Explore an innovative framework for automating device driver isolation in modern kernels through this OSDI '22 conference talk. Dive into the challenges of isolating device drivers and learn how KSplit addresses them by performing automated analyses on unmodified kernel and driver source code. Discover how KSplit identifies shared state between the kernel and driver, computes synchronization requirements for efficient isolation, and handles ambiguous pointers. Examine the evaluation of KSplit on nine Linux kernel subsystems, covering 354 device drivers, with a focus on the complex Ixgbe driver. Gain insights into the practical application of KSplit, including the minimal manual changes required and its potential for automating key tasks in driver isolation. Understand the performance implications and the broader impact of this approach on kernel security and reliability.
Overview
Syllabus
Intro
Driver vulnerabilities
Driver isolation architecture
Isolation performance
Challenge: Large interface boundary
Challenge: Complex data structures
Challenge: Low-level kernel/C idioms
Challenge: Concurrency primitives
KSplit design choices
Shared field analysis
Program Dependence Graph
Boundary Data Access Analysis: exa
Atomic Region Analysis
Infer marshaling requirements for po
Classify Pointers with Nescheck
Evaluation
Ixgbe: data synchronization optimization
Ixgbe: synchronization primitives
Ixgbe: pointer classification
Ixgbe: Manual work
Manual Work average across isolated
Performance overhead: memcached
Conclusions
Taught by
USENIX
