This is the repo for our paper: Value Peripheral Register Values for Fuzzing MCU Firmware.
.
├── Evaluation
│ └── ARM
│ ├── Utilities # Helper scripts written in python.
│ ├── Fuzzing # Working directory for realworld firmware.
│ └── Unit-Test # Working directory for unit-test firmware.
├── p2im
│ ├── afl
│ │ ├── afl-fuzz.c # AFL source code with VeRa plugins (add basic blocks statistics).
│ ├── qemu
│ │ └── src/qemu.git # Qemu source code with VeRa plugins.
├── README.md # This file.
└── install-requirements.txt # Required libs.
If you want to run test, just follow the tips below:
Ubuntu Linux 18.04 (tested)
git clone https://github.com/chunlin007/VeRa.git && cd VeRa./install-requirements.shcd p2im/qemu/src/qemu.git && ./quick-configure.shcd p2im/afl && makecd Evaluation/ARM/Units && ./run.py <mcu_model> <firmware_elf> <output_path>For example
cd Evaluation/ARM/Unit-Test && ./run.py f103 Firmware/Binaries-P2IM/ARDUINO-F103-ADC.elf outputscd Evaluation/ARM/Unit-Test && ./runbatch.pycd Evaluation/ARM/Fuzzing && ./CreateBaseDir.py -B FuzzBaseFIRMNAME=XXX make clean && FIRMNAME=XXX make runFor example,
FIRMNAME=Modbus make clean && FIRMNAME=Modbus make runIn case you would like to cite VeRa, you may use the following BibTex entry:
@INPROCEEDINGS{10301278,
author={Wang, Chunlin and Liang, Hongliang},
booktitle={2023 IEEE 34th International Symposium on Software Reliability Engineering (ISSRE)},
title={Value Peripheral Register Values for Fuzzing MCU Firmware},
year={2023},
pages={718-729},
}