Skip to content
STIMSMITH

Assembly Program Test Input

Concept

An assembly program test input is a processor-fuzzing input represented as an assembly program that conforms to the target ISA. In ProcessorFuzz, such inputs are randomly generated, mutated, screened with ISA simulation for new CSR-transition coverage, and only then sent to RTL simulation when they are considered interesting.

First seen 5/28/2026
Last seen 5/29/2026
Evidence 2 chunks
Wiki v1

WIKI

Definition

An assembly program test input is a test input for processor fuzzing that is expressed as an assembly program conforming to the target instruction set architecture (ISA). In the ProcessorFuzz workflow, the seed corpus is populated by generating random test inputs in this form.

Role in ProcessorFuzz

READ FULL ARTICLE →

NEIGHBORHOOD

No graph connections found for this entity yet. It may appear in future ingestion runs.

explore full graph →

RELATIONSHIPS

1 connections
ProcessorFuzz ← uses 100% 2e
ProcessorFuzz uses assembly programs as test inputs for fuzzing.

LINKED ENTITIES

1 links
ProcessorFuzz USES Extracted graph relationship

CITATIONS

7 sources
7 citations — click to expand
[1] ProcessorFuzz populates its seed corpus by generating random test inputs in the form of assembly programs that conform to the target ISA. ProcessorFuzz: Processor Fuzzing with Control and
[2] ProcessorFuzz mutates chosen assembly program test inputs by removing, appending, or replacing instructions. ProcessorFuzz: Processor Fuzzing with Control and
[3] ProcessorFuzz runs an ISA simulator on a mutated input and generates an extended ISA trace log containing CSR values for each executed instruction. ProcessorFuzz: Processor Fuzzing with Control and
[4] ProcessorFuzz treats an input as interesting when it triggers at least one new CSR transition, adds it to the seed corpus, and discards inputs that do not trigger new transitions. ProcessorFuzz: Processor Fuzzing with Control and
[5] ProcessorFuzz runs RTL simulation of the target processor only with interesting mutated inputs. ProcessorFuzz: Processor Fuzzing with Control and
[6] Coverage-guided fuzzing uses runtime coverage feedback to determine whether an input is interesting, and processor fuzzing must account for the fact that hardware designs are evaluated through simulation rather than direct host execution. ProcessorFuzz: Processor Fuzzing with Control and
[7] ProcessorFuzz uses ISA simulation to rapidly determine whether a test input is interesting because ISA simulation is significantly faster than RTL simulation. ProcessorFuzz: Processor Fuzzing with Control and