Closing the Gap between Rust and C++ Using Principles of Static Analysis - Sunny Chatterjee - CppCon

preview_player
Показать описание
---
Did you know that 70% of serious security bugs are a result of memory safety issues? As a C++ developer, you may have heard about the safety benefits of Rust language. Although both Rust and C++ are high-performing system programming languages, we are increasingly hearing from customers and security researchers to have stronger safety and correctness guarantees in C++. Safety and correctness are no longer viewed as an opt-in behavior. The new adage is – if it compiles, it works. Static analysis has proved to be a valuable tool in empowering developers write modern C++. In this talk, I will share some ideas on how we can use the same principles in modern C++ code to provide strong statically-checked guarantees out-of-the-box. I will demonstrate some of these techniques live using MSVC’s code analysis tool.

---
Sunny leads a team responsible for developing the core C++ static analysis engines in Visual Studio productivity experience as well as the traditional security tooling scenarios used widely within Microsoft. He has many years of experience in static analysis and enjoys delivering new productivity benefits to customers. His current focus is to lead efforts towards making C++ a safer systems programming language.
---

*-----*
*-----*
  1. CppCon
  2. The Future of C
  3. C Parallel
  4. cpp
  5. c
  6. cppcon
Рекомендации по теме
Closing the Gap 1:00:39

Closing the Gap between Rust and C++ Using Principles of Static Analysis - Sunny Chatterjee - CppCon

DevCon24 - Redefining 0:19:58

DevCon24 - Redefining Embedded Learning with ESP & Rust Bridging the Gap Between Complexity

5 BEST Bunkers 0:01:00

5 BEST Bunkers You MUST KNOW in RUST #rustbunker #rusttips #rustbase #rustshorts

5 SECRET Building 0:08:11

5 SECRET Building Tips to HIDE Your Loot | Rust Tutorial

Quick tip on 0:02:55

Quick tip on how to fix that gap in your house Rust.

How to Multi-Tc 0:00:50

How to Multi-Tc (2 Different Methods) | Rust

How To Deal 0:00:59

How To Deal With NEW Turret Limit In Rust #rust #rustbase #rustbasebuilding #rustguide

This is the 0:00:29

This is the MOST BROKEN TRAP BASE in RUST shorts #shorts #rustbase #rustshorts #rusttrapbase

The Definitive Guide 0:06:37

The Definitive Guide to BUNKERS in 2024 RUST

Widegaps Tutorial *5 0:03:35

Widegaps Tutorial *5 examples* (Easy Method) RUST

Rust: How External 0:03:25

Rust: How External TCs REALLY Work (Bet it will surprise you)

Closing the Performance 0:42:21

Closing the Performance Gap Between Lisp and C

Using flux core 0:04:41

Using flux core welding to close big gaps

You NEED to 0:00:19

You NEED to Start Smoking in Rust! 🚬😭

HOW TO REPAIR 0:09:06

HOW TO REPAIR OVERCUT ELECTRICAL BOX (DRYWALL)

THIS Closes the 0:18:14

THIS Closes the “Wanting” GAP for Any and ALL Desires

How To Fill 0:07:21

How To Fill A Gap Between Garage Floor And Concrete Driveway

Rust - How 0:07:52

Rust - How To Make Half Gaps (new double peek method)

Rust Footprint Technique 0:10:12

Rust Footprint Technique (How I Build Every Base In Wipe)

How to Place 0:01:40

How to Place Compound Walls Without the Mess in Rust!

7 CRAZY Rust 0:10:18

7 CRAZY Rust Base Building Tips that 99% DON’T KNOW!

Ultimate Pixel Gap 0:04:03

Ultimate Pixel Gap Bunker - Rust

Scribed apron flashing: 0:01:38

Scribed apron flashing: permanent stop to verandah leaks

Auto close bunker 0:00:58

Auto close bunker 🛢 Rust Console 🎮 PS4, Xbox

Комментарии
Автор

22:13 Should trigger another static analysis warning since modifying a temporary with no side effect doesn't make sense and an optimising compiler is free to remove that code entirely.

retropaganda
Автор

Can we use simple comments to add more annotations to the code to help the static checker? This can help in the areas where the language itself may have not predicted a syntax.

nivo
Автор

You don't need static analysis to turn C++ into a different language.
`-Werror=conversion -Werror=sign-conversion` (or similar for msvc) is a good start already but nobody will go with that as you'll have to add a lot of explicit casts without immediately visible benefit.

Trassr
Автор

24:05 Shouldn’t the auto resolve into “const LargeStruct&” by the compiler? Can “auto” only represent a naked value type?

chefnyc
Автор

It would be nice to open the code for the static analysis tool. That way, more developers can help to grow the list of the checks available.

nivo
Автор

The main message of the video for me was that he's a microsoft employee (repeated at least 50 times) and that we need to talk to their lawyers :-(

retropaganda
Автор

16:10 but this is supported from C++17. Not every project uses it as default today.

jopa
Автор

I prefer C++ to continue having its flexibility. I see it as more of an engineering based language in comparison to Rust I see more as an application language. If the person wants Rust type features in their language they should move to Rust. Why the hell are we discussing Rust in CPP con to start with?

diconicabastion