Setting out-of-bounds memory
Setting out-of-bounds memory
Posted Oct 14, 2021 10:28 UTC (Thu) by Sesse (subscriber, #53779)In reply to: Setting out-of-bounds memory by epa
Parent article: Scrutinizing bugs found by syzbot
Isn't this exactly what ASan (and by extension, KASAN) is doing?
Posted Oct 14, 2021 13:39 UTC (Thu)
by epa (subscriber, #39769)
[Link]
Setting out-of-bounds memory
I think those sanitizers set canary values and check them but I meant allowing user space to control what goes into the out-of-bounds memory. Then the fuzzer can experiment with different data to trigger a crash.