GWP-ASan: Sampling-Based Detection of Memory-Safety Bugs in Production (ICSE 2024 - Software Engineering in Practice)

Who

Kostya Serebryany, Chris Kennelly, Mitch Phillips, Matt Denton, Marco Elver, Alexander Potapenko, Matt Morehouse, Vlad Tsyrklevich, Christian Holler, Julian Lettner, David Kilzer, Lander Brandt

Track

ICSE 2024 Software Engineering in Practice

Time Zone

The program is currently displayed in (GMT+01:00) Lisbon.

Use conference time zone: (GMT+01:00) LisbonSelect other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

By setting a time band, the program will dim events that are outside this time window. This is useful for (virtual) conferences with a continuous program (with repeated sessions).
The time band will also limit the events that are included in the personal iCalendar subscription service.

Display full programSpecify a time band

Save

When

Thu 18 Apr 2024 11:45 - 12:00 at Glicínia Quartin - Dependability and Formal methods 2 Chair(s): Jácome Cunha

Abstract

Despite the recent advances in pre-production bug detection, heap use-after-free and heap-buffer-overflow bugs remain the primary problem for security, reliability, and developer productivity for applications written in C or C++, across all major software ecosystems. Memory-safe languages solve this problem when they are used, but the existing code bases consisting of billions of lines of C and C++ continue to grow, and we need additional bug detection mechanisms.

This paper describes a family of tools that detect these two classes of memory-safety bugs, while running in production, at near-zero overhead. These tools combine page-granular guarded allocation and low rate sampling. In other words, we added an “if” statement to a 36 year old idea and made it work at scale.

We describe the basic algorithm, several of its variations and implementations, and the results of multi-year deployments across mobile, desktop, and server applications.

Kostya Serebryany

Google

Chris Kennelly

Google

Mitch Phillips

Google

Matt Denton

Google

Marco Elver

Google

Alexander Potapenko

Google

Matt Morehouse

Vlad Tsyrklevich

Christian Holler

Mozilla Corporation

Germany

Julian Lettner

Apple

David Kilzer

Apple Inc.

United States

Lander Brandt

Thu 18 Apr
Displayed time zone: Lisbon change

11:00 - 12:30	Dependability and Formal methods 2Research Track / Software Engineering Education and Training / Demonstrations / Software Engineering in Practice at Glicínia Quartin Chair(s): Jácome Cunha University of Porto & HASLab/INESC

11:00 15m Talk		Enabling Runtime Verification of Causal Discovery Algorithms with Automated Conditional Independence Reasoning Research Track Pingchuan Ma HKUST, Zhenlan Ji The Hong Kong University of Science and Technology, Peisen Yao Zhejing University, Shuai Wang The Hong Kong University of Science and Technology, Kui Ren Zhejiang University
11:15 15m Talk		Translation Validation for JIT Compiler in the V8 JavaScript Engine Research Track Seungwan Kwon KAIST, Jaeseong Kwon KAIST, Wooseok Kang KAIST, Juneyoung Lee AWS, Kihong Heo KAIST
11:30 15m Talk		Assessing the impact of hints in learning formal specification Software Engineering Education and Training Alcino Cunha University of Minho; INESC TEC, Nuno Macedo University of Porto; INESC TEC, José Creissac Campos University of Minho & HASLab/INESC TEC, Iara Margolis Center for Computer Graphics, Emanuel Sousa Center for Computer Graphics
11:45 15m Talk		GWP-ASan: Sampling-Based Detection of Memory-Safety Bugs in Production Software Engineering in Practice Kostya Serebryany Google, Chris Kennelly Google, Mitch Phillips Google, Matt Denton Google, Marco Elver Google, Alexander Potapenko Google, Matt Morehouse , Vlad Tsyrklevich , Christian Holler Mozilla Corporation, Julian Lettner Apple, David Kilzer Apple Inc., Lander Brandt Meta
12:00 15m Talk		Dynamic Alert Suppression Policy for Noise Reduction in AIOps Software Engineering in Practice karan bhukar IBM Research, Harshit Kumar IBM Research, Ruchi Mahindru IBM Research, Rohan Arora IBM Research, Seema Nagar IBM Research, Pooja Aggarwal IBM Research, Amit Paradkar IBM Watson Research Center
12:15 7m Talk		What Do You Mean by Memory? When Engineers Are Lost in the Maze of Complexity Software Engineering in Practice Gunnar Kudrjavets Amazon Web Services, USA, Aditya Kumar Google, Jeff Thomas Meta Platforms, Inc., Ayushi Rastogi University of Groningen, The Netherlands DOI Pre-print
12:22 7m Talk		SpotFlow: Tracking Method Calls and States at Runtime Demonstrations Andre Hora UFMG Pre-print Media Attached