|
AddressSanitizer (or ASan) is a programming tool that detects memory corruption bugs such as buffer overflows or accesses to a dangling pointer (use-after-free). AddressSanitizer is based on compiler instrumentation and directly-mapped shadow memory. AddressSanitizer is currently implemented in Clang (starting from version 3.1〔(【引用サイトリンク】title=LLVM 3.1 Release Notes )〕) and GCC (starting from version 4.8〔(【引用サイトリンク】title=GCC 4.8 Release Notes )〕). On average, the instrumentation increases processing time by about 73% and memory usage by 340%.〔(【引用サイトリンク】 author = Konstantin Serebryany, Derek Bruening, Alexander Potapenko, Dmitry Vyukov )〕 ==Users== Chromium and Firefox developers are active users of AddressSanitizer,〔(【引用サイトリンク】 author = Abhishek Arya and Cris Neckar, Chrome Security Team )〕 the tool has found hundreds of bugs in these web browsers. A number of bugs were found in FFmpeg〔(【引用サイトリンク】 author = Mateusz Jurczyk and Gynvael Coldwind )〕 and FreeType. The Linux kernel has enabled the AddressSanitizer for the x86-64 architecture as of Linux version 4.0. The kernel instrumentation requires a special feature in the compiler suppling the -fsanitize=kernel-address command line option, since kernels do not use the same address space as normal programs.〔(【引用サイトリンク】 author = Jake Edge )〕〔(【引用サイトリンク】 author = Jonathan Corbet )〕 抄文引用元・出典: フリー百科事典『 ウィキペディア(Wikipedia)』 ■ウィキペディアで「AddressSanitizer」の詳細全文を読む スポンサード リンク
|