| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20230616121041.4010f51b@kernel.org> Date: Fri, 16 Jun 2023 12:10:41 -0700 From: Jakub Kicinski <kuba@...nel.org> To: Alice Ryhl <alice@...l.io> Cc: FUJITA Tomonori <fujita.tomonori@...il.com>, andrew@...n.ch, netdev@...r.kernel.org, rust-for-linux@...r.kernel.org, aliceryhl@...gle.com, miguel.ojeda.sandonis@...il.com Subject: Re: [PATCH 0/5] Rust abstractions for network device drivers On Fri, 16 Jun 2023 21:00:36 +0200 Alice Ryhl wrote: > A Rust method can be defined to take the struct "by value", which > consumes the struct and prevents you from using it again. This can let > you provide many different cleanup methods that each clean it up in > different ways. > > However, you cannot force the user to use one of those methods. They > always have the option of letting the value go out of scope, which calls > the destructor. And they can do this at any time. > > That said, the destructor of the value does not necessarily *have* to > translate to immediately freeing the value. If the value if refcounted, > the destructor could just drop the refcount. It would also be possible > for a destructor to schedule the cleanup operation to a workqueue. Or > you could do something more clever. Can we put a WARN_ON() in the destructor and expect object to never be implicitly freed? skbs represent packets (most of the time) and for tracking which part of the stack is dropping packets we try to provide a drop reason along the freed skb. It'd be great if for Rust we could from the get-go direct everyone towards the APIs with an explicit reason code.
Powered by blists - more mailing lists