The coreutils Rust rewrite story is pretty funny.
-
@Seirdy@pleroma.envs.net @lcamtuf@infosec.exchange @Doomed_Daniel@mastodon.gamedev.place @ireneista@adhd.irenes.space @puppygirlhornypost2
I just ranman sdand I don't understand anything of what it said.@2something@transfem.social @lcamtuf@infosec.exchange @Doomed_Daniel@mastodon.gamedev.place @ireneista@irenes.space @puppygirlhornypost2@transfem.social no thats something else. it’s one of those newer rust utilities like what ripgrep is for grep.
-
@lcamtuf Rustaceans are the problem, not Rust itself. theyre like a lobbing group trying explicitly to boost their future employment demand much more than prioritized on doing the right thing as engineers or for the community. much like the AI VC are "talking up their book" even if its poison for the rest of us
@synlogic4242 @lcamtuf I’ve learnt to differentiate between people who only talk about the tech, and never about solving problems. It’s been the same for decades.
Tech can be fun, not saying it shouldn’t be. But it doesn’t create solutions by itself.
-
@2something@transfem.social @lcamtuf@infosec.exchange @Doomed_Daniel@mastodon.gamedev.place @ireneista@irenes.space @puppygirlhornypost2@transfem.social no thats something else. it’s one of those newer rust utilities like what ripgrep is for grep.
@2something@transfem.social @Doomed_Daniel@mastodon.gamedev.place @ireneista@irenes.space @lcamtuf@infosec.exchange @puppygirlhornypost2@transfem.social it’s not full pcre with stuff like variable length lookbehinds but it’s close enough with named capture groups and the like. It uses Rust’s regex crate
-
@2something@transfem.social @Doomed_Daniel@mastodon.gamedev.place @ireneista@irenes.space @lcamtuf@infosec.exchange @puppygirlhornypost2@transfem.social it’s not full pcre with stuff like variable length lookbehinds but it’s close enough with named capture groups and the like. It uses Rust’s regex crate
@2something@transfem.social @Doomed_Daniel@mastodon.gamedev.place @ireneista@irenes.space @lcamtuf@infosec.exchange @puppygirlhornypost2@transfem.social it’s packaged by almost every distro and easy to statically link and take with you
-
The coreutils Rust rewrite story is pretty funny.
Coreutils are tools like rm, mv, mkdir, etc. Unlike binutils, this isn't a fertile ground for memory safety bugs. But, the rewrite was completed, and in the spirit of progress, Canonical decided to switch.
But do you know what coreutils are a fertile ground for? Race conditions around file creation, deletion, permission setting, and so on. The original code accounted for decades of hard-learned lessons in that space. The Rust rewrite did not:
https://seclists.org/oss-sec/2026/q2/332
PS. I'm not dunking on Rust. It's just that... starting over from scratch has its hidden costs.
@lcamtuf As someone who spent more than 30 years writing C++ professionally, I don't object to efforts to rewrite that stuff in a safer language, and I like Rust, but Canonical was extremely premature in their decision to make the rewritten coreutils the default. As the article makes clear, they completely ignored race condition issues, and I'm wondering if management didn't understand that Rust's ability to prevent data races does not carry over to filesystem races. With this huge volume of CVEs it seems that their testing efforts must have been woefully inadequate. I suppose one way to go is to just ship it and let the Internet test it for them.
-
@synlogic4242 @lcamtuf I’ve learnt to differentiate between people who only talk about the tech, and never about solving problems. It’s been the same for decades.
Tech can be fun, not saying it shouldn’t be. But it doesn’t create solutions by itself.
@yon @lcamtuf agreed. I've been building, solving and shipping for decades, repeatedly. I've fixed Heinsenbugs in legacy systems that had millions of dollars of biz revenue flowing through it. My code runs as part of our collective infrastructure. I prob know a bit about which I speak.
And I can usually spot fools, wannabes or grifters. Fundamentals never change, thankfully. -
@lcamtuf Hey, would you care to elaborate or point me to resources explaining why the coreutils aren't fertile ground for memory safety issues? It's the first time I heard of this
@Equity7804 @lcamtuf There are plenty of potential memory safety issues, but also about 30 years of people fixing those issues. The difficulty is that is another category of issues, filesystem races, that Rust does not help you with at all, but that also had about 30 years of fixing in GNU coreutils. The result of ignoring these issues was that the Rust coreutils as they stand today are much more insecure than GNU coreutils.
-
@2something@transfem.social @Doomed_Daniel@mastodon.gamedev.place @ireneista@irenes.space @lcamtuf@infosec.exchange @puppygirlhornypost2@transfem.social it’s packaged by almost every distro and easy to statically link and take with you
@Seirdy@pleroma.envs.net @ireneista@adhd.irenes.space @lcamtuf@infosec.exchange @Doomed_Daniel@mastodon.gamedev.place @puppygirlhornypost2
Thank you! I'll give it a whirl later! -
@ShadSterling @Orb2069 @lcamtuf a very common refrain during these rust rewrites is that the RiiR side is finding and documenting all of the undocumented and forgotten edge cases that the original source code has but nobody understands why.
Occasional mistakes are expected along that kind of path. But the end result is often much better understood.
-
@ireneista @r @q @erincandescent @pinskia @lcamtuf
yeah, but disabled by default in chromium and AFAIK in Firefox it's only in the nightlieshttps://en.wikipedia.org/wiki/JPEG_XL?useskin=vector#Web_browsers
@Doomed_Daniel @ireneista @r Firefox is still lumbering toward full enablement of JPEG XL as far as I know; they landed a Rust-written decoder to replace the C++ reference decoder, and I think they're making sure it gets to feature parity before they'll push it and close the tracking bug
-
@lcamtuf yeah. currently running Ubuntu 24.04 LTS. My next upgrade will be a different distribution I think
BSD maybe?
-
@lcamtuf a related observation would probably be: why did important, security-critical edge cases get handled without enough documentation to prevent them from reoccurring?
-
J jwcph@helvede.net shared this topic
