Write a Blog >>
Mon 14 - Fri 18 November 2022 Singapore
Tue 15 Nov 2022 11:15 - 11:30 at SRC LT 50 - Software Testing II Chair(s): Baishakhi Ray

Robotic systems are becoming an integral part of human lives.
Responding to the increased demands for robot productions, Robot
Operating System (ROS), an open-source middleware suite for robotic
development, is gaining traction by providing practical tools and
libraries for quickly developing robots. In this paper, we are
concerned with a relatively less-tested class of bugs in ROS and
ROS-based robotic systems, called semantic correctness bugs, including
the violation of specification, violation of physical laws, and
cyber-physical discrepancy. These bugs often stem from the
cyber-physical nature of robotic systems, in which noisy hardware
components are intertwined with software components, and thus cannot be
detected by existing fuzzing approaches that mostly focus on finding
memory-safety bugs.

We propose RoboFuzz, a feedback-driven fuzzing framework that integrates
with ROS and enables testing of the correctness bugs. RoboFuzz features
(1) data type-aware mutation for effectively stressing data-driven ROS
systems, (2) hybrid execution for acquiring robotic states from both
real-world and a simulator, capturing unforeseen cyber-physical
discrepancies, (3) an oracle handler that identifies correctness bugs by
checking the execution states against predefined correctness oracles,
and (4) a semantic feedback engine for providing augmented guidance to
the input mutator, complementing classic code coverage-based feedback,
which is less effective for distributed, data-driven robots. By
encoding the correctness invariants of ROS and four ROS-compatible
robotic systems into specialized oracles, RoboFuzz detected 30
previously unknown bugs, of which 25 are acknowledged and six have
been fixed.

Tue 15 Nov

Displayed time zone: Beijing, Chongqing, Hong Kong, Urumqi change

10:45 - 12:15
Software Testing IIResearch Papers / Demonstrations at SRC LT 50
Chair(s): Baishakhi Ray Columbia University
Online Testing of RESTful APIs: Promises and ChallengesDistinguished Paper Award
Research Papers
Alberto Martin-Lopez University of Seville, Sergio Segura University of Seville, Antonio Ruiz-Cortés University of Seville
DOI Pre-print
Avgust: Automating Usage-Based Test Generation from Videos of App Executions
Research Papers
Yixue Zhao University of Massachusetts at Amherst, Saghar Talebipour University of Southern California, Kesina Baral George Mason University, Hyojae Park Sharon High School, Leon Yee Valley Christian High School, Safwat Ali Khan George Mason University, Yuriy Brun University of Massachusetts, Nenad Medvidović University of Southern California, Kevin Moran George Mason University
DOI Pre-print Media Attached
RoboFuzz: Fuzzing Robotic Systems over Robot Operating System (ROS) for Finding Correctness Bugs
Research Papers
Seulbae Kim Georgia Institute of Technology, Taesoo Kim Georgia Institute of Technology
CLIFuzzer: Mining Grammars for Command-Line Invocations
Abhilash Gupta CISPA Helmholtz Center for Information Security, Rahul Gopinath University of Sydney, Andreas Zeller CISPA Helmholtz Center for Information Security
Link to publication DOI Pre-print Media Attached
RecipeGen++: An Automated Trigger Action Programs Generator
Imam Nur Bani Yusuf Singapore Management University, Singapore, Diyanah Binte Abdul Jamal Singapore Management University, Lingxiao Jiang Singapore Management University, David Lo Singapore Management University