PartiSan: Fast and Flexible Sanitization via Run-time Partitioning
Julian Lettner, Dokyung Song, Taemin Park, Stijn Volckaert, Per, Larsen, Michael Franz
TL;DR
PartiSan introduces a run-time partitioning method that enhances sanitization efficiency by dynamically balancing sanitized and unsanitized execution slices, enabling flexible, resource-aware security testing and faster fuzzing.
Contribution
This paper presents a novel run-time partitioning technique that allows dynamic adjustment of sanitization levels, improving performance and flexibility over static approaches.
Findings
Speeds up sanitization by partitioning execution at run-time.
Enables dynamic adjustment of sanitization based on resource availability.
Accelerates fuzzing by selectively applying sanitizers during critical phases.
Abstract
Sanitizers can detect security vulnerabilities in C/C++ code that elude static analysis. Current practice is to continuously fuzz and sanitize internal pre-release builds. Sanitization-enabled builds are rarely released publicly. This is in large part due to the high memory and processing requirements of sanitizers. We present PartiSan, a run-time partitioning technique that speeds up sanitizers and allows them to be used in a more flexible manner. Our core idea is to partition the execution into sanitized slices that incur a run-time overhead, and unsanitized slices running at full speed. With PartiSan, sanitization is no longer an all-or-nothing proposition. A single build can be distributed to every user regardless of their willingness to enable sanitization and the capabilities of their host system. PartiSan can automatically adjust the amount of sanitization to fit within a…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.