Loading…
This event has ended. Create your own event → Check it out
This event has ended. Create your own
View analytic
Tuesday, August 18 • 4:00pm - 4:50pm
KernelAddressSanitizer: A Fast Memory Error Detector for Linux Kernel - Andrey Konovalov

Sign up or log in to save this to your schedule and see who's attending!

Memory access bugs, including buffer overflows and uses of freed memory, are a serious problem for Linux kernel. These bugs not only lead to crashes, but also introduce exploitable vulnerabilities. Many memory error detectors exist for user-space applications, but only a few for Linux kernel, and most of them are either slow or detect a limited set of bugs, or both.

This paper presents KernelAddressSanitizer, a new dynamic memory error detector for Linux kernel. Our tool finds out-of-bounds accesses to heap, stack, and global objects, as well as use-after-free bugs. The tool is based on compiler instrumentation an uses similar ideas as the user-space memory bug detector AddressSanitizer.

KernelAddressSanitizer is efficient and accurately detects bugs at the point of occurrence. It has found over 50 previously unknown bugs in Linux kernel.

Speakers
AK

Andrey Konovalov

Google
I'm an intern at Google. I'm working on bug finding tools for Linux kernel. I developed a prototype for KernelAddressSanitizer, a tool for finding memory bugs, such as out-of-bounds and use-after-frees. Right now I'm working on KernelThreadSanitizer, a tool for finding data races in Linux kernel.


Tuesday August 18, 2015 4:00pm - 4:50pm
Willow B