Replies: 8 comments
-
内核测试用例基于x86_64 musl libc的内核测试用例,可用于测试内核实现的syscall的功能测试验证。 |
Beta Was this translation helpful? Give feedback.
-
【论文相关】 阅读笔记: https://github.com/mengmengjiang1999/record/tree/main/papers todo list: https://github.com/mengmengjiang1999/record/blob/main/papers/todo-list.md |
Beta Was this translation helpful? Give feedback.
-
常用工具及其使用方法,以及报错记录 https://github.com/mengmengjiang1999/record/tree/main/tools |
Beta Was this translation helpful? Give feedback.
-
李羽飞工作⬇️ https://github.com/LearningOS/osbiglab-2024s-fuzzingkernel/tree/main |
Beta Was this translation helpful? Give feedback.
-
什么是stage? =============================================== A Stage is an entity that operates on a single Input received from the Corpus. For instance, a Mutational Stage, given an input of the corpus, applies a Mutator and executes the generated input one or more times. How many times this has to be done can be scheduled, AFL for instance uses a performance score of the input to choose how many times the havoc mutator should be invoked. This can depend also on other parameters, for instance, the length of the input if we want to just apply a sequential bitflip, or a fixed value. A stage can also be an analysis stage, for instance, the Colorization stage of Redqueen that aims to introduce more entropy in a testcase or the Trimming stage of AFL that aims to reduce the size of a testcase. There are several stages in the LibAFL codebase implementing the Stage trait. =============================================== A stage is one step in the fuzzing process. Multiple stages will be scheduled one by one for each input. =============================================== 第三节: stage是libAFL中9个基本entity(实体)之一。 =============================================== |
Beta Was this translation helpful? Give feedback.
-
Beta Was this translation helpful? Give feedback.
-
2024年OS比赛决赛阶段fuzzing方向开发日志:https://docs.qq.com/doc/DV01iRkJLT0FIR1RE |
Beta Was this translation helpful? Give feedback.
-
Rust语言虽然比C语言在安全上做了很大改进,但依然存在各种bug,特别是操作系统的特殊性带来的各种类型的bug。我们需要研究fuzzing,符号执行等技术,设计相关的静态/动态分析工具,来查找其中各种Rust-based OS中的bug。目前一个有意思的情况是,有不少参加全国大学生OS比赛内核赛道的OS 内核项目,直接支持Linux syscall,且都支持运行多种Linux 应用。但由于完成时间有限,会有大量的bug,是分析并查找Rust-based OS相关的bug非常好的对象。另外一个比较实际的办法是,通过syzkaller linux kernel fuzzing工具,生成上万个linux测试用例,来测试支持Linux应用的各种Rust OS,,对执行结果进行分析和比较,从而发现它们中的bug。
参考:
LIbAFL相关:
注:偏学术研究类
如有兴趣一起来探索,请联系我 yuchen AT tsinghua.edu.cn OR 微信 id chyyuu
Beta Was this translation helpful? Give feedback.
All reactions