Fuzzing at Scale: The Untold Story of the Scheduler

arXiv:2406.18058v1 Announce Type: new
Abstract: How to search for bugs in 1,000 programs using a pre-existing fuzzer and a standard PC? We consider this problem and show that a well-designed strategy that determines which programs to fuzz and for how long can greatly impact the number of bugs found across the programs. In fact, the impact of employing an effective strategy is comparable to that of utilizing a state-of-the-art fuzzer. The considered problem is referred to as fuzzing at scale, …

arxiv bugs can cs.cr found fuzz fuzzer fuzzing impact problem scale scheduler search standard story strategy using