FFUZZ: A Fast Fuzzing Test Method for Stateful Network Protocol Implementation

Abstract

Fuzzing the network protocol implementation is difficult. One reason for that is the randomly generated network packet data cannot satisfy strict protocol specifications to reach the next state; the other reason is that due to the interaction between server and client, executing a test case assumes a large proportion of time on synchronizing both sides. This paper proposes a fuzzer FFuzz that can speed up the execution of test cases for server fuzzing and accurately mutate specific protocol fields through semantic mutation. By changing the way of sending data packets, multiple data packets are integrated and sent to the server to reduce the interaction time and use the Fork Server mechanism to speed up the fuzzing test. Experiment shows that compared with other state-of-the-art fuzzers, this method increases the execution speed of test cases by 70%, at the same time, code coverage has also been increased by at least 2%.