Sergey "Shnatsel" DavidoffHow to avoid bounds checks in Rust (without unsafe!)Featuring optimizer tricks, iterators and The Minimum Possible Bounds Check22 min read·Jan 17, 2023--3--3
Sergey "Shnatsel" DavidoffThe simpler alternative to GCC-RSYou really don’t need to rewrite the Rust compiler in C++ to get the benefits of GCC!6 min read·May 30, 2021--1--1
Sergey "Shnatsel" DavidoffSmoke-testing Rust HTTP clientsBack in 2014 I was fetching frontpages of the top million websites to scan them for a particular vulnerability. Not only have I found…19 min read·Jan 16, 2020--4--4
Sergey "Shnatsel" DavidoffSecurity as Rust 2019 goalThe goals and 2019 roadmap of Rust Secure Code Working Group8 min read·Jan 18, 2019--1--1
Sergey "Shnatsel" DavidoffHow I’ve found vulnerability in a popular Rust crate (and you can too)I have recently discovered a zero-day vulnerability in a fairly popular and well-designed Rust crate. In this article I’m going to discuss…10 min read·Sep 28, 2018--1--1
Sergey "Shnatsel" DavidoffHow Rust’s standard library was vulnerable for years and nobody noticedRust is a new systems programming language that prides itself on memory safety and speed. The gist of it is that if you write code in Rust…10 min read·Aug 18, 2018--13--13
Sergey "Shnatsel" DavidoffAuditing popular Rust crates: how a one-line unsafe has nearly ruined everythingFollowing the actix-web incident (which is fixed now, at least mostly) I decided to poke other popular Rust libraries and see what comes of…10 min read·Jul 19, 2018----