信息网络安全

信息网络安全 ›› 2025, Vol. 25 ›› Issue (7): 1007-1020.doi: 10.3969/j.issn.1671-1122.2025.07.001

• 理论研究 • 上一篇    下一篇

云边端内核竞态漏洞大模型分析方法研究

陈平1, 骆明宇2()   

  1. 1.复旦大学大数据研究院,上海 200433
    2.复旦大学计算机科学技术学院,上海 200433
  • 收稿日期:2025-05-10 出版日期:2025-07-10 发布日期:2025-08-07
  • 通讯作者: 骆明宇 E-mail:luomingyu2002@126.com
  • 作者简介:陈平(1985—),男,江苏,研究员,博士,主要研究方向为软件和系统安全|骆明宇(2003—),男,安徽,博士研究生,主要研究方向为人工智能赋能传统安全
  • 基金资助:
    国家重点研发计划(2022YFB3104300)

Research on Large Model Analysis Methods for Kernel Race Vulnerabilities in Cloud-Edge-Device Scenarios

CHEN Ping1, LUO Mingyu2()   

  1. 1. Institute of Big Data, Fudan University, Shanghai 200433, China
    2. School of Computer Science, Fudan University, Shanghai 200433, China
  • Received:2025-05-10 Online:2025-07-10 Published:2025-08-07
  • Contact: LUO Mingyu E-mail:luomingyu2002@126.com

RichHTML

41

PDF (PC)

75

摘要:

随着云边端场景的广泛应用,操作系统内核竞态条件检测面临新的挑战,其复杂性日益提升。针对这一问题,文章提出一种基于大语言模型的内核竞态条件分析方法LogFuzz。该方法通过知识注入机制,实现对系统调用依赖关系的动态学习与精准分析,有效缓解云边端环境下内核漏洞分析的难题。研究首先利用崩溃日志进行系统调用模式提取与分析,解决传统方法在复杂依赖关系建模中的局限性。在此基础上,引入大语言模型的领域知识,通过参数高效微调框架深度挖掘系统调用的语义与语法特征,指导模糊测试。实验结果表明,在Linux内核测试中,文章所提方法在18 h后的分支覆盖率较传统方法提升3.31%,并成功触发7个系统崩溃。该方法有助于提升系统安全,为云边端内核竞态条件检测提供一种技术路径。

关键词: 内核竞态条件, 系统调用序列, 模糊测试, 大语言模型, 云边端安全

Abstract:

With the widespread application of cloud-edge-device scenarios, kernel race condition detection in operating systems faces new challenges, and its complexity is increasing. To address this issue, this paper proposed a kernel race condition analysis method called LogFuzz based on large language model. This method achieved dynamic learning and precise analysis of system call dependencies through a knowledge injection mechanism, effectively alleviating the difficulties in kernel vulnerability analysis in cloud-edge-device environments. The research first utilized crash logs for system call pattern extraction and analysis, addressing the limitations of traditional methods in modeling complex dependencies. On this basis, domain knowledge from large language models was introduced, and system call semantics and syntactic features are deeply mined through a parameter-efficient fine-tuning framework to guide fuzz testing. Experimental results show that the proposed method, in Linux kernel testing, improved branch coverage by 3.31% compared to traditional methods after 18 hours and successfully triggered 7 system crashes. The method proposed in this paper provides a new technical path for kernel race condition detection in cloud-edge-device scenarios and is of great significance for enhancing system security.

Key words: kernel race conditions, system call sequences, fuzz testing, large language model, cloud-edge-device security

中图分类号: