Cited 0 time in
RGFuzz: Rule-Guided Fuzzer for WebAssembly Runtimes
| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Park, Junyoung | - |
| dc.contributor.author | Kim, Yunho | - |
| dc.contributor.author | Yun, Insu | - |
| dc.date.accessioned | 2025-07-28T03:00:22Z | - |
| dc.date.available | 2025-07-28T03:00:22Z | - |
| dc.date.issued | 2025-06 | - |
| dc.identifier.issn | 1081-6011 | - |
| dc.identifier.issn | 2375-1207 | - |
| dc.identifier.uri | https://scholarworks.bwise.kr/hanyang/handle/2021.sw.hanyang/208335 | - |
| dc.description.abstract | WebAssembly runtimes embed compilers to compile WebAssembly code into machine code for execution. These compilers use various compiler rules to define how to optimize and lower the WebAssembly code. However, existing testing tools struggle to explore these rules effectively due to their complexity. Moreover, they cannot generate test cases diversely due to their limitations, which can result in undetected bugs. This paper presents RGFuzz, a differential fuzzer for WebAssembly runtimes, addressing the existing limitations through two novel techniques. First, RGFuzz uses rule-guided fuzzing; which extracts compiler rules from the WebAssembly runtime, wasmtime, and uses them to guide test case generation, thereby effectively exploring complex rules. Second, RGFuzz uses reverse stack-based generation to generate test cases diversely. These techniques enable RGFuzz to find bugs effectively in WebAssembly runtimes. We implemented RGFuzz and evaluated it on six engines: wasmtime, Wasmer, WasmEdge, V8, SpiderMonkey, and JavaScriptCore. As a result, RGFuzz found 20 new bugs in these engines, including one bug with a CVE ID issued. Our evaluation demonstrates that RGFuzz outperforms existing fuzzers by utilizing the extracted rules and diversely generating test cases. | - |
| dc.format.extent | 19 | - |
| dc.language | 영어 | - |
| dc.language.iso | ENG | - |
| dc.title | RGFuzz: Rule-Guided Fuzzer for WebAssembly Runtimes | - |
| dc.type | Article | - |
| dc.identifier.doi | 10.1109/SP61157.2025.00003 | - |
| dc.identifier.scopusid | 2-s2.0-105009342406 | - |
| dc.identifier.wosid | 001540716400051 | - |
| dc.identifier.bibliographicCitation | Proceedings - IEEE Symposium on Security and Privacy, pp 920 - 938 | - |
| dc.citation.title | Proceedings - IEEE Symposium on Security and Privacy | - |
| dc.citation.startPage | 920 | - |
| dc.citation.endPage | 938 | - |
| dc.type.docType | Proceedings Paper | - |
| dc.description.isOpenAccess | N | - |
| dc.description.journalRegisteredClass | scopus | - |
| dc.relation.journalResearchArea | Computer Science | - |
| dc.relation.journalResearchArea | Mathematics | - |
| dc.relation.journalWebOfScienceCategory | Computer Science, Information Systems | - |
| dc.relation.journalWebOfScienceCategory | Computer Science, Theory & Methods | - |
| dc.relation.journalWebOfScienceCategory | Mathematics, Applied | - |
| dc.subject.keywordPlus | Codes (symbols) | - |
| dc.subject.keywordPlus | Program compilers | - |
| dc.subject.keywordAuthor | Codes (symbols) | - |
| dc.subject.keywordAuthor | Program Compilers | - |
| dc.subject.keywordAuthor | Machine Codes | - |
| dc.subject.keywordAuthor | Novel Techniques | - |
| dc.subject.keywordAuthor | Runtimes | - |
| dc.subject.keywordAuthor | Test Case | - |
| dc.subject.keywordAuthor | Test Case Generation | - |
| dc.subject.keywordAuthor | Testing Tools | - |
| dc.subject.keywordAuthor | Engines | - |
| dc.identifier.url | https://ieeexplore.ieee.org/document/11023506 | - |
Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.
222, Wangsimni-ro, Seongdong-gu, Seoul, 04763, Korea+82-2-2220-1366
COPYRIGHT © 2024 HANYANG UNIVERSITY.
Certain data included herein are derived from the © Web of Science of Clarivate Analytics. All rights reserved.
You may not copy or re-distribute this material in whole or in part without the prior written consent of Clarivate Analytics.
