Author Archives: daveti

About daveti

Interested in kernel hacking, compilers, machine learning and guitars.

Setting up Nvidia Jetson TX1

Posted on September 23, 2018 by daveti

Starting from this post, I will share my learning and hacking experience on Nvidia Jetson TX1 dev board. This post discusses the installation issue of JetPack [4] and post-installation configurations for TX1. We assume users follow the JetPack 3.3 installation … Continue reading →

Posted in Embedded System, gpu | Tagged cuda, dhcp, gpu, jetson, nmcli, nvcc, nvidia, tx1 | Leave a comment

Hacking Valgrind

Posted on July 7, 2018 by daveti

This post talks about 3 commits I have recently added into my own valgrind tree [1], including the support for fsgsbase instructions, rdrand/rdseed instructions, and adding a new trapdoor (client request) to support gdb-like add-symbol-file command. Note that all these … Continue reading →

Posted in Dave's Tools, Programming | Tagged add-symbol-file, cpuid, fortanix, fsgsbase, gdb, rdrand, rdseed, trapdoor, valgrind, x86_64 | Leave a comment

Valgrind trapdoor and fun

Posted on July 7, 2018 by daveti

Valgrind has a client request mechanism, which allows a client to pass some information back to valgrind. This includes asks valgrind to do a logging in its own environment, tells valgrind a range of VA being used as a new … Continue reading →

Posted in Programming, Security | Tagged trapdoor, valgrind, VEX, x86_64 | Leave a comment

Some notes on SGX OwnerEpoch and Sealing

Posted on June 24, 2018 by daveti

Intel SGX has been there in the market for while. Yet there are still a lot of misundrestandings and mysteries about this technology. This post provides an introduction to Intel SGX OwnerEpoch and Sealing, discusses their security impacts, and speculates … Continue reading →

Posted in Security | Tagged egetkey, OwnerEpoch, Sealing, sgx, SGXv2, soe | Leave a comment

Kernel Code Execution Time Measurement (kcetm)

Posted on May 20, 2018 by daveti

This post mainly talks about the correct usage of tsc counters provided by Intel x86/x86-64 architectures to measure the Linux kernel code execution time. Most of the content here is borrowed/inspired from [1]. Note that this is NOT a post … Continue reading →

Posted in Dave's Tools, OS, Programming | Tagged cpuid, intel, kcetm, kernel, lfense, Linux, rdtsc, rdtscp, tsc | 1 Comment

Rowhammer Pine64

Posted on April 29, 2018 by daveti

Rowhammer attacks have been well known, and gotten a lot of publications already. However, we notice that most rowhammers happened on x86 architecture due to the easy access to clflush from the user space. ARM architecture (both ARMv7 and ARMv8) … Continue reading →

Posted in Linux Distro, OS, Security | Tagged ARMv8, cache, clflush, fedora, pine64, rowhammer | Leave a comment

“make deb-pkg” broken

Posted on March 15, 2018 by daveti

Last time when I hacked the Linux kernel on Ubuntu, it was 4.4 on LTS 14.04. Time flies. Now I need to hack the kernel 4.13 again on LTS 16.04, and find the kernel build broken. It is fine that … Continue reading →

Posted in Linux Distro | Tagged kernel, Linux, Ubuntu | 1 Comment

Running Multics on Linux (Fedora 27)

Posted on January 17, 2018 by daveti

This post follows the “Multics Simulator Instructions”[1] (with some tweaks) to setup Multics simulator dps8m and run Multics on my Fedora 27. Other Linux distro (Ubuntu/Debian/Raspbian) may need some changes but basically work the same way. Experience the cutting-edge secure … Continue reading →

Posted in OS, Security | Tagged dps8, fedora, Linux, Multics | 1 Comment

Some notes on the Monotonic Counter in Intel SGX and ME

Posted on November 10, 2017 by daveti

SGX sealing is vulnerable to rollback attacks as the enclave is not able to tell if the sealed data is the latest or a old copy. To mitigate this attack, monotonic counter (MC) has been introduced in Intel SGX SDK … Continue reading →

Posted in Security | Tagged DAL, intel, ME, sgx | 12 Comments