isoalloc
isoalloc copied to clipboard
struct
A general purpose memory allocator that implements an isolation security strategy to mitigate memory safety issues while maintaining good performance
It would be nice to enable things like `-fsanitize=undefined` and `-fsanitize=leak`, to catch weird™ things.
When compiling with `MEMSET_SANITY` or `MEMCPY_SANITY` on MacOS we currently disable `FORTIFY_SOURCE` so it can build properly. This only disabled `FORTIFY_SOURCE` for IsoAlloc and not other code that pulls it...
Currently, isoalloc has zones in increasing power of two, for performance reasons. Unfortunately, this means that an attacker aiming at exploiting an UAF against an object of size `N` only...
- [ ] `new`/`delete` - [ ] `new[]`/`delete[]` - [ ] size mismatch on `delete` - [ ] `std::bad_alloc` on invalid `new` - [ ] no exception if configured this...
[hardened_malloc]( https://github.com/GrapheneOS/hardened_malloc ) has a really nice [testsuite](https://github.com/GrapheneOS/hardened_malloc/tree/main/test/simple-memory-corruption ) of memory corruptions that isoalloc should be able to detect. It would be nice to run it as part of the...
Add support for building on Android/iOS (in that order). For Android we can use ndk-build with an Android.mk file. Supporting 32 bit Android may require some rethinking of how we...