Twitter Feed
@bascule ("Tony “Abolish ICE” Arcieri 🦀") wrote:
Per a talk I gave in 2014 when every mainstream TLS stack had a major vulnerability: no.
Notable problems:
- C programmers confusing -1/0 vs 0/1 conventions for false/true
- Unhandled errors largely prevented by use of Result
- gotoThat said… (1/2)
In reply to:
@jeffvanderstoep ("Jeff Vander Stoep") wrote:
Are Rust developers more likely to create logic error vulnerabilities due to overconfidence or lack of testing? Are they being lured onto the rocky shores of logic vulns by the sweet siren’s song of memory safety? The answer is pretty overwhelmingly “no”:
(1/n) https://twitter.com/ariadneconill/status/1418436049622216775