update

Author: yijunyu

.gitattributes

@@ -0,0 +1,2 @@
+*.mp4 filter=lfs diff=lfs merge=lfs -text
+videos/2024-03-26/huawei_and_rust.mp4 filter=lfs diff=lfs merge=lfs -text

.gitignore

@@ -0,0 +1,3 @@
+_site
+.bundle
+vendor

Gemfile

@@ -0,0 +1,16 @@
+source "https://rubygems.org"
+gem "jekyll", "~> 4.3.1"
+
+# Windows and JRuby does not include zoneinfo files, so bundle the tzinfo-data gem
+# and associated library.
+platforms :mingw, :x64_mingw, :mswin, :jruby do
+  gem "tzinfo", ">= 1", "< 3"
+  gem "tzinfo-data"
+end
+
+# Performance-booster for watching directories on Windows
+gem "wdm", "~> 0.1.1", :platforms => [:mingw, :x64_mingw, :mswin]
+
+# Lock `http_parser.rb` gem to `v0.6.x` on JRuby builds since newer versions of the gem
+# do not have a Java counterpart.
+gem "http_parser.rb", "~> 0.6.0", :platforms => [:jruby]

Gemfile.lock

@@ -0,0 +1,77 @@
+GEM
+  remote: https://rubygems.org/
+  specs:
+    addressable (2.8.1)
+      public_suffix (>= 2.0.2, < 6.0)
+    colorator (1.1.0)
+    concurrent-ruby (1.2.0)
+    em-websocket (0.5.3)
+      eventmachine (>= 0.12.9)
+      http_parser.rb (~> 0)
+    eventmachine (1.2.7)
+    ffi (1.15.5)
+    forwardable-extended (2.6.0)
+    google-protobuf (3.21.12)
+    http_parser.rb (0.8.0)
+    i18n (1.12.0)
+      concurrent-ruby (~> 1.0)
+    jekyll (4.3.2)
+      addressable (~> 2.4)
+      colorator (~> 1.0)
+      em-websocket (~> 0.5)
+      i18n (~> 1.0)
+      jekyll-sass-converter (>= 2.0, < 4.0)
+      jekyll-watch (~> 2.0)
+      kramdown (~> 2.3, >= 2.3.1)
+      kramdown-parser-gfm (~> 1.0)
+      liquid (~> 4.0)
+      mercenary (>= 0.3.6, < 0.5)
+      pathutil (~> 0.9)
+      rouge (>= 3.0, < 5.0)
+      safe_yaml (~> 1.0)
+      terminal-table (>= 1.8, < 4.0)
+      webrick (~> 1.7)
+    jekyll-sass-converter (3.0.0)
+      sass-embedded (~> 1.54)
+    jekyll-watch (2.2.1)
+      listen (~> 3.0)
+    kramdown (2.4.0)
+      rexml
+    kramdown-parser-gfm (1.1.0)
+      kramdown (~> 2.0)
+    liquid (4.0.4)
+    listen (3.8.0)
+      rb-fsevent (~> 0.10, >= 0.10.3)
+      rb-inotify (~> 0.9, >= 0.9.10)
+    mercenary (0.4.0)
+    pathutil (0.16.2)
+      forwardable-extended (~> 2.6)
+    public_suffix (5.0.1)
+    rake (13.0.6)
+    rb-fsevent (0.11.2)
+    rb-inotify (0.10.1)
+      ffi (~> 1.0)
+    rexml (3.2.5)
+    rouge (4.0.1)
+    safe_yaml (1.0.5)
+    sass-embedded (1.58.0)
+      google-protobuf (~> 3.21)
+      rake (>= 10.0.0)
+    terminal-table (3.0.2)
+      unicode-display_width (>= 1.1.1, < 3)
+    unicode-display_width (2.4.2)
+    webrick (1.8.1)
+
+PLATFORMS
+  x64-mingw-ucrt
+  x86_64-linux
+
+DEPENDENCIES
+  http_parser.rb (~> 0.6.0)
+  jekyll (~> 4.3.1)
+  tzinfo (>= 1, < 3)
+  tzinfo-data
+  wdm (~> 0.1.1)
+
+BUNDLED WITH
+   2.3.5

README.md

@@ -0,0 +1,14 @@
+# Trusted Programming
+
+If you want to run it locally, install it first. Then:
+
+```bash
+$ bundle config set --local path 'vendor/bundle'
+$ bundle install
+```
+
+When it's all done, you can run it locally like this:
+
+```bash
+$ bundle exec jekyll serve
+```

_config.yml

@@ -0,0 +1,22 @@
+title: Trusted Programming
+description: >- 
+  As a leading telecommunications company on a global scale, Huawei is
+  dedicated to the development of dependable software systems. To achieve this
+  goal, our team of developers relies heavily on the support provided by Rust
+  programming language. As a founding member of the Rust Foundation, Huawei is
+  fully committed to the growth and prosperity of the Rust community. To
+  demonstrate our commitment, we have created automated tools to transform C code
+  into a safer Rust code, and are continuously contributing to the improvement
+  and expansion of Rust's features. 
+baseurl: ""
+url: "https://trusted-programming.github.io"
+
+collections:
+  contributions:
+    output: false
+  projects:
+    output: false
+  team:
+    output: false
+  research_labs:
+    output: false

_contributions/async-drop.md

@@ -0,0 +1,17 @@
+---
+name: Async Drop
+area: compiler
+status: 
+  label: in-progress
+  css_class: attention
+buttons:
+---
+Support asynchronous destruction of objects running out of scope:
+
+1. Implement code generation for asynchronous drop
+
+2. Implement prevention measures for running asynchronous drop synchronously
+
+3. Implement type system pre-requisites for (2) if necessary - type system refactoring, linear types
+
+4. Implement any other features in rustc compiler that will help Rust language team to make a decision about including async drop to the language

_contributions/atomic-memcpy.md

@@ -0,0 +1,32 @@
+---
+name: Atomic memcpy
+area: library
+status:
+  label: in-progress
+  css_class: attention
+buttons:
+  - label: Atomic memcpy RFC
+    link: https://github.com/m-ou-se/rfcs/blob/atomic-memcpy/text/3301-atomic-memcpy.md
+---
+It's currently not possible to implement an efficient and strictly correct *sequence lock* in Rust,
+which is a very important low level synchronization primitive.
+
+Reading the data from a sequence lock relies on the ability to read data that might be
+concurrently modified, checking afterwards if a data race occured (by checking an atomic sequence counter),
+and only then *using* the data after the check.
+(See [the RFC](https://github.com/m-ou-se/rfcs/blob/atomic-memcpy/text/3301-atomic-memcpy.md#the-problem) for a detailed explanation.)
+
+However, in the memory model of Rust (and C++),
+reading data that is concurrently modified results in a data race (undefined behavior) *immdiately*,
+not just when using the data later.
+
+Crates like `seqlock` work around this by using `ptr::read_volatile`, but the correctness is debatable.
+
+C++'s [P1478](https://wg21.link/p1478r7) adds
+`atomic_load_per_byte_memcpy` and `atomic_store_per_byte_memcpy` to provide a solution for that problem.
+Rust should have something similar, but something that fits better into Rust's type and safety system.
+
+[Rust RFC 3301](https://github.com/m-ou-se/rfcs/blob/atomic-memcpy/text/3301-atomic-memcpy.md) is
+a proposal for a generic type `AtomicPerByte<T>` that allows for concurrent reads and writes that do not result in undefined behavior,
+while still allowing tearing to allow reads and writes of any size.
+It leverages the `MaybeUninit<T>` type to represent types in potentially invalid (teared) state.

_contributions/btreemap-cursors.md

@@ -0,0 +1,20 @@
+---
+name: Cursor support for BTreeMap
+area: library
+status: 
+  label: in-progress
+  css_class: attention
+buttons:
+  - label: API Change Proposal
+    link: https://github.com/rust-lang/libs-team/issues/141
+---
+One of the fundamental properties of `BTreeMap` is that it maintains elements in sorted order and 
+enables efficient element lookup in `O(log(N))` time. However the current API is overly fitted 
+towards a key-value API like a HashMap and fails to expose the ability to make queries about 
+"nearby" keys. For example, finding the first element whose key is greater than X.
+
+This proposal adds `Cursor` and `CursorMut` types to `BTreeMap` based on  [similar][cursor] 
+[types][cursor_mut] for `LinkedList`.
+
+[cursor]: https://doc.rust-lang.org/nightly/std/collections/linked_list/struct.Cursor.html
+[cursor_mut]: https://doc.rust-lang.org/nightly/std/collections/linked_list/struct.CursorMut.html

_contributions/cg_gcc.md

@@ -0,0 +1,10 @@
+---
+name: rustc_codegen_gcc
+area: compiler
+status: 
+  label: in-progress
+  css_class: attention
+buttons:
+---
+
+`rustc_codegen_gcc` adds support for GCC as backend for the Rust compiler. It'll allow to support a lot more of compilation targets while also benefiting from GCC advantages.

_contributions/const-generics.md

@@ -0,0 +1,19 @@
+---
+name: Constant Generics
+area: compiler
+status: 
+  label: blocked by trait system rewrite
+  css_class: accent
+buttons:
+  - label: Tracking Issue for complex Generic Constants (rust-lang/rust#76560)
+    link: https://github.com/rust-lang/rust/issues/76560
+  - label: Tracking Issue for complex Constant Parameter Types (rust-lang/rust#95174)
+    link: https://github.com/rust-lang/rust/issues/95174
+  - label: Tracking Issue for _ as a const argument (rust-lang/rust#85077)
+    link: https://github.com/rust-lang/rust/issues/85077
+---
+Const generics allows the use of values in the type system. Most often used for arrays with a 
+generic size: [u32; N] where N can be an arbitrary usize. It improves code clarity, reusability 
+and the general experience of working with arrays. This can reduce heap allocations and increase 
+performance. Changes to the standard library relying on const generics also increased the 
+compilation speed and documentation quality.

_contributions/cstr.md

@@ -0,0 +1,39 @@
+---
+name: C strings
+area: language and library
+status:
+  label: in-progress
+  css_class: attention
+buttons:
+  - label: RFC for C string literals (merged)
+    link: https://github.com/rust-lang/rfcs/pull/3348
+  - label: Tracking Issue
+    link: https://github.com/rust-lang/rust/issues/105723
+  - label: RFC for UTF-8 in C and byte strings
+    link: https://github.com/rust-lang/rfcs/pull/3349
+  - label: Issue to make `&CStr` a thin pointer
+    link: https://github.com/rust-lang/rust/issues/59905
+---
+The `&std::ffi::CStr` type is used to represent (null terminated) C strings in Rust.
+Currently, this type has some subtle issues and is in many ways less ergonomic than the regular string type.
+
+Some of the areas of potential improvement:
+
+- There is no syntax for a `&CStr` literal. (Update: We now have the experimental `c"…"` syntax.)
+
+- Due to a language limitation, `&CStr` is currently represented as a pointer+size pair.
+  It should instead be just a pointer without a size, since the size is already determined by the null terminator.
+
+  - Because of this, conversion from `*const c_char` requires scanning the whole string to find its size.
+    That should be a free/nop conversion instead.
+    See the note in [this documentation](https://doc.rust-lang.org/stable/std/ffi/struct.CStr.html#method.to_bytes).
+
+  - For the same reason, `&CStr` cannot be passed through a C FFI boundary.
+    Ideally, `&CStr` should have the same ABI as a `*const c_char`.
+
+- `CStr` has far fewer useful methods than `str` (e.g. finding, splitting, replacing, etc.) making it hard to work with directly.
+
+- `format!()` can only produce a `String`, not a `std::ffi::CString`.
+
+- All bytes in a `CStr` (before the terminator) are non-zero, but none of the
+  methods use `NonZeroU8` to leverage the type system for this invariant.

_contributions/delegation.md

@@ -0,0 +1,17 @@
+---
+name: Delegation
+area: compiler
+status: 
+  label: in-progress
+  css_class: attention
+buttons:
+---
+Support syntactic sugar for conveniently delegating implementation to other types.
+
+1. Implement a compiler pass detecting delegation-like patterns in code
+
+2. Run the pass on code from crates.io, analyze found delegation patterns, analyze previous delegation proposals
+
+3. Implement syntactic sugar for common delegation patterns as a procedural macro or a built-in language feature
+
+4. Write an RFC that proposes including delegation into Rust language

_contributions/diagnostic-locations.md

@@ -0,0 +1,13 @@
+---
+name: Diagnostic Locations
+area: devtools
+status: 
+  label: in-progress
+  css_class: attention
+buttons:
+---
+Accurate diagnostic locations for tools like linters in presence of macro expansions.
+
+1. Discuss specific cases that need improvements
+
+2. Formalize the suggested improvements and implement them

_contributions/diagnostic-translation.md

@@ -0,0 +1,18 @@
+---
+name: Diagnostic Translation
+area: compiler
+status: 
+  label: in-progress
+  css_class: attention
+buttons:
+  - label: Tracking Issue (rust-lang/rust#100717)
+    link: https://github.com/rust-lang/rust/issues/100717
+  - label: Announcement Blog Post
+    link: https://blog.rust-lang.org/inside-rust/2022/08/16/diagnostic-effort.html
+---
+Rust's diagnostics working group is leading an effort to add support for internationalization 
+of error messages in the compiler, allowing the compiler to produce output in languages other than 
+English.
+
+Translated error messages will allow non-native speakers of English to use Rust in their preferred 
+language.

_contributions/docs-rs.md

@@ -0,0 +1,12 @@
+---
+name: docs.rs features and maintenance
+area: development tools
+status: 
+  label: in-progress
+  css_class: attention
+buttons:
+  - label: Add GUI tests
+    link: https://github.com/rust-lang/docs.rs/pull/1698
+---
+`docs.rs` is a crucial part of the Rust developer's toolbelt and Huawei sponsor
+continued development of `docs.rs` features and of maintenance of the project.

_contributions/feature-detection.md

@@ -0,0 +1,19 @@
+---
+name: CPU feature detection in core
+area: library
+status: 
+  label: in-progress
+  css_class: attention
+buttons:
+---
+
+Currently, CPU feature detection macros such as `is_x86_feature_detected!` are only available in 
+`std`. This is because, on most platforms, feature detection requires information from the 
+operating system, which is not available in `core` by design.
+
+However, an alternative design would be to expose an API for manually enabling features: the set of
+enabled features would be available in `core`, but code in `std` would be responsible for querying
+the set of supported features from the OS on startup and marking them as enabled in `core`.
+
+This will allow code in `core` and `alloc` to take advantage of CPU-specific optimizations such as
+using string processing instructions to accelerate certain functions.

_contributions/fmtarg.md

@@ -0,0 +1,21 @@
+---
+name: Reduce binary size impact of formatting machinery 
+area: library
+status: 
+  label: in-progress
+  css_class: attention
+buttons:
+  - label: Tracking Issue (rust-lang/rust#99012)
+    link: https://github.com/rust-lang/rust/issues/99012
+---
+The `format_args!()` macro and underlying `std::fmt::Argument` type form the
+basis of all printing and formatting machinery in the Rust standard library,
+such as `println!()`, `format!()`, and `write!()`.
+
+By improving the macro and the in-memory representation of the `fmt::Arguments`
+type, a significant reduction in binary size can be achieved. This is
+especially important for embedded software running on devices with limited
+storage and memory.
+
+To be more flexible, currently working on the lifetime of hygenic macros to
+ensure safe expansion of unsafe code in the macros.

_contributions/hashbrown.md

@@ -0,0 +1,10 @@
+---
+name: hashbrown features and maintenance
+area: library
+status: 
+  label: in-progress
+  css_class: attention
+---
+`hashbrown` is the hash table implementation used in Rust's standard library.
+This crate is performance-critical for both the Rust compiler and many Rust programs.
+Huawei sponsors the continued developement of hashbrown features and maintenance of the project.