Categories: Firefox Security

Update on Address Sanitizer

In a previous blog post, I outlined how the memory error detection tool Address Sanitizier (ASan) can be used with Firefox to find memory problems with a high degree of performance and how it can even detect certain errors that conventional tools missed.

While it was very complex to build Firefox with ASan support in the past, we now provide a much easier way (achieved by landing bug 727445). One of the most important changes is that from now on, no patching of Clang/LLVM is required anymore. Secondly, no further patches to Firefox are required for building, only a custom build configuration must be used. The build manual has been updated accordingly to reflect these changes. We hope that this encourages more people to try this tool and help us to improve Firefox.

– Christian Holler
Security Engineer

One comment on “Update on Address Sanitizer”

  1. Nicholas Nethercote wrote on