Explore strategies for mitigating integer overflow in C programming with Google's Kees Cook in this 39-minute Linux Foundation talk. Delve into the challenges of solving arithmetic overflow flaws in C, considering the language's unpredictable standard for handling such math issues. Examine common overflow resolution strategies, including undefined behavior, wrap-around, trap, and saturate. Learn about the difficulties in marking all arithmetic in the Linux kernel and discover code patterns that compilers can recognize to reduce manual work. Investigate plans to extend existing arithmetic overflow sanitizers and proposals for overloading operators with specific types. Gain insights into creating unambiguous types for overflow resolution and moving towards more predictable arithmetic outcomes in C programming.
Overview
Syllabus
Mitigating Integer Overflow in C - Kees Cook, Google
Taught by
Linux Foundation
Tags
Related Courses
-
Progress on Bounds Checking in C and the Linux Kernel
-
Undefined Behavior in C++ - What Is It, and Why Do You Care?
-
Removing Undefined Behavior from Integer Operations - The Bounded-Integer Library
-
Making C Less Dangerous
-
Meaningful Bounds Checking in the Linux Kernel - Addressing Buffer Overflows
-
Undefined Behavior in C++ - What Every Programmer Should Know and Fear
