Photo (2015)

Recent and upcoming talks: Bending Fuzzers to One's Own Will at CISPA (February), Georgia Tech (February), Cornell (February), UC San Diego (March), University of Washington (March), University of Michigan (April), University of Wisconsin–Madison (April), UMass Amherst (April). Come say hello!

Videos of past talks: FuzzFactory (OOPSLA'19), JQF (ISSTA'19)

About Me

I am a Ph.D. candidate in Computer Science at the University of California, Berkeley, advised by Koushik Sen. I research techniques for automatically discovering bugs in software.

My research enables the specialization of program analysis and automated testing tools using artifacts that incorporate the knowledge of domain experts. As such, my work spans several areas including software engineering, programming languages, systems, and security. My papers have been published at top conferences including ICSE, ASE, ISSTA, OOPSLA, SOSP, and USENIX Security.

As part of my research, I build tools that help developers improve software correctness, performance, and security. My recent projects use dynamic program analysis and coverage-guided fuzzing. These tools have been used to discover 50+ new bugs in widely used open-source software and have been adopted by various firms in industry.

I am also the lead designer of the ChocoPy programming language, which is used to teach the undergraduate compilers courses at UC Berkeley (and increasingly at other universities too).

I've completed summer internships at Microsoft Research, on detecting thousands of concurrency bugs at industry-scale, and at Samsung Research America, on fuzzing trusted execution environments. Before coming to Berkeley, I worked at IBM Research India, developing productivity tools using data mined from GitHub and other repositories. I also hold a Master's degree from IIT Bombay.

My academic ancestors include Newton, Galelio, Kepler, and Copernicus.

News

Projects

Publications

  1. New! Quickly Generating Diverse Valid Test Inputs with Reinforcement Learning
    Sameer Reddy, Caroline Lemieux, Rohan Padhye, Koushik Sen
    ICSE 2020 (to appear | preprint PDF)
  2. New! PARTEMU: Enabling Dynamic Analysis of Real-World TrustZone Software Using Emulation
    Lee Harrison, Hayawardh Vjayakumar, Rohan Padhye, Koushik Sen, and Michael Grace
    USENIX Security 2020 (to appear | preprint PDF)
  3. artifacts-available artifacts-functional
    Efficient and Scalable Thread-Safety-Violation Detection --- Finding thousands of concurrency bugs during testing
    Guangpu Li, Shan Lu, Madanlal Musuvathi, Suman Nath, and Rohan Padhye
    SOSP 2019 (DOI | PDF | GitHub) Best Paper Award
  4. SAFFRON: Adaptive Grammar-based Fuzzing for Worst-Case Analysis
    Xuan Bach D. Le, Corina Pasareanu, Rohan Padhye, David Lo, Willem Visser, and Koushik Sen
    JPF 2019 (DOI)
  5. ChocoPy: A Programming Language for Compilers Courses
    Rohan Padhye, Koushik Sen, and Paul N. Hilfinger
    SPLASH-E 2019 (DOI | Paper PDF | Slides PDF)
  6. Efficient Fail-Fast Dynamic Subtype Checking
    Rohan Padhye and Koushik Sen
    VMIL 2019 (DOI | Paper PDF | Slides PDF)
  7. artifacts-available artifacts-functional
    FuzzFactory: Domain-Specific Fuzzing with Waypoints
    Rohan Padhye, Caroline Lemieux, Koushik Sen, Laurent Simon, and Hayawardh Vijayakumar
    OOPSLA 2019 (DOI | Paper PDF | Slides PDF | Talk Video | GitHub)
  8. artifacts-available artifacts-functional artifacts-reusable
    Semantic Fuzzing with Zest
    Rohan Padhye, Caroline Lemieux, Koushik Sen, Mike Papadakis, and Yves Le Traon
    ISSTA 2019 (DOI | Paper PDF | Slides PDF | GitHub) ACM SIGSOFT Distinguished Artifact Award
  9. JQF: Coverage-Guided Property-Based Testing in Java
    Rohan Padhye, Caroline Lemieux, and Koushik Sen
    ISSTA-DEMO 2019 (DOI | PDF | Talk Video) ACM SIGSOFT Tool Demonstration Award
  10. Validity Fuzzing and Parametric Generators for Effective Random Testing
    Rohan Padhye, Caroline Lemieux, Koushik Sen, Mike Papadakis, and Yves Le Traon
    ICSE-POSTER 2019 (Abstract DOI | Poster)
  11. PerfFuzz: Automatically Generating Pathological Inputs
    Caroline Lemieux, Rohan Padhye, Koushik Sen, and Dawn Song
    ISSTA 2018 (DOI | PDF) ACM SIGSOFT Distinguished Paper Award
  12. Travioli: A Dynamic Analysis for Detecting Data-Structure Traversals
    Rohan Padhye and Koushik Sen
    ICSE 2017 (DOI | PDF)
  13. Mining API Expertise Profiles with Partial Program Analysis
    Senthil Mani, Rohan Padhye, and Vibha Singhal Sinha
    ISEC 2016 (DOI | PDF)
  14. Detecting and Mitigating Secret-Key Leaks in Source Code Repositories
    Vibha Singhal Sinha, Diptikalyan Saha, Pankaj Dhoolia, Rohan Padhye, and Senthil Mani
    MSR 2015 (DOI)
  15. The Synergy Between Voting and Acceptance of Answers on StackOverflow, or the Lack Thereof
    Neelamadhav Gantayat, Pankaj Dhoolia, Rohan Padhye, Senthil Mani, and Vibha Singhal Sinha
    MSR 2015 (DOI)
  16. Smart Programming Playgrounds
    Rohan Padhye, Pankaj Dhoolia, Senthil Mani, and Vibha Singhal Sinha
    ICSE-NIER 2015 (DOI | PDF)
  17. NeedFeed: Taming Change Notifications by Modeling Code Relevance
    Rohan Padhye, Senthil Mani, and Vibha Singhal Sinha
    ASE 2014 (DOI | PDF)
  18. A Study of External Community Contribution to Open-Source Projects on GitHub
    Rohan Padhye, Senthil Mani, and Vibha Singhal Sinha
    MSR 2014 (DOI | PDF) Honorable Mention in the MSR Hall of Fame
  19. API as a Social Glue
    Rohan Padhye, Debdoot Mukherjee, and Vibha Singhal Sinha
    ICSE-NIER 2014 (DOI | PDF) Award for Innovation and Potential Impact
  20. Interprocedural Data Flow Analysis in Soot using Value Contexts
    Rohan Padhye and Uday P. Khedker
    SOAP 2013 (DOI | PDF)

Service

Bug Trophy Case

Here are some issues in open-source software that were discovered using tools that I developed:

Performance Bugs

Memory-Safety Bugs

Correctness Bugs

Academic Genealogy

Thanks to the MGP, I've discovered two very exciting lines in my academic ancestry! Here is a visualization that I made, complete with era-appropriate flags: