Software and Computational Systems Lab

Publications about Fuzzing

1. T. Lemberger and H. Wachowitz. AFL-TC: Transforming Fuzzer Test Inputs for Test-Comp (Competition Contribution). In Proceedings of the 29th International Conference on Fundamental Approaches to Software Engineering (FASE 2026, Turin, Italy, April 11-16), LNCS 16504, 2026. Springer. Keyword(s): Software Testing, Fuzzing Funding: DFG-CONVEY, DFG-COOP PDF Supplement
   Artifact(s)

   1. doi:10.5281/zenodo.18060896
   Abstract

   AFL-TC is a tool chain that integrates AFL++ into the environment of Test-Comp. Coverage-guided greybox fuzzers like AFL++ produce raw binary data that is given to programs as input on stdin, without any knowledge of how this data is interpreted. In contrast to that, Test-Comp requires structured XML descriptions of test cases that list a sequence of individual input values, which are read whenever the program calls an input function. Previous adaptations of fuzzers used tool-specific modifications for Test-Comp. Now, AFL-TC demonstrates a flexible solution that decouples the test generation from the Test-Comp format: AFL-TC first runs AFL++ (or any other tester that produces binary input for stdin), then replays each input with a test harness that (a) records how the test input is interpreted by the program and (b) outputs the recording as corresponding XML elements. To provide test cases early, AFL-TC employs a monitor that triggers a transformation whenever new test files are discovered. AFL-TC participated in both Test-Comp categories Cover-Error and Cover-Branches. It placed 6th overall, 4th among active participants, and best in the sub-category C.coverage-branches.Arrays
   BibTeX Entry

   @inproceedings{FASE26b, author = {T.~Lemberger and H.~Wachowitz}, title = {{AFL-TC}: Transforming Fuzzer Test Inputs for {Test-Comp} (Competition Contribution)}, booktitle = {Proceedings of the 29th International Conference on Fundamental Approaches to Software Engineering (FASE~2026, Turin, Italy, April 11-16)}, pages = {}, year = {2026}, series = {LNCS~16504}, publisher = {Springer}, doi = {}, url = {https://gitlab.com/sosy-lab/software/test-to-witness}, pdf = {https://www.sosy-lab.org/research/pub/2026-FASE.AFL-TC_Transforming_Fuzzer_Test_Inputs_for_Test-Comp.pdf}, abstract = {AFL-TC is a tool chain that integrates AFL++ into the environment of Test-Comp. Coverage-guided greybox fuzzers like AFL++ produce raw binary data that is given to programs as input on stdin, without any knowledge of how this data is interpreted. In contrast to that, Test-Comp requires structured XML descriptions of test cases that list a sequence of individual input values, which are read whenever the program calls an input function. Previous adaptations of fuzzers used tool-specific modifications for Test-Comp. Now, AFL-TC demonstrates a flexible solution that decouples the test generation from the Test-Comp format: AFL-TC first runs AFL++ (or any other tester that produces binary input for stdin), then replays each input with a test harness that (a) records how the test input is interpreted by the program and (b) outputs the recording as corresponding XML elements. To provide test cases early, AFL-TC employs a monitor that triggers a transformation whenever new test files are discovered. AFL-TC participated in both Test-Comp categories Cover-Error and Cover-Branches. It placed 6th overall, 4th among active participants, and best in the sub-category C.coverage-branches.Arrays}, keyword = {Software Testing, Fuzzing}, artifact = {10.5281/zenodo.18060896}, funding = {DFG-CONVEY, DFG-COOP}, }