Originally posted by cj.wijtmans
View Post
Rust Developers Move Ahead With Preparing To Upstream More Code Into The Linux Kernel
Collapse
X
-
-
-
Originally posted by cj.wijtmans View PostModern C++ compilers has ASAN. I dont know if that would make it "memory safe" but its pretty much similar to rust that it can be turned off and on. Again the issue is not with c++ its with the implementations and tooling. Rust syntax cringes me out but also its centralized tooling and lack of standards are scary as well. You can see why big corp are pushing out.
It's just that you can add unsafe blocks to call unsafe function and dereference pointers.
Unsafe can be easily spotted in interviews and then reviewed carefully, while everything else is guaranteed to be memory safe.
The development of Rust happens entirely on github in a transparent manner, unlike C/C++ which happens in the committee and requires you to pay some money just to download some RFCs or join in the committee.
If eanything, you should be more scary of C/C++, because their language spec are completely in control of the big corp and the committee itself is not transparent.
And C/C++ also get pushed by the big corp initially, so I don't see any problem with that.
Leave a comment:
-
-
Originally posted by Volta View Post
How about protecting users from Platform Security Processor and Management Engine?Last edited by cj.wijtmans; 11 November 2022, 08:44 PM.
Leave a comment:
-
-
Modern C++ compilers has ASAN. I dont know if that would make it "memory safe" but its pretty much similar to rust that it can be turned off and on. Again the issue is not with c++ its with the implementations and tooling. Rust syntax cringes me out but also its centralized tooling and lack of standards are scary as well. You can see why big corp are pushing out.Last edited by cj.wijtmans; 11 November 2022, 08:40 PM.
Leave a comment:
-
-
Originally posted by uid313 View PostNSA suggesting Ruby is quite scary!
I never liked Ruby, eww.
I like Rust but would much prefer that the syntax used a single dot instead of this noisy double colon syntax.
Also I find the module system confusing, I have to create a file with the same name as the directory to export files inside the directory.
Leave a comment:
-
-
Originally posted by uid313 View Post
Ruby is a terrible language for security despite being memory safe, not because of the terrible syntax, but because it is dynamically interpreted so it has poor handling of data types and null values.
wrt to nil (not null, Ruby doesn't have null) although there are problems with it, they still at least have syntax helpers to help deal with the problem, i.e. https://stackoverflow.com/questions/...uby-on-rails-2
Leave a comment:
-
-
Separately, yesterday the US National Security Agency published guidance on protecting against memory safety issues.
Leave a comment:
-
-
Originally posted by RahulSundaram View Post
NSA rightfully so is not looking at your personal syntax preferences which are of no importance to anyone else. Ruby is merely an example (C and C++ are counter examples) in the report if you read it. The broader reason for the recommendations is far more critical ie) Language that manage memory safely (either via garbage collection or language features) have a provably better track record of avoiding certain class of security issues and that is being recognized strongly by both the industry and various government bodies.
Leave a comment:
-
-
enabling the use of the Rust programming language for future kernel drivers and other kernel code
Leave a comment:
-
Leave a comment: