{"id":"https://openalex.org/W4388867344","doi":"https://doi.org/10.1145/3576915.3623166","title":"PyRTFuzz: Detecting Bugs in Python Runtimes via Two-Level Collaborative Fuzzing","display_name":"PyRTFuzz: Detecting Bugs in Python Runtimes via Two-Level Collaborative Fuzzing","publication_year":2023,"publication_date":"2023-11-15","ids":{"openalex":"https://openalex.org/W4388867344","doi":"https://doi.org/10.1145/3576915.3623166"},"language":"en","primary_location":{"id":"doi:10.1145/3576915.3623166","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3576915.3623166","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3576915.3623166","source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3576915.3623166","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5100320336","display_name":"Wen Li","orcid":"https://orcid.org/0009-0009-7425-9449"},"institutions":[{"id":"https://openalex.org/I72951846","display_name":"Washington State University","ror":"https://ror.org/05dk0ce17","country_code":"US","type":"education","lineage":["https://openalex.org/I72951846"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Wen Li","raw_affiliation_strings":["Washington State University, Pullman, WA, USA"],"raw_orcid":"https://orcid.org/0000-0003-0194-2115","affiliations":[{"raw_affiliation_string":"Washington State University, Pullman, WA, USA","institution_ids":["https://openalex.org/I72951846"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5058556316","display_name":"Haoran Yang","orcid":"https://orcid.org/0000-0001-9298-9757"},"institutions":[{"id":"https://openalex.org/I72951846","display_name":"Washington State University","ror":"https://ror.org/05dk0ce17","country_code":"US","type":"education","lineage":["https://openalex.org/I72951846"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Haoran Yang","raw_affiliation_strings":["Washington State University, Pullman, WA, USA"],"raw_orcid":"https://orcid.org/0000-0001-9298-9757","affiliations":[{"raw_affiliation_string":"Washington State University, Pullman, WA, USA","institution_ids":["https://openalex.org/I72951846"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100400376","display_name":"Xiapu Luo","orcid":"https://orcid.org/0000-0002-9082-3208"},"institutions":[{"id":"https://openalex.org/I14243506","display_name":"Hong Kong Polytechnic University","ror":"https://ror.org/0030zas98","country_code":"HK","type":"education","lineage":["https://openalex.org/I14243506"]}],"countries":["HK"],"is_corresponding":false,"raw_author_name":"Xiapu Luo","raw_affiliation_strings":["The Hong Kong Polytechnic University, Hong Kong, China"],"raw_orcid":"https://orcid.org/0000-0002-9082-3208","affiliations":[{"raw_affiliation_string":"The Hong Kong Polytechnic University, Hong Kong, China","institution_ids":["https://openalex.org/I14243506"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101995085","display_name":"Long Cheng","orcid":"https://orcid.org/0009-0004-4819-5406"},"institutions":[{"id":"https://openalex.org/I8078737","display_name":"Clemson University","ror":"https://ror.org/037s24f05","country_code":"US","type":"education","lineage":["https://openalex.org/I8078737"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Long Cheng","raw_affiliation_strings":["Clemson University, Clemson, SC, USA"],"raw_orcid":"https://orcid.org/0009-0004-4819-5406","affiliations":[{"raw_affiliation_string":"Clemson University, Clemson, SC, USA","institution_ids":["https://openalex.org/I8078737"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5076081056","display_name":"Haipeng Cai","orcid":"https://orcid.org/0000-0002-5224-9970"},"institutions":[{"id":"https://openalex.org/I72951846","display_name":"Washington State University","ror":"https://ror.org/05dk0ce17","country_code":"US","type":"education","lineage":["https://openalex.org/I72951846"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Haipeng Cai","raw_affiliation_strings":["Washington State University, Pullman, WA, USA"],"raw_orcid":"https://orcid.org/0000-0002-5224-9970","affiliations":[{"raw_affiliation_string":"Washington State University, Pullman, WA, USA","institution_ids":["https://openalex.org/I72951846"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5100320336"],"corresponding_institution_ids":["https://openalex.org/I72951846"],"apc_list":null,"apc_paid":null,"fwci":2.9756,"has_fulltext":true,"cited_by_count":14,"citation_normalized_percentile":{"value":0.95075239,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":98,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"1645","last_page":"1659"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9991999864578247,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9973999857902527,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/python","display_name":"Python (programming language)","score":0.9214500188827515},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8696492314338684},{"id":"https://openalex.org/keywords/fuzz-testing","display_name":"Fuzz testing","score":0.8259029984474182},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.7691918611526489},{"id":"https://openalex.org/keywords/interpreter","display_name":"Interpreter","score":0.7206953167915344},{"id":"https://openalex.org/keywords/scalability","display_name":"Scalability","score":0.6190244555473328},{"id":"https://openalex.org/keywords/compiler","display_name":"Compiler","score":0.5202211737632751},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.32173073291778564},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.2747493088245392}],"concepts":[{"id":"https://openalex.org/C519991488","wikidata":"https://www.wikidata.org/wiki/Q28865","display_name":"Python (programming language)","level":2,"score":0.9214500188827515},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8696492314338684},{"id":"https://openalex.org/C111065885","wikidata":"https://www.wikidata.org/wiki/Q1189053","display_name":"Fuzz testing","level":3,"score":0.8259029984474182},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.7691918611526489},{"id":"https://openalex.org/C122783720","wikidata":"https://www.wikidata.org/wiki/Q183065","display_name":"Interpreter","level":2,"score":0.7206953167915344},{"id":"https://openalex.org/C48044578","wikidata":"https://www.wikidata.org/wiki/Q727490","display_name":"Scalability","level":2,"score":0.6190244555473328},{"id":"https://openalex.org/C169590947","wikidata":"https://www.wikidata.org/wiki/Q47506","display_name":"Compiler","level":2,"score":0.5202211737632751},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.32173073291778564},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.2747493088245392}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3576915.3623166","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3576915.3623166","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3576915.3623166","source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3576915.3623166","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3576915.3623166","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3576915.3623166","source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G14184895","display_name":"SHF: Small: Practical Dynamic Program Reasoning Across Language Boundaries","funder_award_id":"2146233","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G1945487394","display_name":null,"funder_award_id":"N000142212111","funder_id":"https://openalex.org/F4320337345","funder_display_name":"Office of Naval Research"},{"id":"https://openalex.org/G3423856707","display_name":null,"funder_award_id":"CCF-2146233","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G3939040724","display_name":null,"funder_award_id":"2239605","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320337345","display_name":"Office of Naval Research","ror":"https://ror.org/00rk2pe57"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4388867344.pdf","grobid_xml":"https://content.openalex.org/works/W4388867344.grobid-xml"},"referenced_works_count":35,"referenced_works":["https://openalex.org/W1981618658","https://openalex.org/W2132984320","https://openalex.org/W2139126377","https://openalex.org/W2350778671","https://openalex.org/W2414287720","https://openalex.org/W2549033012","https://openalex.org/W2613534458","https://openalex.org/W2701225458","https://openalex.org/W2776904200","https://openalex.org/W2777430404","https://openalex.org/W2808279976","https://openalex.org/W2883903648","https://openalex.org/W2947182139","https://openalex.org/W2954978134","https://openalex.org/W2963350015","https://openalex.org/W2997653900","https://openalex.org/W3008321987","https://openalex.org/W3040719252","https://openalex.org/W3111332788","https://openalex.org/W3162246821","https://openalex.org/W3165177337","https://openalex.org/W3211844860","https://openalex.org/W4232821456","https://openalex.org/W4238083723","https://openalex.org/W4243412374","https://openalex.org/W4244688039","https://openalex.org/W4284685949","https://openalex.org/W4284687350","https://openalex.org/W4308642993","https://openalex.org/W4308648324","https://openalex.org/W4312285152","https://openalex.org/W4388421852","https://openalex.org/W6600002382","https://openalex.org/W6737694244","https://openalex.org/W6863511876"],"related_works":["https://openalex.org/W2511770387","https://openalex.org/W3120811337","https://openalex.org/W3203597304","https://openalex.org/W2990186179","https://openalex.org/W4248424560","https://openalex.org/W4385301282","https://openalex.org/W3023977444","https://openalex.org/W2766647240","https://openalex.org/W4210660460","https://openalex.org/W2768256330"],"abstract_inverted_index":{"Given":[0],"the":[1,10,15,64,77,119,131,144,149,156],"widespread":[2],"use":[3],"of":[4,14,41,130,161,188],"Python":[5,16,29,61,101,121],"and":[6,12,21,33,67,79,99,104,124,146,159,163],"its":[7,68,164],"sustaining":[8],"impact,":[9],"security":[11],"reliability":[13],"runtime":[17,69,90,150],"system":[18],"is":[19,44],"highly":[20],"broadly":[22],"critical.":[23],"Yet":[24],"with":[25],"real-world":[26],"bugs":[27,43,140],"in":[28,143,148,177],"runtimes":[30,62,185],"being":[31],"continuously":[32],"increasingly":[34],"reported,":[35],"technique/tool":[36,57],"support":[37],"for":[38,58,88,97,110,118,167],"automated":[39],"detection":[40],"such":[42],"still":[45],"largely":[46],"lacking.":[47],"In":[48],"this":[49],"paper,":[50],"we":[51],"present":[52],"PyRTFuzz,":[53],"a":[54,93,105],"novel":[55],"fuzzing":[56,75,174],"holistically":[59],"testing":[60],"including":[63,141],"language":[65,96,184],"interpreter":[66,145],"libraries.":[70,151],"PyRTFuzz":[71,117,162,178],"combines":[72],"generationand":[73],"mutation-based":[74],"at":[76],"compiler-":[78],"application-testing":[80],"level,":[81],"respectively,":[82],"as":[83],"enabled":[84],"by":[85],"static/dynamic":[86],"analysis":[87],"extracting":[89],"API":[91],"descriptions,":[92],"declarative,":[94],"specification":[95],"valid":[98],"diverse":[100],"code":[102],"generation,":[103],"custom":[106],"type-guided":[107],"mutation":[108],"strategy":[109],"format/structure-aware":[111],"application":[112],"input":[113],"generation.":[114],"We":[115],"implemented":[116],"primary":[120],"implementation":[122],"(CPython)":[123],"applied":[125],"it":[126],"to":[127,182],"three":[128],"versions":[129],"runtime.":[132],"Our":[133,152],"experiments":[134],"revealed":[135],"61":[136],"new,":[137],"demonstrably":[138],"exploitable":[139],"those":[142,187],"most":[147],"results":[153],"also":[154,180],"demonstrated":[155],"promising":[157],"scalability":[158],"cost-effectiveness":[160],"great":[165],"potential":[166],"further":[168],"bug":[169],"discovery.":[170],"The":[171],"two-level":[172],"collaborative":[173],"methodology":[175],"instantiated":[176],"may":[179],"apply":[181],"other":[183],"especially":[186],"interpreted":[189],"languages.":[190]},"counts_by_year":[{"year":2025,"cited_by_count":9},{"year":2024,"cited_by_count":5}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}