How to avoid bounds checks in Rust (without unsafe!)Featuring optimizer tricks, iterators and The Minimum Possible Bounds CheckJan 17, 20235Jan 17, 20235
The simpler alternative to GCC-RSYou really don’t need to rewrite the Rust compiler in C++ to get the benefits of GCC!May 30, 20211May 30, 20211
Smoke-testing Rust HTTP clientsBack in 2014 I was fetching frontpages of the top million websites to scan them for a particular vulnerability. Not only have I found…Jan 16, 20204Jan 16, 20204
Security as Rust 2019 goalThe goals and 2019 roadmap of Rust Secure Code Working GroupJan 18, 20191Jan 18, 20191
How I’ve found vulnerability in a popular Rust crate (and you can too)I have recently discovered a zero-day vulnerability in a fairly popular and well-designed Rust crate. In this article I’m going to discuss…Sep 28, 20181Sep 28, 20181
How Rust’s standard library was vulnerable for years and nobody noticedRust is a new systems programming language that prides itself on memory safety and speed. The gist of it is that if you write code in Rust…Aug 18, 201813Aug 18, 201813
Auditing popular Rust crates: how a one-line unsafe has nearly ruined everythingFollowing the actix-web incident (which is fixed now, at least mostly) I decided to poke other popular Rust libraries and see what comes of…Jul 19, 2018Jul 19, 2018