introduction to rust and its memory safety
play

Introduction to rust and its memory safety Lukas Prokop 2020-09-18 - PowerPoint PPT Presentation

Jan 25, 2024 •640 likes •1.47k views

Introduction to rust and its memory safety Lukas Prokop 2020-09-18 for IAIK About me Sofuware developer PhD student in post-quantum cryptography at IAIK 1 Speaker at RustGraz (twitter @RustGraz) What is rust? What is rust?

  1. Introduction to rust and its memory safety Lukas Prokop 2020-09-18 for IAIK

  2. About me • Sofuware developer • PhD student in post-quantum cryptography at IAIK 1 • Speaker at RustGraz (twitter @RustGraz)

  3. What is rust? What is rust? • multi-paradigmatic (imperative, functional) • systems programming language (easy interop with C, no GC) • focus on memory safety and concurrency • uses the LLVM infrastructure • syntax similar to C++ • zero-cost abstractions like C++ • Modern competitors: Nim, Crystal, D, Zig “Most loved programming language” (Stack Overflow Developer Survey, 2016–2020) 2

  4. Rust in academia RustBelt 1 : 32 publications, 4 related projects. August 2020: Ralf Jung’s PhD dissertation. 1 http://plv.mpi-sws.org/rustbelt/ 3

  5. Tooling 3

  6. Try it! Rust Playground Rust Playground on play.rust-lang.org Also: rust on godbolt.org 4

  7. Toolchain curl https://sh.rustup.rs -sSf | sh First release: 1.0 2015-05-16 Current release: 1.46 2020-08-27 Editions are done every 3 years (2015 1.0 ‘stability’, 2018 1.31 ‘productivity’, 2021 ‘maturity’?) rustup install {stable,beta,nightly} rustup default {stable,beta,nightly} 5 Stable rust releases every 6 weeks. Beta and Nightly releases exist.

  8. Rust compiler rustup doc --book rustup update rustup self uninstall Rust compiler: rustc --help rustc --explain E0382 compilation multi-passes: HIR → MIR → LLVM-IR 6

  9. Rust compiler 10 directories, 18 files [dependencies] # at https://doc.rust-lang.org/cargo/reference/manifest.html # See more keys and their definitions edition = "2018" authors = ["GIT_COMMITTER_NAME <GIT_COMMITTER_EMAIL>"] version = "0.1.0" name = "iaik" [package] $ cat iaik/Cargo.toml └── main.rs cargo new [--bin | --lib] NAME └── src ├── .gitignore │ … ├── .git ├── Cargo.toml iaik $ tree iaik Created binary (application) `iaik` package $ cargo new --bin iaik 7

  10. --release for optimized build Hello World fn main() { println!("Hello, world!"); } $ cargo run Compiling iaik v0.1.0 (/tmp/iaik) Finished dev [unoptimized + debuginfo] target(s) in 0.29s Running `target/debug/iaik` Hello, world! crates.io is rust’s package index --target TRIPLE to specify architecture rustc -C opt-level=3 src/main.rs 8

  11. --release for optimized build Hello World fn main() { println!("Hello, world!"); } $ cargo run Compiling iaik v0.1.0 (/tmp/iaik) Finished dev [unoptimized + debuginfo] target(s) in 0.29s Running `target/debug/iaik` Hello, world! crates.io is rust’s package index --target TRIPLE to specify architecture rustc -C opt-level=3 src/main.rs 8

  12. Hello World fn main() { println!("Hello, world!"); } $ cargo run Compiling iaik v0.1.0 (/tmp/iaik) Finished dev [unoptimized + debuginfo] target(s) in 0.29s Running `target/debug/iaik` Hello, world! crates.io is rust’s package index --target TRIPLE to specify architecture rustc -C opt-level=3 src/main.rs 8 --release for optimized build

  13. Hello World fn main() { println!("Hello, world!"); } $ cargo run Compiling iaik v0.1.0 (/tmp/iaik) Finished dev [unoptimized + debuginfo] target(s) in 0.29s Running `target/debug/iaik` Hello, world! crates.io is rust’s package index --target TRIPLE to specify architecture rustc -C opt-level=3 src/main.rs 8 --release for optimized build

  14. Detect common mistakes rustup component add clippy cargo clippy warning: redundant field names in struct initialization --> src/main.rs:114:31 | 114 | _ => Err(BadEncoding{ encoding: encoding }), | ^^^^^^^^^^^^^^^^^^ | help: replace it with: `encoding` | = note: `#[warn(clippy::redundant_field_names)]` on by default = help: for further information visit https://rust-lang.github.io/… 9

  15. Normalized code formatting nal":" rust-analysis \ rustup component add rls rust-src rustup component add rustfmt let dst_encoding = )?;","expected":" dst.clone()\n let dst_encoding = lookup_encoding(\n lookup_encoding(dst.clone())?;"}]}] 10 let dst_encoding = lookup_encoding( % cargo fmt --message-format json )?; dst.clone() cargo fmt % grep -C1 "dst.clone()" main.rs [{"name":"/home/meisterluk/dev/rust/encconv/src/main.rs","mism ⌋ → atches":[{"original_begin_line":120,"original_end_line":12 ⌋ ֒ → 2,"expected_begin_line":120,"expected_end_line":120,"origi ⌋ ֒ → ֒ → ֒ → ֒ Also Rust Language Server:

  16. More tools cargo doc cargo test cargo bench 11

  17. Syntax and semantics 11

  18. String formatting fn main() { println!("{:09b}=000101010 {:>10}= IAIK", 42, "IAIK"); println!("{num:06b}=001010 {who}=rustaceans", who = "rustaceans", num = 10); let variable = 99; println!("{} Luftballoons", variable); let l: u64 = 0; print!("{} \n ", format!("{:04x}", l)); } 12

  19. Immutability by default | ^^^^^^ cannot assign twice to immutable variable | a += 1; 3 | help: make this binding mutable: `mut a` | first assignment to `a` | | let a: u32 = 0; - | let a: u32 = 0; 2 | | --> src/main.rs:3:5 error[ E0384 ]: cannot assign twice to immutable variable `a` 13 a += 1;

  20. Immutability by default let mut a: u32 = 0; dbg!(&a); [example.rs:4] &a = 1 [example.rs:5] &a = 1 14 a += 1; a = dbg!(&a) + 3;

  21. Primitive types std:: f64 ::INFINITY 0xFF 0o777 0b0010_1010 1. 1e6 -4e-4 f64 std:: f64 ::NAN 42 1 usize true false 'c' → type inference to determine data type → default integer type is i32 42_000 → data type boundary value: in stdlib, e.g. std:: u32 ::MAX u8 i32 u16 u32 u64 u128 i8 i16 i64 → type sufgix notation: 42 u8 i128 isize usize f32 f64 bool char 15

  22. Strings "C escape sequences \n , Unicode scalars \u{0042} " r"skip \backslash interpretation" b"byte array from ASCII chars" "multiline string" "eat all \ leading whitespace" r#"number of balanced hashes is arbitrary "# Two types: & str and String 16

  23. Integer semantics • overflow-checks : true in debug mode, false in release mode • integer types have method checked_add , overflowing_add , saturating_add , and wrapping_add • Logical lefu shifu. Logical right shifu on unsigned integer types. Arithmetic shifu on signed integer types. • assert_eq!(-4 % 7, -4); 17 • u16 as u32 for coercion

  24. Composite types: tuples fn create_tuple() -> ( u32 , u64 ) { (4, 2) } fn main() { let (a, b) = (4, 2); // comparison by equality assert_eq!((4, 2), create_tuple()); let pair = create_tuple(); // access by tuple.{zero-based index} assert_eq!(a, pair.0); } 18

  25. Composite types: array assert_eq!(initial, init); slices: [ u8 ] , [ f64 ] , … arrays: [ u8 ; 32] , [ f64 ; 8] , … let first_6: & [ u8 ] = &all_zero[0..=5]; let first_5: & [ u8 ] = &all_zero[ ..5]; let first_5: & [ u8 ] = &all_zero[0..5]; assert_eq!(initial, initial.clone()); // compile or runtime error let all_zero = [0 u8 ; 32]; //init[4] = 1; init[0] = 1; = [1 u8 , 2, 3]; // type: [u8; 3] let initial // type: [{integer}; 3] let mut init = [9, 2, 3]; // type: [u8; 32] 19

  26. Composite types: Vector std::vec::Vec<T> is part of the standard library. let mut vec: Vec< u8 > = Vec::new(); 20

  27. Composite types: Vector std::vec::Vec<T> is part of the standard library. let mut vec = vec![]; 21

  28. Composite types: Vector std::vec::Vec<T> is part of the standard library. let mut vec = vec![]; vec[0]; // thread 'main' panicked at // 'index out of bounds: the len is 0 but the index is 0', 22

  29. Composite types: Vector std::vec::Vec<T> is part of the standard library. let mut vec = vec![]; 23

  30. Composite types: Vector std::vec::Vec<T> is part of the standard library. let mut vec = vec![]; vec.push(5); vec.extend(vec![3, 4]); vec[0] = 7; assert_eq!(vec[0], 7); assert_eq!(vec.len(), 3); assert_eq!(vec.pop(), Some(4)); vec.sort(); vec.sort_unstable(); let elements: & [ u8 ] = &vec[0..2]; 24

  31. Composite types: Vector std::vec::Vec<T> is part of the standard library. let mut vec = vec![]; vec.push(5); vec.extend(vec![3, 4]); vec[0] = 7; assert_eq!(vec[0], 7); assert_eq!(vec.len(), 3); assert_eq!(vec.pop(), Some(4)); vec.sort(); vec.sort_unstable(); let elements: & [ u8 ] = &vec[0..2]; 24

  32. Composite types: Vector std::vec::Vec<T> is part of the standard library. let mut vec = vec![]; vec.push(5); vec.extend(vec![3, 4]); vec[0] = 7; assert_eq!(vec[0], 7); assert_eq!(vec.len(), 3); assert_eq!(vec.pop(), Some(4)); vec.sort(); vec.sort_unstable(); let elements: & [ u8 ] = &vec[0..2]; 24

  33. Composite types: Vector std::vec::Vec<T> is part of the standard library. let mut vec = vec![]; vec.push(5); vec.extend(vec![3, 4]); vec[0] = 7; assert_eq!(vec[0], 7); assert_eq!(vec.len(), 3); assert_eq!(vec.pop(), Some(4)); vec.sort(); vec.sort_unstable(); let elements: & [ u8 ] = &vec[0..2]; 24

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Memory Safety with Rust Will Crichton Todays goals When is memory allocated and deallocated?

Memory Safety with Rust Will Crichton Todays goals When is memory allocated and deallocated?

Memory Safety with Rust Will Crichton Todays goals When is memory allocated and deallocated? Where does memory live? What kinds of pointers does Rust have? Memory management goal: Allocate memory when you need it, and free it when

614 views • 24 slides
Rust SGX SDK: Towards Memory Safety in Intel SGX Yu Ding, Ran Duan , Long Li , Yueqiang Cheng ,

Rust SGX SDK: Towards Memory Safety in Intel SGX Yu Ding, Ran Duan , Long Li , Yueqiang Cheng ,

Rust SGX SDK: Towards Memory Safety in Intel SGX Yu Ding, Ran Duan , Long Li , Yueqiang Cheng , Lenx Wei CONTENTS 3 1 2 PART ONE PART TWO PART THREE Why SGX Why Rust Rust SGX SDK PART 1 Why SGX Why SGX War in memory Ring

1.17k views • 51 slides
Memory Safety in Rust Ryan Eberhardt and Armin Namavari April 7, 2020 Last lecture Ryan told us

Memory Safety in Rust Ryan Eberhardt and Armin Namavari April 7, 2020 Last lecture Ryan told us

Memory Safety in Rust Ryan Eberhardt and Armin Namavari April 7, 2020 Last lecture Ryan told us the bad news about C and C++ This lecture, Im going to tell you how Rust addresses some of those issues Disclaimer: you can still write buggy

490 views • 35 slides
OXIDE: THE ESSENCE OF RUST Aaron J. Weiss Northeastern University Rusts rich type system

OXIDE: THE ESSENCE OF RUST Aaron J. Weiss Northeastern University Rusts rich type system

OXIDE: THE ESSENCE OF RUST Aaron J. Weiss Northeastern University Rusts rich type system and ownership model guarantee memory-safety and thread-safety enabling you to eliminate many classes of bugs at compile-time. the

1.27k views • 89 slides
Extending Python with Rust Introduction and a hands-on demo of writing Python extension in Rust

Extending Python with Rust Introduction and a hands-on demo of writing Python extension in Rust

Extending Python with Rust Introduction and a hands-on demo of writing Python extension in Rust This talk Why? Why Rust? Binginds Dynamic library Web service example Docker example Compile and distribute

336 views • 14 slides
TESTING IN RUST A PRIMER IN TESTING AND MOCKING @donald_whyte FOSDEM 2018 ABOUT ME Soware

TESTING IN RUST A PRIMER IN TESTING AND MOCKING @donald_whyte FOSDEM 2018 ABOUT ME Soware

TESTING IN RUST A PRIMER IN TESTING AND MOCKING @donald_whyte FOSDEM 2018 ABOUT ME Soware Engineer @ Engineers Gate Real-time trading systems Scalable data infrastructure Python/C++/Rust developer MOTIVATION Rust focuses on memory

1.47k views • 100 slides
Starting Rust from a Scripting Background Run Rust Deploy, Write, and Improve Rust Write Rust

Starting Rust from a Scripting Background Run Rust Deploy, Write, and Improve Rust Write Rust

http://talks.edunham.net/scale15x Rust 101 E. Dunham @qedunham Intro Starting Rust from a Scripting Background Run Rust Deploy, Write, and Improve Rust Write Rust Improve Rust E. Dunham @qedunham March 5, 2017

865 views • 75 slides
Closures for Rust Michael Sullivan August 18, 2011 1 / 25 Introduction Rust Closures

Closures for Rust Michael Sullivan August 18, 2011 1 / 25 Introduction Rust Closures

Introduction Rust Closures Conclusion Closures for Rust Michael Sullivan August 18, 2011 1 / 25 Introduction Rust Closures Conclusion Outline Introduction Rust Closures 2 / 25 Introduction Rust Closures Conclusion

988 views • 52 slides
The Rust Programming Language Ben Goldberg Rust A Programming Language for the Future Thank You

The Rust Programming Language Ben Goldberg Rust A Programming Language for the Future Thank You

The Rust Programming Language Ben Goldberg Rust A Programming Language for the Future Thank You Thank you to rust-lang.org for providing content and examples! Overview The sales pitch Use cases The Rust language Other Languages

1.18k views • 63 slides
Themis: An Efficient and Memory-Safe BFT Framework in Rust SERIAL Workshop, December 9, 2019

Themis: An Efficient and Memory-Safe BFT Framework in Rust SERIAL Workshop, December 9, 2019

Institute of Operating Systems and Computer Networks Themis: An Efficient and Memory-Safe BFT Framework in Rust SERIAL Workshop, December 9, 2019 Signe Rsch, Kai Bleeke, Rdiger Kapitza ruesch@ibr.cs.tu-bs.de Technische Universitt

1.94k views • 32 slides
Rust: Systems Programming for Everyone Felix Klock ( @pnkfelix ), Mozilla space : next slide; esc

Rust: Systems Programming for Everyone Felix Klock ( @pnkfelix ), Mozilla space : next slide; esc

Rust: Systems Programming for Everyone Felix Klock ( @pnkfelix ), Mozilla space : next slide; esc : overview; arrows navigate http://bit.ly/1LQM3PS Why ...? Why use Rust? Fast code, low memory footprint Go from bare metal (assembly; C FFI)

1.41k views • 113 slides
Tremor How Rust killed thousands of cores and TB of memory at Wayfair Agenda A bit about us

Tremor How Rust killed thousands of cores and TB of memory at Wayfair Agenda A bit about us

Tremor How Rust killed thousands of cores and TB of memory at Wayfair Agenda A bit about us What is tremor Tremor Script &lt;3 OSS What is Wayfair? Sells rugs (and couches!) Large online retailer for furniture

851 views • 46 slides
www.rust-lang.org An Overview of the Rust Programming Language Jim Royer CIS 352 April 29,

www.rust-lang.org An Overview of the Rust Programming Language Jim Royer CIS 352 April 29,

www.rust-lang.org An Overview of the Rust Programming Language Jim Royer CIS 352 April 29, 2019 CIS 352 Rust Overview 1 / 1 CIS 352 Rust Overview 2 / 1 References Sample code: Factorial, 1 The Rust Programming Language by S. Klabnik and

589 views • 7 slides
Using Rust on RIOT OS Christian M. Ams uss &lt;ca@etonomy.org&gt; 2019-09-05 RIOT Summit,

Using Rust on RIOT OS Christian M. Ams uss &lt;ca@etonomy.org&gt; 2019-09-05 RIOT Summit,

Using Rust on RIOT OS Christian M. Ams uss &lt;ca@etonomy.org&gt; 2019-09-05 RIOT Summit, Helsinki Outline The Rust language and ecosystem Rust on embedded systems Rust on RIOT Simple things: functions and variables fn

804 views • 24 slides
Memory Safety for Low- Level Software/Hardware Interactions John Criswell Nicolas Geoffray

Memory Safety for Low- Level Software/Hardware Interactions John Criswell Nicolas Geoffray

Memory Safety for Low- Level Software/Hardware Interactions John Criswell Nicolas Geoffray Vikram Adve Montreal or Bust! Memory Safety Future is Bright User-space memory safety is improving Safe languages SAFECode, CCured, Baggy

556 views • 53 slides
Practical Memory Safety with REST KANAD SINHA &amp; SIMHA SETHUMADHAVAN COLUMBIA UNIVERSITY Is

Practical Memory Safety with REST KANAD SINHA &amp; SIMHA SETHUMADHAVAN COLUMBIA UNIVERSITY Is

Practical Memory Safety with REST KANAD SINHA &amp; SIMHA SETHUMADHAVAN COLUMBIA UNIVERSITY Is memory safety relevant? In 2017, 55% of remote-code execution causing bugs in Microsoft due to memory errors Is memory safety relevant? Yes!

827 views • 47 slides
Webinar agenda Welcoming Economies: Immigrants are key to Inclusive Economic Growth 1)

Webinar agenda Welcoming Economies: Immigrants are key to Inclusive Economic Growth 1)

Webinar agenda Welcoming Economies: Immigrants are key to Inclusive Economic Growth 1) Presentation by Steve Tobocman, Director, Global Detroit 2) Interview by Sarah Wayland, Project Lead, Global Hamilton at the City of Hamilton in Conversation

1.01k views • 40 slides
Typed Closure Conversion for the Calculus of Constructions William J. Bowman , Amal Ahmed

Typed Closure Conversion for the Calculus of Constructions William J. Bowman , Amal Ahmed

Typed Closure Conversion for the Calculus of Constructions William J. Bowman , Amal Ahmed Typed Closure Conversion for the Calculus of Constructions Core calculus on which Coq is built Dependent types And high-assurance

1.23k views • 89 slides
Hoare logic separation logic. We looked at the concepts separation logic is based on, the new

Hoare logic separation logic. We looked at the concepts separation logic is based on, the new

Introduction In the previous lecture, we saw how reasoning about pointers in Hoare logic was problematic, which motivated introducing Hoare logic separation logic. We looked at the concepts separation logic is based on, the new assertions that

396 views • 14 slides
Mortality ECON 499: Economics of Inequality Winter 2018 What are the consequences of inequality?

Mortality ECON 499: Economics of Inequality Winter 2018 What are the consequences of inequality?

Mortality ECON 499: Economics of Inequality Winter 2018 What are the consequences of inequality? Philosophical debates on inequality are hard to resolve Can instead focus on outcomes Does inequality make people worse o ff in an objective way?

859 views • 46 slides
Metaphor Mastery: Content Review Judy Rees Masterclass 1:

Metaphor Mastery: Content Review Judy Rees Masterclass 1:

Metaphor Mastery: Content Review Judy Rees Masterclass 1: Ge:ng Started Metaphor and Clean Language 2 Lazy Jedi QuesAons What kind of X

409 views • 16 slides
CMU 15-896 Mechanism design 1: Without money Teacher: Ariel Procaccia Approximate MD wo money

CMU 15-896 Mechanism design 1: Without money Teacher: Ariel Procaccia Approximate MD wo money

CMU 15-896 Mechanism design 1: Without money Teacher: Ariel Procaccia Approximate MD wo money We saw in kidney exchange that the optimal solution may not be strategyproof Approximation can be a way to quantify how much we sacrifice by

663 views • 22 slides
In Investor Pre r Presentation 2 nd Qu Quarte ter 2 2016 Safe H Safe Har arbor St Stat

In Investor Pre r Presentation 2 nd Qu Quarte ter 2 2016 Safe H Safe Har arbor St Stat

Nasdaq: PEBO In Investor Pre r Presentation 2 nd Qu Quarte ter 2 2016 Safe H Safe Har arbor St Stat atement Statements in this presentation which are not historical are forward-looking statements within the meaning of Section 27A

528 views • 38 slides
Scheduling on Multi-Cores with GPU Safia Kedad-Sidhoum 1 , Florence Monna 1 , Grgory Mouni 2 ,

Scheduling on Multi-Cores with GPU Safia Kedad-Sidhoum 1 , Florence Monna 1 , Grgory Mouni 2 ,

Scheduling on Multi-Cores with GPU Safia Kedad-Sidhoum 1 , Florence Monna 1 , Grgory Mouni 2 , Denis Trystram 2 , 3 1 Laboratoire dInformatique de Paris 6, 4 Place Jussieu,75005 Paris 2 Grenoble Institute of Technology, 51 avenue

398 views • 28 slides

More recommend