Use zerocopy to replace some unsafe code

[joshlf]

No description provided.

[joshlf]

Here's another option if this would be preferred. I opted not to go this route since it messes with code that's been verified to compile to SIMD instructions (although I expect the same would work here):

let mut val = $intrinsic::new_zeroed();
// On proper hardware, this should compile to SIMD instructions
// Verified on x86 Haswell with __m128i, __m256i
//
// x86 is little endian so no need for conversion
rng.fill_bytes(&mut val.as_bytes_mut());
val

[dhardy]

The key point here is the adoption of zerocopy as a dependency.

[vks]

zerocopy looks good, it's used by some quite popular crates (bitflags, ahash, uuid). It does not pull in any additional dependencies, and does not seem to affect build time significantly.

The main contender would be bytemuck, which seems a bit more popular. @joshlf Since you seem to be the author, how would you compare zerocopy to bytemuck?

[joshlf]

zerocopy looks good, it's used by some quite popular crates (bitflags, ahash, uuid). It does not pull in any additional dependencies, and does not seem to affect build time significantly.

The main contender would be bytemuck, which seems a bit more popular. @joshlf Since you seem to be the author, how would you compare zerocopy to bytemuck?

With the obvious caveat that I'm biased as the author, and focusing specifically on this use case (rather than comparing the crates across all use cases), I would advocate for zerocopy in this case for a few reasons:

• bytemuck is no longer under active development by its author (although it receives active contributions from folks in the community)
• IIUC, bytemuck's popularity is primarily a function of its age (it's been around a lot longer than zerocopy has)
• Zerocopy is my full-time job at Google, and I maintain it on behalf of a large number of internal Google projects
• Zerocopy has a very high bar for soundness and correctness, as it's used in a number of high-trust projects implementing things like cryptography, security chip firmware, etc
• For the particular use of transmute! in this PR, the bytemuck equivalents would be cast or try_cast, which are fallible and either panic or return Err at runtime on size mismatch. transmute!, by contrast, fails compilation on size mismatch.

That said, the uses introduced in this PR are pretty small, the panic paths in bytemuck's solutions might be optimized out, and there's probably not a huge difference either way.

[dhardy]

Thanks for the discussion. Then if @vks agrees, I think we should merge this and can also close #957.

[newpavlov]

In future it also may be worth to (optionally) use zerocopy in getrandom, as mentioned in this discussion.