Lock ’n Load: Deadlock Detection in Binary-only Kernel Modules
Two shortcomings in the Linux kernel/module security analysis landscape motivate this research. First, existing security analyses focus mainly on detecting memory corruption bugs and largely eschew availability bugs, such as those induced by deadlocks. Second, the single most popular detection approach for deadlocks, Lockdep, requires the source code for the kernel and any kernel objects (KOs) and hence cannot be applied to binary-only KOs. This research project aims to develop novel capabilities that bring Lockdep’s detection mechanisms to bear on closed-source binary-only Linux kernel modules. Lock ‘n Load will provide tools that allow detection of deadlock-related bugs in binary-only KOs and enable device vendors to address threats that compromise the availability of their products.
