Skip to content

Issues: llsoftsec/llsoftsecbook

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Clear current search query, filters, and sorts
55 Open 27 Closed
55 Open 27 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Section 2.7.1 "Sanitizers": Add diagram explaining how HWAsan works. content New content for the book
#168 opened Feb 21, 2023 by kbeyls updated Feb 21, 2023
Section 2.7.1 "Sanitizers": split out MTE description into a separate section content New content for the book
#169 opened Feb 21, 2023 by kbeyls updated Feb 21, 2023
Section 3.1 "Timing side-channels": also discuss Constatine compiler content New content for the book
#172 opened Feb 21, 2023 by kbeyls updated Feb 21, 2023
Section 3.2.1 "Typical CPU cache architecture": also explain cache coherency? content New content for the book
#173 opened Feb 21, 2023 by kbeyls updated Feb 21, 2023
Section 3.2.1 "Typical CPU cache architecture": also explain TLB and prefetching content New content for the book
#174 opened Feb 21, 2023 by kbeyls updated Feb 21, 2023
Section 3.2.2.1 "Flush+Reload": add a more elaborate example content New content for the book
#175 opened Feb 21, 2023 by kbeyls updated Feb 21, 2023
Describe in more detail why range limitation matters in section 2.2 Exploitation Primitives. content New content for the book
#162 opened Feb 21, 2023 by kbeyls updated Feb 22, 2023
Section 2.2 "Exploitation Primitives": also add links to simpler exploits and tutorial-level material content New content for the book
#163 opened Feb 21, 2023 by kbeyls updated Feb 22, 2023
Chapter 3: "Side-channels" consider adding more section covering more side-channel categories content New content for the book
#176 opened Feb 22, 2023 by kbeyls updated Feb 22, 2023
Section 3.5 "Transient Execution": Write sections on specific transient execution attacks such as Spectre and Meltdown. content New content for the book
#178 opened Feb 22, 2023 by kbeyls updated Feb 22, 2023
Chapter 3 "Side-channels": Write section on site isolation as a SpectreV1 mitigation content New content for the book
#179 opened Feb 22, 2023 by kbeyls updated Feb 22, 2023
Chapter 4 "Supply chain attacks": Explain how to mitigate these content New content for the book
#180 opened Feb 22, 2023 by kbeyls updated Feb 22, 2023
Chapter 5: "Physical attacks": move chapter to a section in the chapter on side channels content New content for the book
#181 opened Feb 22, 2023 by kbeyls updated Feb 22, 2023
Section 5.2.3 "Countermeasures": reduce overlap with section on timing-based side channels content New content for the book
#182 opened Feb 22, 2023 by kbeyls updated Feb 22, 2023
Add a section on model-checkers / formal verification tools content New content for the book
#157 opened Feb 20, 2023 by rurban updated Feb 22, 2023
4
PAC is also supported in ARMv8.1-M content New content for the book
#186 opened Mar 6, 2023 by saagarjha updated Mar 6, 2023
3
Section 2.7.1 "Sanitizers": Also describe other mechanisms to detect memory errors content New content for the book
#170 opened Feb 21, 2023 by kbeyls updated Apr 18, 2023
@g-kouv
Add a section to chapter 2 on system call interposition, ASLR and related mitigations
#199 opened May 15, 2023 by g-kouv updated May 15, 2023
Section 2.4.1 "Return-oriented Programming": Explain how assembly gadgets could be generated from C/C++ content New content for the book
#164 opened Feb 21, 2023 by kbeyls updated May 15, 2023
3
Chapter 5 "Compiler introduced security vulnerabilities": Explain the implications of Undefined Behavior
#202 opened May 21, 2023 by lucic71 updated May 21, 2023
Write about mitigations for branch predictor-based side channels content New content for the book
#203 opened Jun 14, 2023 by kbeyls updated Jun 28, 2023
3
Add description of temporal memory safety vs spatial memory safety. content New content for the book
#205 opened Jun 23, 2023 by kbeyls updated Jun 30, 2023
@g-kouv
Section 3.6.1: Transient Execution. Add example related to Store-Bypass-Load (Spectre v4)
#214 opened Oct 18, 2023 by swarnpriya updated Oct 18, 2023
Compiler preserving constant-time property
#213 opened Oct 18, 2023 by swarnpriya updated Oct 19, 2023
3
Add reference to https://best.openssf.org/Compiler-Hardening-Guides/Compiler-Options-Hardening-Guide-for-C-and-C++ content New content for the book good first issue Good for newcomers
#230 opened Mar 7, 2024 by kbeyls updated Mar 7, 2024
1
ProTip! Updated in the last three days: updated:>2025-02-01.