Unlock instant, AI-driven research and patent intelligence for your innovation.

Fuzzy test system and method for kernel of operating system

A technology of fuzzing and operating system, applied in the field of network security, can solve the problems of low efficiency of fuzzing and not considering the influence relationship of calls, and achieve the effect of speeding up efficiency and improving quality

Inactive Publication Date: 2022-03-11
北京水木羽林科技有限公司
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] For this reason, the embodiment of the present invention provides an operating system kernel fuzzing method to solve the problem that the existing kernel fuzzing tool does not consider the influence relationship between calls when generating and mutating the call sequence, and the problem of low fuzzing efficiency

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Fuzzy test system and method for kernel of operating system
  • Fuzzy test system and method for kernel of operating system
  • Fuzzy test system and method for kernel of operating system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0049] The present embodiment proposes a kind of operating system kernel fuzz testing system, and described system comprises:

[0050] The input module is configured to take an interface description as an input, and the interface description includes information of a kernel system call to be tested. Further, the input module is also configured to use a corpus as input, and the corpus includes a pre-configured initial test program. Corpus is optional input.

[0051] The relationship learning module includes a static learning module and a dynamic learning module; the static learning module is used to systematically analyze the types of input and output parameters of each call according to the information provided by the interface description, so as to deduce the influence relationship between calls , to obtain the initial relationship; the dynamic learning module is used to further derive the influence relationship between new calls by dynamically reducing the calls in the mini...

Embodiment 2

[0088] Corresponding to the above-mentioned embodiment 1, such as Figure 8 As shown, the present embodiment proposes a method for fuzzing an operating system kernel, the method comprising:

[0089] S100. Using an interface description as input, the interface description includes information about a kernel system call to be tested;

[0090] S200. According to the information provided by the interface description, systematically analyze the types of input and output parameters of each call to deduce the influence relationship between calls, and obtain the initial relationship; After the calls in the sequence are dynamically deleted, the impact on the execution feedback is analyzed to further deduce the impact relationship between new calls and obtain deep relationships;

[0091] S300. Guide the generation and mutation of the call sequence according to the learned influence relationship between the calls;

[0092] S400. Execute the generated call sequence through the executor,...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The embodiment of the invention discloses an operating system kernel fuzzy test system and method, in order to deduce the influence relationship between calls, the influence relationship between any two calls is determined by using a relationship learning algorithm, the relationship is initialized by the algorithm through static analysis, and a fuzzy test result is obtained. And the chemical relationship is continuously refined through dynamic analysis during operation. And the obtained influence relationship is used to guide the generation and variation of the calling sequence, so that the fuzzy test system can select the calling really suitable for the current context, the quality of the generated sequence is improved, and the fuzzy test efficiency is accelerated.

Description

technical field [0001] The embodiment of the present invention relates to the technical field of network security, and in particular to a system and method for fuzzing an operating system kernel. Background technique [0002] Syzkaller, a kernel fuzz testing tool developed and maintained by Google, generates call sequences by using the system call specification and selection table described by the interface description language Syzlang. Syzlang is a domain-specific language (DSL) that provides rich types, type constructors, and semantic modifiers. The language can be used to precisely encode system call input structures and encode partial semantic information, such as through structures and unions. and other constructors describe the input structure, and describe the interface semantics through characteristics such as resource types and interface specializations. Syzkaller uses a selection table to guide call sequence generation, which records the probability value of one s...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F11/36
CPCG06F11/3688G06F11/3672
Inventor 孙浩沈煜恒李远翼姜宇
Owner 北京水木羽林科技有限公司