Update Yuancheng's talk

suyZhong · suyZhong · commit 1cecbfe5183f · 2025-03-05T12:05:32.000+08:00
diff --git a/content/event/250305.md b/content/event/250305.md
@@ -0,0 +1,65 @@
+---
+title: "Fuzzing the PHP Interpreter via Dataflow Fusion"
+
+event: Weekly Talk
+event_url: 
+
+location: COM3-B1-15 - Meeting Rm 92
+address:
+  street: 
+  city: 
+  region: 
+  postcode:
+  country: Singapore
+
+summary: 
+abstract: "PHP, a dominant scripting language in web development, powers a vast range of websites, from personal blogs to major platforms. While existing research primarily focuses on PHP application-level security issues like code injection, memory errors within the PHP interpreter have been largely overlooked. These memory errors, prevalent due to the PHP interpreter’s extensive C codebase, pose significant risks to the confidentiality, integrity, and availability of PHP servers. This paper introduces FlowFusion, the first automatic fuzzing framework to detect memory errors in the PHP interpreter. FlowFusion leverages dataflow as an efficient representation of test cases maintained by PHP developers, merging two or more test cases to produce fused test cases with more complex code semantics. Moreover, FlowFusion employs strategies such as test mutation, interface fuzzing, and environment crossover to increase bug finding. In our evaluation, FlowFusion found 158 unknown bugs in the PHP interpreter, with 125 fixed and 11 confirmed. Comparing FlowFusion against the official test suite and a naive test concatenation approach, FlowFusion can detect new bugs that these methods miss, while also achieving greater code coverage. FlowFusion also outperformed state-of-the-art fuzzers AFL++ and Polyglot, covering 24% more lines of code after 24 hours of fuzzing. FlowFusion has gained wide recognition among PHP developers and is now integrated into the official PHP toolchain."
+
+# Talk start and end times.
+#   End time can optionally be hidden by prefixing the line with `#`.
+date: "2025-03-05T14:00:00Z"
+date_end: "2025-03-05T14:30:00Z"
+all_day: false
+
+# Schedule page publish date (NOT talk date).
+publishDate: "2017-01-01T00:00:00Z"
+
+authors: [Yuancheng Jiang]
+tags: [Weekly Talk]
+
+# Is this a featured talk? (true/false)
+featured: false
+
+image:
+  caption: 'Image credit: [**Unsplash**](https://unsplash.com/photos/bzdhc5b3Bxs)'
+  focal_point: Right
+
+url_code: ""
+url_pdf: ""
+url_slides: ""
+url_video: ""
+
+# Markdown Slides (optional).
+#   Associate this talk with Markdown slides.
+#   Simply enter your slide deck's filename without extension.
+#   E.g. `slides = "example-slides"` references `content/slides/example-slides.md`.
+#   Otherwise, set `slides = ""`.
+slides:
+
+# Projects (optional).
+#   Associate this post with one or more of your projects.
+#   Simply enter your project's folder or file name without extension.
+#   E.g. `projects = ["internal-project"]` references `content/project/deep-learning/index.md`.
+#   Otherwise, set `projects = []`.
+projects:
+
+# Slides can be added in a few ways:
+# 
+# - **Create** slides using Wowchemy's [*Slides*](https://wowchemy.com/docs/managing-content/#create-slides) feature and link using `slides` parameter in the front matter of the talk file
+# - **Upload** an existing slide deck to `static/` and link using `url_slides` parameter in the front matter of the talk file
+# - **Embed** your slides (e.g. Google Slides) or presentation video on this page using [shortcodes](https://wowchemy.com/docs/writing-markdown-latex/).
+# 
+# Further event details, including page elements such as image galleries, can be added to the body of this page.
+
+
+---
diff --git a/content/event/250305_2.md b/content/event/250305_2.md
@@ -0,0 +1,79 @@
+---
+title: "Automatic Differential Testing of the PHP Interpreter"
+
+event: Weekly Talk
+event_url: 
+
+location: COM3-B1-15 - Meeting Rm 92
+address:
+  street: 
+  city: 
+  region: 
+  postcode:
+  country: Singapore
+
+summary: 
+abstract: "The PHP interpreter, powering over 70% of websites on the internet, plays a crucial role in web development.
+Existing approaches to finding bugs in PHP primarily focus on detecting explicit security issues through
+crashes or sanitizer-based oracles, but fail to identify logic bugs that silently lead to incorrect results. We
+observe that the introduction of Just-In-Time (JIT) compilation mode in PHP presents an opportunity for
+differential testing, as it provides an alternative implementation of the same language specification. To leverage
+this opportunity, we propose DiffPHP, an automatic differential testing framework that efficiently detects
+logic bugs in the PHP interpreter by comparing JIT and non-JIT execution results. Our differential testing
+incorporates two key techniques: program state instrumentation for fine-grained execution state comparison,
+and dual verification to handle non-deterministic behaviors in PHP programs. Combined with a state-of-theart test case generation, these two techniques significantly reduce false alarms while maintaining high bug
+detection capability. Experimental results demonstrate that DiffPHP outperforms the official test suite used in
+PHP’s continuous integration, achieving higher code coverage and executing more Zend opcodes. Through
+ablation studies, we validate the effectiveness of both program state instrumentation and dual verification
+components. To date, DiffPHP has identified 35 previously unknown logic bugs in the PHP interpreter, with
+25 already fixed and 5 confirmed by PHP developers. DiffPHP has been acknowledged by the PHP developers,
+and offers a practical tool for automatically discovering logic bugs in the PHP interpreter."
+
+# Talk start and end times.
+#   End time can optionally be hidden by prefixing the line with `#`.
+date: "2025-03-05T14:30:00Z"
+date_end: "2025-03-05T15:00:00Z"
+all_day: false
+
+# Schedule page publish date (NOT talk date).
+publishDate: "2017-01-01T00:00:00Z"
+
+authors: [Yuancheng Jiang]
+tags: [Weekly Talk]
+
+# Is this a featured talk? (true/false)
+featured: false
+
+image:
+  caption: 'Image credit: [**Unsplash**](https://unsplash.com/photos/bzdhc5b3Bxs)'
+  focal_point: Right
+
+url_code: ""
+url_pdf: ""
+url_slides: ""
+url_video: ""
+
+# Markdown Slides (optional).
+#   Associate this talk with Markdown slides.
+#   Simply enter your slide deck's filename without extension.
+#   E.g. `slides = "example-slides"` references `content/slides/example-slides.md`.
+#   Otherwise, set `slides = ""`.
+slides:
+
+# Projects (optional).
+#   Associate this post with one or more of your projects.
+#   Simply enter your project's folder or file name without extension.
+#   E.g. `projects = ["internal-project"]` references `content/project/deep-learning/index.md`.
+#   Otherwise, set `projects = []`.
+projects:
+
+# Slides can be added in a few ways:
+# 
+# - **Create** slides using Wowchemy's [*Slides*](https://wowchemy.com/docs/managing-content/#create-slides) feature and link using `slides` parameter in the front matter of the talk file
+# - **Upload** an existing slide deck to `static/` and link using `url_slides` parameter in the front matter of the talk file
+# - **Embed** your slides (e.g. Google Slides) or presentation video on this page using [shortcodes](https://wowchemy.com/docs/writing-markdown-latex/).
+# 
+# Further event details, including page elements such as image galleries, can be added to the body of this page.
+
+
+---
