Typical security issues in C++: why the GC isn't your enemy
H. S. Teoh
hsteoh at qfbox.info
Fri Dec 9 22:39:39 UTC 2022
On Fri, Dec 09, 2022 at 02:22:36PM -0800, Walter Bright via Digitalmars-d wrote:
> On 12/9/2022 5:03 AM, bauss wrote:
> > On Friday, 9 December 2022 at 12:57:48 UTC, Adam D Ruppe wrote:
> > > On Friday, 9 December 2022 at 03:40:56 UTC, Walter Bright wrote:
> > > > Bounds checking is always done
> > >
> > > As long as you never use -release!
> >
> > Should never be used regardless of what you do! It's broken and
> > misleading.
>
> Bounds checking is not disabled with -release
According to `dmd -h`, they are disabled everywhere except @safe code.
That's still a pretty wide area where things could go wrong. And
arguably, @system code is precisely where you WANT to have bounds
checks.
T
--
A program should be written to model the concepts of the task it performs rather than the physical world or a process because this maximizes the potential for it to be applied to tasks that are conceptually similar and, more important, to tasks that have not yet been conceived. -- Michael B. Allen
More information about the Digitalmars-d
mailing list