joeyli

joeyli

Add MOKx for blacklisting any specific hash of kernel module (Hackweek 10 in Taipei)

a project by joeyli

Add MOKx for blacklisting any specific hash of kernel module. For kernel module sign function, similar to dbx in UEFI, we need a MOKx for blacklisting kernel module that can avoid direct revoke the modsign key in MOK or kernel.

Updated about 2 years ago. 1 hackers ♥️.

Hibernate signature verification - Symmetric key edition

a project by joeyli

In last hackweek, I implemented a RSA private key parser in kernel: https://github.com/SUSE/hackweek/wiki/RSA-private-key-parser-in-kernel

Updated about 2 years ago. 11 hacker ♥️.

Porting SHA1 codes to EFI stub environment

a project by joeyli

For Hibernate Signature Verification - HMAC version, I need a hash algorithm in EFI stub environment before ExitBootServices() to mix / mess random seed from different sources (rdtsc, rdrand...) for generating the HMAC key to sign the hibernate image in runtime environment. There have no any hash functions provides by EFI services, so need implement it in EFI stub. I choice SHA1 to be the target algorithm because currently I choice HMAC-SHA1 to be the algorithm to generate signature of hibernate image.

Updated about 2 years ago. 2 hacker ♥️.

Try acpiexec, and poke the ACPI TAD implementation in Windows 10 on Qemu

a project by joeyli

Try to use acpiexec to debug AML for writing ASL codes. On the other hand, install Windows 10 on Qemu to poke the ACPI TAD implementation in Windows 10.

Updated about 1 year ago. No love.

LUV on SUSE Studio

an idea by joeyli

I want try to build Linux* UEFI Validation on Studio. Maybe base on JeOS. Packaging LUV and efi-next kernel on OBS, then using SUSE Studio to build LUV.

Updated about 4 years ago. No love. Has no hacker: grab it!

Using BCC to snoop ACPI or PCI power

a project by joeyli

BPF Compiler Collection (BCC) https://github.com/iovisor/bcc

Updated about 2 years ago. 4 hacker ♥️.

kernel sensitive data protection

a project by joeyli

There have some kernel mechanisms that they keep symmetric key or password in memory. Those password or key may leak through /dev/mem, kdump, hibernation, bpf print to userland. I want to think a design to:

Updated about 4 years ago. No love.

Hibernate encryption and authentication adapt to user land util and keyring

a project by joeyli

Intel Chen Yu developed a user land utility: Introduce the in-kernel hibernation encryption

Updated about 2 years ago. 3 hacker ♥️. 1 follower.

Collectl turbostat module

a project by joeyli

Currently the CPU subsystem of Collectl can get the CPU loading but no CPU power state. My idea is that tracing turbostat then developing a collectl module to get the CPU power state. It can be used to monitor C-state or frequency. Reference: Collectl's HelloWorld module, turbostat

Updated almost 2 years ago. 1 hackers ♥️. 1 follower.

ACPICA profiling

an idea by joeyli

Tracing ACPICA code for profiling. I want to produce a conceptual model for ACPICA. If my time is enough, I will also poking the debugging tool for ACPICA.

Updated almost 2 years ago. No love. 1 follower. Has no hacker: grab it!

Separate kernel module signature to a independent file

an idea by joeyli

Project Description

Currently kernel module signature be attached in the end of kernel module (ko file).

Updated 23 days ago. 3 hacker ♥️. 1 follower. Has no hacker: grab it!
11
8
17
32

Looking for projects around:

Nothing at the moment

Activity

  • 30 days ago: joeyli added keyword "kernel" to Separate kernel module signature to a independent file
  • 30 days ago: joeyli originated Separate kernel module signature to a independent file
  • almost 2 years ago: joeyli liked X86_64 platform system program
  • almost 2 years ago: joeyli originated ACPICA profiling
  • almost 2 years ago: joeyli started Collectl turbostat module
  • almost 2 years ago: joeyli originated Collectl turbostat module
  • almost 3 years ago: joeyli started Hibernate encryption and authentication adapt to user land util and keyring
  • almost 3 years ago: joeyli originated Hibernate encryption and authentication adapt to user land util and keyring
  • about 4 years ago: joeyli started kernel sensitive data protection
  • about 4 years ago: joeyli originated kernel sensitive data protection
  • All Activity