Giters

sslab-gatech / SNAP

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Hardware Support to Improve Fuzzing Performance and Precision

SNAP is a customized hardware platform that implements hardware primitives to enhance the performance and precision of coverage-guided fuzzing. SNAP was implemented on top of the RISC-V BOOM core and was prototyped in the FireSim platform that runs on cloud FPGAs (Amazon EC2 F1).

To run SNAP, you would need to replace the existing HW design directory (generator) with the SNAP's one and build a new HW design that will be mapped to FPGA instances. While all the necessary instructions to run FPGA instances are provided in the FireSim’s documentation, we add some detailed steps that might not be clearly indicated in the documentation.

Initial Setup/Installation for FireSim

Please refer to the FireSim documentation.

Setting up the FireSim Repo

When you set up a manager instance during the initial setup process, check out a specific tag, 1.9.0.

git clone https://github.com/firesim/firesim.git
cd firesim
git checkout 1.9.0 # command to check out a specific tag
./build-setup.sh fast

Replacing the Existing "generator" Directory.

git clone https://github.com/sslab-gatech/SNAP.git .
rm -rf ~/firesim/generator
cp -rf ./SNAP/generator ~/firesim/

Building a New HW Design for SNAP

  1. In ~/firesim/deploy/config_build.ini,
  • Under [afibuild], add a bucket name:
s3bucketname=firesim-snap
  • Under [builds], add a build recipe name (comment out other things).
firesim-boom-singlecore-no-nic-l2-llc4mb-ddr3-snap
  • Undr [agfistoshare], add a agfi name (comment out other things).
firesim-boom-singlecore-no-nic-l2-llc4mb-ddr3-snap
  1. In ~/firesim/deploy/config_build_recipes.ini,
  • Add a build recipe.
[firesim-boom-singlecore-no-nic-l2-llc4mb-ddr3-snap]
DESIGN=FireSim
TARGET_CONFIG=DDR3FRFCFSLLC4MB_FireSimLargeBoomConfig
PLATFORM_CONFIG=F75MHz_BaseF1Config
instancetype=f1.2xlarge
deploytriplet=None
  1. Build a new HW design (This will take a long time, ~10 hours).
firesim buildafi

After completed, you will get a new agfi number for your new HW design.
Refer to the documentation for more details.

Running FireSim Simulations with SNAP

  1. In ~/firesim/deploy/config_runtime.ini,
  • Change the default HW config.
defaulthwconfig=firesim-boom-singlecore-no-nic-l2-llc4mb-ddr3-snap
  1. In ~/firesim/deploy/config_hwdb.ini,
  • Add a new HW database.
[firesim-boom-singlecore-no-nic-l2-llc4mb-ddr3-snap]
agfi=agfi-062b20613c52a2313 # replace with your agfi after HW build completes
deploytripletoverride=None
customruntimeconfig=None

  1. Launch FPGA instance(s) following the documentation.

  2. After an FPGA instance is launched, insert modules into the kernel.

# insmod cmap.ko
# insmod lbq.ko
  1. Run binaries to trace!

Publications

@inproceedings{ding:snap,
  title        = {{Hardware Support to Improve Fuzzing Performance and Precision (to appear)}},
  author       = {Ren Ding and Yonghae Kim and Fan Sang and Wen Xu and Gururaj Saileshwar and Taesoo Kim},
  booktitle    = {Proceedings of the 28th ACM Conference on Computer and Communications Security (CCS)},
  month        = nov,
  year         = 2021,
  address      = {Seoul, South Korea},
}

About

Languages

Language:C 96.2%Language:Assembly 1.1%Language:Scala 0.8%Language:SystemVerilog 0.8%Language:Makefile 0.2%Language:Shell 0.2%Language:SCSS 0.1%Language:Verilog 0.1%Language:Python 0.1%Language:Perl 0.1%Language:C++ 0.1%Language:XSLT 0.0%Language:VHDL 0.0%Language:Stata 0.0%Language:Roff 0.0%Language:SmPL 0.0%Language:Yacc 0.0%Language:TeX 0.0%Language:CSS 0.0%Language:Tcl 0.0%Language:Lex 0.0%Language:Awk 0.0%Language:HTML 0.0%Language:UnrealScript 0.0%Language:CMake 0.0%Language:M4 0.0%Language:Gherkin 0.0%Language:Jupyter Notebook 0.0%Language:ANTLR 0.0%Language:Raku 0.0%Language:JavaScript 0.0%Language:LLVM 0.0%Language:Clojure 0.0%Language:XS 0.0%Language:Ruby 0.0%Language:sed 0.0%