Merve GÜLMEZ

Merve GÜLMEZ

Researcher

CHERI

less than 1 minute read

Published:

Adversarial Examples: A great starting point! These exercises will introduce you to the concept of capabilities and how they can be used to protect against various security threats.

Troubleshooting

1) Mounting a Folder to QEMU: It is needed when you do cross-compiling! You can check this commit

Simply run in qemu:

mount_smbfs -I 10.0.2.4 -N //10.0.2.4/source_root /mnt

2) If running ~/cheri/cheribuild/cheribuild.py run-riscv64-purecap -d results in an error indicating that the -lsbuf library cannot be found, unset your SYSROOT.

You can use this script https://ctsrd-cheri.github.io/cheri-exercises/introduction/ccc.html. This script simplifies the compilation process for CHERI. You don’t need to set SYSROOT, or the others.

ccc riscv64-purecap print-pointer.c -o printpointer`

3) How to connect to running qemu? You can connect running qemu via ssh, find its IP address and port.

ssh root@127.0.0.1 -p portnumber

Learning how to CHERI compartmentalization work

Very well-done examples is here https://github.com/capablevms/cheri-examples/

Learning how CHERI capability works in the assembly level

GoBolt for CHERI https://cheri-compiler-explorer.cl.cam.ac.uk/

ARM morello specifications.. https://www.google.com/url?sa=t&source=web&rct=j&opi=89978449&url=https://documentation-service.arm.com/static/61e577e1b691546d37bd38a0%3Ftoken%3D&ved=2ahUKEwjzo8zMho-FAxWQGRAIHXT6C3sQFnoECBkQAQ&usg=AOvVaw1zlS2wusJLyYE6bP0ALowC

You May Also Enjoy

security

less than 1 minute read

Published:

At the beginning of my PhD I at first became interested in the broader area of cybersecurity, but my current line of research really got me into the area of systems security. In particular improving the cyber-resilience and availability low-level systems software against memory corruption attacks. This has required me to develop skills, such as in-depth knowledge of the C and Rust runtimes, as well as assembly programming.

crowdstrike

1 minute read

Published:

The CrowdStrike outage shows that improving software resilience and availability is as important as detecting and mitigating memory-safety vulnerabilities.

LLVM

1 minute read

Published:

I have been learning LLVM for a while; I added a function and variable attribute, new compiler options, wrote a hacky LLVM transformation pass, and deleted my hacky stuff in the backend! I kind of enjoyed it, kind of annoyed; in the end, I think it was good to learn!

Bluspec

less than 1 minute read

Published:

To install the BSC compiler, follow these steps (example for Ubuntu):

Example for Ubuntu

wget https://github.com/B-Lang-org/bsc/releases/download/2023.07/bsc-2023.07-ubuntu-22.04.tar.gz 
cd ~/cheri/bsc-2023.07-debian-12.1 
export PATH="$PATH:/home/cheri/bsc-2023.07-ubuntu-22.04/bin/

It’s likely that you will also need the Bluespec library. It took me a long time to understand what was missing. You need to install this library from the following repository:

https://github.com/B-Lang-org/bsc-contrib/tree/main