Wolemba tsamba lawebusayiti lolembedwa mu Rust zachotsedwa atadzudzulidwa chifukwa cha "kugwiritsa ntchito molakwika" chilankhulo cha Dzimbiri. Mawonekedwe a actix-web, phukusi lomwe latsitsidwa nthawi zopitilira 800, limakupatsani mwayi kuti muyike seva ya HTTP ndi magwiridwe antchito amakasitomala mu Rust application, ndipo idapangidwa kuti ikwaniritse magwiridwe antchito komanso m'mayeso ambiri amtundu wa intaneti.
Zitangotsala pang'ono kuchitika, zidanenedwa m'nkhani za GitHub kuti Undefined Behaviour adapezeka mu code ya actix-web seva, zomwe zimachitika mu block yomwe idachitidwa mu (amalola zochita zosatetezeka ndi zolozera). Wolemba wa actix-web sanachotse chipika chopanda chitetezo, koma adayimbiranso ku block iyi kuti machitidwe osadziwika asachitike. Wolembayo adakana malingaliro ochotsa osatetezeka, ponena za kuwonongeka kwa ntchito ndikunena kuti sagwiritsa ntchito mopanda chitetezo mosayenera ndipo ali ndi chidaliro pachitetezo cha midadada yomwe ikugwira ntchito mwanjira iyi.
Membala wa gulu la RustSec yemwe adazindikira khalidwe losadziwika sanagwirizane ndipo adanena kuti kugwiritsa ntchito midadada yambiri yopanda chitetezo mu actix-web sikulakwa. Zitatha izi adasindikiza
za kusaloleka kugwiritsa ntchito zosatetezeka, zomwe, mwa zina, zidanenedwa kuti njira yogwirira ntchito ndi zolozera zomwe zimagwiritsidwa ntchito mu actix-web (zolozera zingapo zosinthika ku data yomweyi) zitha kuyambitsa zovuta zogwiritsa ntchito pambuyo paulere ndipo sizitero. zimagwirizana ndi paradigm yachitukuko pa Rust.
pambuyo zolemba pa , m'nkhani za GitHub trolls ndi wolemba actix-web adagonjetsedwa ndi kutukwana chifukwa chogwiritsa ntchito dzimbiri molakwika. Wolemba sakanatha kupirira kukakamizidwa kwamalingaliro, и , kuti ndinasiya ndi Open Source.
Source: opennet.ru
