Hacker News new | ask | show | jobs
by bcantrill 1868 days ago
Yes, though I would like to believe that Ben's responsible disclosure coupled with our addressing those vulns (and auditing ourselves for similar) reflect exactly that seriousness around multitenant security. And for whatever it's worth, one of those vulnerabilities -- which was a bug in my code! -- very much informed by own thinking about the inherent unsafety of C, underscoring the appeal of Rust. So I am grateful in several dimensions!
1 comments
tptacek 1868 days ago
If you have a kernel implemented in Rust, (1) you should shout that from the rooftops and (2) use whatever isolation mechanism you like on it.
link
bsder 1868 days ago
They're starting with the bootloader and management engine. That's a tough enough ocean to boil.

Give them some time to get Rust above that.

link
pjmlp 1867 days ago
Sadly Apple decided for a safe dialect of C for similar purposes e.g. iBoot, where they could have gone with Swift or Rust instead.

Very big ocean indeed.

link