摘要
文章以Linux设备驱动为研究对象,提出了一种灵活可控的基于加载时函数调用指令检测替换及运行时自动恢复与交互式再触发相结合的故障注入模型,设计并实现了相应的故障注入原型。目标驱动模块的加载监测利用了内核事件通知链机制,故障注入采用了函数调用指令检测替换方法,目标函数集的设置综合运用了Shell程序命令行参数和内核模块加载时参数传入方式,故障再触发机制利用了内核调试伪文件系统。与其他故障注入工具相比,该原型系统存储开销小,灵活性和可用性更佳,能够更加高效地进行健壮性和可靠性的测试验证。
In this paper,a flexible and controllable model of fault injection is put forward based on location and replacement of function invocation instructions at the time of module installation and based on automatic recovery and interactive re-triggering at run-time. The corresponding prototype is designed and implemented where notifier chain is used for monitoring the installation of target modules,command line arguments of Shell programs and module parameters are used comprehensively for the configuration of target functions of fault injection,and debugfs is exploited for triggering fault again. Compared with other fault injection tools,our prototype has more flexible and more controllable features in routines of triggering faults of multiple kernel functions so that robustness and dependability of kernel modules such as device drivers can be verified more effectively.
作者
翟高寿
翟瑞霞
刘峰
李红辉
ZHAI Gaoshou;ZHAI Ruixia;LIU Feng;LI Honghui(School of Computer and Information Technology,Beijing Jiaotong University,Beijing 100044,China)
出处
《信息网络安全》
CSCD
北大核心
2019年第6期19-27,共9页
Netinfo Security
基金
国家重点研发计划[2016YFF0204002]
教育部产学合作协同育人项目[201702025004]
关键词
内核安全
设备驱动
故障注入
事件通知链
内核调试伪文件系统
security of kernel
device drivers
fault injection
notifier chain
pseudo file system for kernel debugging
