Fuzzing Device Emulation in QEMU

A Greater Boston RIG project

Virtual devices are the most common site for security bugs in hypervisors. In our evaluation, we found new bugs in devices such as serial and virtio-net, ranging from memory corruptions to denial-of-service vulnerabilities. By combining well known coverage guidance techniques with domain-specific feedback, we found promising fuzzer performance, even for complex targets such as hypervisors.

Testing and Ops

Red Hat’s Office of the CTO has a new motto: “Operate first!” It acknowledges the fact that great innovations don’t amount to much if they can’t be implemented and operated. Building a complex system is a tough job, but even tougher is discovering ways to systematize and automate the testing of these systems and then creating the frameworks and tools for operating them, often by embedding AI into predicting and avoiding failures or finding optimization pathways. Our researchers are actively contributing to the field of automated cloud operations and AIOps.


ProjectSummaryResearch AreaRIGUniversitiesrig_hfilterpartner_university_hfilter
LART – LLVM Abstraction and Refinement ToolThe goal of this tool is to provide LLVM-to-LLVM transformations that implement various program abstractions.brnomasaryk-university
OpenInfra LabsOpenInfra Labs is an OpenStack Foundation project connecting open source projects to production to advance …, , , , , , boston-university northeastern-university umass-amherst
Elastic Secure InfrastructureThis project encompasses work in several areas to design, build and evaluate secure bare-metal elastic infrastructure for data centers., , greater-bostonboston-university
Open Cloud TestbedThe Open Cloud Testbed project will build and support a testbed for research and experimentation into new cloud platforms – the underlying software which provides cloud services to applications. Testbeds such as OCT are critical for enabling research into new cloud technologies – research that requires experiments which potentially change …, , , , , , greater-bostonboston-university northeastern-university umass-amherst
SymbioticSymbiotic is an open-source framework for program analysis integrating instrumentation, static program slicing and various program analysis tools.brnomasaryk-university
Quality Assurance System for Internet of Things TechnologyThe main goal is to design, implement and verify a framework for quality assurance of products based on the Internet of Things concept. The aim of the framework is to help individual IoT projects to establish an efficient testing and verification strategy of the infrastructure. The proposed framework is based …brnoczech-technical-university
AUFOVER – The Automation of Formal VerificationThe goal of the Automation of Formal Verification (AUFOVER) project is to develop automated formal verification tools and integrate them for industrial use. The tools to be developed or improved within the projects are Verification Server, Verification Server Client Application, csmock plug-ins, DIVINE, Symbiotic and Testos. The purpose of the …, brnobrno-university-of-technology masaryk-university
Fuzzing Device Emulation in QEMUHypervisors—the software that allows a computer to simulate multiple virtual computers—form the backbone of cloud computing. Because they are both ubiquitous and essential, they are security-critical applications that make attractive targets for potential attackers., , greater-bostonboston-university
Avocado ProjectThe goal of the Avocado project, as a generic test automation framework, is to provide a solid foundation for software projects to build their testing needs on. With Avocado, common testing problems are solved at the framework level, and developers can spend more of their time writing tests that, by …, brnoczech-technical-university karlstad-university