introduction to rust and its memory safety
play

Introduction to rust and its memory safety Lukas Prokop 2020-09-18 - PowerPoint PPT Presentation

Jan 25, 2024 •640 likes •1.47k views

Introduction to rust and its memory safety Lukas Prokop 2020-09-18 for IAIK About me Sofuware developer PhD student in post-quantum cryptography at IAIK 1 Speaker at RustGraz (twitter @RustGraz) What is rust? What is rust?

  1. Introduction to rust and its memory safety Lukas Prokop 2020-09-18 for IAIK

  2. About me • Sofuware developer • PhD student in post-quantum cryptography at IAIK 1 • Speaker at RustGraz (twitter @RustGraz)

  3. What is rust? What is rust? • multi-paradigmatic (imperative, functional) • systems programming language (easy interop with C, no GC) • focus on memory safety and concurrency • uses the LLVM infrastructure • syntax similar to C++ • zero-cost abstractions like C++ • Modern competitors: Nim, Crystal, D, Zig “Most loved programming language” (Stack Overflow Developer Survey, 2016–2020) 2

  4. Rust in academia RustBelt 1 : 32 publications, 4 related projects. August 2020: Ralf Jung’s PhD dissertation. 1 http://plv.mpi-sws.org/rustbelt/ 3

  5. Tooling 3

  6. Try it! Rust Playground Rust Playground on play.rust-lang.org Also: rust on godbolt.org 4

  7. Toolchain curl https://sh.rustup.rs -sSf | sh First release: 1.0 2015-05-16 Current release: 1.46 2020-08-27 Editions are done every 3 years (2015 1.0 ‘stability’, 2018 1.31 ‘productivity’, 2021 ‘maturity’?) rustup install {stable,beta,nightly} rustup default {stable,beta,nightly} 5 Stable rust releases every 6 weeks. Beta and Nightly releases exist.

  8. Rust compiler rustup doc --book rustup update rustup self uninstall Rust compiler: rustc --help rustc --explain E0382 compilation multi-passes: HIR → MIR → LLVM-IR 6

  9. Rust compiler 10 directories, 18 files [dependencies] # at https://doc.rust-lang.org/cargo/reference/manifest.html # See more keys and their definitions edition = "2018" authors = ["GIT_COMMITTER_NAME <GIT_COMMITTER_EMAIL>"] version = "0.1.0" name = "iaik" [package] $ cat iaik/Cargo.toml └── main.rs cargo new [--bin | --lib] NAME └── src ├── .gitignore │ … ├── .git ├── Cargo.toml iaik $ tree iaik Created binary (application) `iaik` package $ cargo new --bin iaik 7

  10. --release for optimized build Hello World fn main() { println!("Hello, world!"); } $ cargo run Compiling iaik v0.1.0 (/tmp/iaik) Finished dev [unoptimized + debuginfo] target(s) in 0.29s Running `target/debug/iaik` Hello, world! crates.io is rust’s package index --target TRIPLE to specify architecture rustc -C opt-level=3 src/main.rs 8

  11. --release for optimized build Hello World fn main() { println!("Hello, world!"); } $ cargo run Compiling iaik v0.1.0 (/tmp/iaik) Finished dev [unoptimized + debuginfo] target(s) in 0.29s Running `target/debug/iaik` Hello, world! crates.io is rust’s package index --target TRIPLE to specify architecture rustc -C opt-level=3 src/main.rs 8

  12. Hello World fn main() { println!("Hello, world!"); } $ cargo run Compiling iaik v0.1.0 (/tmp/iaik) Finished dev [unoptimized + debuginfo] target(s) in 0.29s Running `target/debug/iaik` Hello, world! crates.io is rust’s package index --target TRIPLE to specify architecture rustc -C opt-level=3 src/main.rs 8 --release for optimized build

  13. Hello World fn main() { println!("Hello, world!"); } $ cargo run Compiling iaik v0.1.0 (/tmp/iaik) Finished dev [unoptimized + debuginfo] target(s) in 0.29s Running `target/debug/iaik` Hello, world! crates.io is rust’s package index --target TRIPLE to specify architecture rustc -C opt-level=3 src/main.rs 8 --release for optimized build

  14. Detect common mistakes rustup component add clippy cargo clippy warning: redundant field names in struct initialization --> src/main.rs:114:31 | 114 | _ => Err(BadEncoding{ encoding: encoding }), | ^^^^^^^^^^^^^^^^^^ | help: replace it with: `encoding` | = note: `#[warn(clippy::redundant_field_names)]` on by default = help: for further information visit https://rust-lang.github.io/… 9

  15. Normalized code formatting nal":" rust-analysis \ rustup component add rls rust-src rustup component add rustfmt let dst_encoding = )?;","expected":" dst.clone()\n let dst_encoding = lookup_encoding(\n lookup_encoding(dst.clone())?;"}]}] 10 let dst_encoding = lookup_encoding( % cargo fmt --message-format json )?; dst.clone() cargo fmt % grep -C1 "dst.clone()" main.rs [{"name":"/home/meisterluk/dev/rust/encconv/src/main.rs","mism ⌋ → atches":[{"original_begin_line":120,"original_end_line":12 ⌋ ֒ → 2,"expected_begin_line":120,"expected_end_line":120,"origi ⌋ ֒ → ֒ → ֒ → ֒ Also Rust Language Server:

  16. More tools cargo doc cargo test cargo bench 11

  17. Syntax and semantics 11

  18. String formatting fn main() { println!("{:09b}=000101010 {:>10}= IAIK", 42, "IAIK"); println!("{num:06b}=001010 {who}=rustaceans", who = "rustaceans", num = 10); let variable = 99; println!("{} Luftballoons", variable); let l: u64 = 0; print!("{} \n ", format!("{:04x}", l)); } 12

  19. Immutability by default | ^^^^^^ cannot assign twice to immutable variable | a += 1; 3 | help: make this binding mutable: `mut a` | first assignment to `a` | | let a: u32 = 0; - | let a: u32 = 0; 2 | | --> src/main.rs:3:5 error[ E0384 ]: cannot assign twice to immutable variable `a` 13 a += 1;

  20. Immutability by default let mut a: u32 = 0; dbg!(&a); [example.rs:4] &a = 1 [example.rs:5] &a = 1 14 a += 1; a = dbg!(&a) + 3;

  21. Primitive types std:: f64 ::INFINITY 0xFF 0o777 0b0010_1010 1. 1e6 -4e-4 f64 std:: f64 ::NAN 42 1 usize true false 'c' → type inference to determine data type → default integer type is i32 42_000 → data type boundary value: in stdlib, e.g. std:: u32 ::MAX u8 i32 u16 u32 u64 u128 i8 i16 i64 → type sufgix notation: 42 u8 i128 isize usize f32 f64 bool char 15

  22. Strings "C escape sequences \n , Unicode scalars \u{0042} " r"skip \backslash interpretation" b"byte array from ASCII chars" "multiline string" "eat all \ leading whitespace" r#"number of balanced hashes is arbitrary "# Two types: & str and String 16

  23. Integer semantics • overflow-checks : true in debug mode, false in release mode • integer types have method checked_add , overflowing_add , saturating_add , and wrapping_add • Logical lefu shifu. Logical right shifu on unsigned integer types. Arithmetic shifu on signed integer types. • assert_eq!(-4 % 7, -4); 17 • u16 as u32 for coercion

  24. Composite types: tuples fn create_tuple() -> ( u32 , u64 ) { (4, 2) } fn main() { let (a, b) = (4, 2); // comparison by equality assert_eq!((4, 2), create_tuple()); let pair = create_tuple(); // access by tuple.{zero-based index} assert_eq!(a, pair.0); } 18

  25. Composite types: array assert_eq!(initial, init); slices: [ u8 ] , [ f64 ] , … arrays: [ u8 ; 32] , [ f64 ; 8] , … let first_6: & [ u8 ] = &all_zero[0..=5]; let first_5: & [ u8 ] = &all_zero[ ..5]; let first_5: & [ u8 ] = &all_zero[0..5]; assert_eq!(initial, initial.clone()); // compile or runtime error let all_zero = [0 u8 ; 32]; //init[4] = 1; init[0] = 1; = [1 u8 , 2, 3]; // type: [u8; 3] let initial // type: [{integer}; 3] let mut init = [9, 2, 3]; // type: [u8; 32] 19

  26. Composite types: Vector std::vec::Vec<T> is part of the standard library. let mut vec: Vec< u8 > = Vec::new(); 20

  27. Composite types: Vector std::vec::Vec<T> is part of the standard library. let mut vec = vec![]; 21

  28. Composite types: Vector std::vec::Vec<T> is part of the standard library. let mut vec = vec![]; vec[0]; // thread 'main' panicked at // 'index out of bounds: the len is 0 but the index is 0', 22

  29. Composite types: Vector std::vec::Vec<T> is part of the standard library. let mut vec = vec![]; 23

  30. Composite types: Vector std::vec::Vec<T> is part of the standard library. let mut vec = vec![]; vec.push(5); vec.extend(vec![3, 4]); vec[0] = 7; assert_eq!(vec[0], 7); assert_eq!(vec.len(), 3); assert_eq!(vec.pop(), Some(4)); vec.sort(); vec.sort_unstable(); let elements: & [ u8 ] = &vec[0..2]; 24

  31. Composite types: Vector std::vec::Vec<T> is part of the standard library. let mut vec = vec![]; vec.push(5); vec.extend(vec![3, 4]); vec[0] = 7; assert_eq!(vec[0], 7); assert_eq!(vec.len(), 3); assert_eq!(vec.pop(), Some(4)); vec.sort(); vec.sort_unstable(); let elements: & [ u8 ] = &vec[0..2]; 24

  32. Composite types: Vector std::vec::Vec<T> is part of the standard library. let mut vec = vec![]; vec.push(5); vec.extend(vec![3, 4]); vec[0] = 7; assert_eq!(vec[0], 7); assert_eq!(vec.len(), 3); assert_eq!(vec.pop(), Some(4)); vec.sort(); vec.sort_unstable(); let elements: & [ u8 ] = &vec[0..2]; 24

  33. Composite types: Vector std::vec::Vec<T> is part of the standard library. let mut vec = vec![]; vec.push(5); vec.extend(vec![3, 4]); vec[0] = 7; assert_eq!(vec[0], 7); assert_eq!(vec.len(), 3); assert_eq!(vec.pop(), Some(4)); vec.sort(); vec.sort_unstable(); let elements: & [ u8 ] = &vec[0..2]; 24

Recommend

Memory Safety with Rust Will Crichton Todays goals When is memory allocated and deallocated?

Memory Safety with Rust Will Crichton Todays goals When is memory allocated and deallocated?

Memory Safety with Rust Will Crichton Todays goals When is memory allocated and deallocated? Where does memory live? What kinds of pointers does Rust have? Memory management goal: Allocate memory when you need it, and free it when

614 views • 24 slides
Rust SGX SDK: Towards Memory Safety in Intel SGX Yu Ding, Ran Duan , Long Li , Yueqiang Cheng ,

Rust SGX SDK: Towards Memory Safety in Intel SGX Yu Ding, Ran Duan , Long Li , Yueqiang Cheng ,

Rust SGX SDK: Towards Memory Safety in Intel SGX Yu Ding, Ran Duan , Long Li , Yueqiang Cheng , Lenx Wei CONTENTS 3 1 2 PART ONE PART TWO PART THREE Why SGX Why Rust Rust SGX SDK PART 1 Why SGX Why SGX War in memory Ring

1.17k views • 51 slides
Memory Safety in Rust Ryan Eberhardt and Armin Namavari April 7, 2020 Last lecture Ryan told us

Memory Safety in Rust Ryan Eberhardt and Armin Namavari April 7, 2020 Last lecture Ryan told us

Memory Safety in Rust Ryan Eberhardt and Armin Namavari April 7, 2020 Last lecture Ryan told us the bad news about C and C++ This lecture, Im going to tell you how Rust addresses some of those issues Disclaimer: you can still write buggy

490 views • 35 slides
OXIDE: THE ESSENCE OF RUST Aaron J. Weiss Northeastern University Rusts rich type system

OXIDE: THE ESSENCE OF RUST Aaron J. Weiss Northeastern University Rusts rich type system

OXIDE: THE ESSENCE OF RUST Aaron J. Weiss Northeastern University Rusts rich type system and ownership model guarantee memory-safety and thread-safety enabling you to eliminate many classes of bugs at compile-time. the

1.27k views • 89 slides
Extending Python with Rust Introduction and a hands-on demo of writing Python extension in Rust

Extending Python with Rust Introduction and a hands-on demo of writing Python extension in Rust

Extending Python with Rust Introduction and a hands-on demo of writing Python extension in Rust This talk Why? Why Rust? Binginds Dynamic library Web service example Docker example Compile and distribute

336 views • 14 slides
TESTING IN RUST A PRIMER IN TESTING AND MOCKING @donald_whyte FOSDEM 2018 ABOUT ME Soware

TESTING IN RUST A PRIMER IN TESTING AND MOCKING @donald_whyte FOSDEM 2018 ABOUT ME Soware

TESTING IN RUST A PRIMER IN TESTING AND MOCKING @donald_whyte FOSDEM 2018 ABOUT ME Soware Engineer @ Engineers Gate Real-time trading systems Scalable data infrastructure Python/C++/Rust developer MOTIVATION Rust focuses on memory

1.47k views • 100 slides
Starting Rust from a Scripting Background Run Rust Deploy, Write, and Improve Rust Write Rust

Starting Rust from a Scripting Background Run Rust Deploy, Write, and Improve Rust Write Rust

http://talks.edunham.net/scale15x Rust 101 E. Dunham @qedunham Intro Starting Rust from a Scripting Background Run Rust Deploy, Write, and Improve Rust Write Rust Improve Rust E. Dunham @qedunham March 5, 2017

865 views • 75 slides
Closures for Rust Michael Sullivan August 18, 2011 1 / 25 Introduction Rust Closures

Closures for Rust Michael Sullivan August 18, 2011 1 / 25 Introduction Rust Closures

Introduction Rust Closures Conclusion Closures for Rust Michael Sullivan August 18, 2011 1 / 25 Introduction Rust Closures Conclusion Outline Introduction Rust Closures 2 / 25 Introduction Rust Closures Conclusion

988 views • 52 slides
The Rust Programming Language Ben Goldberg Rust A Programming Language for the Future Thank You

The Rust Programming Language Ben Goldberg Rust A Programming Language for the Future Thank You

The Rust Programming Language Ben Goldberg Rust A Programming Language for the Future Thank You Thank you to rust-lang.org for providing content and examples! Overview The sales pitch Use cases The Rust language Other Languages

1.18k views • 63 slides
Themis: An Efficient and Memory-Safe BFT Framework in Rust SERIAL Workshop, December 9, 2019

Themis: An Efficient and Memory-Safe BFT Framework in Rust SERIAL Workshop, December 9, 2019

Institute of Operating Systems and Computer Networks Themis: An Efficient and Memory-Safe BFT Framework in Rust SERIAL Workshop, December 9, 2019 Signe Rsch, Kai Bleeke, Rdiger Kapitza ruesch@ibr.cs.tu-bs.de Technische Universitt

1.94k views • 32 slides
Rust: Systems Programming for Everyone Felix Klock ( @pnkfelix ), Mozilla space : next slide; esc

Rust: Systems Programming for Everyone Felix Klock ( @pnkfelix ), Mozilla space : next slide; esc

Rust: Systems Programming for Everyone Felix Klock ( @pnkfelix ), Mozilla space : next slide; esc : overview; arrows navigate http://bit.ly/1LQM3PS Why ...? Why use Rust? Fast code, low memory footprint Go from bare metal (assembly; C FFI)

1.41k views • 113 slides
Tremor How Rust killed thousands of cores and TB of memory at Wayfair Agenda A bit about us

Tremor How Rust killed thousands of cores and TB of memory at Wayfair Agenda A bit about us

Tremor How Rust killed thousands of cores and TB of memory at Wayfair Agenda A bit about us What is tremor Tremor Script &lt;3 OSS What is Wayfair? Sells rugs (and couches!) Large online retailer for furniture

851 views • 46 slides
www.rust-lang.org An Overview of the Rust Programming Language Jim Royer CIS 352 April 29,

www.rust-lang.org An Overview of the Rust Programming Language Jim Royer CIS 352 April 29,

www.rust-lang.org An Overview of the Rust Programming Language Jim Royer CIS 352 April 29, 2019 CIS 352 Rust Overview 1 / 1 CIS 352 Rust Overview 2 / 1 References Sample code: Factorial, 1 The Rust Programming Language by S. Klabnik and

590 views • 7 slides
Using Rust on RIOT OS Christian M. Ams uss &lt;ca@etonomy.org&gt; 2019-09-05 RIOT Summit,

Using Rust on RIOT OS Christian M. Ams uss &lt;ca@etonomy.org&gt; 2019-09-05 RIOT Summit,

Using Rust on RIOT OS Christian M. Ams uss &lt;ca@etonomy.org&gt; 2019-09-05 RIOT Summit, Helsinki Outline The Rust language and ecosystem Rust on embedded systems Rust on RIOT Simple things: functions and variables fn

804 views • 24 slides
Memory Safety for Low- Level Software/Hardware Interactions John Criswell Nicolas Geoffray

Memory Safety for Low- Level Software/Hardware Interactions John Criswell Nicolas Geoffray

Memory Safety for Low- Level Software/Hardware Interactions John Criswell Nicolas Geoffray Vikram Adve Montreal or Bust! Memory Safety Future is Bright User-space memory safety is improving Safe languages SAFECode, CCured, Baggy

556 views • 53 slides
Practical Memory Safety with REST KANAD SINHA &amp; SIMHA SETHUMADHAVAN COLUMBIA UNIVERSITY Is

Practical Memory Safety with REST KANAD SINHA &amp; SIMHA SETHUMADHAVAN COLUMBIA UNIVERSITY Is

Practical Memory Safety with REST KANAD SINHA &amp; SIMHA SETHUMADHAVAN COLUMBIA UNIVERSITY Is memory safety relevant? In 2017, 55% of remote-code execution causing bugs in Microsoft due to memory errors Is memory safety relevant? Yes!

827 views • 47 slides
Memory Tagging: e m p o s r r F e p how it improves C/C++ memory safety. Compiler

Memory Tagging: e m p o s r r F e p how it improves C/C++ memory safety. Compiler

r e l i p e m v o i t c c Memory Tagging: e m p o s r r F e p how it improves C/C++ memory safety. Compiler perspective. Kostya Serebryany , Evgenii Stepanov, Vlad Tsyrklevich (Google) Oct 2018 1 Agenda ARM v8.5

504 views • 29 slides
Default Methods in Rust Michael Sullivan August 14, 2013 1 / 30 Introduction Rust Fixing

Default Methods in Rust Michael Sullivan August 14, 2013 1 / 30 Introduction Rust Fixing

Introduction Rust Fixing Default Trait Methods Other Conclusion Default Methods in Rust Michael Sullivan August 14, 2013 1 / 30 Introduction Rust Fixing Default Trait Methods Other Conclusion Outline Introduction Rust Fixing Default

911 views • 58 slides
Rust: Reach F us th es ! Nich om as Matsakis 1 Q. What is Rust? Q. Why should I care? 2 Q.

Rust: Reach F us th es ! Nich om as Matsakis 1 Q. What is Rust? Q. Why should I care? 2 Q.

Rust: Reach F us th es ! Nich om as Matsakis 1 Q. What is Rust? Q. Why should I care? 2 Q. What is Rust? A. High-level code, low-level performance Q. Why should I care? 3 Decisions GC Control, flexibility

1.15k views • 67 slides
Rust and its usage as Python extensions PyGamma 2019 Heidelberg Matthieu Baumann 03/19/19

Rust and its usage as Python extensions PyGamma 2019 Heidelberg Matthieu Baumann 03/19/19

Rust and its usage as Python extensions PyGamma 2019 Heidelberg Matthieu Baumann 03/19/19 Summary 1. Rust programming language introduction 2. Use of Rust extension codes into the cdshealpix Python package 3. cdshealpix deployment for Windows,

709 views • 29 slides
Bringing Memory-Safety to Keystone Enclave Mingshen Sun Baidu X-Lab Open-Source Enclaves Workshop

Bringing Memory-Safety to Keystone Enclave Mingshen Sun Baidu X-Lab Open-Source Enclaves Workshop

Bringing Memory-Safety to Keystone Enclave Mingshen Sun Baidu X-Lab Open-Source Enclaves Workshop (OSEW 2019) Berkeley, July 2019 https://mesatee.org Rust and Keystone Enclave Open-Source Enclave (RISC-V Hardware/Keystone Enclave) :

662 views • 32 slides
#02: Mining Before we start Download and install Rust if you want to code along:

#02: Mining Before we start Download and install Rust if you want to code along:

Blockchain In Rust #02: Mining Before we start Download and install Rust if you want to code along: https://www.rust-lang.org/ If youre on Windows, youll also need Microsoft Visual C++ Build Tools 2017:

372 views • 11 slides
Outline Memory safety and security CSci 4271W Stack buffer overflow Development of Secure

Outline Memory safety and security CSci 4271W Stack buffer overflow Development of Secure

Outline Memory safety and security CSci 4271W Stack buffer overflow Development of Secure Software Systems Day 2: Memory Safety Introduction Reversing the stack Stephen McCamant University of Minnesota, Computer Science &amp; Engineering

440 views • 4 slides
A microkernel written in Rust Porting the UNIX-like Redox OS to Arm v8.0 Robin Randhawa Arm

A microkernel written in Rust Porting the UNIX-like Redox OS to Arm v8.0 Robin Randhawa Arm

Objectives Introduction Rust Redox A microkernel written in Rust Porting the UNIX-like Redox OS to Arm v8.0 Robin Randhawa Arm February 2019 Robin Randhawa (arm) FOSDEM 2019 A microkernel written in Rust Objectives Introduction Rust

1.26k views • 89 slides

More recommend