Merge branch 'define-scope' into 'static-code-analysis-kernel-task-memory-safety'
thesis: topic refinement See merge request !1
This commit is contained in:
commit
4770fc6bc7
5 changed files with 72 additions and 6 deletions
|
|
@ -130,6 +130,8 @@ in pkgs.stdenv.mkDerivation {
|
|||
endfunction
|
||||
let g:vimtex_view_zathura_hook_callback = 'ViewerCallback'
|
||||
" }}}
|
||||
|
||||
autocmd BufWritePost * execute ':silent ! cp /home/steveej/src/mendeley/Static-Code-Analysis-Kernel-Memory-Saftey.bib /home/steveej/src/steveej/msc-thesis/src/docs/thesis.bib >/dev/null 2>&1'
|
||||
'';
|
||||
|
||||
vam.knownPlugins = pkgs.vimPlugins;
|
||||
|
|
|
|||
|
|
@ -1,5 +1,26 @@
|
|||
% // vim: set ft=tex:
|
||||
|
||||
\newglossaryentry{rustlang}{
|
||||
name = Rust,
|
||||
description = {
|
||||
The Rust Programming Language.
|
||||
},
|
||||
}
|
||||
|
||||
\newglossaryentry{compiler}{
|
||||
name = compiler,
|
||||
description = {
|
||||
A program that can transform software source code to executable machine code.
|
||||
},
|
||||
}
|
||||
|
||||
\newglossaryentry{addrspace}{
|
||||
name = memory address space,
|
||||
description = {
|
||||
A logical entity that represents parts of the virtual memory, specified with a starting address and the length in a standardize unit
|
||||
},
|
||||
}
|
||||
|
||||
\newglossaryentry{API}{
|
||||
name = API,
|
||||
description = {
|
||||
|
|
|
|||
|
|
@ -1,15 +1,21 @@
|
|||
% // vim: set ft=tex:
|
||||
\chapter{Introduction}
|
||||
This thesis studies the feasibility of using static code analysis, as found in the \gls{rustlang} \gls{compiler}, to ensure memory safety within an \gls{OS} kernel.
|
||||
|
||||
\section{Purpose of the Study}
|
||||
% Purpose of the Study
|
||||
%The Purpose of the Study is a statement contained within one or two paragraphs that identifies the research design, such as qualitative, quantitative, mixed methods, ethnographic, or another design. The research variables, if a quantitative study, are identified, for instance, independent, dependent, comparisons, relationships, or other variables. The population that will be used is identified, whether it will be randomly or purposively chosen, and the location of the study is summarized. Most of these factors will be discussed in detail in Chapter 3.
|
||||
The purpose of this study is to evaluate Rust's feasibility to guarantee memory safety when it's used for \gls{OS} development.
|
||||
|
||||
% Scope
|
||||
In the general sense an \gls{OS} is a \gls{app} that runs within one \gls{addrspace} and is able to run on the hardware platform without any abstraction.
|
||||
This study could be applied to all \glspl{app}, but the focus is on the implementation of \glspl{OS}.
|
||||
The main reason for this is that the due to its nature, the \gls{OS} is the only \gls{app} that has unrestricted access to the system's hardware, which makes it the most important \gls{app} to maintain secure.
|
||||
|
||||
\section{Significance of the Study}
|
||||
% Significance of the Study
|
||||
% The significance is a statement of why it is important to determine the answer to the gap in the knowledge, and is related to improving the human condition. The contribution to the body of knowledge is described, and summarizes who will be able to use the knowledge to make better decisions, improve policy, advance science, or other uses of the new information. The “new” data is the information used to fill the gap in the knowledge.
|
||||
The current de-facto standard language for \gls{OS} development appears to be the C, a very popular \gls{OS} example is \gls{Linux}.
|
||||
Recent years have shown how prone it is to security vulnerabilities, which is covered by exemplary details within this study. (TODO reference)
|
||||
|
||||
\section{Primary Research Questions}
|
||||
% Primary Research Questions
|
||||
% The primary research question is the basis for data collection and arises from the Purpose of the Study. There may be one, or there may be several. When the research is finished, the contribution to the knowledge will be the answer to these questions. Do not confuse the primary research questions with interview questions in a qualitative study, or survey questions in a quantitative study. The research questions in a qualitative study are followed by both a null and an alternate hypothesis.
|
||||
|
||||
|
|
|
|||
|
|
@ -1 +0,0 @@
|
|||
/home/steveej/src/mendeley/Static-Code-Analysis-Kernel-Memory-Saftey.bib
|
||||
38
src/docs/thesis.bib
Normal file
38
src/docs/thesis.bib
Normal file
|
|
@ -0,0 +1,38 @@
|
|||
Automatically generated by Mendeley Desktop 1.17.8
|
||||
Any changes to this file will be lost if it is regenerated by Mendeley.
|
||||
|
||||
BibTeX export options can be customized via Options -> BibTeX in Mendeley Desktop
|
||||
|
||||
@misc{Endler,
|
||||
author = {Endler, Matthias},
|
||||
title = {{A curated list of static analysis tools, linters and code quality checkers for various programming languages}},
|
||||
url = {https://github.com/mre/awesome-static-analysis}
|
||||
}
|
||||
@article{Dhurjati2003,
|
||||
abstract = {Traditional approaches to enforcing memory safety of programs rely heavily on runtime checks of memory accesses and on garbage collection, both of which are unattractive for embedded applications. The long-term goal of our work is to enable 100{\%} static enforcement of memory safety for embedded programs through advanced compiler techniques and minimal semantic restrictions on programs. The key result of this paper is a compiler technique that ensures memory safety of dynamically allocated memory without programmer annotations, runtime checks, or garbage collection, and works for a large subclass of type-safe C programs. The technique is based on a fully automatic pool allocation (i.e., region-inference) algorithm for C programs we developed previously, and it ensures safety of dynamically allocated memory while retaining explicit deallocation of individual objects within regions (to avoid garbage collection). For a diverse set of embedded C programs (and using a previous technique to avoid null pointer checks), we show that we are able to statically ensure the safety of pointer and dynamic memory usage in all these programs. We also describe some improvements over our previous work in static checking of array accesses. Overall, we achieve 100{\%} static enforcement of memory safety without new language syntax for a significant subclass of embedded C programs, and the subclass is much broader if array bounds checks are ignored.},
|
||||
author = {Dhurjati, D and Kowshik, S and Adve, V and Lattner, C},
|
||||
doi = {10.1145/780742.780743},
|
||||
file = {:home/steveej/src/github/steveej/msc-thesis/docs/Memory Safety Without Runtime Checks or Garbage.pdf:pdf},
|
||||
isbn = {0362-1340},
|
||||
issn = {03621340},
|
||||
journal = {Acm Sigplan Notices},
|
||||
keywords = {automatic pool allocation,compilers,embedded systems,languages,programming languages,region management,security,static analysis},
|
||||
number = {7},
|
||||
pages = {69--80},
|
||||
title = {{Memory safety without runtime checks or garbage collection}},
|
||||
volume = {38},
|
||||
year = {2003}
|
||||
}
|
||||
@article{Levy2015a,
|
||||
abstract = {Rust, a new systems programming language, provides compile-time memory safety checks to help eliminate runtime bugs that manifest from improper memory management. This feature is advantageous for operating system development, and especially for embedded OS development, where recovery and debugging are particularly challenging. However, embedded platforms are highly event-based, and Rust's memory safety mechanisms largely presume threads. In our experience developing an operating system for embedded systems in Rust, we have found that Rust's ownership model prevents otherwise safe resource sharing common in the embedded domain, conflicts with the reality of hardware resources, and hinders using closures for programming asynchronously. We describe these experiences and how they relate to memory safety as well as illustrate our workarounds that preserve the safety guarantees to the largest extent possible. In addition, we draw from our experience to propose a new language extension to Rust that would enable it to provide better memory safety tools for event-driven platforms.},
|
||||
author = {Levy, Amit and Andersen, Michael P. and Campbell, Bradford and Culler, David and Dutta, Prabal and Ghena, Branden and Levis, Philip and Pannuto, Pat},
|
||||
doi = {10.1145/2818302.2818306},
|
||||
file = {:home/steveej/src/github/steveej/msc-thesis/docs/tock-plos2015.pdf:pdf},
|
||||
isbn = {9781450339421},
|
||||
journal = {PLOS: Workshop on Programming Languages and Operating Systems},
|
||||
keywords = {embedded operating systems,linear types,ownership,rust},
|
||||
pages = {21--26},
|
||||
title = {{Ownership is Theft: Experiences Building an Embedded OS in Rust}},
|
||||
url = {http://dl.acm.org/citation.cfm?id=2818302.2818306},
|
||||
year = {2015}
|
||||
}
|
||||
|
|
@ -12,7 +12,7 @@
|
|||
\usepackage{ctable,multirow}
|
||||
|
||||
\usepackage{cite}
|
||||
\bibliographystyle{plain}
|
||||
\bibliographystyle{ieeetr}
|
||||
|
||||
\usepackage[hyphens]{url}
|
||||
\Urlmuskip = 0mu plus 1mu
|
||||
|
|
@ -20,7 +20,7 @@
|
|||
\usepackage[numberedsection,toc,numberline,nopostdot]{glossaries}
|
||||
\makenoidxglossaries
|
||||
|
||||
\newcommand{\topic}{Leveraging Static Code Analysis To Improve The Memory Safety For Kernel Tasks}
|
||||
\newcommand{\topic}{Guaranteeing In-Kernel Memory-Safety Using Rust's Static Code Analysis}
|
||||
|
||||
\newcommand{\authorOne}{Stefan Junker}
|
||||
\newcommand{\authorOneInit}{SJ}
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue