Presentation is loading. Please wait.

Presentation is loading. Please wait.

05.09.2015 How to Cook an Automated System for Linux Driver Verification Oleg Strikov Vadim Mutilin.

Published byHugo Patrick Modified over 9 years ago

Similar presentations

Presentation on theme: "05.09.2015 How to Cook an Automated System for Linux Driver Verification Oleg Strikov Vadim Mutilin."— Presentation transcript:

1 05.09.2015 How to Cook an Automated System for Linux Driver Verification Oleg Strikov Vadim Mutilin

2 Oleg A. Strikov Vadim S. Mutilin 2 / 12 05.09.2015 Guinea-pig DAC960PD-Ultra a high performance three-channel Ultra SCSI disk array controller that uses Intel's i960 32- bit microprocessor supports disk arrays for RAID levels 0, 1, 5, 0+1, and 5+0 permits data transfer rates across the PCI bus at 132MB/sec supports Fast-20 data transfer rates of 40MB/sec. per channel up to 45 drives can be attached to the RAID controller supports the Global Array Manager full device driver support for UNIX, Windows, OS/2, NetWare and other operating systems DAC960

3 Oleg A. Strikov Vadim S. Mutilin 3 / 12 05.09.2015 Confusing Linux Driver Code Controller->V1.DualModeMemoryMailboxInterface = false; true VERIFICATION NEEDED

4 Oleg A. Strikov Vadim S. Mutilin 4 / 12 05.09.2015 Manuscript

5 Oleg A. Strikov Vadim S. Mutilin 5 / 12 05.09.2015 Mixing Up BLAST DRIVER SOURCE VERIFICATION MODELS INSTRUMENTATION TOOL

6 Oleg A. Strikov Vadim S. Mutilin 6 / 12 05.09.2015 BLAST??? Berkeley Lazy Abstraction Software Verification Tool BLAST is a software model checker for C programs. It uses counterexample-driven automatic abstraction refinement to construct an abstract model which is model checked for safety properties.

7 Oleg A. Strikov Vadim S. Mutilin 7 / 12 05.09.2015 Real World Example /drivers/block/DAC960.c No explicit calls to linking-level init procedures (not BLAST acceptable) Callback interface procedures registration (not BLAST acceptable also) module_init(DAC960_init_module); module_exit(DAC960_cleanup_module); ret = pci_register_driver(&DAC960_pci_driver) Extra preprocessing tools should be coded

8 Oleg A. Strikov Vadim S. Mutilin 8 / 12 05.09.2015 Conceptual Hack Toolkit Bash scripting magic STATUS: DOUBLE DUTCH STATUS: BLAST ACCEPTABLE

9 Oleg A. Strikov Vadim S. Mutilin 9 / 12 05.09.2015 BLAST SHAMANIC RITUAL RULE ID0029. CANNOT CALL ALLOC() BEFORE CREATE() Error found! System is unsafe :-(

10 Oleg A. Strikov Vadim S. Mutilin 10 / 12 05.09.2015 HOW IT WORKS NATURAL LANGUAGE RULE FORMAL LANGUAGE RULE ID 0029: Memory regions cannot be allocated from non-existent predecessor pool TARGET: Prevent potential system crash, connected with incorrect pool subsystem function set usage: dma_pool_alloc() cannot be called before successful creation of pool with dma_pool_create().

11 Oleg A. Strikov Vadim S. Mutilin 11 / 12 05.09.2015 RESULTS (in progress…) 55 COLLECTED  24 beyond the scope of BLAST 15 has been formalized CURRENT TARGETS SUBSYSTEMS  /usr/src/linux/net & /usr/src/linux/drivers/net  /usr/src/linux/block & /usr/src/linux/drivers/block  /usr/src/linux/drivers/char

12 Oleg A. Strikov Vadim S. Mutilin 12 / 12 05.09.2015 CONTACTS OLEG A. STRIKOV oleg.strikov@ispras.ru VADIM S. MUTILIN mutilin@ispras.ru

Download ppt "05.09.2015 How to Cook an Automated System for Linux Driver Verification Oleg Strikov Vadim Mutilin."

Similar presentations

Static Analysis for Security

Static Analysis for Security
1 Peripheral Component Interconnect (PCI). 2 PCI based System.

1 Peripheral Component Interconnect (PCI). 2 PCI based System.
CSI 400/500 Operating Systems Spring 2009 Lecture #14 – Device Management and Drivers Monday, March 23 rd, 2009.

CSI 400/500 Operating Systems Spring 2009 Lecture #14 – Device Management and Drivers Monday, March 23 rd, 2009.
Write Blocking CSC 485/585.

Write Blocking CSC 485/585.
Copyright © 2014 EMC Corporation. All Rights Reserved. Linux Host Installation and Integration for Block Upon completion of this module, you should be.

Copyright © 2014 EMC Corporation. All Rights Reserved. Linux Host Installation and Integration for Block Upon completion of this module, you should be.
Lecture 16 Buffer Overflow modified from slides of Lawrie Brown.

Lecture 16 Buffer Overflow modified from slides of Lawrie Brown.
SLC/Ver1.0/OS CONCEPTS/Oct'991INTRODUCTION What is an Operating System? Operating Structure -System Components -OS Services -System Calls & Programs -System.

SLC/Ver1.0/OS CONCEPTS/Oct'991INTRODUCTION What is an Operating System? Operating Structure -System Components -OS Services -System Calls & Programs -System.
Introducing BLAST Software Verification John Gallagher CS4117.

Introducing BLAST Software Verification John Gallagher CS4117.
Thomas Ball, Rupak Majumdar, Todd Millstein, Sriram K. Rajamani Presented by Yifan Li November 22nd In PLDI 01: Programming Language.

Thomas Ball, Rupak Majumdar, Todd Millstein, Sriram K. Rajamani Presented by Yifan Li November 22nd In PLDI 01: Programming Language.
Department of Software Engineering Faculty of Mathematics and Physics CHARLES UNIVERSITY IN PRAGUE Czech Republic Extracting Zing Models from C Source.

Department of Software Engineering Faculty of Mathematics and Physics CHARLES UNIVERSITY IN PRAGUE Czech Republic Extracting Zing Models from C Source.
Testing and Analysis of Device Drivers Supervisor: Abhik Roychoudhury Author: Pham Van Thuan 1.

Testing and Analysis of Device Drivers Supervisor: Abhik Roychoudhury Author: Pham Van Thuan 1.
1 Recap (RAID and Storage Architectures). 2 RAID To increase the availability and the performance (bandwidth) of a storage system, instead of a single.

1 Recap (RAID and Storage Architectures). 2 RAID To increase the availability and the performance (bandwidth) of a storage system, instead of a single.
Operating Systems Input/Output Devices (Ch12.1 - 12.3, 12.7; 13.1-13.3, 13.7)

Operating Systems Input/Output Devices (Ch , 12.7; , 13.7)
Intro Test 2 – Chapters 3,4 & Word Sample Questions SPRING 2005.

Intro Test 2 – Chapters 3,4 & Word Sample Questions SPRING 2005.
Chapter 22 All About SCSI.

Chapter 22 All About SCSI.
Type-Safe Programming in C George Necula EECS Department University of California, Berkeley.

Type-Safe Programming in C George Necula EECS Department University of California, Berkeley.
Predicate Abstraction for Software and Hardware Verification Himanshu Jain Model checking seminar April 22, 2005.

Predicate Abstraction for Software and Hardware Verification Himanshu Jain Model checking seminar April 22, 2005.
Lesson 12 – NETWORK SERVERS Distinguish between servers and workstations. Choose servers for Windows NT and Netware. Maintain and troubleshoot servers.

Lesson 12 – NETWORK SERVERS Distinguish between servers and workstations. Choose servers for Windows NT and Netware. Maintain and troubleshoot servers.
Temporal-Safety Proofs for Systems Code Thomas A. Henzinger Ranjit Jhala Rupak Majumdar George Necula Westley Weimer Grégoire Sutre UC Berkeley.

Temporal-Safety Proofs for Systems Code Thomas A. Henzinger Ranjit Jhala Rupak Majumdar George Necula Westley Weimer Grégoire Sutre UC Berkeley.
Guide To UNIX Using Linux Third Edition

Guide To UNIX Using Linux Third Edition

Similar presentations

Ads by Google