Beyond the Borrow Checker: Differential Fuzzing
Using a modern fuzzing technique to validate the high-level logic of a safe Rust library.
Hasnain says:
This was a great read on applying differential fuzzing to data structures to find correctness bugs. The underlying techniques used match work I've done and given a talk about in the past (with unexpectedly fun results) so I can confirm it works.
"A pessimist would grumble at the notion of relying on random chance to secure code. An optimist will highlight that stochastic processes are widely used in mathematical modeling to draw empirical conclusions. A realist knows the weakest link is the first to be compromised, and even the dumbest of fuzzers can find shallow bugs before an adversary does."
Posted on 2022-01-17T20:40:41+0000