Statements of Support for Software Measurability and Memory Safety

Everything else that doesn't fall into one of the other PB categories.
Post Reply
ehowington
Enthusiast
Enthusiast
Posts: 115
Joined: Sat Sep 12, 2009 3:06 pm

Statements of Support for Software Measurability and Memory Safety

Post by ehowington »

https://www.whitehouse.gov/oncd/briefin ... f-support/

Kinda throwing this out there for developers of pure basic and their response to this?????
Top
DarkDragon
Addict
Addict
Posts: 2345
Joined: Mon Jun 02, 2003 9:16 am
Location: Germany
Contact:
Contact DarkDragon

Re: Statements of Support for Software Measurability and Memory Safety

Post by DarkDragon »

I'm occasionally reading fefe's blog. Of course it will not solve everything, but it helps. Still, the object lifetime management in Rust is so strict that even something simple like a globally available file cache could be problematic and requires unsafe stuff.

Aaaannnddd there is cve-rs 🤣.

Besides all that, standards have been developed for other languages. E.g. MISRA-C, MISRA-Rust is still under development. And look at the packages available for rust, plenty haven't even reached version 1.0.0, yet and the interfaces change all the time.
bye,
Daniel
Top
ehowington
Enthusiast
Enthusiast
Posts: 115
Joined: Sat Sep 12, 2009 3:06 pm

Re: Statements of Support for Software Measurability and Memory Safety

Post by ehowington »

Well seen to be saying c and c++ for people stop developing in those languages due to insecurity in memory and in other news reports. Waiting on Fred chime in on this one???
Top
DarkDragon
Addict
Addict
Posts: 2345
Joined: Mon Jun 02, 2003 9:16 am
Location: Germany
Contact:
Contact DarkDragon

Re: Statements of Support for Software Measurability and Memory Safety

Post by DarkDragon »

ehowington wrote: Sat Mar 02, 2024 3:00 pm Well seen to be saying c and c++ for people stop developing in those languages due to insecurity in memory and in other news reports. Waiting on Fred chime in on this one???
I don't think it'll fit PureBasic at all. I mean C, C++ also don't introduce Rust like concepts now, it would break literally everything that has already been written.

Look at all the other languages and systems in the past like VBA, VBS, JavaScript, did we stop using them or abandon them because computers have been infected with their help? It took ages for Flash and Java applets to disappear and for sure not because they were a security risk.
bye,
Daniel
Top
tored
User
User
Posts: 86
Joined: Wed Feb 16, 2022 12:47 pm
Location: Sweden

Re: Statements of Support for Software Measurability and Memory Safety

Post by tored »

If using the C backend I guess it is possible to leverage the different built in sanitizers to achieve some sort memory safety.

https://stackoverflow.com/a/48902567
Top
DarkDragon
Addict
Addict
Posts: 2345
Joined: Mon Jun 02, 2003 9:16 am
Location: Germany
Contact:
Contact DarkDragon

Re: Statements of Support for Software Measurability and Memory Safety

Post by DarkDragon »

tored wrote: Tue Mar 05, 2024 2:20 am If using the C backend I guess it is possible to leverage the different built in sanitizers to achieve some sort memory safety.

https://stackoverflow.com/a/48902567
But as you said these are just to achieve "some sort of" memory safety and they're runtime checkers, you have to run your program, run into errors and still have to fix the bugs yourself.
bye,
Daniel
Top
Post Reply

Return to “General Discussion”