one of the most interesting things about this work is that it might be the gateway drug that finally leads to widespread deployment of real memory safety for C and C++https://twitter.com/kayseesee/status/1157803186444525575 …
-
-
With these mitigations, you can write a doubly linked list without having to disable the security feature.
-
Not interested in this argument.
End of conversation
New conversation -
-
-
In my opinion, features like this work far better with memory safe languages where memory corruption bugs are very scarce. The attacker doesn't have the opportunity to choose from a huge selection of bugs / helpful memory corruption primitives to build a reliable way around it.
-
Agreed.
- 1 more reply
New conversation -
-
-
Well, it remains to be seen how work-aroundable MTE will prove to be. But I also fear the result that C/C++ will seem viable for longer. I’d really love to fully close down that notion, and the longer we wait the more painful the reckoning will be.
-
it's not wrong that these things may prolong the lives of C and C++ but, like, the unsafe code isn't going anywhere despite all the good work of Patrick and friends. my belief is that strong mitigations for their worst parts is a win.
- 2 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.