msc-thesis/src/docs/parts/research_and_development/research_and_development.tex

% // vim: set ft=tex:
\chapter{Concrete Research Tasks}

\section{Definition Of Additional Analysis Rules To Extend Safety Checks}
% TODO: Business Logic Checks
% Examples: 
% TLB needs to be reset on Task Change
% ISR-Stack-Frame needs to be updated on context-switch

\section{Software Fault Isolation}
% TODO: content from \cite{Balasubramanian2017}

% TODO Which language items help with managing memory?
% TODO How generic can the memory allocators be written?

% TODO Guarantees to be statically checked:
% TODO * Control access to duplicates in page tables
% TODO * Tasks can't access unallocated (physical) memory
% TODO * Tasks can't access other tasks memory
\subsection{Paging}
Setting up and maintaining the paging-structure, as well as allocating physical memory for the virtual pages is a complex task in the \gls{os}.
Developing this part of the \gls{os} is error-prone, and is not well-supported by mainstream \glspl{proglang}.

\chapter{Porting \glsentrytext{C} Vulnerabilities}
\label{rnd::porting-c-vulns}
In this chapter, the weakness manifestations given in \cref{context::common-mem-safety-mistakes::manifestations} are rewritten in \gls{Rust} to examine if these are mitigated just by porting them.
This is done incrementally by first porting the vulnerability to unsafe Rust, followed by a rewrite to drop all unsafe code but keeping the intended functionality.

% TODO stack frame manipulation
% TODO official CWE-119 examples

\chapter{\glsentrytext{LX} Modules Written In \glsentrytext{Rust}}

\chapter{Existing \glsentrytext{os}-Development Projects Based On Rust}
\label{rnd::existing-os-dev-with-rust}

\section{Libraries}

\subsection{Libfringe}
% TODO: https://github.com/edef1c/libfringe


\section{Systems}
\subsection{intermezzOS}
\subsection{Blog OS}
\subsection{Redox}
\subsection{Tock}
%TODO: mention paper's by tockos team
 
\chapter{\glsentrytext{imezzos}: Adding Preemptive \glsentrytext{os}-Level Multitasking}
\label{rnd::imezzos-preemptive-multitasking}

\section{Timed Interrupts For Scheduling and Dispatching}

\section{Simple Stack Allocation Scheme}

\section{Risk Of Stack-Overflow}
% TODO: The compiler doesn't check for stack overflows.
% TODO: Describe possible implementation. 
%    Parameters:
%        Stack limit for each function: user defined constant,
%        Stack size for each function: calculated,
%        Call-Tree: calculated,
*: extend and refine structure 2017-08-10 19:09:58 +02:00			`% // vim: set ft=tex:`
context: os dev concepts 95% done * still missing code snippets for the procedure call example 2017-09-22 21:00:34 +02:00			`\chapter{Concrete Research Tasks}`
context/rnd: paging/stack/heap/virtualization 2017-09-21 21:53:48 +02:00
			`\section{Definition Of Additional Analysis Rules To Extend Safety Checks}`
context: os dev concepts 95% done * still missing code snippets for the procedure call example 2017-09-22 21:00:34 +02:00			`% TODO: Business Logic Checks`
context/rnd: paging/stack/heap/virtualization 2017-09-21 21:53:48 +02:00			`% Examples:`
			`% TLB needs to be reset on Task Change`
context: os dev concepts 95% done * still missing code snippets for the procedure call example 2017-09-22 21:00:34 +02:00			`% ISR-Stack-Frame needs to be updated on context-switch`
context/rnd: paging/stack/heap/virtualization 2017-09-21 21:53:48 +02:00
			`\section{Software Fault Isolation}`
			`% TODO: content from \cite{Balasubramanian2017}`

			`% TODO Which language items help with managing memory?`
			`% TODO How generic can the memory allocators be written?`

			`% TODO Guarantees to be statically checked:`
			`% TODO * Control access to duplicates in page tables`
			`% TODO * Tasks can't access unallocated (physical) memory`
			`% TODO * Tasks can't access other tasks memory`
context: os dev concepts 95% done * still missing code snippets for the procedure call example 2017-09-22 21:00:34 +02:00			`\subsection{Paging}`
			`Setting up and maintaining the paging-structure, as well as allocating physical memory for the virtual pages is a complex task in the \gls{os}.`
			`Developing this part of the \gls{os} is error-prone, and is not well-supported by mainstream \glspl{proglang}.`
thesis/context: work on introduction * Explain some of Memory-Management * Explain CWE with relevant examples * Add CWE-119 Statistics 2017-08-31 22:31:56 +02:00
			`\chapter{Porting \glsentrytext{C} Vulnerabilities}`
context: more on memory management and weaknesses 2017-09-11 22:54:22 +02:00			`\label{rnd::porting-c-vulns}`
context: os dev concepts 95% done * still missing code snippets for the procedure call example 2017-09-22 21:00:34 +02:00			`In this chapter, the weakness manifestations given in \cref{context::common-mem-safety-mistakes::manifestations} are rewritten in \gls{Rust} to examine if these are mitigated just by porting them.`
			`This is done incrementally by first porting the vulnerability to unsafe Rust, followed by a rewrite to drop all unsafe code but keeping the intended functionality.`

			`% TODO stack frame manipulation`
			`% TODO official CWE-119 examples`
thesis/context: work on introduction * Explain some of Memory-Management * Explain CWE with relevant examples * Add CWE-119 Statistics 2017-08-31 22:31:56 +02:00
			`\chapter{\glsentrytext{LX} Modules Written In \glsentrytext{Rust}}`
*: extend and refine structure 2017-08-10 19:09:58 +02:00
context/rnd: paging/stack/heap/virtualization 2017-09-21 21:53:48 +02:00			`\chapter{Existing \glsentrytext{os}-Development Projects Based On Rust}`
			`\label{rnd::existing-os-dev-with-rust}`
*: extend and refine structure 2017-08-10 19:09:58 +02:00
			`\section{Libraries}`

			`\subsection{Libfringe}`
thesis/context: work on introduction * Explain some of Memory-Management * Explain CWE with relevant examples * Add CWE-119 Statistics 2017-08-31 22:31:56 +02:00			`% TODO: https://github.com/edef1c/libfringe`
*: extend and refine structure 2017-08-10 19:09:58 +02:00
WIP: describe stack handling with pictures 2017-09-19 10:38:00 +02:00
*: extend and refine structure 2017-08-10 19:09:58 +02:00			`\section{Systems}`
			`\subsection{intermezzOS}`
			`\subsection{Blog OS}`
			`\subsection{Redox}`
			`\subsection{Tock}`
context/rnd: paging/stack/heap/virtualization 2017-09-21 21:53:48 +02:00			`%TODO: mention paper's by tockos team`
thesis/context: work on introduction * Explain some of Memory-Management * Explain CWE with relevant examples * Add CWE-119 Statistics 2017-08-31 22:31:56 +02:00
context/rnd: paging/stack/heap/virtualization 2017-09-21 21:53:48 +02:00			`\chapter{\glsentrytext{imezzos}: Adding Preemptive \glsentrytext{os}-Level Multitasking}`
WIP: describe stack handling with pictures 2017-09-19 10:38:00 +02:00			`\label{rnd::imezzos-preemptive-multitasking}`
R&D: outline stack protection 2017-08-22 10:55:48 +02:00
			`\section{Timed Interrupts For Scheduling and Dispatching}`
context: more on memory management and weaknesses 2017-09-11 22:54:22 +02:00
R&D: outline stack protection 2017-08-22 10:55:48 +02:00			`\section{Simple Stack Allocation Scheme}`

			`\section{Risk Of Stack-Overflow}`
thesis/context: work on introduction * Explain some of Memory-Management * Explain CWE with relevant examples * Add CWE-119 Statistics 2017-08-31 22:31:56 +02:00			`% TODO: The compiler doesn't check for stack overflows.`
			`% TODO: Describe possible implementation.`
			`% Parameters:`
			`% Stack limit for each function: user defined constant,`
			`% Stack size for each function: calculated,`
			`% Call-Tree: calculated,`
*: extend and refine structure 2017-08-10 19:09:58 +02:00