Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE,...

35
Inocula(ng So,ware, Boos(ng Quality Oracle & SAS Experience with Silicon Secured Memory [CON8216] Angelo Rajadurai, Senior Principal So,ware Engineer, Oracle Sheldon Lobo, Principal So,ware Engineer, Oracle Chandrashekhar Garud, Principal So,ware Engineer, Oracle Oracle Confiden(al – Internal/Restricted/Highly Restricted Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | October 25-29, 2015 San Francisco

Transcript of Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE,...

Page 1: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Inocula(ngSo,ware,Boos(ngQualityOracle&SASExperiencewithSiliconSecuredMemory[CON8216]

AngeloRajadurai,SeniorPrincipalSo,wareEngineer,OracleSheldonLobo,PrincipalSo,wareEngineer,OracleChandrashekharGarud,PrincipalSo,wareEngineer,Oracle

OracleConfiden(al–Internal/Restricted/HighlyRestrictedCopyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

October 25-29, 2015 San Francisco

Page 2: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

SafeHarborStatementThefollowingisintendedtooutlineourgeneralproductdirec(on.Itisintendedforinforma(onpurposesonly,andmaynotbeincorporatedintoanycontract.Itisnotacommitmenttodeliveranymaterial,code,orfunc(onality,andshouldnotberelieduponinmakingpurchasingdecisions.Thedevelopment,release,and(mingofanyfeaturesorfunc(onalitydescribedforOracle’sproductsremainsatthesolediscre(onofOracle.

Page 3: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

Topics• Memorycorrup(onsourceofSecurityproblem•  SecurityinthenewSPARCM7systems•  SiliconSecuredMemory–UsageExamples• HowYouCanBuildMoreSecureApplica(ons

3

Page 4: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

Security

Page 5: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

MemoryCorrup(on–TheProblem•  Applica(onsarevulnerabletomemorycorrup(ondueto

–  So,wareerrorsandmaliciousabacks(thatexploitso,wareerrors)

317millionnewmaliciousprogramsand24"zerodayvulnerability"in2014[Symantec]

• Memorycorrup(oncausesunpredictableapplica(onbehaviorandcrashes– Vic(mthreadencountersincorrectdatasome(mea,ertherun(meerroroccurredmakingthesebugsextremelyhardtolocateandfix

•  Bufferoverflowsareamajorsourceofsecurityexploits–  In-memorydatabaseincreasesexposure–terabytesofcri(caldatain-memory

•  DatabasesandOS’shavetensofmillionsoflinesofcode,developedbydistributedteamsofthousandsofdevelopers,soerrorsintroducedbyasubsystemcouldadverselyaffectoneormoresubsystems.

•  In-memorydatabaseincreasesexposure–terabytesofcri(caldatain-memory

5May5-7,2015

Page 6: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

WhyMemoryCorrup(onMabers…•  SecurityVulnerabili(es

– MakeHeadlines– IncreaseRisk– CreateUnexpectedCOSTBurden

• Memorycorrup(on:ASERIOUS&EXPONENTIALLYGROWINGproblem– Hurtsdeveloperproduc(vity,createsprojectdelays– Fuelsmajorproductqualityissues– SurfacesmajorSECURITYvulnerabili(es,exHeartBleed

6

Page 7: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

Inocula(on

libdiscoverADI.so$LD_PRELOAD_64= libadimalloc

7

DEV DEV/TEST PROD

{

Page 8: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

Stopsmaliciousprogramsfromaccessingotherapplica(onmemory

Firsteverhardwarebasedmemory

protec(on

Canbealwayson:Hardwareapproachhasnegligibleperformanceimpact

Resultsinimproveddeveloperefficiencyandmoresecureandhigheravailabiltyapplica(ons

SecurityinSilicon:SiliconSecuredMemoryImprovedSecurity&ReliabilityinHardware

Page 9: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

WhatisSiliconSecuredMemory?•  SSM(SiliconSecuredMemory)isahardwarefeatureoftheT7/M7thatdetectsinvaliddataaccessesbasedonmemorytagging

•  Aversionnumberisstoredbyso:wareinsparebitsofmemoryandcaches(4-bitatthegranularityof64-bytecachelines)andinthe4upperbitsofthepointers– Dedicatednon-privilegedload/storeinstruc(onsprovidetheabilitytoassigna4-bitversiontoeach64-bytecacheline

– MetadatastoredinmemoryismaintainedthroughouttheCachehierarchyandallInterconnects

•  Onload/storeops,theprocessorcomparestheversionsetinthepointerwiththeversionassignedinthetargetmemoryandgeneratesanexcep(onifthereisamismatch

May5-7,2015 9

Page 10: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

SiliconSecuredMemory

• H/Wcomparespointerversionwithmemoryversion

•  Trapsiftheydon’tmatch– SendsSEGVorutraptoprocess

• H/WmasksversionbeforeithitstheMMU

64Bytes version 64Bytes version

64Bytes version

64Bytes version 64Bytes version 64Bytes version 64Bytes version 64Bytes version

ld …!st …! version address

ld …!st …! version address

Pointers

(dbx) run signal SEGV (ADP version 13 mismatch for VA 0x4a900) in main at 0x10988 (dbx) where …stack trace…

May5-7,2015 10

Page 11: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

SiliconSecuredMemory–Implementa(onDetails

11

Studio’sADILib+discover

M7Hardware(Always-onADIchecking)

SolarisKernel(Providessys-callsforuser-levelapps)

Solaris’ADILib

UseSSMindeploymentformoresecureapplica(onsandtolimitmaliciousabacksinreal-(me

Applica?on

UseSSMindevelopmenttoiden(fyandeliminateapplica(onmemory

accesserrors

SolarisStudioCodeAnalyzer

Solaris’adimalloc

UseSSMtodevelopcodesecureapplica(ons

Page 12: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

SiliconSecuredMemory–UsageExamples

12

Page 13: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

OracleRDBMS• Memorycorrup(onahugeissue;in-memorydataraisesthestakes• Usedopensourceso,wareemula(ontes(ngsolu(on,but:

– Longrun(me;Smallsubsetofinternaltests

•  Studioteamimplementedanefficientfatpointerso,waresolu(on• Revolu4onaryinsight,doitinhardware–SiliconSecuredMemory

13

So:wareCheckingld…st…

SavecontextNormalizepointerCheckpointerRestorecontext

HardwareCheckingld…st…

FullSpeed!!!SEGVoncolormismatch

Page 14: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

BusinessTransforma(onforOracleRDBMSDevelopers

• Disbelief:1stbugcaught;basicsanitytests• Denial:Developerinsists:“Notmybug”;Discoverprovesstalepointeruse.• Dismay:“Thenumberofbufferoverruns...muchhigherthanearlierindicated.Itoccurs8454mes...Yikes!”

• Disambigua(on:Freedmemoryaccess.“Itisatrickyissue…nicecatchbythistool!”

•  “Discoverhasprac4callyeliminatedtheseMechaGodzilla,insidious,hardtofindcorrup4ons.We’rejustnothavingtodealwiththatnow.”

14

Upto250xfaster;alloca?on/freecontext;sourcelinemapping

Page 15: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

UsingDiscover:CatchingInvalidMemoryReferencesinSGA

15

Page 16: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

AtSAS….

•  Largeenterprise,memoryintensiveapp•  31+MillionLinesofC•  TimetovalueforSPARCM7

– 4crossplaKormbugstaggedin2days– 180xfasterbugiden(fica(on

• Othermemoryvalida(ontool:3hours• SiliconSecuredMemoryandDiscovertool:1minute

16

SAS9.4&StudioDiscoverADIProofofConcept

SiliconSecuredMemory

OracleSolarisStudio

+

Page 17: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

SASCaseStudy:BugFind,Fix,Putback:~2hoursDiscoverADITagsReadBeyondArrayBoundsMemoryViola?on

17

ArrayBoundsErrorTaggedbyDiscoverADI/export/home/sas/adisas-fulls(mer-s(mefmts-WORK/d0/saswork-UTILLOC/d0/u(lloc-memsize200G-CPUCOUNT256-sysparm128XXXX.sas

ERROR1(ABR):[t@13]readingmemorybeyondarrayboundsataddress0x7fffffff7142d078{memoryversion:6}:LevelizeEffectsObs()+0x90LevelizeEffectsTh()+0x518ThreadMain()+0x1e8….wasallocatedat(0x7fffffff70c2d080,16bytes):valMemAlloc()+0x138FinishModels()+0x200LoadFromStore()+0xb3c……DISCOVERSUMMARY:uniqueerrors:1(1total)

BugFixedbyCodeOwner

From:[email protected]:RE:possibleABRline890of/sas/dev/XXXX/XXXX/src/XXXX.cDate:February20,2015at3:31:48PMESTTo:[email protected],Itisfixedandpushed.Thanks,XXXXXXXX

BugTriagedbySASHostGroup

From:TomTxxxxxxxSent:Thursday,February19,201512:52PMTo:XXXXXXSubject:possibleABRline890of/sas/dev/XXXX/XXXX/src/XXXX.cHi,wearegeZngareportofanout-of-boundsread(ABR)forline890of/sas/dev/XXXX/XXXX/src/XXXX.c875TKStatusLevelizeEffectsObs(tkmixContextPtrctx,…890tkEffectPtrsubef=(str->XXXX)?str->XXXX[str->XXXX]:NULL;

Inthisscenarioitappearsthatstr->XXXXisnon-NULLandstr->XXXXis-1.Isthatplausible?Thanksmuchforconsideringthis,TomTxxxxxx

BugTag->BugTriage->BugFix&Integra(on:ElapsedTime:~2days,UserTime:~2hours

Page 18: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

Discover+SiliconSecuredMemory:OracleProductTeams

• AdvSupplyChainPlanning(DoubleFree)• OracleLDAP(FreedMemoryRead)• PeopleSo,(FreedMemoryRead)• SolarisAssembler–(BufferOverflowRead)

– “…that*was*28yearsago…*Congratula4ons*,Waytogo”– OtherOracleApps:OBIEE,FusionMiddlewareOID,HFM,EBS,ASCP

18

Page 19: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

Discover+SiliconSecuredMemoryFindsSecurityIssuesinNon-OracleAppsaswell• OpenSSL(BufferOverflow)–Heartbleed• OpenVPN(FreedMemoryRead)• Python(FreedMemoryRead)•  SeveralotherappstestedwithDiscover+SiliconSecuredMemory

– OracleApps•  OBIEE,PeopleSo,HR,FusionMiddlewareOID,HFM,EBS,ASCP

– ThirdPartyApps•  SAP,Sybase,MSCNASTRAN,CapitekAAA,AsiainfoISMG,EMCNetworker,IBMDB2

19

Page 20: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

HowYouCanBuildMoreSecureApplica(ons

20

Page 21: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

DevelopingSecureSo,wareusingOracleSolarisStudio

CompilerSuite

C,C++Compiler

VisualDebugger

PerformanceLibrary

FortranCompiler

AnalysisSuite

PerformanceAnalyzer

CodeAnalyzer

ThreadAnalyzer

IDE

21

Page 22: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

DevelopingSecureSo,wareusingOracleSolarisStudio

Studio12.4downloadlink:hep://www.oracle.com/technetwork/server-storage/solarisstudio

CodeAnalyzer

Page 23: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

DevelopingSecureSo,wareusingOracleSolarisStudioDiscoverADICodeSecurityCheckingToolforSiliconSecuredMemory

MemoryViola(onsCaughtbyDiscoverADI

q BufferOverflows-ArrayBoundsRead/Write-ABR/ABW

q FreeMemoryRead/Write-FMR/FMW

q StalePointerAccess–SpecialcaseofFMR/FMW

q DoubleFreeMemory-DFM

q UnallocatedRead/Write-UAR/UAW

Page 24: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

DevelopingSecureSo,wareusingOracleSolarisStudioHowtorunyourapplica(onswithDiscoverADIØ SystemRequirements: SPARC-M7hardware,Solaris11.3OS,Studio12.4Discover

Ø UsingDiscoverdriver$ discover -i adi a.out

$ a.out

Ø UsingLD_PRELOAD_64 $ LD_PRELOAD_64=<compiler>/lib/compilers/sparcv9-S2/libdiscoverADI.so a.out

Ø  Resultscanbeviewedinvariousformats:HTML,Text,GUI

Page 25: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

DevelopingSecureSo,wareusingOracleSolarisStudio•  ABR/ABW–BufferOverflowExample

25

#include <stdio.h> #include <stdlib.h> char *arr; void foo() { for (int i = 0; i<= 64; i++) printf("%c\n", arr[i]); } int main() { arr = (char*)malloc(64); foo(); return 0; }

ERROR 1 (ABR): reading memory beyond array bounds at address 0x2fffffff7d47e040 {memory: v8}: foo() + 0x2c <test-abr.c:7> 6: for (int i = 0; i<= 64; i++) 7:=> printf("%c\n", arr[i]); main() + 0x24 <test-abr.c:12> 11: arr = (char*)malloc(64); 12:=> foo(); .. _start() + 0x108 was allocated at (0x2fffffff7d47e000, 64 bytes): main() + 0x8 <test-abr.c:11> 10: { 11:=> arr = (char*)malloc(64); _start() + 0x108 DISCOVER SUMMARY: unique errors : 1 (1 total)

Page 26: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

DevelopingSecureSo,wareusingOracleSolarisStudioHowDiscoverADIworksØ  Interposesonmemoryalloca(onrou(nes.

Ø  Assignsversions/colorstopointersØ  CatchestheSEGVtrapswhenillegalaccess(i.e.versionmismatch)occurs.

Ø  Reportsexactsourceline/stacktraceoferrorsandalloca(on/freesourceline/stacktraces

Page 27: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

DevelopingSecureSo,wareusingOracleSolarisStudioHowDiscoverADIworksØ Nocodeinstrumenta(on.Hardwaredoesallaccesschecks.

Ø  Accesscheckisfast.(~1%slowdown)Ø  Fulldebuggingmodes(llfast(~10%slowdown)

Ø  Norebuildrequired.NodebugbuildrequiredØ  WorksonStudiobuiltorgccbinaries

Ø  Runen(retestsuitewithDiscoverADI

Page 28: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2014Oracleand/oritsaffiliates.Allrightsreserved.|

SiliconSecuredMemory-inDevelopmentandDeployment

28

MemoryErrorCheckinginSilicon

SSMinDevelopmentIntegratedHWandDeveloperTools

Applica?on

OracleSolarisStudioCodeAnalyzer

Findandfixmemorycorrup(onerrors

SSMinDeploymentReal-?meDataProtec?on

EnsureDataIntegrity

Page 29: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

DeployingSecureApplica(onsOracleSolaris

Usage$LD_PRELOAD_64=/lib/sparcv9/libadimalloc.so

$a.out

SSMwillensureDataIntegritybystoppingtheapplica(onatthefirstinstanceofmemorycorrup(on

Page 30: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

DEVSo,wareADI

DEV/TESTSW+SiliconSecuredMemory

PRODSiliconSecuredMemory

30

SiliconSecuredMemory–Inocula(ngEveryStepSo:wareOnly SSM@Development SSM@Deployment DIYSSM

Studio12.4discover Studio12.4Discover+SSM Malloc+SSMlibadimalloc DirectlyprogramSSMlibc

Intel&AnySPARC SPARCM7 SPARCM7 SPARCM7

NoCodeChange NoCodeChange NoCodeChange IntegrateSSMintocode

Norecompileofcode Norecompileofcode Norecompileofcode CompileSSMintocode

discovera.out discover–iadia.out LD_PRELOAD_64=libadimalloc.so Useadi_*func(onsincode

HTMLbasedreportonerrorandrootcause

HTMLbasedreportonerrorandrootcause

Stopatfirstoccurrenceofsecurityviola(on Youdecide

HigherOverheadbutfasterthanotherso,warebased

tools

Lowoverheadbecauseofhardwareassist

Closetonooverhead–justhardwarebasedprotec(on

Youdecide.Hardwareassists.Aslowasyouneed

Page 31: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

CalltoAc(on–BoostSo,wareQuality&Security

31

3Op?onstoInoculateandImmunizeYourCodeagainstMemoryViola?ons

DEVSo,wareADIDiscover

DEV/TEST/PRODSW+SiliconSecuredMemoryDiscoverADI,libmallocADI

TEST/PRODSiliconSecuredMemory

Na(veADI

MustRead:UsingApplica(onDataIntegrityandOracleSolarisStudiotoFindandFixMemoryAccessErrors

Page 32: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.|

HelpMeGetInoculated!!

•  SeeSiliconSecuredMemoryinAc(on– VisitOracle’sSo,wareinSilicon(SWiS)Cloud

• hbp://swisdev.oracle.com

•  TrySo,wareADI:– GetOracleSolaris11.3andStudio12.4

•  Getinfo:JustAsk!– [email protected]– CodeDoctorswithoutBordersonhandtohelp

32

CalltoAc?on:IncreaseSo:wareQuality&Security

Page 33: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.| 33

Ques([email protected]

[email protected]

[email protected]

•  GetInfo:[email protected]•  OtherSessions:

–  CON6083:SiliconSecuredMemoryinSPARC:UnparalleledSecurityandPerformanceforOracleDatabase

–  HOL5447:LearningtoUseSPARCM7SiliconSecuredMemorytoDetectBufferOverflowAbacks–  HOL6011:SpeedingupOracleDatabaseUsingSPARCM7HardwareAccelera(on–  CON8337:DeveloperCloudMadeSimple:HowtoBuildanOpenStackDeveloperCloud

Page 34: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

Copyright©2015,Oracleand/oritsaffiliates.Allrightsreserved.| 34

Page 35: Inoculang So,ware, Boos(ng Quality - Oracle€¦ · Tom Txxxxxx Bug Tag -> Bug ... • OBIEE, PeopleSo, HR, Fusion Middleware OID, HFM, EBS, ASCP – Third Party Apps • SAP, Sybase

It’s a bug eat bug world!

It’s a bug eat bug world!

Florence Saunders Boos · 2015. 2. 16. · Florence Saunders Boos CURRICULUM VITAE . Department of English, 308 English-Philosophy Building . The University of Iowa, Iowa City, Iowa

Florence Saunders Boos · 2015. 2. 16. · Florence Saunders Boos CURRICULUM VITAE . Department of English, 308 English-Philosophy Building . The University of Iowa, Iowa City, Iowa

IDEALAMENITIES x CATALOGUEidealamenities.com/files/katalog/idealamenities x...ETUI COUTURE SEWING KIT COTONS - BOOS FEMOVER PADS ETUI COUTURE SEWING KIT COTONS - BOOS Title IDEALAMENITIES

IDEALAMENITIES x CATALOGUEidealamenities.com/files/katalog/idealamenities x...ETUI COUTURE SEWING KIT COTONS - BOOS FEMOVER PADS ETUI COUTURE SEWING KIT COTONS - BOOS Title IDEALAMENITIES

PHASE I ENVIRONMENTAL SITE ASSESSMENT€¦ · Bryan Cave LLP (the user) retained Weaver Boos Consultants, LLC (Weaver Boos) to perform a Phase I Environmental Site Assessment (ESA)

PHASE I ENVIRONMENTAL SITE ASSESSMENT€¦ · Bryan Cave LLP (the user) retained Weaver Boos Consultants, LLC (Weaver Boos) to perform a Phase I Environmental Site Assessment (ESA)

Community - Ecology: Good Bug, Bad Bug

Community - Ecology: Good Bug, Bad Bug

5 Ideas On How To Boos Your Productivity

5 Ideas On How To Boos Your Productivity

BEAUTY DGRAPEFRUIT.. Boos TS METABOLISM PROTECT10N. BRAIN … Ingredient… · beauty dgrapefruit.. boos ts metabolism protect10n. brain cardiovaswlrr anti - cancer tea: boos-rs eyesight,

BEAUTY DGRAPEFRUIT.. Boos TS METABOLISM PROTECT10N. BRAIN … Ingredient… · beauty dgrapefruit.. boos ts metabolism protect10n. brain cardiovaswlrr anti - cancer tea: boos-rs eyesight,

FLORENCES. BOOS Narrative Design in The Pilgrims of Hope

FLORENCES. BOOS Narrative Design in The Pilgrims of Hope

BOOS BLOCKS® FOUNDRY COLLECTION - John Boos

BOOS BLOCKS® FOUNDRY COLLECTION - John Boos

Oracle PeopleSo,applicaons are’under’a3acks!’ · PDF fileInvest’in’security’ to’secure’investments’ Oracle PeopleSo,applicaons are’under’a3acks!’ Alexey Tyurin&&

Oracle PeopleSo,applicaons are’under’a3acks!’ · PDF fileInvest’in’security’ to’secure’investments’ Oracle PeopleSo,applicaons are’under’a3acks!’ Alexey Tyurin&&

ON GENERALIZED SCORE TESTS Dennis D. Boos Institute of ...boos/library/mimeo.archive/ISMS_1990… · ON GENERALIZED SCORE TESTS 1. Introduction Ra.o (1948) introduced score statistics

ON GENERALIZED SCORE TESTS Dennis D. Boos Institute of ...boos/library/mimeo.archive/ISMS_1990… · ON GENERALIZED SCORE TESTS 1. Introduction Ra.o (1948) introduced score statistics

Insect-damaged wheat: suni bug, cereal bug, sunn pest, wheat bug, shield bug, shell bug

Insect-damaged wheat: suni bug, cereal bug, sunn pest, wheat bug, shield bug, shell bug

FLORENCES. BOOS Narrative Design in The …morrisedition.lib.uiowa.edu/Pilgrims.pdfFLORENCES. BOOS _____ _ Narrative Design in The Pilgrims of Hope The Pilgrims of Hope (1885) was

FLORENCES. BOOS Narrative Design in The …morrisedition.lib.uiowa.edu/Pilgrims.pdfFLORENCES. BOOS _____ _ Narrative Design in The Pilgrims of Hope The Pilgrims of Hope (1885) was

16477 Basics Boos

16477 Basics Boos

Chris Boos No Cloud Without Automation

Chris Boos No Cloud Without Automation

Bug Club – Phonics Bug Printed Material Magnetic Board Bug Club Buzz.

Bug Club – Phonics Bug Printed Material Magnetic Board Bug Club Buzz.

Gourmet - John Boos & Co. · 2019-04-04 · Gourmet & Countertop Surfaces PRICE LIST 2019. EFFECTIVE JANUARY 1, 2019. PL0119. JOHN BOOS & CO.

Gourmet - John Boos & Co. · 2019-04-04 · Gourmet & Countertop Surfaces PRICE LIST 2019. EFFECTIVE JANUARY 1, 2019. PL0119. JOHN BOOS & CO.

Bugs Entomology CDE. Order- Hemiptera Assassin bug Bed Bug Boxelder bug Brown stink bug Chinch bug Damsel bug Giant water bug Green stink bug Harlequin.

Bugs Entomology CDE. Order- Hemiptera Assassin bug Bed Bug Boxelder bug Brown stink bug Chinch bug Damsel bug Giant water bug Green stink bug Harlequin.

Zdravko Boos

Zdravko Boos

Oracle PeopleSo,applicaons are’under’a3acks!’...Invest’in’security’ to’secure’investments’ Oracle PeopleSo,applicaons are’under’a3acks!’ Alexey Tyurin&&

Oracle PeopleSo,applicaons are’under’a3acks!’...Invest’in’security’ to’secure’investments’ Oracle PeopleSo,applicaons are’under’a3acks!’ Alexey Tyurin&&