You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The first commit adds tests that demonstrate undefined behavior in safe
code under `miri`.
The second commit fixes the issues with minimal API changes. The API
could be adjusted to make such issues less likely (e.g. pre-validated
fields should not be public and mutable), but this PR only provides a
semver-compatible fix.
The third commit updates documentation to more clearly communicate
alignment requirements to API users.
### Impact analysis
The alignment issue is mostly theoretical and should not impact
real-world uses.
The missing field validation results in buffer overflow, but you need to
edit the fields after the initial validation pass; I don't expect this
to be common in the wild (albeit I haven't verified that), so I don't
think it warrants a full-on security advisory, but you might want to get
an unsoundness advisory into
[RustSec](https://github.com/rustsec/advisory-db/) with the
`informational = unsound` field.
0 commit comments