Encapsulating trust
Dmitry Olshansky via Digitalmars-d
digitalmars-d at puremagic.com
Tue Sep 2 07:10:30 PDT 2014
02-Sep-2014 15:37, "Marc Schütz" <schuetzm at gmx.net>" пишет:
> On Tuesday, 2 September 2014 at 11:30:43 UTC, ketmar via Digitalmars-d
> wrote:
>> On Tue, 02 Sep 2014 11:08:25 +0000
>> Paulo Pinto via Digitalmars-d <digitalmars-d at puremagic.com> wrote:
>>
>> let me ask it again:
>> how, in the name of hell, having handy sugar for the thing that is
>> *already* in the language can hurt us here?
>
> In this particular case:
>
> Because it _is_ handy. It shouldn't be. It's supposed to be ugly, to
> make you think twice whether you actually want to use it.
>
> Besides, as was already mentioned, 'grep -r @trusted' wouldn't work
> anymore.
Making things ugly doesn't make them safe or easier to verify.
Somehow people expect the opposite, but just take a look at e.g. OpenSSL :)
Slapping @trusted across whole functions just blurs the scope of system
code (where? what was system? or maybe it's that pointer ... it's really
hard to analyze afterwards).
--
Dmitry Olshansky
More information about the Digitalmars-d
mailing list