This repo is the code repo for CCS 2020 paper "A Systematic Study of Elastic Objects in Kernel Exploitation"
code - LLVM implementation of static analysis
defense - Hardend kernel using the isolation mechanism described in the paper
inputs - Programs that can manipulate elastic objects in FreeBSD, Linux, and XNU
kernels - The IR code of FreeBSD, Linux 5.5.3 (tiny, defconfig), and xnu-4906.241.1 (xnudeps)
scripts - Scripts that help building this repo
vm - Scripts to setup virtual Machine for kernel fuzzing and exploitation
human-study - PoCs and environments for vulnerabilities used in human study
Please check scripts/build_essential.sh
for the setup of the environment.
Please see this patch to build a clang that will generate a complete set of O0 bitcode for Linux kernel.
The method of identifying the elastic objects and the design of the hardening technique described in the paper and implemented in this code repo are in the proccess of applying for a patent.
Please email to [email protected] if you have questions.