Symbolic device driver environment for 
detecting bugs in Linux device driver

J4 ›› 2016, Vol. 38 ›› Issue (02): 290-296.

• 论文 • Previous Articles Next Articles

Symbolic device driver environment for
detecting bugs in Linux device driver

XU Yongjian1,2,WANG Dan1,CHEN Yu2,FAN Wenliang2

(1.School of Computer Science,Beijing University of Technology,Beijing 100124;
2.Department of Computer Science and Technology,Tsinghua University,Beijing 100084,China)

Received:2015-03-10 Revised:2015-05-06 Online:2016-02-25 Published:2016-02-25

Abstract

Abstract:

Studies have shown that driver vulnerability is one of the main causes of Linux security issues, which can lead to privilege escalation, denial of service and other highrisk situations. Considering the difficulty of driver vulnerability detection without real devices, this paper proposes symbolic execution of Linux drivers and implements the symbolic device driver environment (SDDE ), which can detect bugs in Linux device driver. The SDDE provides symbolic kernel services and symbolic devices, making symbolic execution of Linux driver and runtime driver vulnerability detection possible. The SDDE works without real hardware, and has high coverage, high performance and good scalability. The SDDE is applied to 6 Linux drivers, and we found six real bugs, three of which are confirmed by Linux developers.

Key words: bug detection, symbolic execution, Linux, device driver

XU Yongjian1,2,WANG Dan1,CHEN Yu2,FAN Wenliang2. Symbolic device driver environment for
detecting bugs in Linux device driver [J]. J4, 2016, 38(02): 290-296.

[1]	SONG Congxi，WANG Xin,ZHANG Wenzhe. Analysis and optimization of Angr in dynamic software test application [J]. Computer Engineering & Science, 2018, 40(增刊S1): 163-168.
[2]	WANG Li1,2,WANG Jing1,2,ZHANG Wei-gong2,3,QIU Ke-ni2,3,LU Ke-zhong4. Impact of Linux kernel parameters on Spark workloads [J]. Computer Engineering & Science, 2017, 39(07): 1219-1226.
[3]	CHEN Ying-jie，CHEN Zhen-bang，DONG Wei. Property guided symbolic execution based bug detection of Linux Drivers [J]. Computer Engineering & Science, 2017, 39(04): 734-739.
[4]	CAI Jun,ZOU Peng,XIONG Dapeng,HE Jun. A software vulnerability detection method based on static analysis and dynamic symbolic execution [J]. Computer Engineering & Science, 2016, 38(12): 2536-2541.
[5]	FAN Wenliang,MAO Junjie,XIAO Qixue,XU Yongjian,YANG Weikang,CHEN Yu. Symbolic driver environment: a tool aided to detect Linux driver bugs [J]. J4, 2015, 37(06): 1058-1063.
[6]	XU Feng1,WEI Lifeng2,ZHANG Guoyin1. A flexible mandatory integrity access control policy [J]. J4, 2014, 36(05): 836-841.
[7]	CHEN Baozi,WU Qingbo,TAN Yusong. Supporting mechanism for applicationassisted memory management of processes group [J]. J4, 2014, 36(01): 57-62.
[8]	YE Changchun. A solution of operating systemlevel virtualization for Linuxbased mobile handsets and its advantages [J]. J4, 2013, 35(5): 56-60.
[9]	LI Gang,MI Yuangen. Realization of a Web Camera Supporting the B/S Pattern [J]. J4, 2012, 34(3): 108-112.
[10]	DAI Ziying,MAO Xiaoguang,MA Xiaodong,WANG Rui. A Memory Model Based on Abstract Symbol Tables [J]. J4, 2011, 33(6): 84-90.
[11]	YUAN Anfu,XIA Shengfeng. Design and Implementation of the DM9000 Network Device Driver Based on ARM and Linux [J]. J4, 2011, 33(2): 27-31.
[12]	LIU Zhenyu,WU Junjun. An Optimized Device Driver Model Based on MicroKernel Virtualization [J]. J4, 2011, 33(12): 44-51.
[13]	SU Shuguang,CAO Hua,LIU Yunsheng. Extension and Application of the Operating System ealTimeness Based on μCLinux [J]. J4, 2010, 32(4): 125-127.
[14]	WANG Yonglin. Research and Implementation of the Application Server Based on IPv6 [J]. J4, 2010, 32(12): 12-14.
[15]	JIANG Wenfang1, ZHAO Li1, MO Jinwang2. Research on the Application of the AODV Algorithm in Video Monitoring Systems [J]. J4, 2010, 32(12): 157-160.

Symbolic device driver environment for
detecting bugs in Linux device driver

PDF

Knowledge

Abstract

Cite this article

share this article

Related Articles 15

Recommended Articles

Metrics

Comments

Symbolic device driver environment for detecting bugs in Linux device driver

PDF

Knowledge

Abstract

Cite this article

share this article

Related Articles 15

Recommended Articles

Metrics

Comments

Symbolic device driver environment for
detecting bugs in Linux device driver