Memory Safety is a Red Herring (steveklabnik.com)

submitted 2 years ago by lysdexic@programming.dev to c/rust@programming.dev

49 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[+] lysdexic@programming.dev -6 points 2 years ago* (last edited 2 years ago)

How do you succinctly call a language that has all behavior defined or equivalently no undefined behavior (aside from designated regions)?

I don't understand this fixation with undefined behavior. Its origins are in the design decision of leaving the door open for implementations to employ whatever optimization techniques they see fit without the specification get in the way. This is hardly a problem.

In practical terms, developers are mindful to not rely on those traits because as far as specifications go they have unpredictable implications, but even so they are never a problem. I mean, even in C and C++ it's trivial to tweak the compiler to flag undefined behavior as warnings/errors.

Sometimes it sounds like detractors just parrot undefined behavior as some kind of gotcha in ways I'm not even sure they fully understand.

What problem do you think that undefined behavior poses?

[-] BehindTheBarrier@programming.dev 14 points 2 years ago* (last edited 2 years ago)

I'm just a noob when it comes to low level languages, having only been in C# and python. But I took a course on C++ and encountered something that didn't seem right. And I asked and got the "that's undefined behavior". And that didn't quite sit tight with me. We don't know what will happen? It'll probably crash? Or worse? How can one not know how a programming language will perform? I felt it was wrong.

Now, it's quite some time since that happened, and I understand why it's undefined. But I still do not think it should be allowed by default. C and C++ both are "free to do as you want" languages, but I don't think a language should let you do something that's undefined especially if you aren't aware you're doing it. Everyone makes mistakes, even stupid ones. If we can make a place where undefined behavior simply won't happen, why not go there? If you need some special tricks, you can always drop the guard where you need it. I guess I'm just reiterating the article here though. But that's the point for me, if something can enforce "defined behavior" by default then I'd want that.

[-] Sylvartas@lemmy.world 3 points 2 years ago

We don't know what will happen? It'll probably crash? Or worse? How can one not know how a programming language will perform? I felt it was wrong.

If you really want to know you can. Basically in most cases it depends on the compiler. Sometimes the hardware. The point is that you should not expect any specific behavior because the standard doesn't specify one

[-] BatmanAoD@programming.dev 6 points 2 years ago

The standard differentiates between "unspecified" behavior, which is as you describe, and "undefined" behavior, which may be completely nondeterministic at runtime.

load more comments (1 replies)

load more comments (3 replies)

load more comments (25 replies)

this post was submitted on 24 Dec 2023

41 points (86.0% liked)