Fearless Unsafe. A More User-friendly Document for Unsafe Rust Programming Base on Refined Safety Properties
Mohan Cui, Penglei Mao, Shuran Sun, Yangfan Zhou, Hui Xu
TL;DR
This paper introduces a systematic safety property categorization for unsafe Rust APIs, reorganizes documentation, and develops a tool to help developers write safer unsafe code, supported by analysis of CVEs and real-world usage.
Contribution
It defines a comprehensive safety property category, refines unsafe API documentation, and creates a developer assistance plugin based on safety analysis.
Findings
Safety properties effectively categorize unsafe API issues.
Reorganized documentation improves clarity and consistency.
Analysis of CVEs and usage highlights key safety challenges.
Abstract
Rust, a popular systems-level programming language, has garnered widespread attention due to its features of achieving run-time efficiency and memory safety. With an increasing number of real-world projects adopting Rust, understanding how to assist programmers in correctly writing unsafe code poses a significant challenge. Based on our observations, the current standard library has many unsafe APIs, but their descriptions are not uniform, complete, and intuitive, especially in describing safety requirements. Therefore, we advocate establishing a systematic category of safety requirements for revising those documents. In this paper, we extended and refined our study in ICSE 2024. We defined a category of Safety Properties (22 items in total) that learned from the documents of unsafe APIs in the standard library. Then, we labeled all public unsafe APIs (438 in total) and analyzed their…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsOccupational Health and Safety Research