论文信息 - Synthesis of Linux Kernel Fuzzing Tools Based on Syscall

Synthesis of Linux Kernel Fuzzing Tools Based on Syscall

Any software especially the operating system requires testing and evaluation to validate the functional and security characteristics. As yet, fuzzing has become widely adopted into practice software testing. We focus on the operating system kernel fuzzing, select three typical kernel fuzzing tools to analyze. We make synthesis of the three kernel fuzzing tools from the aspects of sisal arguments model, test case construction and fuzzing scheduling and propose an abstract of partial specialization of model and explain it through these tools. Meanwhile, we inspect these tools on the usage of coverage-based fuzzing which is the state-of-the-art fuzzing optimization technology.

Dan Li | Shuai Bai | Hua Chen | Minhuan Huang

[1] Abhik Roychoudhury,et al. Model-based whitebox fuzzing for program binaries , 2016, 2016 31st IEEE/ACM International Conference on Automated Software Engineering (ASE).

[2] Esa Jääskelä. Genetic algorithm in code coverage guided fuzz testing , 2016 .

[3] Jun Nakajima,et al. Hybrid-Virtualization — Enhanced Virtualization for Linux * , 2010 .

[4] Abhik Roychoudhury,et al. Coverage-Based Greybox Fuzzing as Markov Chain , 2016, IEEE Transactions on Software Engineering.

[5] Pedram Amini,et al. Fuzzing: Brute Force Vulnerability Discovery , 2007 .

[6] Lillian Ablon,et al. Zero Days, Thousands of Nights: The Life and Times of Zero-Day Vulnerabilities and Their Exploits , 2017 .

[7] Steve Mansfield-Devine. Open source software: determining the real risk posed by vulnerabilities , 2017, Netw. Secur..

[8] David Brumley,et al. Program-Adaptive Mutational Fuzzing , 2015, 2015 IEEE Symposium on Security and Privacy.

[9] Kosta Serebryany,et al. Continuous Fuzzing with libFuzzer and AddressSanitizer , 2016, 2016 IEEE Cybersecurity Development (SecDev).