Oleksii Oleksenko
|
56abf22526
|
src/generator: configuration of the memory access mask
|
2021-04-08 15:29:14 +02:00 |
|
Oleksii Oleksenko
|
33035f2e0b
|
src/executor,model: use more registers
|
2021-04-08 15:28:24 +02:00 |
|
Oleksii Oleksenko
|
5befe320f4
|
src/executor: dynamically enable/disable MDS assists
|
2021-04-08 14:25:07 +01:00 |
|
Oleksii Oleksenko
|
1ee6e0a38d
|
src/generator: permit conditional branches in the last DAG node
|
2021-04-04 11:06:41 +02:00 |
|
Oleksii Oleksenko
|
302ae5589d
|
src/fuzzer: use coverage as feedback for TC size
|
2021-04-04 11:05:40 +02:00 |
|
Oleksii Oleksenko
|
b8a02ad37e
|
src/coverage: incremental pattern coverage
|
2021-04-04 11:04:48 +02:00 |
|
Oleksii Oleksenko
|
8890e474da
|
src/fuzzer: dynamically adapt the number of inputs to improve effectiveness
|
2021-04-04 11:01:19 +02:00 |
|
Oleksii Oleksenko
|
a0d933c982
|
src/tests:fix: priming.asm had an overflow
|
2021-04-04 10:57:59 +02:00 |
|
Oleksii Oleksenko
|
d5f24e4e50
|
src/coverage: combinatorial pattern coverage
|
2021-04-01 14:44:57 +02:00 |
|
Oleksii Oleksenko
|
79c75ae20c
|
src/postprocessor: NOP minimizer
|
2021-03-30 16:22:41 +02:00 |
|
Oleksii Oleksenko
|
9f40326ee9
|
src/generator: control probability of mem. accesses, not max number
|
2021-03-23 13:28:00 +01:00 |
|
Oleksii Oleksenko
|
25ef71dfba
|
src/coverage:fix: wrong mapping between assembly and binary
|
2021-03-23 12:36:02 +01:00 |
|
Oleksii Oleksenko
|
aa6ecaa5c8
|
src/coverage: collect three types of patterns separately
|
2021-03-23 12:34:25 +01:00 |
|
Oleksii Oleksenko
|
1caf605ccc
|
src/fuzzer: an option for multiline output
|
2021-03-22 15:21:34 +01:00 |
|
Oleksii Oleksenko
|
41e35019a1
|
src/coverage: memory dependency coverage
|
2021-03-22 15:21:12 +01:00 |
|
Oleksii Oleksenko
|
b3da00ef48
|
src/generator: labeled instrumentation
|
2021-03-22 15:20:25 +01:00 |
|
Oleksii Oleksenko
|
c29b35b3c5
|
src/coverage: calculate max coverage
|
2021-03-22 13:35:32 +01:00 |
|
Oleksii Oleksenko
|
0339c9adee
|
src/fuzzer: decoupled logging from the fuzzer
|
2021-03-22 11:06:27 +01:00 |
|
Oleksii Oleksenko
|
ac7e412077
|
src/fuzzer: more compact log, with explanation
|
2021-03-22 10:45:14 +01:00 |
|
Oleksii Oleksenko
|
af2063381b
|
src/test: removed an outdated test case
|
2021-03-22 10:33:46 +01:00 |
|
Oleksii Oleksenko
|
79f1855d7e
|
src/generator:fix: randomized alignment corrupted EFLAGS
|
2021-03-22 10:33:20 +01:00 |
|
Oleksii Oleksenko
|
dd65a8d0f0
|
src/model:fix: corrupted EFLAGS in the base model
|
2021-03-22 10:30:53 +01:00 |
|
Oleksii Oleksenko
|
f7248aedf4
|
src/coverage: basic pattern coverage
|
2021-03-22 10:23:58 +01:00 |
|
Oleksii Oleksenko
|
e7bd61cb16
|
updated 2021 copyright
|
2021-03-22 10:20:49 +01:00 |
|
Oleksii Oleksenko
|
4b12d8bb09
|
src/generator: started decoupling x86-specific code
|
2021-03-19 14:44:32 +01:00 |
|
Oleksii Oleksenko
|
226469126f
|
src: a new coverage interface
|
2021-03-19 14:36:02 +01:00 |
|
Oleksii Oleksenko
|
7f2ac72967
|
src/tests: priming
|
2021-03-19 12:05:40 +01:00 |
|
Oleksii Oleksenko
|
7026f6fad0
|
src/fuzzer: consider broken priming as a false positive, for now
|
2021-03-19 10:30:39 +01:00 |
|
Oleksii Oleksenko
|
ec4037a307
|
src/fuzzer: too large default value of min_primer_size
|
2021-03-19 10:29:44 +01:00 |
|
Oleksii Oleksenko
|
99c2c8223f
|
evaluation: faster "fast spectre v1"
|
2021-03-19 10:29:04 +01:00 |
|
Oleksii Oleksenko
|
7e49e40a24
|
src/generator: more sane DAG generator
|
2021-03-17 18:47:59 +01:00 |
|
Oleksii Oleksenko
|
232f594272
|
src/generator: random memory access alignment
|
2021-03-17 17:42:12 +01:00 |
|
Oleksii Oleksenko
|
25fa3cb826
|
src: replaced input_mask with entropy, for clarity
|
2021-03-17 17:06:48 +01:00 |
|
Oleksii Oleksenko
|
0b65a23008
|
src:fix: initialize all sandbox memory, not only aligned
|
2021-03-17 17:01:35 +01:00 |
|
Oleksii Oleksenko
|
4cdeaf28db
|
src/tests: noise level
|
2021-03-17 16:18:32 +01:00 |
|
Oleksii Oleksenko
|
0dee50dc35
|
src/generator: propagate src/dest info about operands to instruction classes
|
2021-03-17 14:28:55 +01:00 |
|
Oleksii Oleksenko
|
aad3de8504
|
src/generator: slightly simplified interface
|
2021-03-17 13:56:20 +01:00 |
|
Oleksii Oleksenko
|
ffda47178a
|
src/tests: generator test
|
2021-03-17 13:54:04 +01:00 |
|
Oleksii Oleksenko
|
ae99b7cb46
|
src/model: rollback on max speculation window
|
2021-03-16 13:56:26 +01:00 |
|
Oleksii Oleksenko
|
6f60c86e42
|
src/model: rollback on LFENCE
|
2021-03-16 13:27:43 +01:00 |
|
Oleksii Oleksenko
|
c24770b45c
|
src/model: CT-* with non-speculative stores
|
2021-03-15 17:21:31 +01:00 |
|
Oleksii Oleksenko
|
295c2b3c5b
|
src: minor
|
2021-03-08 14:05:13 +01:00 |
|
Oleksii Oleksenko
|
90992e2d9f
|
src/model: PC observer clause
|
2021-03-08 14:01:58 +01:00 |
|
Oleksii Oleksenko
|
2dcaea4124
|
evaluation/5_more_vulns: fully automated experiment
|
2021-03-03 16:06:18 +01:00 |
|
Oleksii Oleksenko
|
656bdb56fc
|
updated name
|
2021-03-01 18:23:57 +01:00 |
|
Oleksii Oleksenko
|
8d679e1b59
|
src/executor/x86: Evict+Reload mode
|
2021-02-25 16:30:19 +01:00 |
|
Oleksii Oleksenko
|
acdd792678
|
src/tests: a more reliable MDS test
|
2021-02-25 16:16:10 +01:00 |
|
Oleksii Oleksenko
|
a7c1a9de24
|
src/generator: distinguish between stores and loads
|
2021-02-24 11:34:22 +00:00 |
|
Oleksii Oleksenko
|
2ae569bf68
|
src:fix: MDS-triggering page was not properly initialized
|
2021-02-23 18:47:43 +01:00 |
|
Oleksii Oleksenko
|
8c1670fede
|
src/tests: ARCH-SEQ
|
2021-02-23 16:40:19 +01:00 |