Really cool paper on using Checked-C to improve memory safety in a modern kernel. I wonder if safer C models are nearer term solution to full re-writes on memory usage Langs like Rust: cs.rochester.edu/u/jzhou41/pape
Conversation
Replying to
This is the hard part of memory safety:
> Currently, Checked C provides no temporal memory safety protections
The hardest part overall is convincing C programmers to use it. I think in a lot of ways, it's easier to convince people to start using a much better modern language.
Replying to
Yeap I think the limitations are clear. Azure sphere uses Checked-C in its SDK. I think the big advantage is that you can port existing C code and get deterministic protection for some classes of men safety issues
1
4
Replying to
That makes sense. I think that for a lot of code, requiring that new components be written in a memory safe language goes a long way. Replacing things bit by bit can gradually make a big difference. It's very difficult when it wasn't made in a modular way though (Linux kernel).