[wiz21c]

as far as i can see, it's just programming errors, nothing to do with rust.

[_flux]

Everything to do with reimplementing sudo, though.

But sudo has its share of CVEs as well (latest CVE-2025-32463), so perhaps a fresh look on the tool is warranted; perhaps some learnings have been taken from it.

[ciupicri]

A fresh look would be perhaps doas [1] from the OpenBSD project.

[1]: https://man.openbsd.org/doas.1

[_flux]

sudo-rs tries to be more or less a drop-in replacement for the original one, though, meaning minimal reconfiguration should be required for it.

[noobermin]

I think if rust was used to replace other bits (say things like utilities like grep or whatever) instead of security vital things like sudo, there would be less complaints.

[_flux]

Do you mean like uutils/coreutils.. Which certainly collects complaints :).

[noobermin]

No doubt. I'm just guessing people would grumble less.

[never_inline]

Do they have test suite comparable to that of original sudo, or can they reuse the test suite of original sudo?

[egorfine]

Same could be said about many of the real sudo bugs, but that argument doesn't stick with rust fanboys.

(Obligatory disclaimer: I love rust, I hate fanboys and rewrites)