A master thesis from Aalborg University
Buzzy: An Unguided Smart-Strategy Generation-Based Blackbox Fuzzer for eBPF Technologies: Buzzy: Fuzz Testing eBPF Technologies
Author(s)
Term
4. term
Education
Publication year
2023
Submitted on
2023-06-15
Pages
61 pages
Abstract
eBPF is a groundbreaking technology in the Linux kernel. It facilitates programmers to load programs into the kernel that, after a verification step, can JIT compile and execute the eBPF program. eBPF is widely used in server infrastructure and network management tools, as its place in kernel space facilitates tracing and real time enforcement of policies. Therefore, the correctness of eBPF is crucial. In this project, we develop Buzzy, a novel blackbox fuzzer for eBPF technologies. Buzzy uses a strategy based approach, where strategies are developed to target certain features in the chosen eBPF technologies. Buzzy is tested on the user space eBPF technologies, the PREVAIL verifier and uBPF virtual machine, maintained as part of the eBPF-for-Windows system. Results show that strategies are useful for generating more valid programs and for targeting certain bugs. Buzzy has found 5 bugs between PREVAIL and uBPF.
eBPF is a groundbreaking technology in the Linux kernel. It facilitates programmers to load programs into the kernel that, after a verification step, can JIT compile and execute the eBPF program. eBPF is widely used in server infrastructure and network management tools, as its place in kernel space facilitates tracing and real time enforcement of policies. Therefore, the correctness of eBPF is crucial. In this project, we develop Buzzy, a novel blackbox fuzzer for eBPF technologies. Buzzy uses a strategy based approach, where strategies are developed to target certain features in the chosen eBPF technologies. Buzzy is tested on the user space eBPF technologies, the PREVAIL verifier and uBPF virtual machine, maintained as part of the eBPF-for-Windows system. Results show that strategies are useful for generating more valid programs and for targeting certain bugs. Buzzy has found 5 bugs between PREVAIL and uBPF.
Keywords
fuzz ; fuzzing ; test ; eBPF ; windows ; prevail ; ubpf ; blackbox ; smart ; generation ; strategy ; open source ; generation-based ; buzzy
Documents
Colophon: This page is part of the AAU Student Projects portal, which is run by Aalborg University. Here, you can find and download publicly available bachelor's theses and master's projects from across the university dating from 2008 onwards. Student projects from before 2008 are available in printed form at Aalborg University Library.
If you have any questions about AAU Student Projects or the research registration, dissemination and analysis at Aalborg University, please feel free to contact the VBN team. You can also find more information in the AAU Student Projects FAQs.