Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/rcvalle/iofuzzer

An I/O address space fuzzer for emulated devices.
https://github.com/rcvalle/iofuzzer

fuzzer iofuzzer

Last synced: about 1 month ago
JSON representation

An I/O address space fuzzer for emulated devices.

Host: GitHub
URL: https://github.com/rcvalle/iofuzzer
Owner: rcvalle
License: mit
Created: 2024-11-22T09:00:23.000Z (about 1 month ago)
Default Branch: main
Last Pushed: 2024-11-22T09:01:00.000Z (about 1 month ago)
Last Synced: 2024-11-22T10:18:17.684Z (about 1 month ago)
Topics: fuzzer, iofuzzer
Language: C
Size: 147 KB
Stars: 0
Watchers: 1
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md
- Contributing: CONTRIBUTING.md
- License: LICENSE

Awesome Lists containing this project

README

        iofuzzer

========

![Build Status](https://github.com/rcvalle/iofuzzer/workflows/build/badge.svg)

An I/O address space fuzzer for emulated devices.

Installation

------------

To build and install the fuzzer:

1. Install Autotools (i.e., Autoconf, Automake, and Libtool):

       sudo apt update

       sudo apt install autoconf automake libtool

2. Instantiate the build system:

       autoreconf -fi

3. Build the fuzzer:

       mkdir build/

       cd build/

       ../configure

       make

4. Install the fuzzer:

       sudo make install

Usage

-----

To use the fuzzer:

1. Create a new virtual machine for the hypervisor/VMM to be tested.

2. Add the device to be tested to the virtual machine.

3. Identify the device to be tested:

       lspci

       00:00.0 Host bridge: Intel Corporation 440FX - 82441FX PMC [Natoma] (rev 02)

       00:01.0 ISA bridge: Intel Corporation 82371SB PIIX3 ISA [Natoma/Triton II]

       00:01.1 IDE interface: Intel Corporation 82371SB PIIX3 IDE [Natoma/Triton II]

       00:01.3 Bridge: Intel Corporation 82371AB/EB/MB PIIX4 ACPI (rev 03)

       00:02.0 VGA compatible controller: Red Hat, Inc. QXL paravirtual graphic card (rev 05)

       00:03.0 Ethernet controller: Red Hat, Inc. Virtio network device

       00:04.0 Audio device: Intel Corporation 82801I (ICH9 Family) HD Audio Controller (rev 03)

       00:05.0 USB controller: Intel Corporation 82801I (ICH9 Family) USB UHCI Controller #1 (rev 03)

       00:05.1 USB controller: Intel Corporation 82801I (ICH9 Family) USB UHCI Controller #2 (rev 03)

       00:05.2 USB controller: Intel Corporation 82801I (ICH9 Family) USB UHCI Controller #3 (rev 03)

       00:05.7 USB controller: Intel Corporation 82801I (ICH9 Family) USB2 EHCI Controller #1 (rev 03)

       00:06.0 SCSI storage controller: Red Hat, Inc. Virtio SCSI

       00:07.0 SATA controller: Intel Corporation 82801IR/IO/IH (ICH9R/DO/DH) 6 port SATA Controller [AHCI mode] (rev 02)

       00:08.0 Communication controller: Red Hat, Inc. Virtio console

       00:09.0 SCSI storage controller: Red Hat, Inc. Virtio block device

       00:0a.0 Unclassified device [00ff]: Red Hat, Inc. Virtio memory balloon

       00:0b.0 Unclassified device [00ff]: Red Hat, Inc. Virtio RNG

   The first column is the PCI logical address of the device as

   [domain:]bus:device.function.

4. Identify the device's I/O address space range to be tested:

       lspci -s 00:01.1 -v

       00:01.1 IDE interface: Intel Corporation 82371SB PIIX3 IDE [Natoma/Triton II] (prog-if 80 [ISA Compatibility mode-only controller, supports bus mastering])

               Subsystem: Red Hat, Inc. Qemu virtual machine

               Flags: bus master, medium devsel, latency 0

               Memory at 000001f0 (32-bit, non-prefetchable) [virtual] [size=8]

               Memory at 000003f0 (type 3, non-prefetchable) [virtual]

               Memory at 00000170 (32-bit, non-prefetchable) [virtual] [size=8]

               Memory at 00000370 (type 3, non-prefetchable) [virtual]

               I/O ports at c220 [virtual] [size=16]

               Kernel driver in use: ata_piix

               Kernel modules: pata_acpi

5. Copy to, build, and install the fuzzer in the virtual machine.

6. Run the fuzzer:

       sudo iofuzzer -g -p 0xc220-c230

The command-line options for the fuzzer are:

**-d**

**--debug**

  Enable debug mode.

**-g**

**--generate**

  Use the pseudorandom number generator (i.e., random()) for input generation.

**-h**

**--help**

  Display help information and exit.

**-o** _file_

**--output=**_file_

  Specify the output file name.

**-p** _list_

**--ports=**_list_

  Specify the list of I/O port addresses. (The default is all ports.)

**-q**

**--quiet**

  Enable quiet mode.

**-s** _num_

**--seed=**_num_

  Specify the seed for the pseudorandom number generator. (The default is 1.)

**-t** _num_

**--timeout=**_num_

  Specify the timeout, in seconds, for each iteration. (The default is 5.)

**-v**

**--verbose**

  Enable verbose mode.

**--version**

  Display version information and exit.

Contributing

------------

See [CONTRIBUTING.md](CONTRIBUTING.md).

License

-------

Licensed under the MIT License. See [LICENSE](LICENSE) for license text and

copyright information.