Security Talk from 2014 WebKit Contributors Meeting ¶

No notes were taken during the meeting, but below are some resources of subjects talked about during the session.

Clang Address Sanitizer (ASan) ¶

Google Code page for clang's address sanitizer: ​Google address-sanitizer project

Documentation for Clang 3.5 for ASan and others: ​Clang Sanitizers

Fuzzing ¶

Please contact David Kilzer (ddkilzer on IRC) if you want to discuss Apple's fuzzing efforts.

Clang Undefined Behavior Sanitizer (UBSan) ¶

Documentation for Clang 3.5 for UBSan and others: ​Clang Sanitizers

Chris Lattner's excellent three-part series about undefined behavior in C (and C++):

• ​What Every C Programmer Should Know About Undefined Behavior #1/3
• ​What Every C Programmer Should Know About Undefined Behavior #2/3
• ​What Every C Programmer Should Know About Undefined Behavior #3/3