#include <stdio.h>
#include <stdlib.h>
 
int main(int argc, const char *argv[])
 
{
 
    fprintf(stderr,"Hello world!\n");
 
    return EXIT_SUCCESS;
 
}

Compile this code using aarch64-kos-gcc, which is included in the development tools of KasperskyOS Community Edition:

aarch64-kos-gcc -o hello hello.c

The program name (and, consequently, the name of the executable file) must begin with an uppercase letter.

EDL description of the Hello process class

A static description of the Hello program consists of a single file named Hello.edl that must indicate the name of the process class:

Hello.edl

/* The process class name follows the reserved word "entity". */
entity Hello

The process class name must begin with an uppercase letter. The name of an EDL file must match the name of the class that it describes.

Creating the Einit initializing program

When KasperskyOS is loaded, the kernel starts a program named Einit. The Einit program starts all other programs included in the solution, which means that it serves as the initializing program.

The KasperskyOS Community Edition toolkit includes the einit tool, which generates the code of the initializing program (einit.c) based on the init description. In the example provided below, the file containing the init description is named init.yaml, but it can have any name.

For more details, refer to "Starting processes".

If you want the Hello program to start after the operating system is loaded, all you need to do is specify its name in the init.yaml file and build an Einit program based on it.

init.yaml

entities:
# Start the "Hello" application.
- name: Hello

Building the security module

The hello example contains a basic solution security policy (security.psl) that allows all interactions.

The security module (ksm.module) is built based on security.psl.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/hello

Building and running example

See Building and running examples section.

The general build scheme for the hello example looks as follows:

Page top

echo example

The echo example demonstrates the use of IPC transport.

It shows how to use the main tools that let you implement interaction between programs.

The echo example describes a basic case of interaction between two programs:

The Client program sends a number (value) to the Server program.
The Server program modifies this number and sends the new number (result) to the Client program.
The Client program prints the result number to the screen.

To set up this interaction between programs:

Connect the Client and Server programs by using the init description.
On the server, implement an interface with a single Ping method that has one input argument (the original number (value)) and one output argument (the modified number (result)).
Description of the Ping method in the IDL language:

Ping(in UInt32 value, out UInt32 result);
Create static description files in the EDL, CDL and IDL languages. Use the NK compiler to generate files containing transport methods and types (proxy object, dispatchers, etc.).
In the code of the Client program, initialize all required objects (transport, proxy object, request structure, etc.) and call the interface method.
In the code of the Server program, prepare all the required objects (transport, component dispatcher and program dispatcher, etc.), accept the request from the client, process it and send a response.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/echo

The echo example consists of the following source files:

client/src/client.c contains implementation of the Client program.
server/src/server.c contains implementation of the Server program.
resources/Server.edl, resources/Client.edl, resources/Responder.cdl, resources/Pingable.idl are static descriptions.
init.yaml contains the init description.

Building and running example

See Building and running examples section.

The build scheme for the echo example looks as follows:

Page top

ping example

The ping example demonstrates the use of a solution security policy to control interactions between programs.

The ping example includes four programs: Client, Server, KlogEntity and KlogStorageEntity.

The Server program provides two identical Ping and Pong methods that receive a number and return a modified number:

Ping(in UInt32 value, out UInt32 result);
Pong(in UInt32 value, out UInt32 result);

The Client program calls both of these methods in a different sequence. If the method call is denied by the solution security policy, a message regarding the failed call attempt is displayed.

The system programs KlogEntity and KlogStorageEntity perform a security audit.

The transport part of the ping example is virtually identical to its counterpart in the echo example. The only difference is that the ping example uses two methods (Ping and Pong) instead of just one.

Solution security policy in the ping example

The solution security policy in this example allows startup of the KasperskyOS kernel and the Einit program, which is allowed to start all programs in the solution. Queries to the Server program are managed by methods of the Flow security model.

The finite-state machine described in the configuration of the request_state Flow security model object has two states: not_sent and sent. The initial state is not_sent. Only transitions from not_sent to sent and vice versa are allowed.

When the Ping and Pong methods are called, the current state of the request_state object is checked. In the not_sent state, only a Ping call is allowed, in which case the state changes to sent. Likewise, in the sent state, only a Pong call is allowed, in which case the state changes to not_sent.

Therefore, the Ping and Pong methods can be called only in succession.

Fragment of the security.psl file

/* Solution security policy for demonstrating use of the 
 * Flow security model in the ping example */
 
/* Include PSL files containing formal representations of
 * Base and Flow security models */
use nk.base._
use nk.flow._
 
/* Including EDL files */
use EDL Einit
use EDL ping.Client
use EDL ping.Server
 
/* Create Flow security model object */
policy object request_state : Flow {
    type States = "not_sent" | "sent"
    config = {
        states      : [ "not_sent", "sent" ],
        initial     : "not_sent",
        transitions : {
            "not_sent" : [ "sent" ],
            "sent"     : [ "not_sent" ]
        }
    }
}
 
/* When the Einit program starts the Server program,
 * the initial state is set for the finite-state machine */
execute src=Einit dst=ping.Server method=main {
    request_state.init { sid: dst_sid }
}
 
/* When a client of the ping.Client class calls the Ping method of the controlimpl.connectionimpl endpoint
 * of a server of the ping.Server class, the system checks whether the request_state object is
 * in the "not_sent" state. If it is, receipt of the request is allowed and
 * the request_state object is set to the "sent" state. */
request src=ping.Client dst=ping.Server endpoint=controlimpl.connectionimpl method=Ping {
    request_state.allow { sid: dst_sid, states: [ "not_sent" ] }
    request_state.enter { sid: dst_sid, state: "sent" }
}
 
/* When a client of the ping.Client class calls the Pong method of the controlimpl.connectionimpl endpoint
 * of a server of the ping.Server class, the system checks whether the request_state object is
 * in the "sent" state. If it is, receipt of the request is allowed and
 * the request_state object is set to the "not_sent" state. */
request src=ping.Client dst=ping.Server endpoint=controlimpl.connectionimpl method=Pong {
    request_state.allow { sid: dst_sid, states: [ "sent" ] }
    request_state.enter { sid: dst_sid, state: "not_sent" }
}
/* A server of the ping.Server class is allowed to respond to queries from a client of the ping.Client class
 * that calls the Ping and Pong methods of the controlimpl.connectionimpl endpoint. */
response src=ping.Server dst=ping.Client endpoint=controlimpl.connectionimpl {
    match method=Ping { grant () }
    match method=Pong { grant () }
}
 

The security policy description in the ping example also contains a section for solution security policy tests.

For an example of such a policy, see the "Example 2" section in "Examples of tests for KasperskyOS-based solution security policies".

The full security policy description for the ping example is located in the security.psl.in and core.psl files at the following path: /opt/KasperskyOS-Community-Edition-<version>/examples/ping/einit/src.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/ping

Building and running example

See Building and running examples section.

Page top

net_with_separate_vfs example

This example presents a basic case of network interaction using Berkeley sockets.

The example consists of Client and Server programs linked by a TCP socket using a loopback interface. Standard POSIX functions are used in the code of the programs.

To connect programs using a socket through a loopback, they must use the same network stack instance. This means that they must interact with a "shared" VFS program (in this example, this program is called NetVfs).

The CMake system, which is included with KasperskyOS Community Edition, is used to build and run the example.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/net_with_separate_vfs

Building and running example

See Building and running examples section.

Page top

net2_with_separate_vfs example

This example demonstrates the special features of a solution in which a program uses standard POSIX functions to interact with an external server.

The net2_with_separate_vfs example is a modified net_with_separate_vfs example. In contrast to the net_with_separate_vfs example, in this example a program interacts over the network with an external server rather than another program running in KasperskyOS.

This example consists of the Client program running in KasperskyOS on QEMU or Raspberry Pi and the Server program running in a Linux host operating system. The Client program and Server program are bound by a TCP socket. Standard POSIX functions are used in the code of the Client program.

To connect the Client program and the Server program using a socket, the Client program must interact with the NetVfs program. During the build, the NetVfs program is linked to a network driver that supports interaction with the Server program running in Linux.

The CMake system, which is included with KasperskyOS Community Edition, is used to build and run the example.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/net2_with_separate_vfs

Building and running example

See Building and running examples section.

To ensure that an example runs correctly, you must run the Server program in a Linux host operating system or on a computer connected to Raspberry Pi.

After performing the build, the server executable file of the Server program is located in the following directory:

/opt/KasperskyOS-Community-Edition-<version>/examples/net2_with_separate_vfs/build/host/server/

To independently build the executable file of the Server program, you need to run the following commands:

$ cd net2_with_separate_vfs/server/src/ 
$ gcc -o server server.c

Page top

embedded_vfs example

This example demonstrates how to embed the virtual file system (VFS) provided in KasperskyOS Community Edition into a program being developed.

In this example, the Client program fully encapsulates the VFS implementation from KasperskyOS Community Edition. This lets you eliminate the use of IPC for all the standard I/O functions (stdio.h, socket.h, etc.) for debugging or performance improvement purposes, for example.

The Client program tests the following operations:

Create a folder.
Create and delete a file.
Read from a file and write to a file.

Supplied resources

The example includes the hdd.img image of a hard drive with the FAT32 file system.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/embedded_vfs

Building and running example

See Building and running examples section.

Page top

vfs_extfs example

This example shows how to embed a new file system into the virtual file system (VFS) that is provided in KasperskyOS Community Edition.

In this example, the Client program tests the operation of file systems (ext2, ext3, ext4) on block devices. To do so, the Client queries the virtual file system (the FileVfs program) via IPC, and FileVfs in turn queries the block device via IPC.

The ext2 and ext3 file systems work with the default settings. The ext4 file system works if you disable extent (mkfs.ext4 -O ^64bit,^extent /dev/foo).

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/vfs_extfs

Building and running example

See Building and running examples section.

Preparing an SD card to run on Raspberry Pi 4 B

To run the vfs_extfs example on Raspberry Pi 4 B, the SD card must have a bootable partition with the solution image as well as 3 additional partitions with the ext2, ext3 and ext4 file systems, respectively.

Page top

multi_vfs_ntpd example

This example shows how to use an external NTP server in KasperskyOS. The Ntpd program is included in KasperskyOS Community Edition and is an implementation of an NTP client, which gets time parameters from external NTP servers in the background and passes them to the KasperskyOS kernel.

The example also demonstrates the use of various virtual file systems (VFS) in a single solution:

The VfsNet program is used for working with the network.
The VfsSdCardFs program is used to work with the file system.

The Client program uses standard libc library functions for getting time data. These functions are converted into queries to the VFS program via IPC.

The CMake system, which is included with KasperskyOS Community Edition, is used to build and run the example.

Supplied resources

The directory ./resources/edl contains the Client.edl file, which contains a static description of the Client program.
The directory ./resources/hdd/etc contains the configuration files for the VfsNet, Dhcpcd and Ntpd programs: hosts, dhcpcd.conf and ntp.conf, respectively.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/multi_vfs_ntpd

Building and running example

See Building and running examples section.

Page top

multi_vfs_dns_client example

This example shows how to use an external DNS server in KasperskyOS.

The example also demonstrates the use of various virtual file systems (VFS) in a single solution:

The VfsNet program is used for working with the network.
The VfsSdCardFs program is used to work with the file system.

The Client program uses standard libc library functions for contacting an external DNS service. These functions are converted into queries to the VfsNet program via IPC.

The CMake system, which is included with KasperskyOS Community Edition, is used to build and run the example.

Supplied resources

The directory ./resources/edl contains the Client.edl file, which contains a static description of the Client program.
The directory ./resources/hdd/etc contains the configuration files for the VfsNet and Dhcpcd programs: hosts and dhcpcd.conf, respectively.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/multi_vfs_dns_client

Building and running example

See Building and running examples section.

Page top

multi_vfs_dhcpcd example

Example use of the kl.rump.Dhcpcd program.

The Dhcpcd program is an implementation of a DHCP client, which gets network interface parameters from an external DHCP server in the background and passes them to a virtual file system (hereinafter referred to as a VFS).

The example also demonstrates the use of different VFSes in a single solution. The example uses different VFS to access the functions for working with the file system and functions for working with the network:

The VfsNet program is used for working with the network.
The VfsSdCardFs program is used to work with the file system.

The Client program uses standard libc library functions for getting information on network interfaces (ioctl). These functions are converted into queries to the VFS program via IPC.

The CMake system, which is included with KasperskyOS Community Edition, is used to build and run the example.

Supplied resources

The ./resources/hdd/etc directory contains configuration files for the VFS and Dhcpcd programs. The standard syntax of dhcpcd.conf is used for the Dhcpcd program configuration.

The CMakeLists.txt root file defines the values of variables that determine the selected configuration file:

DHCPCD_FALLBACK
Dynamically receive the parameters of network interfaces from an external DHCP server but statically define the parameters if the DHCP server is not available. This value is used by default.
DHCPCD_DYNAMIC
Dynamically receive the parameters of network interfaces from an external DHCP server.
DHCPCD_STATIC
Statically define the parameters of network interfaces.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/multi_vfs_dhcpcd

Building and running example

See Building and running examples section.

Page top

mqtt_publisher (Mosquitto) example

Example use of the MQTT protocol in KasperskyOS.

In this example, an MQTT subscriber must be started on the host operating system, and an MQTT publisher must be started on KasperskyOS. The Publisher program is an implementation of an MQTT publisher that publishes the current time with a 5-second interval.

When the example starts and runs successfully, an MQTT subscriber started on the host operating system prints a "received PUBLISH" message with a "datetime" topic.

The example also demonstrates the use of various virtual file systems (VFS) in a single solution:

The VfsNet program is used for working with the network.
The VfsSdCardFs program is used to work with the file system.

The CMake system, which is included with KasperskyOS Community Edition, is used to build and run the example.

Starting Mosquitto

To run this example, a Mosquitto MQTT broker must be installed and started on the host system. To install and start Mosquitto, run the following commands:

$ sudo apt install mosquitto mosquitto-clients
$ sudo /etc/init.d/mosquitto start

To start an MQTT subscriber on the host system, run the following command:

$ mosquitto_sub -d -t "datetime"

Supplied resources

The directory ./resources/edl contains the Publisher.edl file, which contains a static description of the Publisher program.
The directory ./resources/hdd/etc contains the configuration files for the VfsNet, Dhcpcd and Ntpd programs: hosts, dhcpcd.conf and ntp.conf, respectively.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/mqtt_publisher

Building and running example

See Building and running examples section.

Page top

mqtt_subscriber (Mosquitto) example

Example use of the MQTT protocol in KasperskyOS.

In this example, an MQTT publisher must be started on the host operating system, and an MQTT subscriber must be started on KasperskyOS. The Subscriber program is an implementation of an MQTT subscriber.

When the example starts and runs successfully, an MQTT subscriber started on KasperskyOS prints a "Got message with topic: my/awesome/topic, payload: hello" message.

The example also demonstrates the use of various virtual file systems (VFS) in a single solution:

The VfsNet program is used for working with the network.
The VfsSdCardFs program is used to work with the file system.

The CMake system, which is included with KasperskyOS Community Edition, is used to build and run the example.

Starting Mosquitto

To run this example, a Mosquitto MQTT broker must be installed and started on the host system. To install and start Mosquitto, run the following commands:

$ sudo apt install mosquitto mosquitto-clients
$ sudo /etc/init.d/mosquitto start

To start an MQTT publisher on the host system, run the following command:

$ mosquitto_pub -t "my/awesome/topic" -m "hello"

Supplied resources

The directory ./resources/edl contains the Subscriber.edl file, which contains a static description of the Subscriber program.
The directory ./resources/hdd/etc contains the configuration files for the VfsNet, Dhcpcd and Ntpd programs: hosts, dhcpcd.conf and ntp.conf, respectively.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/mqtt_subscriber

Building and running example

See Building and running examples section.

Page top

gpio_input example

Example use of the GPIO driver.

This example lets you verify the functionality of GPIO input pins. The "gpio0" port is used. All pins except those indicated in exceptionPinArr array are set for input by default. The voltage on the pins corresponds to the state of the registers of the pull-up resistors. The state of all pins, starting from GPIO0 (accounting for the pins indicated in the exceptionPinArr array), will be read in succession. Messages about the state of the pins will be displayed on the console. The delay between the readings of adjacent pins is determined by the DELAY_S macro (the time is indicated in seconds).

exceptionPinArr is an array of GPIO pin numbers that need to be excluded from the example. This may be necessary if some pins are already being used for other functions, e.g. if pins are being used for a UART connection during debugging.

If you build and run this example on QEMU, an error will occur. This is the expected behavior, because there is no GPIO driver for QEMU.

If you build and run this example on Raspberry Pi 4 B, an error will occur.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/gpio_input

Building and running example

See Building and running examples section.

Page top

gpio_output example

Example use of the GPIO driver.

This example lets you verify the functionality of GPIO output pins. The "gpio0" port is used. The initial state of all GPIO pins should correspond to a logical zero (no voltage on the pin). All pins other than those indicated in the exceptionPinArr array are configured for output. Each pin, starting with GPIO0 (accounting for those indicated in the exceptionPinArr array), will be sequentially changed to a logical one (voltage on the pin) and then to a logical zero. The delay between the changes of pin state is determined by the DELAY_S macro (the time is indicated in seconds). The pins are turned on/off from GPIO0 to GPIO27 and then back against to GPIO0.

If you build and run this example on QEMU, an error will occur. This is the expected behavior, because there is no GPIO driver for QEMU.

If you build and run this example on Raspberry Pi 4 B, an error will occur.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/gpio_output

Building and running example

See Building and running examples section.

Page top

gpio_interrupt example

Example use of the GPIO driver.

This example lets you verify the functionality of GPIO pin interrupts. The "gpio0" port is used. In the pinsBitmap bitmask of the CallBackContext interrupt context, the pins from exceptionPinArr array are marked as handled so that the example can properly terminate later. All pins other than those indicated in the exceptionPinArr array are switched to the PINS_MODE state. An interrupt handler will be registered for all pins other than those indicated in the exceptionPinArr array.

In an endless loop, the example checks whether the pinsBitmap bitmask from the CallBackContext interrupt context is equal to the DONE_BITMASK bitmask (which corresponds to the condition when an interrupt has occurred on each GPIO pin). Additionally, the handler function for the latest interrupted pin is removed in the loop. When a pin is interrupted for the first time, the handler function is called, which marks the corresponding pin in the pinsBitmap bitmask in the CallBackContext interrupt context. The handler function for this pin is removed later.

Keep in mind how the example may be affected by the initial state of the registers of pull-up resistors for each pin.

Interrupts for the GPIO_EVENT_LOW_LEVEL and GPIO_EVENT_HIGH_LEVEL events are not supported.

If you build and run this example on QEMU, an error will occur. This is the expected behavior, because there is no GPIO driver for QEMU.

If you build and run this example on Raspberry Pi 4 B, an error will occur.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/gpio_interrupt

Building and running example

See Building and running examples section.

Page top

gpio_echo example

Example use of the GPIO driver.

This example makes it possible to verify the functionality of GPIO pins as well as the operation of GPIO interrupts. The "gpio0" port is used. The output pin (GPIO_PIN_OUT) should be connected to the input pin (GPIO_PIN_IN). The output pin (the pin number is defined in the GPIO_PIN_OUT macro) as well as the input pin (GPIO_PIN_IN) are configured. Use of the input pin is configured in the IN_MODE macro. The interrupt handler for the input pin is registered. The state of the output pin changes several times. If the example works correctly, then when the state of the output pin changes the interrupt handler will be called and will display the state of the input pin. What's more, the state of the output pin and the input pin must match.

If you build and run this example on QEMU, an error will occur. This is the expected behavior, because there is no GPIO driver for QEMU.

If you build and run this example on Raspberry Pi 4 B, an error will occur.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/gpio_echo

Building and running example

See Building and running examples section.

Page top

koslogger example

This example demonstrates use of the spdlog library in KasperskyOS using the KOSLogger wrapper library.

In this example, the Client program creates log entries that are saved on an SD card (when running the example on Raspberry Pi) or in the image file named build/einit/sdcard0.img (when running the example in QEMU).

The example also demonstrates the use of various virtual file systems (VFS) in a single solution. The example uses different VFS to access the functions for working with the file system and functions for working with the network:

The VfsNet program is used for working with the network.
The VfsSdCardFs program is used to work with the file system.

The kl.Ntpd program is included in KasperskyOS Community Edition and is an implementation of an NTP client, which gets time parameters from external NTP servers in the background and passes them to the KasperskyOS kernel.

The kl.rump.Dhcpcd program is included in KasperskyOS Community Edition and is an implementation of a DHCP client, which gets the parameters of network interfaces from an external DHCP server in the background and passes them to the virtual file system.

The CMake system, which is included with KasperskyOS Community Edition, is used to build and run the example.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/koslogger

Building and running example

See Building and running examples section.

To ensure that the koslogger example will correctly run in Raspberry Pi, you must do the following after building the example and preparing your bootable SD card:

Create the /lib directory on the bootable SD card if this directory doesn't already exist.
Open the build/hdd/lib directory that was generated when building the example and copy the directory contents to the /lib directory on the bootable SD card.

Page top

pcre example

This example demonstrates use of the pcre library in KasperskyOS.

In this example, the Client program uses the pcre library and prints the results to the console.

The CMake system, which is included with KasperskyOS Community Edition, is used to build and run the example.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/pcre

Building and running example

See Building and running examples section.

To ensure that the pcre example will correctly run in Raspberry Pi, you must do the following after building the example and preparing your bootable SD card:

Create the /lib directory on the bootable SD card if this directory doesn't already exist.
Open the build/hdd/lib directory that was generated when building the example and copy the directory contents to the /lib directory on the bootable SD card.

Page top

messagebus example

This example demonstrates use of the MessageBus component in KasperskyOS.

In this example, the Publisher, SubscriberA and SubscriberB programs use the MessageBus component to exchange messages.

The MessageBus component implements the message bus. The Publisher program is the publisher that transfers messages to the bus. The SubscriberA and SubscriberB programs are the subscribers that receive messages from the bus.

The VfsNet program is used for working with the network.
The VfsSdCardFs program is used to work with the file system.

The CMake system, which is included with KasperskyOS Community Edition, is used to build and run the example.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/messagebus

Building and running example

See Building and running examples section.

To ensure that the messagebus example will correctly run in Raspberry Pi, you must do the following after building the example and preparing your bootable SD card:

Create the /lib directory on the bootable SD card if this directory doesn't already exist.
Open the build/hdd/lib directory that was generated when building the example and copy the directory contents to the /lib directory on the bootable SD card.

Page top

I2c_ds1307_rtc example

This example demonstrates use of the i2c driver (Inter-Integrated Circuit) in KasperskyOS.

In this example, the I2cClient program uses the i2c driver interface.

The client library of the i2c driver is statically linked to the I2cClient program. The i2c driver implementation uses a BSP (Board Support Platform) subsystem for configuring clock frequencies (Clocks) and pins multiplexing (PinMux). Therefore, to ensure correct operation of the driver, you need to do the following:

Link the I2cClient program to the i2c_CLIENT_LIB client library.
Link the I2cClient program to the bsp_CLIENT_LIB client library.
Create an IPC channel between the I2cClient program and the kl.drivers.I2C driver.
Create an IPC channel between the I2cClient program and the kl.drivers.BSP driver.

The CMake system, which is included with KasperskyOS Community Edition, is used to build and run the example.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/i2c_ds1307_rtc

Building and running example

This example is intended to run only on Raspberry Pi. For the example to work correctly, you must connect a DS1307Z real-time clock module to the i2c port.

See Building and running examples section.

Page top

iperf_separate_vfs example

This example demonstrates use of the iperf library in KasperskyOS.

In this example, the Server program uses the iperf library.

By default, the example uses network software emulation (SLIRP) in QEMU. If you configured TAP interfaces for QEMU, you need to change the network settings for starting QEMU (QEMU_FLAGS variable) in the einit/CMakeLists.txt file to make sure that the example works correctly (for more details, see the comments in the file).

The example does not use DHCP, therefore the IP address of the network interface must be manually indicated in the code of the Server program (server/src/main.cpp). SLIRP uses the default values.

The iperf library in the example is used in server mode. To connect to this server, install the iperf3 program on the host machine and run it by using the iperf3 -c localhost command. If you configured TAP interfaces, indicate the current IP address instead of localhost.

The first startup of the example may take a long time because the iperf client uses /dev/urandom to fill packets with random data. To avoid this, run the iperf client with the --repeating-payload parameter.

The CMake system, which is included with KasperskyOS Community Edition, is used to build and run the example.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/iperf_separate_vfs

Building and running example

See Building and running examples section.

Page top

Uart example

Example use of the UART driver.

This example shows how to print "Hello World!" to the appropriate port using the UART driver.

When running the example simulation in QEMU, -serial stdio is indicated in the QEMU flags. This means that the first UART port will be printed only to the standard stream of the host machine.

A full description of the UART driver interface is provided in the file /opt/KasperskyOS-Community-Edition-<version>/sysroot-aarch64-kos/include/uart/uart.h.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/uart

Building and running example

See Building and running examples section.

Page top

spi_check_regs example

This example demonstrates use of the SPI (Serial Peripheral Interface) driver in KasperskyOS.

The example shows how to work with the SPI interface on the Sense HAT add-on board for Raspberry Pi. In this example, the Client program uses the SPI driver interface. The program opens an SPI channel, displays its parameters and sets the necessary operating mode. Then the program sends a data sequence over this channel and waits to receive the ID of the ATTiny controller installed on the Sense HAT board.

The client library of the SPI driver is statically linked to the Client program. The Client program also uses the gpio driver to set the controller operating mode and the BSP (Board Support Platform) subsystem for configuring clock frequencies (Clocks) and pins multiplexing (PinMux).

The CMake system, which is included with KasperskyOS Community Edition, is used to build and run the example.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/spi_check_regs

Building and running example

This example is intended to run only on Raspberry Pi. For the example to work correctly, you must connect the Sense HAT module to the SPI port.

See Building and running examples section.

Page top

barcode_scanner example

This example demonstrates use of a USB (Universal Serial Bus) driver in KasperskyOS using the libevdev library.

In this example, the BarcodeScanner program uses the libevdev library for interaction with a barcode scanner connected to the USB port of Raspberry Pi.

The program waits for signals from the barcode scanner and prints the obtained data to stderr.

The CMake system, which is included with KasperskyOS Community Edition, is used to build and run the example.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/barcode_scanner

Building and running example

This example is intended to run only on Raspberry Pi. For the example to work correctly, you must connect a barcode scanner running in keyboard emulation mode (such as Zebra Symbol LS2208) to the USB port.

See Building and running examples section.

Page top

perfcnt example

This example demonstrates use of the performance counters in KasperskyOS.

The example includes two programs: Worker and Monitor.

The Worker program performs computations in a loop by periodically loading the processor and utilizing memory.

The Monitor program uses the KnProfilerGetCounter() function of the libkos library to get the values of performance counters for the Worker program and prints them to the console.

The CMake system, which is included with KasperskyOS Community Edition, is used to build and run the example.

If you build and run this example on QEMU, some performance counters may not function correctly.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/perfcnt

Building and running example

See Building and running examples section.

Page top

watchdog_system_reset example

This example demonstrates use of the Watchdog driver in KasperskyOS.

In this example, the Client program uses the Watchdog driver interface to interact with the Watchdog timer as follows:

Receives the current parameters of the Watchdog driver and prints them to stderr.
Changes the default value of the timer to a new value and starts the timer.
Resets the timer several times.
Waits for the system to restart when the timer is triggered.

The client library of the Watchdog driver is statically linked to the Client program.

The CMake system, which is included with KasperskyOS Community Edition, is used to build and run the example.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/watchdog_system_reset

Building and running example

See Building and running examples section.

Page top

shared_libs example

This example demonstrates use of static and dynamic libraries in KasperskyOS.

In the example, the Client program performs the following actions:

Calls a function from the hello_s static library.
Calls a function from the hello_d1 dynamic library that is linked together with the program and loaded into memory when the process is started.
Calls a function from the hello_d2 dynamic library that is loaded into memory when calling the dlopen() function of the POSIX interface.

To ensure that dynamic libraries can be shared among different processes, the system program named BlobContainer is included in the example.

The CMake system, which is included with KasperskyOS Community Edition, is used to build and run the example.

Example files

The code of the example and build scripts are available at the following path:

/opt/KasperskyOS-Community-Edition-<version>/examples/shared_libs

Building and running example

See Building and running examples section.

To ensure that the shared_libs example will correctly run in Raspberry Pi, you must do the following after building the example and preparing your bootable SD card:

Create the /lib directory on the bootable SD card if this directory doesn't already exist.
Open the build/hdd/lib directory that was generated when building the example and copy the directory contents to the /lib directory on the bootable SD card.

Page top

Information about certain limits set in the system

Header files and IDL files from the KasperskyOS SDK contain constants that set limits in the system (see table below).

Constants that set limits in the system

Subsystem	Constants
`POSIX`	The constants in the `sysroot-*-kos/include/limits.h` file.
`BlobContainer`	The constants in the `sysroot-*-kos/include/kl/EntityLauncher.idl(.h)` files: `MaxArgSize` `(kl_EntityLauncher_MaxArgSize)` – maximum program launch parameter and environment variable size in bytes. `MaxArgsCount` `(kl_EntityLauncher_MaxArgsCount)` – maximum number of launch parameters and environment variables for a program.
`CertificateStorage`	The constants in the `sysroot-*-kos/include/kl/CertificateStorage.idl(.h)` files: `MaxNumCerts` `(kl_CertificateStorage_MaxNumCerts)` – maximum number of certificates in a storage. `MaxCertSize` `(kl_CertificateStorage_MaxCertSize)` – maximum certificate size in bytes. `HashSize` `(kl_CertificateStorage_HashSize)` – size of the certificate storage hash, in bytes.
`Tls`	The constants in the `sysroot--kos/include/kl/CertificatePolicy.idl(.h)` files: `MaxDERCertDataSize` `(kl_CertificatePolicy_MaxDERCertDataSize)` – maximum DER certificate size in bytes. `MaxHostAddressBufferSize` `(kl_CertificatePolicy_MaxHostAddressBufferSize)` – maximum host address buffer size in bytes. The constants in the `sysroot--kos/include/kl/crypto/tls/TlsEvent.idl(.h)` files: `FunctionNameSize` `(kl_crypto_tls_TlsEvent_FunctionNameSize)` – maximum function name size in bytes. `IdSize` `(kl_crypto_tls_TlsEvent_IdSize)` – session identifier size in bytes. `HostnameSize` `(kl_crypto_tls_TlsEvent_HostnameSize)` – maximum host name size in bytes. `PkiEntrySize` `(kl_crypto_tls_TlsEvent_PkiEntrySize)` – maximum PKI certificate size in bytes. `MaxCertificatesInChain` `(kl_crypto_tls_TlsEvent_MaxCertificatesInChain)` – maximum number of certificates in a chain. `MaxCertificatesInTrustedSet` `(kl_crypto_tls_TlsEvent_MaxCertificatesInTrustedSet)` – maximum number of trusted certificates. `KeyFingerprintLength` `(kl_crypto_tls_TlsEvent_KeyFingerprintLength)` – key fingerprint size in bytes. `MbedTlsDescriptionSize` `(kl_crypto_tls_TlsEvent_MbedTlsDescriptionSize)` – maximum MbedTLS error description size in bytes. `VfsDescriptionSize` `(kl_crypto_tls_TlsEvent_VfsDescriptionSize)` – maximum VFS error description size in bytes. `DescriptionSize` `(kl_crypto_tls_TlsEvent_DescriptionSize)` – maximum event description size in bytes.
`ExecutionManager`	The constants in the `sysroot-*-kos/include/kl/execution_manager/Types.idl(.h)` files: `NkAppNameMaxSize` `(kl_execution_manager_Types_NkAppNameMaxSize)` – maximum program name size in bytes. `NkPathMaxSize` `(kl_execution_manager_Types_NkPathMaxSize)` – maximum executable file path size in bytes. `NkEntityNameMaxSize` `(kl_execution_manager_Types_NkEntityNameMaxSize)` – maximum process name size in bytes. `NkEiidMaxSize` `(kl_execution_manager_Types_NkEiidMaxSize)` – maximum process class name size in bytes. `NkTaskNameMaxSize` `(kl_execution_manager_Types_NkTaskNameMaxSize)` – maximum process name size in bytes. `NkArgMaxLen` `(kl_execution_manager_Types_NkArgMaxLen)` – maximum program launch parameter size in bytes. `NkEnvMaxLen` `(kl_execution_manager_Types_NkEnvMaxLen)` – maximum environment variable size in bytes. `NkArgsArrayMaxSize` `(kl_execution_manager_Types_NkArgsArrayMaxSize)` – maximum number of program launch parameters. `NkEnvsArrayMaxSize` `(kl_execution_manager_Types_NkEnvsArrayMaxSize)` – maximum number of environment variables for a program.
`KlogStorage`	The constants in the `sysroot-*-kos/include/kl/KlogStorage.idl(.h)` files: `StringSize` `(kl_KlogStorage_StringSize)` – maximum message size in bytes. `MaxMessages` `(kl_KlogStorage_MaxMessages)` – maximum number of messages.
`Env`	The constants in the `sysroot-*-kos/include/kl/Env.idl(.h)` files: `MaxArgsCount` `(kl_Env_MaxArgsCount)` – maximum number of launch parameters and environment variables for a program. `MaxArgSize` `(kl_Env_MaxArgSize)` – maximum program launch parameter and environment variable size in bytes. `MaxNameSize` `(kl_Env_MaxNameSize)` – maximum process name size in bytes.
`VFS`	The constants in the `sysroot-*-kos/include/kl/VfsTypes.idl(.h)` files: `MaxBytesCount` `(kl_VfsTypes_MaxBytesCount)` – maximum `VFS` data transmission buffer size in bytes. `MaxPathSize` `(kl_VfsTypes_MaxPathSize)` – maximum path size in bytes. `MaxDevnameSize` `(kl_VfsTypes_MaxDevnameSize)` – maximum device name size in bytes. `MaxFstypeSize` `(kl_VfsTypes_MaxFstypeSize)` – maximum file system name size in bytes. `MaxFsDataSize` `(kl_VfsTypes_MaxFsDataSize)` – maximum data size for the `data` parameter of the `mount()` function, in bytes. `MaxFcntlTSize` `(kl_VfsTypes_MaxFcntlTSize)` – maximum data size for an optional parameter of the `fcntl()` function, in bytes. `MaxIoctlTSize` `(kl_VfsTypes_MaxIoctlTSize)` – maximum data size for an optional parameter of the `ioctl()` function, in bytes. `MaxSockAddrSize` `(kl_VfsTypes_MaxSockAddrSize)` – maximum IP address size in bytes. `MaxSockOptionSize` `(kl_VfsTypes_MaxSockOptionSize)` – maximum data size for the `option_value` parameter of the `getsockopt()` and `setsockopt()` functions, in bytes. `MaxHostnameSize` `(kl_VfsTypes_MaxHostnameSize)` – maximum host name size in bytes. `MaxServnameSize` `(kl_VfsTypes_MaxServnameSize)` – maximum data size for the `servname` parameter of the `getaddrinfo()` function and the `service` parameter of the `getnameinfo()` function, in bytes. `MaxMsgNameSize` `(kl_VfsTypes_MaxMsgNameSize)` – maximum data size for the `msg_name` element of the `message` parameter of the `recvmsg()` and `sendmsg()` functions, in bytes. `MaxMsgDataSize` `(kl_VfsTypes_MaxMsgDataSize)` – maximum data size for a `msg_control` element of the `message` parameter of the `recvmsg()` and `sendmsg()` functions, in bytes. `MaxIovDataSize` `(kl_VfsTypes_MaxIovDataSize)` – maximum number of the buffer described by the `iovec` structure in the `message` parameter of the `recvmsg()` and `sendmsg()` functions, and in the `iov` parameter of the `readv()` and `writev()` functions, in bytes. `MaxIovecsCount` `(kl_VfsTypes_MaxIovecsCount)` – maximum number of `iovec` structures in the `message` parameter of the `recvmsg()` and `sendmsg()` functions, and in the `iov` parameter of the `readv()` and `writev()` functions. `MaxAddrinfoSize` `(kl_VfsTypes_MaxAddrinfoSize)` – maximum data size for the `res` parameter of the `getaddrinfo()` function, in bytes. `VfsHostent` `(kl_VfsTypes_MaxHostentSize)` – maximum data size for a return value of the `gethostbyname()` function, in bytes. `VfsDnsName` `(kl_VfsTypes_MaxDnsNameSize)` – maximum data size for the `name` parameter of the `getnetbyname()` function, in bytes. `MaxProtoentNameSize` `(kl_VfsTypes_MaxProtoentNameSize)` – maximum protocol name size in the `name` parameter of the `getprotobyname()` function, and in the return value of the `getprotobyname()` and `getprotobynumber()` functions, in bytes. `MaxProtoentAliasesSize` `(kl_VfsTypes_MaxProtoentAliasesSize)` – maximum protocol alias size in the return values of the `getprotobyname()` and `getprotobynumber()` functions, in bytes.
`MessageBus`	The constants in the `sysroot-*-kos/include/kl/MessageBusTypes.idl(.h)` files: `MaxStringLength` `(kl_MessageBusTypes_MaxStringLength)` – maximum message size in bytes.
`Dhcpcd`	The constants in the `sysroot-*-kos/include/kl/rump/DhcpcdConfig.idl(.h)` files: `MaxDhcpcdStrSize` `(kl_rump_DhcpcdConfig_MaxDhcpcdStrSize)` – maximum size of a parameter set received from a DHCP server, in bytes.
`Terminal`	The constants in the `sysroot-*-kos/include/kl/Terminal.idl(.h)` files: `MaxTerminalBytesCount` `(kl_Terminal_MaxTerminalBytesCount)` – maximum terminal read/write buffer size in bytes. `MaxTerminalConnectionIdSize` `(kl_Terminal_MaxTerminalConnectionIdSize)` – maximum terminal identifier size in bytes.

Page top

Contents

Appendices

Additional examples

hello example

echo example

ping example

net_with_separate_vfs example

net2_with_separate_vfs example

embedded_vfs example

vfs_extfs example

multi_vfs_ntpd example

multi_vfs_dns_client example

multi_vfs_dhcpcd example

mqtt_publisher (Mosquitto) example

mqtt_subscriber (Mosquitto) example

gpio_input example

gpio_output example

gpio_interrupt example

gpio_echo example

koslogger example

pcre example

messagebus example

I2c_ds1307_rtc example

iperf_separate_vfs example

Uart example

spi_check_regs example

barcode_scanner example

perfcnt example

watchdog_system_reset example

shared_libs example

Information about certain limits set in the system