Security Talk from 2014 WebKit Contributors Meeting

No notes were taken during the meeting, but below are some resources of subjects talked about during the session.

Clang Address Sanitizer (ASan)

Google Code page for clang's address sanitizer: ​Google address-sanitizer project

Documentation for Clang 3.5 for ASan and others: ​Clang Sanitizers

Fuzzing

Please contact David Kilzer (ddkilzer on IRC) if you want to discuss Apple's fuzzing efforts.

Clang Undefined Behavior Sanitizer (UBSan)

Documentation for Clang 3.5 for UBSan and others: ​Clang Sanitizers

Chris Lattner's excellent three-part series about undefined behavior in C (and C++):

• ​What Every C Programmer Should Know About Undefined Behavior #1/3
• ​What Every C Programmer Should Know About Undefined Behavior #2/3
• ​What Every C Programmer Should Know About Undefined Behavior #3/3