Speaker Deck
Speaker Deck Pro
Sign in
Sign up
for free
Sanitizing All* The Things
Greg Heo
September 12, 2017
Technology
0
34
Sanitizing All* The Things
Address sanitizer and thread sanitizer. What, why, how?
Greg Heo
September 12, 2017
Tweet
Share
More Decks by Greg Heo
See All by Greg Heo
gregheo
0
65
gregheo
0
45
gregheo
0
150
gregheo
0
16
gregheo
0
28
gregheo
0
490
gregheo
0
62
gregheo
0
96
gregheo
3
160
Other Decks in Technology
See All in Technology
omn
0
550
sylph01
0
160
greymd
0
590
masakick
0
110
kawaguti
0
110
satoshirobatofujimoto
0
110
line_developers
PRO
0
140
satotakeshi
0
160
yuyaabo
0
240
tsuyo
0
180
ishiayaya
PRO
0
320
kenya888
1
100
Featured
See All Featured
akmur
252
19k
shpigford
165
19k
productmarketing
5
640
samanthasiow
56
6.3k
holman
461
280k
keavy
106
14k
andyhume
62
3.3k
trishagee
20
2k
deanohume
295
27k
hursman
106
9.2k
dougneiner
119
7.8k
morganepeng
92
13k
Transcript
Sanitizing All* The Things tacow / September 2017 / @gregheo
❓ ✋
None
✅
None
‣ ASAN ‣ TSAN
‣ What? ‣ So what? ‣ How? ‣ Show me?
Address Sanitizer allocated buffer unallocated!
‣ Buffer overflows ‣ Subtle bugs ‣ Security vulnerabilities
None
allocated buffer padding shadow memory poisoned poisoned OK
asan_malloc malloc asan_free free Shadow memory check Pointer access
Live Coding!
Address Sanitizer Memory corruption & errors Security & crashes Custom
malloc & free
Thread Sanitizer memory buffer read write
‣ Race conditions ‣ Very subtle and difficult-to-reproduce bugs ‣
Thread mismatch errors
None
‣ Thread ID ‣ Timestamp ‣ Read or write? ‣
Bytes accessed
None
Live Coding!
Thread Sanitizer Data race detector Find race conditions & thread
issues Thread IDs & timestamps
Address Sanitizer Memory corruption & errors Security & crashes Custom
malloc & free
None
@gregheo
gregheo
omn
sylph01
greymd
masakick
kawaguti
satoshirobatofujimoto
line_developers
satotakeshi
yuyaabo
tsuyo
ishiayaya
kenya888
akmur
shpigford
productmarketing
samanthasiow
holman
keavy
andyhume
trishagee
deanohume
hursman
dougneiner
morganepeng
