Explore strategies for mitigating integer overflow in C programming with Google's Kees Cook in this 39-minute Linux Foundation talk. Delve into the challenges of solving arithmetic overflow flaws in C, considering the language's unpredictable standard for handling such math issues. Examine common overflow resolution strategies, including undefined behavior, wrap-around, trap, and saturate. Learn about the difficulties in marking all arithmetic in the Linux kernel and discover code patterns that compilers can recognize to reduce manual work. Investigate plans to extend existing arithmetic overflow sanitizers and proposals for overloading operators with specific types. Gain insights into creating unambiguous types for overflow resolution and moving towards more predictable arithmetic outcomes in C programming.
Overview
Syllabus
Mitigating Integer Overflow in C - Kees Cook, Google
Taught by
Linux Foundation