std.file functions and embedded NUL characters [CWE-158]

monkyyy crazymonkyyy at gmail.com
Thu Jul 31 23:21:24 UTC 2025


On Thursday, 31 July 2025 at 23:14:46 UTC, Doigt wrote:
> On Thursday, 31 July 2025 at 21:34:36 UTC, H. S. Teoh wrote:
>> This tone is uncalled for.  OP is specifically pointing the 
>> issue with passing NUL-containing strings to underlying OS 
>> calls.  T
>
> No, OP isn't doing that. OP is fishing and it's obvious:
> 1. No problematic example that is specific to D
> 2. Generic source that concerns multiple languages but doesn't 
> cite D
> 3. Immediately pulled out an "examplary" python program and 
> touting the superiority of that language.
>
> Any reasonable person should therefore conclude that it's a 
> generalizing statement that was made without prior knowledge 
> about D and that the OP didn't make any substantial testing to 
> prove the problem. They hoped instead that it would be true. 
> Therefore, you are a fish and you just took the bait.

I bet op is a enterprise-grade security researcher; I suggest 
light mocking when they claim rust is the future or 
@safe/immutable is very important for game dev


More information about the Digitalmars-d mailing list