predefined values from the
pcap trace, and exposing more internal functions
- tracing branches of tls and x509
- mirage-net-pcap dealing properly with captures from the loopback
interface (by adding some random ethernet header)

The pcap to trace-check is hardcoded in unikernel.ml.  Together with
david (on his laptop) we modified the output slightly and demanded a
user input between each event (turned out to be very useful for the
presentation at Usenix Security).


hannes

Attachment: signature.asc
Description: OpenPGP digital signature

_______________________________________________
MirageOS-devel mailing list
MirageOS-devel@xxxxxxxxxxxxxxxxxxxx
http://lists.xenproject.org/cgi-bin/mailman/listinfo/mirageos-devel

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.