Compiler Testing – Part 1: Coverage-Guided Fuzzing with Grammars and LLMs
Compiler fuzzing for small languages is a specific problem — few optimization passes, tiny corpora, thin docs. This post covers how coverage-guided fuzzing and LLM-assisted tooling adapt to smart-contract compilers, including a literature overview, related projects, and evaluation results. Found 100+ compiler bugs across Sui Move, Cairo, Solang, Solidity, and Leo. These are not lexer or parser crashes on malformed input — every bug was triggered by structurally valid programs against mature, audited, production compilers.
Opening excerpt (first ~120 words) tap to expand
Compiler Testing — Part 1Coverage-Guided Fuzzing with Grammars and LLMsApril 24, 2026 · 35 min readGeorgiy KomarovCompiler fuzzing for small languages is a specific problem — few optimization passes, tiny corpora, thin docs. This post covers how coverage-guided fuzzing and LLM-assisted tooling adapt to smart-contract compilers, including a literature overview, related projects, and evaluation results. Found 100+ compiler bugs across Sui Move, Cairo, Solang, Solidity, and Leo. These are not lexer or parser crashes on malformed input — every bug was triggered by structurally valid programs against mature, audited, production compilers.
…
Excerpt limited to ~120 words for fair-use compliance. The full article is at Nowarp.
Discussion
0 commentsMore from Nowarp
