Dmitry Vyukov

@dvyukov

I tweet about fuzzing, bugs, sanitizers, security, hardening, kernels, Go, performance, concurrency, lock-free algorithms.

Beigetreten April 2009

Tweets

Du hast @dvyukov blockiert

Bist du sicher, dass du diese Tweets sehen willst? Das Ansehen von Tweets wird @dvyukov nicht entblocken.

  1. The fun thing I see other people say "Corba (not Cobra)" while for me it's the other way around: CORBA is just "CORBA", while Cobra is "Cobra (not Corba)". I guess it's an age meter: Are you CORBA-old?

    Rückgängig machen
  2. Yikes, I added a poll here. Does twitter fail to show poll if I reference another tweet?..

    Diesen Thread anzeigen
    Rückgängig machen
  3. Re last post about Cobra/CORBA: The fun thing I see other people say "Corba (not Cobra)" while for me it's the other way around: CORBA is just "CORBA", while Cobra is "Cobra (not Corba)". I guess it's an age meter: Are you CORBA-old?

    Diesen Thread anzeigen
    Rückgängig machen
  4. Reading github CLI release notes [1]: ... - Upgrade to Cobra 1.0 #916 Wait, WAT?... ... ... oh, ok, this is not Corba [2] [1] [2]

    Rückgängig machen
  5. Indeed exciting! acquires both continuous fuzzing solution and structured fuzzing solution : If GitLab integrates both, it will be dreams come true. Jealous it's not b/c syzkaller is hosted there.

    Rückgängig machen
  6. hat retweetet
    9. Juni

    Introducing (), the first cross-core attack which can leak stale data from an offcore staging buffer shared across cores. See where we also show how to leak enclave private keys across cores in 1s with just 1 signature:

    Rückgängig machen
  7. No more "you forgot to run check_patch", mangled patches without base, improperly formatted code, people struggling to setup mail client, forgotten contributions, etc. Some prior art:

    Diesen Thread anzeigen
    Rückgängig machen
  8. The new CLI is very cool! $ gh pr checkout 1809 $ gh pr create $ gh issue list/create Idea is not new but bringing it to masses is invaluable. kernel and absolutely need this type of interface too!

    Diesen Thread anzeigen
    Rückgängig machen
  9. hat retweetet

    Took over 6 months for the below memory leak to be rediscovered after this tweet: Trivial PoC which eventually panics a system with unpriv userns and CONFIG_AFS_FS enabled here:

    Rückgängig machen
  10. I enjoyed the talk a lot. The accent is on Durable. Compares different approaches to removing classes of vulnerabilities wrt Completeness/Enforcability/Verifiability/Dev friction. Touches on supply chain and "how end user be sure what static analysis were done on this systems SW"

    Rückgängig machen
  11. hat retweetet

    Now it's official: longterm 4.19 and 5.4 instead of two years will be supported for six years in total, as just raised the projected EOL on by four years:

    Diesen Thread anzeigen
    Rückgängig machen
  12. hat retweetet

    I reengineered the idea from this article and submitted that work for the Linux kernel mainline. Central patch of the series:

    Rückgängig machen
  13. hat retweetet

    I wonder how it feels to have been working on surveillance technology thinking that it would only be used against foreign adversaries and now learning that it’s being deployed domestically against peaceful protesters here in the US.

    Rückgängig machen
  14. hat retweetet

    So happy and excited to be featured as the most active kernel developer for Linux 5.1 🐧

    Diesen Thread anzeigen
    Rückgängig machen
  15. hat retweetet

    We would really appreciate if you had a spare minute to fill the KernelCI Community Survey form and help us understand the CI needs of the kernel community: This is for your own good!

    Rückgängig machen
  16. hat retweetet

    Nice benchmarking! tl;dr: 4% performance hit with nearly all kernel hardening options enabled for a build server workload. Do not enable CONFIG_SLUB_DEBUG_ON unless you really want the kernel doing massive amounts of heap allocation sanity-checking; it added an additional 10% hit

    Rückgängig machen
  17. hat retweetet

    Neat little bug-finder I realized today: 48 B8 ?? ?? 00 00 00 FC FF DF 80 38 00 will know :)

    Diesen Thread anzeigen
    Rückgängig machen
  18. Want easy money? Take a use-after-free from syzbot dashboard: Fix & submit to VRP program. Let's fix security!

    Rückgängig machen
  19. hat retweetet

    We now have a blog! Check out our first post to see what we've achieved since we joined the and what's coming next: tl;dr Now is a really, really good time to start contributing ;)

    Rückgängig machen
  20. hat retweetet

    Heads up - will start showing functional test results instead of boots on Monday! Detailed timeline on GitHub: Email thread:

    Rückgängig machen

Das Laden scheint etwas zu dauern.

Twitter ist möglicherweise überlastet oder hat einen vorübergehenden Schluckauf. Probiere es erneut oder besuche Twitter Status für weitere Informationen.

    Vielleicht gefällt dir auch

    ·