Overview
Explore an advanced Linux kernel memory protection system in this conference talk. Delve into HotBPF++, an enhanced version of HotBPF, designed to address vulnerabilities during the critical time between disclosure and patching. Learn about its automatic deployment, on-the-fly enabling, hardware independence, and lightweight design. Discover how HotBPF++ expands protection beyond heap corruption to other memory regions and detects root causes of corruptions. Examine the core concepts, integrated protection policies covering common errors, and performance evaluations using benchmarks. Gain insights into the system's security improvements through real-world vulnerability demonstrations.
Syllabus
HotBPF++: A More Powerful Memory Protection for the Linux Kernel - Zicheng Wang & Yueqi Chen
Taught by
Linux Foundation