Blog

Fiddly buffer overrun in OpenSSL

John’s blog is hosting a post, co-authored by me, about one of the more entertaining “bugs” reported by TrustInSoft in OpenSSL. In this case the

The libc cross-testing project

While discussing with a number of other people, the idea arose of the differential testing of libc implementations. There are many of these (musl libc

Looking for undefined behavior in ntpd

This is TrustInSoft Analyzer: it is used by customers since 2014 but no public video was available until now. This is the “Episode 1”: it focuses on