IntelliGen: Automatic Driver Synthesis for FuzzTesting

03/01/2021
by   Mingrui Zhang, et al.
0

Fuzzing is a technique widely used in vulnerability detection. The process usually involves writing effective fuzz driver programs, which, when done manually, can be extremely labor intensive. Previous attempts at automation leave much to be desired, in either degree of automation or quality of output. In this paper, we propose IntelliGen, a framework that constructs valid fuzz drivers automatically. First, IntelliGen determines a set of entry functions and evaluates their respective chance of exhibiting a vulnerability. Then, IntelliGen generates fuzz drivers for the entry functions through hierarchical parameter replacement and type inference. We implemented IntelliGen and evaluated its effectiveness on real-world programs selected from the Android Open-Source Project, Google's fuzzer-test-suite and industrial collaborators. IntelliGen covered on average 1.08X-2.03X more basic blocks and 1.36X-2.06X more paths over state-of-the-art fuzz driver synthesizers FUDGE and FuzzGen. IntelliGen performed on par with manually written drivers and found 10 more bugs.

READ FULL TEXT

page 1

page 2

page 3

page 4

research
11/27/2012

Automatic Verification of Message-Based Device Drivers

We develop a practical solution to the problem of automatic verification...
research
09/13/2019

The Case for Writing Network Drivers in High-Level Programming Languages

Drivers are written in C or restricted subsets of C++ on all production-...
research
12/31/2012

The Geant4 Visualisation System - a multi-driver graphics system

From the beginning the Geant4 Visualisation System was designed to suppo...
research
06/10/2020

The Effects of Driver Coupling and Automation Impedance on Emergency Steering Interventions

Automatic emergency steering maneuvers can be used to avoid more obstacl...
research
07/27/2021

Development of a NIC driver in C#

Drivers have a special status among the developer community that sees th...
research
10/14/2022

PoolLines: Modeling Carpooling as Ephemeral Lines in GTFS for effective integration with Public Transit

In carpooling systems, a set of drivers owning a private car can accept ...
research
10/21/2022

A Low-Power 1 Gb/s Line Driver with Configurable Pre-Emphasis for Lossy Transmission Lines

A line driver with configurable pre-emphasis is implemented in a 65 nm C...

Please sign up or login with your details

Forgot password? Click here to reset