AddressSanitizer

功能

• Detects memory errors like buffer overflows and use-after-free
• Integrates with C/C++ compilation toolchains (Clang/GCC)
• Configurable runtime options via environment variables
• Provides step-by-step integration guides for fuzzers (libFuzzer, AFL++, cargo-fuzz)
• Includes troubleshooting for common ASan issues

使用场景

• Fuzzing C/C++ code to find memory safety vulnerabilities
• Debugging crashes related to memory corruption
• Enhancing unit test suites with memory error detection
• Improving the security posture of C/C++ projects

非目标

• Applying ASan in production environments due to performance overhead
• Fuzzing pure safe languages without FFI or platforms with limited ASan support (Windows, macOS)
• Replacing fundamental fuzzing techniques or harness writing
• Detecting non-memory-related bugs

工作流

1. Compile C/C++ code with AddressSanitizer flags (`-fsanitize=address`)
2. Configure ASan runtime behavior using `ASAN_OPTIONS` environment variable
3. Run the instrumented program or fuzzer
4. Analyze ASan's detailed error reports when memory errors are detected
5. Adjust fuzzer memory limits if necessary for ASan's virtual memory requirements