Collaborative Research: SaTC: CORE: Small: Self-Driving Continuous Fuzzing

协作研究：SaTC：核心：小型：自驱动连续模糊测试

• 批准号: 2247880
• 负责人: Ardalan Amiri Sani
• 金额: $ 30万
• 依托单位: University of California-Irvine
• 依托单位国家: 美国
• 项目类别: Continuing Grant
• 财政年份: 2023
• 资助国家: 美国
• 起止时间: 2023-08-01 至 2026-07-31
• 项目状态: 未结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=2247880&HistoricalAwards=false
• 关键词: Collaborative; Research; SaTC; CORE; Small

Continuous fuzzing is an emerging software testing paradigm that has gained significant traction in recent years. In this paradigm, a fuzzer is applied 24/7 to a piece of software as it is being developed/updated, hoping that the fuzzer can find the software bugs as soon as possible. It has been shown to be effective in finding bugs in large and complex pieces of software such as the Linux kernel, e.g., finding thousands of bugs and vulnerabilities in the past few years. Despite its perceived success, this project identifies an important limitation in today’s continuous fuzzing: a significant delay in finding a bug. This is fundamentally due to the lack of built-in features to make adjustments/improvements and be aware of its performance over time in general. We refer to this ability as “self-drive”. We argue that this is a critical ability because continuous fuzzing (1) by design needs to support the rapidly changing fuzzing target (under development) and (2) invests a large amount of resources and should use them effectively. The project further finds that (1) the first part of this delay is because the continuous fuzzer is initially incapable of finding some bugs, and (2) the second part of this delay is because the continuous fuzzer fails to use its resources effectively to find the bugs that it is already capable of finding. The successful completion of the project will enable continuous fuzzing to find bugs and vulnerabilities faster. Consequently, the project will help improve the quality of software systems tested with continuous fuzzing, which ultimately benefits society and the economy at large. This project investigates two research thrusts to address the aforementioned limitation. The goal of the first thrust is to improve the capability of the continuous fuzzer to find bugs that it could not find before. More specifically, it develops the capability of continuous generation and refinement of software interface descriptions. It investigates novel methods that combine various analysis techniques to overcome the challenge of analyzing a large-scale piece of software, providing the ability of self-correction and better precision and scalability. The goal of the second thrust is to enable the continuous fuzzer to find the bugs that it is capable of finding faster. This thrust investigates a scheduler for the continuous fuzzer. The goal of the scheduler is to optimize the use of existing resources of a continuous fuzzer to adequately fuzz all the interfaces of a given piece of software. It also explores a resource planning strategy for the continuous fuzzer to dynamically and automatically adjust the amount of resources available to it to achieve acceptable performance in terms of bug-finding delay.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

连续模糊测试是一种新兴的软件测试范例，近年来获得了巨大的吸引力。在这个范例中，一个模糊器24/7应用于一个软件，因为它正在开发/更新，希望模糊器可以尽快找到软件错误。它已被证明在大型和复杂的软件中发现错误是有效的，例如Linux内核，例如，在过去的几年里发现了成千上万的错误和漏洞。尽管它的成功，这个项目确定了一个重要的限制，在今天的连续模糊：一个显着的延迟在寻找一个错误。这从根本上是由于缺乏内置的功能来进行调整/改进，并了解其性能随着时间的推移。我们把这种能力称为“自我驱动”。我们认为，这是一个关键的能力，因为连续模糊（1）的设计需要支持快速变化的模糊目标（正在开发中）和（2）投资了大量的资源，应该有效地利用它们。该项目进一步发现，（1）该延迟的第一部分是因为连续模糊器最初无法找到一些错误，以及（2）该延迟的第二部分是因为连续模糊器未能有效地使用其资源来找到它已经能够找到的错误。该项目的成功完成将使持续的模糊搜索能够更快地找到错误和漏洞。因此，该项目将有助于提高连续模糊测试的软件系统的质量，最终造福于社会和经济。本项目调查了两个研究重点，以解决上述限制。第一个推进的目标是提高连续模糊器发现以前无法发现的错误的能力。更具体地说，它开发了软件接口描述的连续生成和细化的能力。它研究了新的方法，联合收割机的各种分析技术，以克服分析一个大规模的软件，提供自我校正的能力和更好的精度和可扩展性的挑战。第二个推进的目标是使连续模糊器能够更快地找到它能够找到的错误。本文研究了连续模糊器的调度算法。调度器的目标是优化连续模糊器的现有资源的使用，以充分模糊给定软件的所有接口。它还探讨了一个资源规划策略的连续模糊动态和自动调整的资源量提供给它，以实现可接受的性能方面的缺陷发现delay.This奖项反映了NSF的法定使命，并已被认为是值得通过评估使用基金会的智力价值和更广泛的影响审查标准的支持。