Dear Norman and fellow Genodians,
After posting my personal goals for 2025, here is the response from Gapfruit's perspective.
2024 has been an exciting year for Gapfruit.
In 2024, we collaborated with Genode Labs to enable the BSP for the powerful i.MX8MP SoC from NXP. We continued our work on the TPM stack by designing different Genode components that act as pluggable building blocks to improve the guarantees of trustworthiness even when considering physical attacks. One aspect of this work was to enable the TPM2-TSS stack, which depends on OpenSSL > 3.0. Therefore, we contributed OpenSSL 3 to Genodelabs (PR pending). We further improved our test infrastructure [1].
As with every year, we at Gapfruit eagerly follow the sharing of ambitions and goals of other Genode enthusiasts. This year is no different. What sparked our interest was the discussion Norman started regarding offloading apps out of VMs to pure Genode components. When we discuss potential migration paths with our customers from legacy systems to a more resilient and trustworthy future, we strive to find solutions that don't require VMs. We are willing to collaborate towards any efforts that streamline the building and running of existing code bases on top of Genode systems - namely improving Goa, libc, and vfs. Speaking of Goa, the work of Johannes regarding remote debugging via the Goa testbed is exceptionally cool, and we are very interested in helping get Rust async support mentioned by Benjamin. Also, the topic of IDE integration that John mentioned sparked our interest.
Our challenges in 2025 will be to support more hardware from different hardware vendors and work with various external customers and partners that build on our product.
We see a rising need to deal with different API and ABI versions for the latter challenge, especially when our partners write and deploy their applications and subsystems.
Our plans for 2025 can be summarized as follows:
- We plan to create a Gapfruit Community Git repository containing various components, starting with the TPM stack. - We plan to make our measured boot and trusted boot implementation available through the Gapfruit Community repos or by contribution once they have reached maturity. - We accompany a master's thesis at ETH Zurich that aims to introduce fuzzy testing on the session level to Genode.
Cheers, The Gapfurit Team
[1] http://genodians.org/trimpim/2024-09-25-testing-device_control