SyzParam Enhances Kernel Driver Fuzzing with Runtime Parameters

🐞 SyzParam revolutionizes kernel driver fuzzing with runtime parameters. The newly introduced fuzzing framework, SyzParam, enhances the fuzzing process by integrating runtime parameters, addressing challenges such as valid value extraction and inter-device relation construction. By utilizing static analysis on data structures and functions related to the LKDM, SyzParam effectively extracts runtime parameters from various drivers and identifies their interrelations. The framework employs a novel mutation strategy that prioritizes parameter modifications during driver execution, leading to improved code coverage and bug detection. Evaluation results show SyzParam’s superiority over existing fuzzing methods, having identified 30 unique bugs in recent kernel versions, with 20 confirmed and 14 patched, including 9 CVEs.

Source

Original