DIP1028 - Rationale for accepting as is

Patrick Schluter Patrick.Schluter at bbox.fr
Sun May 24 11:57:37 UTC 2020


On Sunday, 24 May 2020 at 03:28:25 UTC, Walter Bright wrote:
> I'd like to emphasize:
>
> 1. It is not possible for the compiler to check any 
> declarations where the implementation is not available. Not in 
> D, not in any language. Declaring a declaration safe does not 
> make it safe.
>
> 2. If un-annotated declarations cause a compile time error, it 
> is highly likely the programmer will resort to "greenwashing" - 
> just slapping @safe on it. I've greenwashed code. Atila has. 
> Bruce Eckel has. We've all done it. Sometimes even for good 
> reasons.
>
> 3. Un-annotated declarations are easily detectable in a code 
> review.
>
> 4. Greenwashing is not easily detectable in a code review.
>
> 5. Greenwashing doesn't fix anything. The code is not safer. 
> It's an illusion, not a guarantee.
>
> 6. If someone cares to annotate declarations, it means he has 
> at least thought about it, because he doesn't need to. Hence 
> it's more likely to be correct than when greenwashed.
>
> 7. D should *not* make it worthwhile for people to greenwash 
> code.
>
> It is, in a not-at-all obvious way, safer for C declarations to 
> default to being safe.

Apparently, you're of the opinion it's better the compiler does 
the greenwashing. Got it!



More information about the Digitalmars-d-announce mailing list