GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE
  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Notices by Pierre H. (madcoder@infosec.exchange)

  1. Embed this notice
    Pierre H. (madcoder@infosec.exchange)'s status on Monday, 05-Feb-2024 19:24:55 JST Pierre H. Pierre H.

    Aaaaaahhh I had missed the smell of the Californian infrastructure straight from 1983.

    Except this time I have a battery.

    In conversation about a year ago from infosec.exchange permalink
  2. Embed this notice
    Pierre H. (madcoder@infosec.exchange)'s status on Monday, 05-Feb-2024 19:24:50 JST Pierre H. Pierre H.
    in reply to
    • Rui Paulo

    @rpaulo I come from a country where all power lines were buried between 1990 and 2000. I had not experienced any power outage of more than a few minutes (and maybe 3 times total) in my 15 years as an adult there.

    (And I’ve stayed in the middle of storms in places quite more remote and more sparsely inhabited than the South Bay).

    In conversation about a year ago from infosec.exchange permalink
  3. Embed this notice
    Pierre H. (madcoder@infosec.exchange)'s status on Saturday, 18-Nov-2023 15:08:47 JST Pierre H. Pierre H.
    • rauhul

    I was excited about Embedded Swift, knowing @rauhul was working on swift-MMIO making writing firmwares and drivers in Swift a reality. I’m psyched.

    https://forums.swift.org/t/introducing-swift-mmio/68525

    Via https://mastodon.social/@tkremenek/111428255698391290

    In conversation Saturday, 18-Nov-2023 15:08:47 JST from infosec.exchange permalink

    Attachments

    1. No result found on File_thumbnail lookup.
      Ted Kremenek (@tkremenek@mastodon.social)
      from Ted Kremenek
      Congrats to @rauhul@hachyderm.io for kicking off swift-mmio: "swift-mmio is designed to provide safe and secure APIs for fundamental low-level operations required in embedded firmware development, such as reading and writing memory-mapped registers" https://forums.swift.org/t/introducing-swift-mmio/68525
  4. Embed this notice
    Pierre H. (madcoder@infosec.exchange)'s status on Saturday, 18-Nov-2023 14:38:26 JST Pierre H. Pierre H.

    https://x.com/kayseesee/status/1725587747279380831

    For people not wanting to click Twitter links:

    > I am proud to present you the pre-print of our paper on GWP-ASan. 5+ years of work by four companies, spanning Server, Desktop, and Mobile, running on billions of devices. Finding and fixing thousands of bugs and potential vulnerabilities.

    https://arxiv.org/pdf/2311.09394.pdf

    In conversation Saturday, 18-Nov-2023 14:38:26 JST from infosec.exchange permalink

    Attachments


  5. Embed this notice
    Pierre H. (madcoder@infosec.exchange)'s status on Saturday, 18-Nov-2023 14:38:24 JST Pierre H. Pierre H.
    in reply to

    Quotes from the article around Apple platforms:

    Apple’s variant of GWP-ASan, named Probabilistic Guard Malloc (PGM), is implemented in the standard user space allocator. It was first deployed to customer populations with iOS 14.5 and macOS 11.3 (April 2021) and deployment gradually expanded to additional platforms, including watchOS and tvOS. PGM is enabled for all Apple-owned user space processes (including apps) and integrates with the existing crash reporting pipeline. Crash reports are augmented with additional information about the guarded allocation, most notably the allocation and deallocation stack traces.

    […]

    As of September 2023, a total of 3,748 PGM bugs have been filed of which 1,438 are marked fixed with an associated code change.

    […]

    In summary, PGM has been an effective tool for finding and diagnosing memory errors at Apple. On average, 2.1 new bugs have been found every day since it was first deployed at scale in April 2021. The additional information in PGM crash reports (most notably, allocation and deallocation stack traces) makes them actionable even without a reproducer, resulting in a high 99% fix rate. In a handful of cases, a single PGM crash report made the difference for diagnosing a known high-impact bug. PGM even found bugs (now fixed) in code that had remained unchanged for over 20 years.

    In conversation Saturday, 18-Nov-2023 14:38:24 JST from infosec.exchange permalink
  6. Embed this notice
    Pierre H. (madcoder@infosec.exchange)'s status on Tuesday, 21-Mar-2023 02:34:13 JST Pierre H. Pierre H.

    I get a Twitter notification. I’m curious. And it’s that, and I don’t follow the guy. Just wow.

    In conversation Tuesday, 21-Mar-2023 02:34:13 JST from infosec.exchange permalink

    Attachments


    1. https://media.infosec.exchange/infosecmedia/media_attachments/files/110/053/637/047/278/543/original/d85049f4094c6028.png

User actions

    Pierre H.

    Pierre H.

    present: security (zalloc, kalloctype, IPC, VM, …) | past: GCD, synchro, objcdirect, perf… | timeless: ?? snark

    Tags
    • (None)

    Following 0

      Followers 0

        Groups 0

          Statistics

          User ID
          108698
          Member since
          20 Mar 2023
          Notices
          6
          Daily average
          0

          Feeds

          • Atom
          • Help
          • About
          • FAQ
          • TOS
          • Privacy
          • Source
          • Version
          • Contact

          GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

          Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.