| ▲ | steveklabnik 2 hours ago | |||||||
> Does cve-rs break any type system rules? Yes. > If so, why hasn't it been fixed yet? Pretty classic software engineering reasons. The part of the system that it involves was in the process of being re-written already. The re-write fixes the bug. Because it is essentially a theoretical issue, and not an actual problem in any real code, it is not a five alarm fire. Waiting for that re-write to land makes the most sense, instead of putting in a ton of work that will be thrown away. Other, more serious miscompilations get fixed faster. In fact, a version of the Rust compiler was released today to fix one, even https://blog.rust-lang.org/2026/07/16/Rust-1.97.1/ This one was impacting actual users, and did not require re-writing entire subsystems to fix properly. So the engineering and product tradeoffs are different. | ||||||||
| ▲ | inigyou an hour ago | parent [-] | |||||||
If cve-rs exists, is safe rust safe? Can one prove that Rust code is safe only by auditing the unsafe blocks? | ||||||||
| ||||||||