Schfuzz: Detecting Concurrency Bugs with Feedback-Guided Fuzzing

Hiromasa Ito; Yutaka Matsubara; Hiroaki Takada; Hiroaki Takada

doi:10.5220/0011722100003464

Schfuzz: Detecting Concurrency Bugs with Feedback-Guided Fuzzing

Hiromasa Ito, Yutaka Matsubara, Hiroaki Takada, Hiroaki Takada

2023

Abstract

It is challenging to detect concurrency bugs with fuzzing. There are two main reasons for this. First, manifesting them by exploring input space is inefficient because they only occur under specific interleavings. Second, re-giving an input detected a bug in a fuzzing campaign does not necessarily reproduce the bug because typical runtimes do not schedule threads deterministically. This research proposes Schfuzz, a novel approach for detecting concurrency bugs with feedback-guided fuzzing. This approach executes programs under test deterministically based on test cases generated by fuzzers. In addition, it feeds back dynamic memory-access orders to aid fuzzers in detecting concurrency bugs more efficiently and effectively. We evaluate Schfuzz with a hand-made motivating example and four benchmark programs from SCTBench (Thomson et al., 2016). The result shows that it can detect concurrency bugs more efficiently and effectively than traditional feedback-guided fuzzing.

Download

Paper Citation

in Harvard Style

Ito H., Matsubara Y. and Takada H. (2023). Schfuzz: Detecting Concurrency Bugs with Feedback-Guided Fuzzing. In Proceedings of the 18th International Conference on Evaluation of Novel Approaches to Software Engineering - Volume 1: ENASE, ISBN 978-989-758-647-7, SciTePress, pages 273-282. DOI: 10.5220/0011722100003464

in Bibtex Style

@conference{enase23,
author={Hiromasa Ito and Yutaka Matsubara and Hiroaki Takada},
title={Schfuzz: Detecting Concurrency Bugs with Feedback-Guided Fuzzing},
booktitle={Proceedings of the 18th International Conference on Evaluation of Novel Approaches to Software Engineering - Volume 1: ENASE,},
year={2023},
pages={273-282},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0011722100003464},
isbn={978-989-758-647-7},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 18th International Conference on Evaluation of Novel Approaches to Software Engineering - Volume 1: ENASE,
TI - Schfuzz: Detecting Concurrency Bugs with Feedback-Guided Fuzzing
SN - 978-989-758-647-7
AU - Ito H.
AU - Matsubara Y.
AU - Takada H.
PY - 2023
SP - 273
EP - 282
DO - 10.5220/0011722100003464
PB - SciTePress