| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20250222141521.1fe24871@eugeo> Date: Sat, 22 Feb 2025 14:15:21 +0000 From: Gary Guo <gary@...yguo.net> To: Ventura Jack <venturajack85@...il.com> Cc: torvalds@...ux-foundation.org, airlied@...il.com, boqun.feng@...il.com, david.laight.linux@...il.com, ej@...i.de, gregkh@...uxfoundation.org, hch@...radead.org, hpa@...or.com, ksummit@...ts.linux.dev, linux-kernel@...r.kernel.org, miguel.ojeda.sandonis@...il.com, rust-for-linux@...r.kernel.org Subject: Re: C aggregate passing (Rust kernel policy) On Sat, 22 Feb 2025 03:06:44 -0700 Ventura Jack <venturajack85@...il.com> wrote: > >Gcc used to initialize it all, but as of gcc-15 it apparently says > >"Oh, the standard allows this crazy behavior, so we'll do it by > default". > > > >Yeah. People love to talk about "safe C", but compiler people have > >actively tried to make C unsafer for decades. The C standards > >committee has been complicit. I've ranted about the crazy C alias > >rules before. > > Unsafe Rust actually has way stricter rules for aliasing than C. For > you and others who don't like C's aliasing, it may be best to avoid > unsafe Rust. > I think the frequently criticized C aliasing rules are *type-based aliasing*. Rust does not have type based aliasing restrictions. It does have mutability based aliasing rules, but that's easier to reason about, and we have mechanisms to disable them if needed at much finer granularity. Best, Gary
Powered by blists - more mailing lists