[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#945457: consider using hardened malloc (hardened memory allocator)



Package: glibc
Severity: wishlist
X-Debbugs-CC: whonix-devel@whonix.org

https://github.com/GrapheneOS/hardened_malloc


> RFP: hardened-malloc -- hardened memory allocator

> * Package name    : hardened-malloc
>   Version         : 2.0
>   Upstream Author : Daniel Micay
> * URL             : https://github.com/GrapheneOS/hardened_malloc
> * License         : MIT
>   Programming Lang: C
>   Description     : hardened memory allocator
> This is a security-focused general purpose memory allocator providing
> the malloc API along with various extensions. It provides substantial
> hardening against heap corruption vulnerabilities. The security-focused
> design also leads to much less metadata overhead and memory waste from
> fragmentation than a more traditional allocator design. It aims to
> provide decent overall performance with a focus on long-term performance
> and memory usage rather than allocator micro-benchmarks. It offers
> scalability via a configurable number of entirely independently arenas,
> with the internal locking within arenas further divided up per size
> class. It can be added as a preloaded library using /etc/ld.so.preload.


https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=945455

Cheers,
Patrick

Attachment: signature.asc
Description: OpenPGP digital signature


Reply to: