Kernel Address Sanitizer (KASAN)

Status: Upstream; in mainline since 4.0

Documentation: Documentation/dev-tools/kasan.rst

Found bugs: here

Contacts: Andrey Konovalov <@xairy>, Alexander Potapenko <@ramosian-glider>, Dmitry Vyukov <@dvyukov>


Kernel Address Sanitizer (KASAN) is a fast memory safety error detector for the Linux kernel. It detects out-of-bounds and use-after-free bugs in slab, page_alloc, vmalloc, stack, and global memory.

KASAN has a Hardware Tag-Based mode intended to be used in production as a security mitigation. This mode is based on the Arm Memory Tagging Extension and is expected to have a low performance overhead.