Publication Details
Dfuzzer: A D-Bus Service Fuzzing Tool
MARHEFKA, M.; MÜLLER, P. Dfuzzer: A D-Bus Service Fuzzing Tool. In Proceedings of IEEE Seventh International Conference on Software Testing, Verification and Validation Workshopsn. Cleveland: IEEE Computer Society, 2014. p. 383-389. ISBN: 978-0-7695-5194-4.
Czech title
Dfuzzer: Nástroj pro fuzz testování D-Bus služeb
Type
conference paper
Language
English
Authors
Marhefka Matúš, Ing.
Müller Petr, Ing.
Müller Petr, Ing.
Keywords
D-Bus fuzzer fuzz testing automated testing pseudo-random data generation IPC
Abstract
We present Dfuzzer, a fully automated tool for fuzz testing programs communicating via D-Bus. D-Bus is the prevalent modern mechanism for an inter-process communication in the GNU/Linux ecosystem. Using D-Bus introspection, Dfuzzer is able to acquire the structure of the parameters expected by the target program. It can then generate ballast data respecting this structure, so the target program starts using such data incorrectly if it does not carefully validate it. We have found numerous bugs in various parts of the GNU/Linux operating system, including GNOME Shell and systemd.
Published
2014
Pages
383–389
Proceedings
Proceedings of IEEE Seventh International Conference on Software Testing, Verification and Validation Workshopsn
ISBN
978-0-7695-5194-4
Publisher
IEEE Computer Society
Place
Cleveland
DOI
UT WoS
000356142700060
EID Scopus
BibTeX
@inproceedings{BUT111536,
author="Matúš {Marhefka} and Petr {Müller}",
title="Dfuzzer: A D-Bus Service Fuzzing Tool",
booktitle="Proceedings of IEEE Seventh International Conference on Software Testing, Verification and Validation Workshopsn",
year="2014",
pages="383--389",
publisher="IEEE Computer Society",
address="Cleveland",
doi="10.1109/ICSTW.2014.51",
isbn="978-0-7695-5194-4"
}