-
Notifications
You must be signed in to change notification settings - Fork 5
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Add the things needed for the host to the demo.
- Loading branch information
1 parent
741bc58
commit aa5d4b7
Showing
16 changed files
with
1,655 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,50 @@ | ||
Morello machine setup | ||
===================== | ||
|
||
This directory contains the files that are necessary to set up the Morello machine to act as the server in this demo. | ||
|
||
Note: This contains the *private* key used on the server for the demo. | ||
This would allow anyone to impersonate the server. | ||
This does not matter because it is used *only* for the demo, never use this key for anything important! | ||
Including the key here remove the need to generate a new header file for the client portion of the demo. | ||
|
||
Pure-capability packages: | ||
|
||
minicom | ||
openntpd | ||
|
||
Hybrid packages: | ||
|
||
bind918 | ||
isc-dhcp44-server | ||
jq | ||
npm | ||
wireshark | ||
|
||
Built from source: | ||
|
||
cheriot-audit (no port yet) | ||
mosquitto (xsltproc is broken and the port's no-docs mode doesn't work). | ||
|
||
Make sure to build Release builds (-O0 is *really* slow on Morello, with -O0 Mosquitto can't keep up with two clients on FPGA!). | ||
Install in /opt. | ||
|
||
The following lines need to be added to /etc/rc.conf: | ||
|
||
# Network interface for the demo | ||
ifconfig_ue0="inet 10.0.0.10 netmask 255.0.0.0" | ||
|
||
# DHCP server | ||
dhcpd_enable="YES">->--->--->---# dhcpd enabled? | ||
dhcpd_ifaces="ue0">->--->--->---# ethernet interface(s) | ||
dhcpd_withumask="022">-->--->---# file creation mask | ||
|
||
# bind | ||
named_enable="YES" | ||
openntpd_enable="YES" | ||
|
||
# Mosquitto | ||
mosquitto_enable="YES" | ||
|
||
devfs_enable="YES" | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,9 @@ | ||
# Machine-generated file - use setup menu in minicom to change parameters. | ||
pu baudrate 115200 | ||
pu bits 8 | ||
pu parity N | ||
pu stopbits 1 | ||
pu rtscts No | ||
pu addlinefeed No | ||
pu linewrap Yes | ||
pu addcarreturn Yes |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,21 @@ | ||
#!/bin/sh | ||
|
||
if [ $# -eq 0 ] ; then | ||
echo Query required. Try one of the following: | ||
echo Print all connection capabilities: | ||
echo -e \\tdata.network_stack.all_connection_capabilities | ||
echo Is the network stack configuration valid? | ||
echo -e "\\t'data.network_stack.valid(kunyan_ethernet)'" | ||
echo Print all allocator capabilities and their owners: | ||
echo -e "\\t'[ { \"owner\": owner, \"capability\": data.rtos.decode_allocator_capability(c) } | c = input.compartments[owner].imports[_] ; data.rtos.is_allocator_capability(c) ]'" | ||
echo Print all compartments that invoke functions in the JavaScript compartment: | ||
echo -e "\\t'data.compartment.compartments_calling(\"javascript\")'" | ||
echo Print all compartments that invoke functions in the allocator: | ||
echo -e "\\t'data.compartment.compartments_calling(\"allocator\")'" | ||
echo Print all compartments that have direct access to the LEDs / switches: | ||
echo -e "\\t'data.compartment.compartments_with_mmio_import(data.board.devices.gpio_led0)'" | ||
else | ||
echo "cheriot-audit --board ibex-arty-a7-100.json --firmware-report cheritech-demo.json --module network_stack.rego --query \"$1\"" | ||
cheriot-audit --board ibex-arty-a7-100.json --firmware-report cheritech-demo.json --module network_stack.rego --query "$1" | jq | ||
fi | ||
|
Binary file not shown.
87 changes: 87 additions & 0 deletions
87
demos/2024-04-23-cheritech/morello/home/demo/script/cheri.js
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,87 @@ | ||
// FFI Imports | ||
// Each function imported from the host environment needs to be assigned to a | ||
// global like this and identified by a constant that the resolver in the C/C++ | ||
// code will understand. | ||
// These constants are defined in the `Exports` enumeration. | ||
|
||
|
||
var FFINumber = 1; | ||
|
||
/** | ||
* Log function, writes all arguments to the UART. | ||
*/ | ||
export const print = vmImport(FFINumber++); | ||
|
||
/** | ||
* led_on(index). | ||
* | ||
* Turns on the LED at the specified index. | ||
*/ | ||
export const led_on = vmImport(FFINumber++); | ||
|
||
/** | ||
* led_off(index). | ||
* | ||
* Turns off the LED at the specified index. | ||
*/ | ||
export const led_off = vmImport(FFINumber++); | ||
|
||
/** | ||
* buttons_read(). | ||
* | ||
* Reads the value of all of the buttons, returning a 4-bit value indicating | ||
* the states of all of them. | ||
*/ | ||
export const buttons_read = vmImport(FFINumber++); | ||
|
||
/** | ||
* switches_read(). | ||
* | ||
* Reads the value of all of the switches, returning a 4-bit value indicating | ||
* the states of all of them. | ||
*/ | ||
export const switches_read = vmImport(FFINumber++); | ||
|
||
|
||
export const mqtt_publish = vmImport(FFINumber++); | ||
export const mqtt_subscribe = vmImport(FFINumber++); | ||
|
||
/** | ||
* led_set(index, state). | ||
* | ||
* Turns the LED at the specified index on or off depending on whether state is | ||
* true or false. | ||
*/ | ||
export function led_set(index, state) | ||
{ | ||
if (state) | ||
{ | ||
led_on(index); | ||
} | ||
else | ||
{ | ||
led_off(index); | ||
} | ||
} | ||
|
||
/** | ||
* button_read(index). | ||
* | ||
* Reads the value of the button at the specified index. | ||
*/ | ||
export function button_read(index) | ||
{ | ||
return (buttons_read() & (1 << index)) !== 0; | ||
} | ||
|
||
|
||
/** | ||
* switch_read(index). | ||
* | ||
* Reads the value of the switch at the specified index. | ||
*/ | ||
export function switch_read(index) | ||
{ | ||
return (switches_read() & (1 << index)) !== 0; | ||
} | ||
|
5 changes: 5 additions & 0 deletions
5
demos/2024-04-23-cheritech/morello/home/demo/script/compile.sh
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,5 @@ | ||
#!/bin/sh | ||
set -e | ||
microvium demo.js | ||
echo Publishing code to MQTT broker | ||
mosquitto_pub -h cheriot.demo -p 8883 --cafile /opt/etc/mosquitto/certs/cert.pem -t cheri-code -f demo.mvm-bc |
109 changes: 109 additions & 0 deletions
109
demos/2024-04-23-cheritech/morello/home/demo/script/demo.js
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,109 @@ | ||
import * as host from "./cheri.js" | ||
|
||
var ticks = 0 | ||
var switches = 0 | ||
|
||
/** | ||
* Subscribe to a topic, print to the UART whether the subscription was | ||
* successful. | ||
*/ | ||
function subscribe(topic) | ||
{ | ||
var ret = host.mqtt_subscribe(topic) | ||
host.print("Subscribe ", topic, " returned: ", ret) | ||
if (ret) | ||
{ | ||
host.print("Subscribed to", topic) | ||
} | ||
else | ||
{ | ||
host.print("Failed to subscribe to ", topic) | ||
} | ||
} | ||
|
||
/** | ||
* On first run, subscribe to the switch topics. | ||
*/ | ||
function first_run() | ||
{ | ||
subscribe("cheri-switch-0") | ||
subscribe("cheri-switch-1") | ||
} | ||
|
||
/** | ||
* Tick function, called every 100ms (roughly). | ||
*/ | ||
function tick() | ||
{ | ||
if (ticks === 0) | ||
{ | ||
first_run(); | ||
} | ||
ticks++ | ||
// If we're not a lightswitch, don't do anything else. | ||
if (host.switch_read(3)) | ||
{ | ||
return; | ||
} | ||
// If we're not a lightbulb, make sure the lights are out | ||
host.led_off(0) | ||
host.led_off(1) | ||
// Uncomment the next block to validate that the tick callback is being called. | ||
/* | ||
if (ticks % 5 === 0) | ||
{ | ||
host.print("tick: ", ticks) | ||
} | ||
*/ | ||
var new_switches = host.switches_read() | ||
if (new_switches !== switches) | ||
{ | ||
for (var i = 0 ; i < 2 ; i++) | ||
{ | ||
if ((new_switches & (1 << i)) !== (switches & (1 << i))) | ||
{ | ||
host.print("Switch ", i, " changed to ", (new_switches & (1 << i)) ? "on" : "off") | ||
host.mqtt_publish("cheri-switch-" + i, (new_switches & (1 << i)) ? "on" : "off") | ||
} | ||
} | ||
switches = new_switches | ||
} | ||
} | ||
|
||
/** | ||
* Publish notification callback, called whenever a new publish message is | ||
* received from the MQTT broker. | ||
*/ | ||
function message(topic, message) | ||
{ | ||
host.print("Received message on topic: ", topic, " message: ", message) | ||
var switchNumber = -1 | ||
// If we're not a lightbulb, don't do anything else. | ||
if (!host.switch_read(3)) | ||
{ | ||
return; | ||
} | ||
if (topic === "cheri-switch-0") | ||
{ | ||
switchNumber = 0 | ||
} | ||
else if (topic === "cheri-switch-1") | ||
{ | ||
switchNumber = 1 | ||
} | ||
else | ||
{ | ||
return | ||
} | ||
if (message === "on") | ||
{ | ||
host.led_on(switchNumber) | ||
} | ||
else | ||
{ | ||
host.led_off(switchNumber) | ||
} | ||
} | ||
|
||
vmExport(1234, tick); | ||
vmExport(1235, message); |
Binary file not shown.
11 changes: 11 additions & 0 deletions
11
demos/2024-04-23-cheritech/morello/opt/etc/mosquitto/certs/cert.pem
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,11 @@ | ||
-----BEGIN CERTIFICATE----- | ||
MIIBgzCCASmgAwIBAgIUeyRaxt/cqeeZ1JByg4V4shx4lhowCgYIKoZIzj0EAwIw | ||
FzEVMBMGA1UEAwwMY2hlcmlvdC5kZW1vMB4XDTI0MDQwODE0NTcwMVoXDTI1MDQw | ||
ODE0NTcwMVowFzEVMBMGA1UEAwwMY2hlcmlvdC5kZW1vMFkwEwYHKoZIzj0CAQYI | ||
KoZIzj0DAQcDQgAE2zq+r59p+QKkoKdBguXxBl4KoX5DYb6gHyI9Wrn7o4bz8rNZ | ||
4JPG4J+mIlEQKv9eIJYn1owIWQ5YbKaHpZqWAqNTMFEwHQYDVR0OBBYEFBdDvYEz | ||
T9pLdHbNwBVFT9wwQGVdMB8GA1UdIwQYMBaAFBdDvYEzT9pLdHbNwBVFT9wwQGVd | ||
MA8GA1UdEwEB/wQFMAMBAf8wCgYIKoZIzj0EAwIDSAAwRQIgb2epifZyBtLofZsk | ||
gs5HqfpKuiMijfe3Q+H7ETP3aIwCIQDYBIR7uQ4s24mK3dcj+u5Qc6gSr/WuBZGO | ||
xzxrtzDGTw== | ||
-----END CERTIFICATE----- |
5 changes: 5 additions & 0 deletions
5
demos/2024-04-23-cheritech/morello/opt/etc/mosquitto/certs/key.pem
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,5 @@ | ||
-----BEGIN PRIVATE KEY----- | ||
MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgFF2t/aeGHzLHsP4k | ||
63Q9yIFLeU8+mtOylWjhfwwQbNihRANCAATbOr6vn2n5AqSgp0GC5fEGXgqhfkNh | ||
vqAfIj1aufujhvPys1ngk8bgn6YiURAq/14glifWjAhZDlhspoelmpYC | ||
-----END PRIVATE KEY----- |
Oops, something went wrong.