ERASan: Efficient Rust Address Sanitizer

Jiun Min; Dongyeon Yu; Seongyun Jeong; Dokyung Song; Yuseok Jeon

doi:10.1109/SP54263.2024.00258

ERASan: Efficient Rust Address Sanitizer

Jiun Min
, Dongyeon Yu
, Seongyun Jeong
, Dokyung Song
, Yuseok Jeon^*

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

4 Citations (Scopus)

Abstract

Rust is a rapidly growing system programming language that ensures a speed comparable to traditional C/C++ system programming languages, along with the additional benefit of guaranteed memory safety. However, Rust's strict security rules make implementing and executing some features challenging. To address this, Rust has introduced unsafe Rust, which is less constrained by these strict rules. Nevertheless, these unsafe Rust, where strict Rust security rules are not fully applied, can cause temporal and spatial memory bugs that account for 22% of the Rust bugs reported between 2016 and 2023.In this paper, we propose an efficient address sanitizer design customized for Rust, called ERASan, to detect memory bugs in Rust programs more efficiently than prior work. Based on our thorough analysis of safe and unsafe Rust programming language standards as well as memory bugs found in real-world Rust programs over the past years, we design and implement ERASan to only instrument memory accesses in both safe and unsafe code areas where Rust cannot guarantee safety. We evaluate ERASan with several real-world applications. ERASan removes an average of 90.03% of ASan's memory access checks. Due to this, ERASan significantly reduces ASan's performance overhead by an average of 239.05% without harming its bug-finding ability.

Original language	English
Title of host publication	Proceedings - 45th IEEE Symposium on Security and Privacy, SP 2024
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	4053-4068
Number of pages	16
ISBN (Electronic)	9798350331301
DOIs	https://doi.org/10.1109/SP54263.2024.00258
Publication status	Published - 2024
Externally published	Yes
Event	45th IEEE Symposium on Security and Privacy, SP 2024 - San Francisco, United States Duration: 2024 May 20 → 2024 May 23

Publication series

Name	Proceedings - IEEE Symposium on Security and Privacy
ISSN (Print)	1081-6011

Conference

Conference	45th IEEE Symposium on Security and Privacy, SP 2024
Country/Territory	United States
City	San Francisco
Period	24/5/20 → 24/5/23

Bibliographical note

Publisher Copyright:
© 2024 IEEE.

Keywords

Rust
address sanitizer
static analysis

ASJC Scopus subject areas

Software
Safety, Risk, Reliability and Quality
Computer Networks and Communications

Access to Document

10.1109/SP54263.2024.00258

Cite this

ERASan: Efficient Rust Address Sanitizer. / Min, Jiun; Yu, Dongyeon; Jeong, Seongyun et al.
Proceedings - 45th IEEE Symposium on Security and Privacy, SP 2024. Institute of Electrical and Electronics Engineers Inc., 2024. p. 4053-4068 (Proceedings - IEEE Symposium on Security and Privacy).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Min, J, Yu, D, Jeong, S, Song, D & Jeon, Y 2024, ERASan: Efficient Rust Address Sanitizer. in Proceedings - 45th IEEE Symposium on Security and Privacy, SP 2024. Proceedings - IEEE Symposium on Security and Privacy, Institute of Electrical and Electronics Engineers Inc., pp. 4053-4068, 45th IEEE Symposium on Security and Privacy, SP 2024, San Francisco, United States, 24/5/20. https://doi.org/10.1109/SP54263.2024.00258

@inproceedings{c7e136f20a7e470397af02e983163b9c,

title = "ERASan: Efficient Rust Address Sanitizer",

abstract = "Rust is a rapidly growing system programming language that ensures a speed comparable to traditional C/C++ system programming languages, along with the additional benefit of guaranteed memory safety. However, Rust's strict security rules make implementing and executing some features challenging. To address this, Rust has introduced unsafe Rust, which is less constrained by these strict rules. Nevertheless, these unsafe Rust, where strict Rust security rules are not fully applied, can cause temporal and spatial memory bugs that account for 22\% of the Rust bugs reported between 2016 and 2023.In this paper, we propose an efficient address sanitizer design customized for Rust, called ERASan, to detect memory bugs in Rust programs more efficiently than prior work. Based on our thorough analysis of safe and unsafe Rust programming language standards as well as memory bugs found in real-world Rust programs over the past years, we design and implement ERASan to only instrument memory accesses in both safe and unsafe code areas where Rust cannot guarantee safety. We evaluate ERASan with several real-world applications. ERASan removes an average of 90.03\% of ASan's memory access checks. Due to this, ERASan significantly reduces ASan's performance overhead by an average of 239.05\% without harming its bug-finding ability.",

keywords = "Rust, address sanitizer, static analysis",

author = "Jiun Min and Dongyeon Yu and Seongyun Jeong and Dokyung Song and Yuseok Jeon",

note = "Publisher Copyright: {\textcopyright} 2024 IEEE.; 45th IEEE Symposium on Security and Privacy, SP 2024 ; Conference date: 20-05-2024 Through 23-05-2024",

year = "2024",

doi = "10.1109/SP54263.2024.00258",

language = "English",

series = "Proceedings - IEEE Symposium on Security and Privacy",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "4053--4068",

booktitle = "Proceedings - 45th IEEE Symposium on Security and Privacy, SP 2024",

}

TY - GEN

T1 - ERASan

T2 - 45th IEEE Symposium on Security and Privacy, SP 2024

AU - Min, Jiun

AU - Yu, Dongyeon

AU - Jeong, Seongyun

AU - Song, Dokyung

AU - Jeon, Yuseok

PY - 2024

Y1 - 2024

N2 - Rust is a rapidly growing system programming language that ensures a speed comparable to traditional C/C++ system programming languages, along with the additional benefit of guaranteed memory safety. However, Rust's strict security rules make implementing and executing some features challenging. To address this, Rust has introduced unsafe Rust, which is less constrained by these strict rules. Nevertheless, these unsafe Rust, where strict Rust security rules are not fully applied, can cause temporal and spatial memory bugs that account for 22% of the Rust bugs reported between 2016 and 2023.In this paper, we propose an efficient address sanitizer design customized for Rust, called ERASan, to detect memory bugs in Rust programs more efficiently than prior work. Based on our thorough analysis of safe and unsafe Rust programming language standards as well as memory bugs found in real-world Rust programs over the past years, we design and implement ERASan to only instrument memory accesses in both safe and unsafe code areas where Rust cannot guarantee safety. We evaluate ERASan with several real-world applications. ERASan removes an average of 90.03% of ASan's memory access checks. Due to this, ERASan significantly reduces ASan's performance overhead by an average of 239.05% without harming its bug-finding ability.

AB - Rust is a rapidly growing system programming language that ensures a speed comparable to traditional C/C++ system programming languages, along with the additional benefit of guaranteed memory safety. However, Rust's strict security rules make implementing and executing some features challenging. To address this, Rust has introduced unsafe Rust, which is less constrained by these strict rules. Nevertheless, these unsafe Rust, where strict Rust security rules are not fully applied, can cause temporal and spatial memory bugs that account for 22% of the Rust bugs reported between 2016 and 2023.In this paper, we propose an efficient address sanitizer design customized for Rust, called ERASan, to detect memory bugs in Rust programs more efficiently than prior work. Based on our thorough analysis of safe and unsafe Rust programming language standards as well as memory bugs found in real-world Rust programs over the past years, we design and implement ERASan to only instrument memory accesses in both safe and unsafe code areas where Rust cannot guarantee safety. We evaluate ERASan with several real-world applications. ERASan removes an average of 90.03% of ASan's memory access checks. Due to this, ERASan significantly reduces ASan's performance overhead by an average of 239.05% without harming its bug-finding ability.

KW - Rust

KW - address sanitizer

KW - static analysis

UR - https://www.scopus.com/pages/publications/85204078481

U2 - 10.1109/SP54263.2024.00258

DO - 10.1109/SP54263.2024.00258

M3 - Conference contribution

AN - SCOPUS:85204078481

T3 - Proceedings - IEEE Symposium on Security and Privacy

SP - 4053

EP - 4068

BT - Proceedings - 45th IEEE Symposium on Security and Privacy, SP 2024

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 20 May 2024 through 23 May 2024

ER -

ERASan: Efficient Rust Address Sanitizer

Abstract

Publication series

Conference

Bibliographical note

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this