Write a Blog >>
ISSTA 2021
Sun 11 - Sat 17 July 2021 Online
co-located with ECOOP and ISSTA 2021
Thu 15 Jul 2021 00:40 - 01:00 at ISSTA 2 - Session 6 (time band 2) Fuzzing Chair(s): Lingming Zhang
Fri 16 Jul 2021 19:00 - 19:20 at ISSTA 1 - Session 19 (time band 1) Testing 2 Chair(s): Rohan Padhye

Fuzzers aware of the input grammar can explore deeper program
states using grammar-aware mutations. Existing grammar-aware
fuzzers are ineffective at synthesizing complex bug triggers due to:
(i) grammars introducing a sampling bias during input generation
due to their structure, and (ii) the current mutation operators for
parse trees performing localized small-scale changes.
Gramatron uses grammar automatons in conjunction with aggressive
mutation operators to synthesize complex bug triggers
faster. We build grammar automatons to address the sampling bias.
It restructures the grammar to allow for unbiased sampling from the
input state space. We redesign grammar-aware mutation operators
to be more aggressive, i.e., perform large-scale changes.
Gramatron can consistently generate complex bug triggers in
an efficient manner as compared to using conventional grammars
with parse trees. Inputs generated from scratch by Gramatron have
higher diversity as they achieve up to 24.2% more coverage relative
to existing fuzzers. Gramatron makes input generation 98% faster
and the input representations are 24% smaller. Our redesigned
mutation operators are 6.4× more aggressive while still being 68% faster
at performing these mutations. We evaluate Gramatron across three
interpreters with 10 known bugs consisting of three complex bug
triggers and seven simple bug triggers against two Nautilus variants.
Gramatron finds all the complex bug triggers reliably and faster. For
the simple bug triggers, Gramatron outperforms Nautilus four out
of seven times. To demonstrate Gramatron’s effectiveness in the
wild, we deployed Gramatron on three popular interpreters for a
10-day fuzzing campaign where it discovered 10 new vulnerabilities.

Thu 15 Jul

Displayed time zone: Brussels, Copenhagen, Madrid, Paris change

00:20 - 01:20
Session 6 (time band 2) FuzzingTechnical Papers at ISSTA 2
Chair(s): Lingming Zhang University of Illinois at Urbana-Champaign
00:20
20m
Talk
Seed Selection for Successful Fuzzing
Technical Papers
Adrian Herrera Australian National University; DST, Hendra Gunadi Australian National University, Shane Magrath DST, Michael Norrish CSIRO’s Data61; Australian National University, Mathias Payer EPFL, Tony Hosking Australian National University; CSIRO’s Data61
DOI Pre-print File Attached
00:40
20m
Talk
Gramatron: Effective Grammar-Aware Fuzzing
Technical Papers
Prashast Srivastava Purdue University, Mathias Payer EPFL
DOI Pre-print Media Attached File Attached
01:00
20m
Talk
QFuzz: Quantitative Fuzzing for Side Channels
Technical Papers
Yannic Noller National University of Singapore, Saeid Tizpaz-Niari University of Texas at El Paso
DOI Pre-print Media Attached

Fri 16 Jul

Displayed time zone: Brussels, Copenhagen, Madrid, Paris change

18:20 - 20:00
Session 19 (time band 1) Testing 2Technical Papers at ISSTA 1
Chair(s): Rohan Padhye Carnegie Mellon University
18:20
20m
Talk
Model-Based Testing of Networked Applications
Technical Papers
Yishuai Li University of Pennsylvania, Benjamin C. Pierce University of Pennsylvania, Steve Zdancewic University of Pennsylvania
DOI Pre-print
18:40
20m
Talk
Validating Static Warnings via Testing Code Fragments
Technical Papers
Ashwin Kallingal Joshy Iowa State University, Xueyuan Chen Iowa State University, Benjamin Steenhoek Iowa State University, Wei Le Iowa State University
DOI
19:00
20m
Talk
Gramatron: Effective Grammar-Aware Fuzzing
Technical Papers
Prashast Srivastava Purdue University, Mathias Payer EPFL
DOI Pre-print Media Attached File Attached
19:20
20m
Talk
Empirically Evaluating Readily Available Information for Regression Test Optimization in Continuous Integration
Technical Papers
Daniel Elsner TU Munich, Florian Hauer TU Munich, Alexander Pretschner TU Munich, Silke Reimer IVU Traffic Technologies
DOI
19:40
20m
Talk
Log-Based Slicing for System-Level Test Cases
Technical Papers
Salma Messaoudi University of Luxembourg, Donghwan Shin University of Luxembourg, Annibale Panichella Delft University of Technology; University of Luxembourg, Domenico Bianculli University of Luxembourg, Lionel Briand University of Luxembourg; University of Ottawa
DOI Media Attached