Fuzz Testing for Rust Library Functions

Rust is an emerging programming language that has gained popularity in many academic and industrial projects due to its memory safety features. However, despite its safety advantages, there are still many serious bugs in existing Rust projects. The lack of suitable fuzz targets has been a major challenge in Rust fuzz testing, as existing fuzzing tools often rely on manual efforts to write test targets, which is time-consuming and cannot be directly applied to library function interfaces. While the previous work has made significant progress in generating fuzz targets for Rust, it still cannot effectively test special functions with generics and polymorphism.To address this issue, this paper proposes an automated approach for generating fuzz targets for Rust library functions, called RVFuzz. RVFuzz addresses the challenges by performing static analysis through variable instantiation, ensuring that special functions in Rust, such as those with generics and polymorphism, are covered in the interface sequence analysis. It then traverses the library function dependency graph to generate a set of reasonable and non-redundant target function sequences for fuzz testing. Any compilation errors encountered during the process are used to refine the sequence generation. RVFuzz successfully generated fuzz targets for 10 popular Rust projects, achieving an impressive interface coverage rate of 92.3%.