Speaker
Florent Revest
(Google)
Description
I'd like to share some toolchain experiences encountered as part of my work on hardening the kernel running on Google's production servers.
I'll discuss "profile guided hardening" (aka "selective sanitization") on how to make kernel cold paths extra hardened using -lower-allow-check-percentile-cutoff-hot and -fsanitize-ignorelist
I'll also share my excitement around the recent Clang developments on the topic of slab isolation using properties of the allocated types to help make memory safety exploitation harder. (eg: the -fsanitize=alloc-partition RFC)
Primary author
Florent Revest
(Google)