Explore virtual device fuzzing support in QEMU through this 29-minute conference talk by Alexander Bulekov and Bandan Das from Red Hat. Gain insights into QEMU and virtual devices, code analysis techniques, and the outline of fuzzing in QEMU. Discover the missing pieces in QEMU integration and learn about the fuzzing framework, including American Fuzzy Lop and state rewinds. Review the process of testing devices in QEMU, understand how to fuzz a device by writing a new QTest, and delve into the concept of a generic device fuzzer. Enhance your knowledge of virtual device security testing and fuzzing methodologies in the context of QEMU.
Overview
Syllabus
Intro
QEMU and Virtual Devices
Code Analysis
Fuzzing in QEMU - an outline
Missing pieces • QEMU integration
Fuzzing framework • American Fuzzy Lop
State rewinds
Recap: Testing Devices in QEMU
Fuzzing a Device Writing a new QTest test
Generic Device Fuzzer
Taught by
Linux Foundation
