Sanitizing  All* The Things

September 12, 2017

67

Sanitizing  All* The Things

Address sanitizer and thread sanitizer. What, why, how?

Greg Heo

September 12, 2017

More Decks by Greg Heo

See All by Greg Heo

Concurrency From the Ground Up

0

250

The least you need to know about hashing in Swift

0

200

Shared Mutable State

0

530

Promises, Futures, and the Shape of Your Code

0

71

Shared, Exclusive, Mutable, Immutable

0

160

Getting Under Swift’s Skin

0

560

Sanitizing Threads for Fun & Profit

0

160

Thirteen Ways of Looking at a View Controller

0

140

Five Unbelievable Secrets of Reactive Programming the Experts Don't Want You to Know!

3

430

Other Decks in Technology

See All in Technology

【Gen-AX】20260530開催_JJUG CCC 2026 Spring

0

310

チームで実践する AI-DLC 思考の軌跡を残すチェックポイント設計

0

1.2k

Diagnosing performance problems without the guesswork

0

150

Oracle AI Database@Azure：サービス概要のご紹介

oracle4engineer

PRO

6

1.8k

AI時代の私の技術インプットとアウトプット術

tonkotsuboy_com

16

8.2k

Mastering Ruby Box

3

130

OpenID Connectによるサービス間連携

0

150

Java正規表現エンジン（NFA）の仕組みとパフォーマンスを維持するための最適化手法

takeuchi_132917

0

170

Oracle Cloud Infrastructure IaaS 新機能アップデート 2026/3 - 2026/5

oracle4engineer

PRO

1

110

脅威をエンジニアリングの糧にして：恐怖を乗り越えた先にあったもの / Turn threats into fuel for engineering: what lay beyond overcoming fear

1

370

電子辞書Brainをネットに繋げてみた(自力編)

0

410

AI フレンドリーなエラー監視を TypeScript で実現する

2

210

Featured

See All Featured

Six Lessons from altMBA

29

4.3k

The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024

28

3.5k

How to Get Subject Matter Experts Bought In and Actively Contributing to SEO & PR Initiatives.

0

130

Leveraging Curiosity to Care for An Aging Population

1

260

Crafting Experiences

1

160

Navigating the moral maze — ethical principles for Al-driven product design

2

380

Improving Core Web Vitals using Speculation Rules API

sergeychernyshev

21

1.5k

Balancing Empowerment & Direction

6

1.1k

Building the Perfect Custom Keyboard

2

780

Digital Projects Gone Horribly Wrong (And the UX Pros Who Still Save the Day) - Dean Schuster

0

1.6k

How to Grow Your eCommerce with AI & Automation

PRO

1

200

We Have a Design System, Now What?

55

8.2k

Transcript

Sanitizing  All* The Things tacow / September 2017 / @gregheo
❓ ✋
None
✅
None
‣ ASAN ‣ TSAN
‣ What? ‣ So what? ‣ How? ‣ Show me?
Address Sanitizer allocated buffer unallocated!
‣ Buffer overﬂows ‣ Subtle bugs ‣ Security vulnerabilities
None
allocated buffer padding shadow memory poisoned poisoned OK
asan_malloc malloc asan_free free Shadow memory check Pointer access
Live Coding!
Address Sanitizer Memory corruption & errors Security & crashes Custom
malloc & free
Thread Sanitizer memory buffer read write
‣ Race conditions ‣ Very subtle and  difﬁcult-to-reproduce bugs ‣
Thread mismatch errors
None
‣ Thread ID ‣ Timestamp ‣ Read or write? ‣
Bytes accessed
None
Live Coding!
Thread Sanitizer Data race detector Find race conditions & thread
issues Thread IDs & timestamps
Address Sanitizer Memory corruption & errors Security & crashes Custom
malloc & free
None
@gregheo