Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Sanitizing 
All* The Things

06609d73ad2165c4aafcf65a1ddb9563?s=47 Greg Heo
September 12, 2017
Technology
0
34

Sanitizing 
All* The Things

Address sanitizer and thread sanitizer. What, why, how?

06609d73ad2165c4aafcf65a1ddb9563?s=128

Greg Heo

September 12, 2017
Tweet

More Decks by Greg Heo

See All by Greg Heo
06609d73ad2165c4aafcf65a1ddb9563?s=48 gregheo
0
67
06609d73ad2165c4aafcf65a1ddb9563?s=48 gregheo
0
47
06609d73ad2165c4aafcf65a1ddb9563?s=48 gregheo
0
160
06609d73ad2165c4aafcf65a1ddb9563?s=48 gregheo
0
16
06609d73ad2165c4aafcf65a1ddb9563?s=48 gregheo
0
33
06609d73ad2165c4aafcf65a1ddb9563?s=48 gregheo
0
500
06609d73ad2165c4aafcf65a1ddb9563?s=48 gregheo
0
64
06609d73ad2165c4aafcf65a1ddb9563?s=48 gregheo
0
98
06609d73ad2165c4aafcf65a1ddb9563?s=48 gregheo
3
170

Other Decks in Technology

See All in Technology
7b3e0dbc0d712ad5df602d9f9e5e4209?s=48 sei88888
5
450
C082aa76a5e47f5f99e74043452d4ffe?s=48 akakou
2
360
332f89cc697355902a817506b6995f2b?s=48 ytaka23
3
740
0d29d155ce5c5a93ed46363626da3ea7?s=48 ocise
0
120
563d2e1e4cabf5ca21404f7104c90e91?s=48 prog893
0
140
Db56c5975c67fcabeb1a395b835fa250?s=48 brtriver
1
490
Fecdd3417cd7375cc0bd0352d72db27e?s=48 1ftseabass
PRO
0
110
Abea0dcdfdd2fccad64461d1e2798864?s=48 hacker2202
0
100
65d8522e6ea1d11c8f6343027b2e1688?s=48 yashi8484
0
130
4ca55ec64603f424638409b6e0ee7e65?s=48 halhira
1
120
5c3556b7c8c0ab6bc90a62161a8315f8?s=48 gracia
0
970
Ad5c154f422a9204af738d173aad4d4c?s=48 kinunori
1
130

Featured

See All Featured
E190023b66e2b8aa73a842b106920c93?s=48 zenorocha
296
40k
1519587b1a0febb658c36c94f6272b0d?s=48 roundedbygravity
84
7.9k
9375a9529679f1b42b567a640d775e7d?s=48 schacon
147
6.7k
61857dafbd287b3027c4dcea9008ad3c?s=48 carmenhchung
34
1.6k
E837d2996f52008ace055a08fbfff992?s=48 frogandcode
128
20k
F383c6a4dc55e331bbe2987b622cee6b?s=48 stephaniewalter
262
11k
Af6a12710770ad9a7cfd08c97efd40d3?s=48 pedronauck
652
110k
7fa6101cd43067653cf4ac6c7ca54305?s=48 akmur
252
19k
D67fff74178013024d833b3eec6cf27f?s=48 lynnandtonic
272
16k
027d1ebf66cc039a0bd3b55eeadbe75d?s=48 sachag
267
17k
A9704266587836f7e784235e5073b93e?s=48 jmmastey
10
700
06f8b41980eb4c577fa40c41d5030c19?s=48 keathley
20
760

Transcript

  1. Sanitizing
 All* The Things tacow / September 2017 / @gregheo

  2. ❓ ✋

  3. None

  5. None

  6. ‣ ASAN ‣ TSAN

  7. ‣ What? ‣ So what? ‣ How? ‣ Show me?

  8. Address Sanitizer allocated buffer unallocated!

  9. ‣ Buffer overflows ‣ Subtle bugs ‣ Security vulnerabilities

  10. None

  11. allocated buffer padding shadow memory poisoned poisoned OK

  12. asan_malloc malloc asan_free free Shadow memory check Pointer access

  13. Live Coding!

  14. Address Sanitizer Memory corruption & errors Security & crashes Custom

    malloc & free

  15. Thread Sanitizer memory buffer read write

  16. ‣ Race conditions ‣ Very subtle and
 difficult-to-reproduce bugs ‣

    Thread mismatch errors
  17. None

  18. ‣ Thread ID ‣ Timestamp ‣ Read or write? ‣

    Bytes accessed
  19. None

  20. Live Coding!

  21. Thread Sanitizer Data race detector Find race conditions & thread

    issues Thread IDs & timestamps

  22. Address Sanitizer Memory corruption & errors Security & crashes Custom

    malloc & free
  23. None

  24. @gregheo