Explore a conference talk on addressing uninitialized memory issues in the Linux kernel. Learn about KMSAN, a compiler instrumentation-based detector that has uncovered over a hundred bugs in the upstream kernel through fuzzing. Discover the potential security risks posed by these bugs, including data leaks and control flow subversion. Examine the current state of kernel code coverage and the vast number of bugs still lurking in areas like USB device drivers. Delve into Linux 5.3 features that perform stack and heap initialization, their suitability for production use, and potential improvements. Gain insights into the ongoing challenge of uninitialized memory bugs and the importance of proactive measures for kernel vendors maintaining older versions.
Dealing with Uninitialized Memory in the Linux Kernel
Overview
Syllabus
Dealing with Uninitialized Memory in the Kernel - Alexander Potapenko, Google
Taught by
Linux Foundation
Tags
Related Courses
-
Linux System Programming Techniques & Concepts
-
Bochspwn Reloaded - Detecting Kernel Memory Disclosure with x86 Emulation and Taint Tracking
-
HotBPF++ - A More Powerful Memory Protection for the Linux Kernel
-
Syzbot and the Tale of Thousand Kernel Bugs
-
Kernel Self-Protection Project: Eliminating Bug Classes and Blocking Exploitation Techniques
-
Writing a Minimalist Linux Kernel - From Concept to Implementation
