POSTER: OS Independent Fuzz Testing of I/O Boundary

Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security Pub Date : 2021-11-12 DOI:10.1145/3460120.3485359

Masanori Misono, Takahiro Shinagawa

{"title":"POSTER: OS Independent Fuzz Testing of I/O Boundary","authors":"Masanori Misono, Takahiro Shinagawa","doi":"10.1145/3460120.3485359","DOIUrl":null,"url":null,"abstract":"Device drivers tend to be vulnerable to errant/malicious devices because many of them assume that devices always operate correctly. If a device driver is compromised either deliberately or accidentally, this can lead to system failure or give adversaries entire system access. Therefore, testing whether device drivers can handle compromised I/O correctly is important. There are several studies on testing device drivers against I/O attacks or device failures. Previous studies, however, either require source code for testing, lack test efficiency, only support a specific OS, or only target MMIO accesses. In this paper, we present a novel testing framework of device drivers' I/O boundaries. By combining a hypervisor-based fault injection mechanism and coverage-guided fuzzing scheme, our testing framework is not only OS-independent but also efficient and can test closed-source drivers. To get the information needed to test without OS cooperation, we use IOMMU to detect DMA regions and a hardware tracing mechanism to get coverage. We describe the detailed design and the current status.","PeriodicalId":135883,"journal":{"name":"Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-11-12","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3460120.3485359","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

Abstract

Device drivers tend to be vulnerable to errant/malicious devices because many of them assume that devices always operate correctly. If a device driver is compromised either deliberately or accidentally, this can lead to system failure or give adversaries entire system access. Therefore, testing whether device drivers can handle compromised I/O correctly is important. There are several studies on testing device drivers against I/O attacks or device failures. Previous studies, however, either require source code for testing, lack test efficiency, only support a specific OS, or only target MMIO accesses. In this paper, we present a novel testing framework of device drivers' I/O boundaries. By combining a hypervisor-based fault injection mechanism and coverage-guided fuzzing scheme, our testing framework is not only OS-independent but also efficient and can test closed-source drivers. To get the information needed to test without OS cooperation, we use IOMMU to detect DMA regions and a hardware tracing mechanism to get coverage. We describe the detailed design and the current status.

查看原文本刊更多论文

海报:I/O边界的操作系统独立模糊测试

设备驱动程序往往容易受到错误/恶意设备的攻击，因为它们中的许多都假设设备总是正确运行。如果设备驱动程序被故意或意外破坏，这可能导致系统故障或使攻击者能够访问整个系统。因此，测试设备驱动程序是否能够正确处理受损的I/O是很重要的。针对I/O攻击或设备故障测试设备驱动程序有一些研究。然而，以前的研究要么需要源代码进行测试，要么缺乏测试效率，要么只支持特定的操作系统，要么只针对MMIO访问。本文提出了一种新的设备驱动程序I/O边界测试框架。通过结合基于虚拟机的故障注入机制和覆盖引导的模糊测试方案，我们的测试框架不仅与操作系统无关，而且效率高，可以测试闭源驱动程序。为了在没有操作系统配合的情况下获得测试所需的信息，我们使用IOMMU来检测DMA区域，并使用硬件跟踪机制来获得覆盖范围。介绍了系统的详细设计和现状。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security

自引率

0.00%

发文量