|
|
|
|
|
|
by woodruffw
1890 days ago
|
|
|
> the response from the researcher saying these were automated by a tool looks like a potential lie. To be clear, this is unethical research. But I read the paper, and these patches were probably automatically generated by a tool (or perhaps guided by a tool, and filled in concretely by a human): their analyses boil down to a very simple LLVM pass that just checks for pointer dereferences and inserts calls to functions that are identified as performing frees/deallocations before those dereferences. Page 9 and onwards of the paper[1] explains it in reasonable detail. [1]: https://github.com/QiushiWu/QiushiWu.github.io/blob/main/pap... |
|
|
Could they have submitted patches to fix the problems based on same tooling or was that not possible (I am not close to kernel development flow)?