Using Fuzzers and Lightweight Specifications to Reveal Semantic Bugs (VORTEX 2022)

Mon 6 June - Thu 7 July 2022 Berlin, Germany

Who

Amirfarhad Nilizadeh, Gary T. Leavens

Track

VORTEX 2022

Time Zone

The program is currently displayed in (GMT+02:00) Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna.

Use conference time zone: (GMT+02:00) Amsterdam, Berlin, Bern, Rome, Stockholm, ViennaSelect other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

By setting a time band, the program will dim events that are outside this time window. This is useful for (virtual) conferences with a continuous program (with repeated sessions).
The time band will also limit the events that are included in the personal iCalendar subscription service.

Display full programSpecify a time band

Save

When

Mon 6 Jun 2022 16:10 - 16:30 at Stockholm - Second afternoon session Chair(s): Volker Stolz

Abstract

Although fuzzers have been successful in revealing semantic bugs that lead to crashes, fuzzers do not reveal semantic bugs that do not lead to crashes. Furthermore, the inputs that lead to crashes may be invalid and thus may not reveal semantic bugs at all if they are not in the program’s intended input domain. On the other hand, runtime assertion checking (RAC) may be used for revealing semantic bugs, although it needs input test data that can trigger these bugs.

We propose to combine fuzzing tools and RAC in a complementary manner to leverage their benefits and overcome these problems. That is, a fuzzing tool will generate an input test, and a RAC tool will make sure that the inputs are valid and check the results for semantic bugs.

Amirfarhad Nilizadeh

University of Central Florida

United States

Gary T. LeavensSpeaker