When should I use AddressSanitizer?

Use ASan during development, unit testing, and fuzzing of C, C++, or unsafe Rust code to catch memory corruption bugs early before they reach production.

How do I enable ASan in my build?

Add the -fsanitize=address flag to both your compiler and linker commands, and include the -g flag to ensure you receive detailed, symbolic stack traces.

Does ASan affect program performance?

Yes, ASan typically introduces a 2-4x performance slowdown and requires significant virtual memory (~20TB mapped), making it unsuitable for production environments.

Can I use ASan with other sanitizers?

Yes, it is common to combine ASan with UndefinedBehaviorSanitizer (UBSan) using -fsanitize=address,undefined for broader bug detection in a single test run.

AddressSanitizer (ASan) Memory Testing

Name: AddressSanitizer (ASan) Memory Testing
Author: sudohakan

bysudohakan

•

安全与测试

Detects memory corruption bugs like buffer overflows and use-after-free errors during C/C++ and Rust testing.

AddressSanitizer (ASan) is a specialized technique for identifying critical memory safety violations in software, particularly during fuzzing campaigns. By instrumenting code at compile time, it monitors memory allocations and accesses to catch illegal operations that often lead to security vulnerabilities. This skill provides Claude with the domain knowledge to correctly configure ASan flags, manage environment variables like ASAN_OPTIONS, and interpret complex error reports across various build systems and fuzzing tools like libFuzzer and AFL++, ensuring robust memory safety in low-level applications.

主要功能

01Comprehensive memory error detection for buffer overflows and use-after-free bugs

02Guidance on configuring ASAN_OPTIONS for verbosity, leak detection, and error handling

03Detailed interpretation of ASan runtime reports and symbolic stack traces

042 GitHub stars

05Optimization tips for managing memory limits in fuzzer environments like AFL++

06Step-by-step instructions for integrating ASan with Clang, GCC, and Rust's cargo-fuzz

使用场景

01Ensuring memory safety in Rust projects containing unsafe blocks or FFI boundaries

02Debugging non-deterministic memory corruption crashes in legacy C codebases

03Fuzzing C/C++ applications for security vulnerabilities using libFuzzer or AFL++

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add sudohakan/claude-code-dotfiles address-sanitizer

For use in Claude.ai and ChatGPT

主要功能

01Comprehensive memory error detection for buffer overflows and use-after-free bugs

02Guidance on configuring ASAN_OPTIONS for verbosity, leak detection, and error handling

03Detailed interpretation of ASan runtime reports and symbolic stack traces

042 GitHub stars

05Optimization tips for managing memory limits in fuzzer environments like AFL++

06Step-by-step instructions for integrating ASan with Clang, GCC, and Rust's cargo-fuzz

使用场景

01Ensuring memory safety in Rust projects containing unsafe blocks or FFI boundaries

02Debugging non-deterministic memory corruption crashes in legacy C codebases

03Fuzzing C/C++ applications for security vulnerabilities using libFuzzer or AFL++