Towards Correct and Efficient Persistent Fuzzing: Dynamic Coverage Removal and State Management
| dc.contributor.author | Earp, Sydney Kathryn | en |
| dc.contributor.committeechair | Hicks, Matthew | en |
| dc.contributor.committeemember | Yao, Danfeng | en |
| dc.contributor.committeemember | Chung, Taejoong Tijay | en |
| dc.contributor.department | Computer Science and#38; Applications | en |
| dc.date.accessioned | 2025-06-21T08:00:28Z | en |
| dc.date.available | 2025-06-21T08:00:28Z | en |
| dc.date.issued | 2025-06-12 | en |
| dc.description.abstract | Coverage-guided fuzzing is a powerful technique for automatically discovering software bugs and security vulnerabilities. This work improves the efficiency and correctness of coverage-guided fuzzers by introducing dynamic removal of redundant coverage instrumentation and implementing a state-managed version of persistent mode. Traditional coverage instrumentation remains active even after code regions have been thoroughly explored, resulting in unnecessary runtime overhead. Meanwhile, persistent fuzzing—used to accelerate input execution by looping the target program in memory—can suffer from state contamination between test cases. To address these challenges, this system dynamically disables coverage tracking for already-covered paths and uses compiler-inserted instrumentation to restore global variables, heap allocations, and file state at the start of each iteration. The result is a fast, self-contained fuzzing framework that improves execution throughput and test isolation, without requiring OS-level support or recompilation. | en |
| dc.description.abstractgeneral | Modern software systems are complex, and finding bugs or vulnerabilities in them is difficult and time-consuming. One popular method to automate this process is called fuzzing, where a program is repeatedly tested using random or unexpected inputs to see if it crashes or behaves incorrectly. This research focuses on a particular kind of fuzzing that uses feedback to explore new parts of the program. However, this approach can be inefficient—it often checks the same parts of the program repeatedly and may reuse parts of memory that still contain leftovers from previous tests, which can cause inaccurate results. This work improves the speed and reliability of fuzzing by removing unnecessary checks and ensuring that the program starts fresh for every test. These improvements make fuzzing faster and more trustworthy for finding bugs in real software. | en |
| dc.description.degree | Master of Science | en |
| dc.format.medium | ETD | en |
| dc.identifier.other | vt_gsexam:44126 | en |
| dc.identifier.uri | https://hdl.handle.net/10919/135550 | en |
| dc.language.iso | en | en |
| dc.publisher | Virginia Tech | en |
| dc.rights | In Copyright | en |
| dc.rights.uri | http://rightsstatements.org/vocab/InC/1.0/ | en |
| dc.subject | Fuzzing | en |
| dc.subject | Software Security | en |
| dc.subject | Program Instrumentation | en |
| dc.title | Towards Correct and Efficient Persistent Fuzzing: Dynamic Coverage Removal and State Management | en |
| dc.type | Thesis | en |
| thesis.degree.discipline | Computer Science & Applications | en |
| thesis.degree.grantor | Virginia Polytechnic Institute and State University | en |
| thesis.degree.level | masters | en |
| thesis.degree.name | Master of Science | en |
Files
Original bundle
1 - 1 of 1