undefined | Better HN

0 pointssigg33y ago0 comments

Go is just memory safe until you have a race, or so I have heard.

0 comments

8 comments · 3 top-level

pclmulqdq3y ago· 3 in thread

The same goes for Rust and most other "safe" languages. They all have synchronization primitives that make it safe, but you need to use them - the compiler won't always tell you.

bilkow3y ago

For Rust specifically, the compiler does force safe programs to have no data races. That's actually what the ownership system, Send and Sync are about. If you manage to corrupt memory or have undefined behavior in safe Rust, that should be a compiler or library bug.

See https://doc.rust-lang.org/nomicon/races.html

Dobbs3y ago

That is basically the entire shtick of rust. That data is "owned", and only the owner can write. You can "borrow" something for read access, but if something is borrowed it can't be written to.

There are of course workarounds for this like reference counted wrappers and so on.

suremarc3y ago

I have no idea what you mean here. Data races are next to impossible in safe Rust.

Thaxll3y ago· 2 in thread

Every GC language by definition are memory safe, memory safety in programming does not mean than accessing the same resources from two thread should be safe.

suremarc3y ago

I don't know how it works in other languages, but accessing a partially overwritten slice in Go (as will happen in the presence of data races) can cause your code to access out-of-bounds memory. And as we all know, once you have read/write access to arbitrary areas in memory, you've basically opened up Pandora's box.

Thaxll3y ago

Go is memory safe, if not then Java/C#/Python/Ruby are not either.

1 more reply

suremarc3y ago

Indeed, this person showed that you can read/write to arbitrary memory addresses inside of a Go program: https://blog.stalkr.net/2022/01/universal-go-exploit-using-d...

Although, it's pretty useless as an exploit, since it requires you to be able to run arbitrary Go code to begin with (the author admits as much). It's _very_ unlikely that a remote attacker could exploit a data race in a regular Go program.

j / k navigate · click thread line to collapse

0 comments

8 comments · 3 top-level

pclmulqdq3y ago· 3 in thread

The same goes for Rust and most other "safe" languages. They all have synchronization primitives that make it safe, but you need to use them - the compiler won't always tell you.

bilkow3y ago

See https://doc.rust-lang.org/nomicon/races.html

Dobbs3y ago

That is basically the entire shtick of rust. That data is "owned", and only the owner can write. You can "borrow" something for read access, but if something is borrowed it can't be written to.

There are of course workarounds for this like reference counted wrappers and so on.

suremarc3y ago

I have no idea what you mean here. Data races are next to impossible in safe Rust.

Thaxll3y ago· 2 in thread

Every GC language by definition are memory safe, memory safety in programming does not mean than accessing the same resources from two thread should be safe.

suremarc3y ago

Thaxll3y ago

Go is memory safe, if not then Java/C#/Python/Ruby are not either.

1 more reply

suremarc3y ago

Indeed, this person showed that you can read/write to arbitrary memory addresses inside of a Go program: https://blog.stalkr.net/2022/01/universal-go-exploit-using-d...

j / k navigate · click thread line to collapse