Mainjiniya eGoogle vapfupisa mhedzisiro yekutanga yekushandiswa mupuratifomu Android rutsigiro rwekusimudzira mutauro wechiRust. Android 13 Inenge 21% yekodhi itsva yakawedzerwa yakanyorwa muRust, uye 79% muC/C++. MuAOSP repository (Android Open Source Project), iyo inogadzira kodhi yekodha yepuratifomu Android, kune mitsara inosvika mamiriyoni 1.5 yekodhi muRust ine chekuita nezvinhu zvitsva zvakaita seKeystore2 cryptographic key storage, stack yemachipisi eUWB (Ultra-Wideband), kushandiswa kweprotocol yeDNS-over-HTTP3, AVF virtualization framework (Android Virtualization Framework), ma stacks ekuyedza eBluetooth neWi-Fi.
Zvinoenderana neyakagamuchirwa zano rekudzikisa njodzi yekusagadzikana kunokonzerwa nekukanganisa mukushanda nekuyeuka, Rust mutauro parizvino unoshandiswa kunyanya mukugadzirwa kwekodhi nyowani uye nekusimbisa zvishoma nezvishoma kuchengetedzwa kweakanyanya kudzivirirwa uye akakosha masoftware zvikamu. Iko hakuna chinangwa chikuru chekufambisa chikuva chese kuRust, uye kodhi yekare inoramba iri muC / C ++, uye kurwisana nezvikanganiso mairi kunoitwa kuburikidza nekushandiswa kwekutsvaga kwekuongorora, static analysis uye kushandiswa kwemaitiro panguva yekusimudzira zvakadai sekushandiswa kweMiraclePtr rudzi (chiputiro pamusoro pezvinyorwa zvakasvibirira zvinoita mamwe macheki ekuwana nzvimbo dzakasununguka dzekuchengetedza), iyo Scudo yakachengeteka inotsiva nzvimbo yekuyeuka) nzira dzekuona zvikanganiso mukushanda nendangariro HWAsan (Hardware-assisted AddressSanitizer), GWP-ASAN uye KFENCE.
Nezve nhamba dzemhando yekushaya simba mupuratifomu Android, zvinocherechedzwa kuti sezvo huwandu hwekodhi itsva inobata ndangariro zvisina kuchengetedzeka huchidzikira, huwandu hwenjodzi dzinokonzerwa nekukanganisa kwendangariro hunodzikirawo. Semuenzaniso, chikamu chenjodzi dzinokonzerwa nematambudziko endangariro chakaderera kubva pa76% muna 2019 kusvika pa35% muna 2022. Muhuwandu hwakazara, 223 njodzi dzine chekuita nendangariro dzakaonekwa muna 2019, 150 muna 2020, 100 muna 2021, uye 85 muna 2022 (njodzi dzese dzakataurwa dzaive mukodhi yeC/C++; hapana matambudziko akafanana akawanikwa mukodhi yeRust). 2022 inova gore rekutanga umo njodzi dzine chekuita nendangariro dzakarega kuva dzakanyanya.
Sezvo kusadzivirirwa kwakabatana nendangariro kunowanzova nengozi zvakanyanya, huwandu hwese hunoratidzawo kudzikira kwehuwandu hwezvinhu zvakakosha uye nyaya dzinogona kushandiswa kure. Panguva imwe cheteyo, masimba ekuona hurema husina hukama nendangariro anoramba ari padanho rakafanana pamakore mana apfuura - 4 vulnerabilities pamwedzi. Mugove wezvinhu zvine njodzi pakati pekusagadzikana kunokonzerwa nekukanganisa mukubata kwendangariro zvakare inoramba yakafanana (asi sezvo huwandu hwekusagadzikana uku huri kudzikira, huwandu hwenyaya dzine njodzi huri kudzikira zvakare).
Iwo manhamba zvakare anoteedzera kuwirirana pakati pehuwandu hwekodhi nyowani inobata ndangariro zvisina kuchengeteka uye huwandu hwekusagadzikana kwakabatana nendangariro (buffer mafashama, kuwana kune yakatosunungurwa ndangariro, nezvimwewo). Kucherekedza uku kunosimbisa fungidziro yekuti iyo inonyanya kutariswa pakushandisa nzira dzakachengeteka dzekuronga dzinofanirwa kunge dziri pakubvisa kodhi nyowani, pane kunyorazve kodhi iripo, sezvo kuwanda kwekusagadzikana kwakaonekwa kuri mukodhi nyowani.
Source: opennet.ru
