[OffTopic] A vulnerability postmortem on Network Security Services

Paul Backus snarwin at gmail.com
Thu Dec 2 20:51:56 UTC 2021

On Thursday, 2 December 2021 at 20:36:46 UTC, Greg Strong wrote:
> On Thursday, 2 December 2021 at 17:36:18 UTC, H. S. Teoh wrote:
>> The solution is very simple: extern(C), extern(C++), and 
>> extern anything
>> except extern(D) really, should be @system, and extern(D) (the 
>> default)
>> should be @safe.
>> The real issue is convincing Walter to accept this.
> Yes - this seems like the most reasonable solution to me.  I 
> don't see why it would be particularly controversial.

The last time this came up, Walter's argument against it was 
(iirc) that having two separate defaults for different kinds of 
functions is much worse for usability than having one universal 

It's worth keeping in mind that extern(C) does not necessarily 
mean "written in C". So applying this rule as written would lead 
to some rather confusing edge cases; for example:

     import std.stdio;

     extern(C) void sayHello() // @system by default

     void main() // @safe by default
         // Error: @safe function `main` cannot call @system 
function `sayHello`

More information about the Digitalmars-d mailing list