Loading…
Open Source Summit + Embedded Linux Conference North America... has ended
May 18-20, 2026
Minneapolis, MN
View More Details & Registration
Note: The schedule is subject to change.

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Open Source Summit North America 2025 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Central DaylightTime (UTC -5). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

IMPORTANT NOTE: Timing of sessions and room locations are subject to change.
← Back to schedule
Hardening QEMU With Self-Correcting Fuzzing Pipelines - Navid Emamdoost, Google
Tuesday May 19, 2026 4:20pm - 5:00pm CDT
200F (Level Two)
This session explores a dual-phase strategy for hardening the QEMU Virtual Machine Monitor (VMM) through advanced fuzzing and AI-driven automation. We begin by detailing a manual hardening effort that expanded QEMU’s testing surface from 18 to 60 active targets, increasing device line coverage by more than 30%. While effective, manual target creation is a resource-intensive process that struggles to scale across the hundreds of virtualized devices supported by QEMU.

To address these scaling challenges, we introduce an AI-driven agentic pipeline designed to automate the generation and validation of fuzzing targets. This system leverages Large Language Models (LLMs) to analyze device source code and memory regions, generating candidate C++ targets for the QEMU fuzzing engine.

We will discuss the implementation of a self-correcting feedback loop where the agent captures compilation and runtime errors to iteratively refine its output until a stable target is produced. Attendees will see how this approach aims to reach >80% device line coverage by automating the remaining hardware targets that currently lack dedicated fuzzing.
Speakers
avatar for Navid Emamdoost

Navid Emamdoost

Software Engineer, Google
Navid Emamdoost is a Software Engineer at Google focused on infrastructure security. He holds a PhD from the University of Minnesota, where his research uncovered over 200 Linux kernel bugs and 40 CVEs. His career includes maintaining OSS-Fuzz for open source projects and hardening... Read More →
OSS NA 2026 pdf
Tuesday May 19, 2026 4:20pm - 5:00pm CDT
200F (Level Two)
  Cloud + Orchestration

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share

Get help with the event

Contact event planner Event login
View support guides Find upcoming events
Create an event you'd love to attend!
Explore why organizers choose Sched Success stories
Event App Event scheduling Event registration Event ticketing Sched forms Call for papers Badges Conferences
© 2026. SCHED LLC - All rights reserved - Helping events since 2008
Event Planning App Privacy Terms
Share Modal

Share this link via

Or copy link