Jonathan Protzenko's Avatar

Jonathan Protzenko

@protz.bsky.social

I talk about Rust, verification, cryptography, programming languages… and pets

121 Followers  |  57 Following  |  7 Posts  |  Joined: 20.11.2024  |  1.9617

Latest posts by protz.bsky.social on Bluesky

Eurydice: a Rust to C compiler (yes) Perhaps the greatest surprise of the last two years was, for me, the realization that people not only care about compiling C to Rust (for obvious reasons, such as, ahem, memory safety) – they also car...

Friday blogging: compiling Rust to C (yes) jonathan.protzenko.fr/2025/10/28/e...

31.10.2025 17:09 — 👍 1    🔁 1    💬 0    📌 0
Preview
Charon: An Analysis Framework for Rust With the explosion in popularity of the Rust programming language, a wealth of tools have recently been developed to analyze, verify, and test Rust programs. Alas, the Rust ecosystem remains relativel...

Yes we would automate the generation of that "thin" layer. We have plenty of existing tooling to do so, we could use e.g. charon arxiv.org/abs/2410.18042 to inspect the function signatures, and generate the wrappers.

10.06.2025 20:19 — 👍 2    🔁 0    💬 0    📌 0

If the proposal (forgot where the link is) to guarantee an extern "C" ABI for slices goes through, the wrapper will be greatly simplified.

10.06.2025 18:50 — 👍 1    🔁 0    💬 0    📌 0

The plan is to go through the extern "C" ABI for the sake of i) FIPS certification and ii) being able to link against a system version of SymCrypt. This will involve a thin unsafe wrapper that re-exports the original Rust signatures to a Rust client through the C ABI.

10.06.2025 18:50 — 👍 2    🔁 0    💬 2    📌 0

This is what I've been driving for the past year! It's an exciting time, with Rust making its way into one of the most critical pieces of software: the core crypto library used in Azure and Windows. With Rust, formal verification becomes easier, and so far, no blockers to Rust adoption.

10.06.2025 17:29 — 👍 66    🔁 14    💬 6    📌 2
15,000 lines of verified cryptography now in Python In November 2022, I opened issue 99108 on Python’s GitHub repository, arguing that after a recent CVE in its implementation of SHA3, Python should embrace verified code for all of its hash-related inf...

Friday blogging, about our journey replacing Python's built-in cryptography with verified code from HACL*. I'm very proud of this work: I wrote the first version in 2020, and along the way it had both research (ICFP paper) and industrial impact (Python).

jonathan.protzenko.fr/2025/04/18/p...

18.04.2025 17:39 — 👍 5    🔁 1    💬 0    📌 0

Very proud to announce that our original paper on Catala, presented at ICFP'21, received a SIGPLAN Research Highlight. Incredible surprise! Only four papers received this award for the 2021-2023 period. Congratulations @denismerigoux.bsky.social

24.02.2025 22:00 — 👍 15    🔁 4    💬 2    📌 0
Preview
Boffins carve up C so code can be converted to Rust Mini-C is a subset of C that can be automatically turned to Rust without much fuss Computer scientists affiliated with France's Inria and Microsoft have devised a way to automatically turn a subset of C code into safe Rust code, in an effort to meet…

Boffins carve up C so code can be converted to Rust

03.01.2025 12:35 — 👍 13    🔁 5    💬 1    📌 0

@protz is following 20 prominent accounts