bb13d015a4
Otherwise, it fails with this error: Get:3 http://security.debian.org/debian-security buster/updates InRelease Reading package lists... E: Repository 'http://deb.debian.org/debian buster InRelease' changed its 'Suite' value from 'stable' to 'oldstable' PiperOrigin-RevId: 391155532 |
||
|---|---|---|
| .. | ||
| Dockerfile | ||
| README.md | ||
| default-gvisor-config.cfg | ||
README.md
syzkaller is an unsupervised coverage-guided kernel fuzzer.
How to run syzkaller.
First, we need to load a syzkaller docker image:
make load-syzkaller
or we can rebuild it to use an up-to-date version of the master branch:
make rebuild-syzkaller
Then we need to create a directory with all artifacts that we will need to run a syzkaller. Then we will bind-mount this directory to a docker container.
We need to build runsc and place it on the artifact directory:
make RUNTIME_DIR=/tmp/syzkaller refresh
The next step is to create a syzkaller config. We can copy the default one and customize it:
cp images/syzkaller/default-gvisor-config.cfg /tmp/syzkaller/syzkaller.cfg
Now we can start syzkaller in a docker container:
docker run --privileged -it --rm \
-v /tmp/syzkaller:/tmp/syzkaller \
gvisor.dev/images/syzkaller:latest
All logs will be in /tmp/syzkaller/workdir.
How to run a syz repro.
We need to repeat all preparation steps from the previous section and save a syzkaller repro in /tmp/syzkaller/repro.
Now we can run syz-repro to reproduce a crash:
docker run --privileged -it --rm -v \
/tmp/syzkaller:/tmp/syzkaller --entrypoint="" \
gvisor.dev/images/syzkaller:latest ./bin/syz-repro -config \
/tmp/syzkaller/syzkaller.cfg /tmp/syzkaller/repro