Unlocking Low Frequency Syscalls in Kernel Fuzzing with Dependency-Based RAG

Most coverage-guided kernel fuzzers test operating system kernels based on syscall sequence synthesis. However, there are still syscalls rarely or not covered (called low frequency syscalls, LFS) in a period of fuzzing, meaning the relevant code branches remain unexplored. This is due to the complex...

Full description

Saved in:
Bibliographic Details
Published inProceedings of the ACM on software engineering Vol. 2; no. ISSTA; pp. 848 - 870
Main Authors Zhang, Zhiyu, Li, Longxing, Liang, Ruigang, Chen, Kai
Format Journal Article
LanguageEnglish
Published New York, NY, USA ACM 22.06.2025
Subjects
Operating systems security
Security and privacy
RAG
Seed Generation
Kernel Fuzzing
Syscall Dependency
Online AccessGet full text

Cover

Be the first to leave a comment!
You must be logged in first