chipsec.modules.tools.vmm.hypercallfuzz module

Pretty simple VMM hypercall fuzzer

Usage:

chipsec_main.py -i -m tools.vmm.hypercallfuzz [-a <mode>,<vector_reg>,<maxval>,<iterations>]

• modeHypercall fuzzing mode

  • exhaustive : Fuzz all arguments exhaustively in range [0:<maxval>] (default)

  • random : Send random values in all registers in range [0:<maxval>]

• vector_reg : Hypercall vector register

• maxval : Maximum value of each register

• iterations : Number of iterations in random mode

Where:

• []: optional line

Examples:

>>> chipsec_main.py -i -m tools.vmm.hypercallfuzz
>>> chipsec_main.py -i -m tools.vmm.hypercallfuzz -a random,22,0xFFFF,1000

Additional options set within the module:

• DEFAULT_VECTOR_MAXVAL : Default maximum value

• DEFAULT_MAXVAL_EXHAUSTIVE : Default maximum value for exhaustive testing

• DEFAULT_MAXVAL_RANDOM : Default maximum value for random testing

• DEFAULT_RANDOM_ITERATIONS : Default iterations for random testing

• _FLUSH_LOG_EACH_ITER : Set to flush log after each iteration

• _LOG_ALL_GPRS : Display log of each iteration values

Note

• Returns a Warning by default

• System may be in an unknown state, further evaluation may be needed

Important

• This module is designed to run in a VM environment

• Behavior on physical HW is undefined