First Draft: Making printf @safe
Tim
tim.dlang at t-online.de
Sat Aug 3 17:47:45 UTC 2024
On Saturday, 3 August 2024 at 17:12:15 UTC, Nick Treleaven wrote:
> There are 13 `pragma(printf)` functions in dmd. They could be
> changed. However, now those aren't functions but templates. I'm
> not sure if that's OK for ldc and gdc, maybe. And every call to
> each of those functions would need updating (unless we had enum
> parameters). The dmd as a library API would also be impacted,
> even if the original functions were kept as deprecated.
Yes, the change could be too big. I did not know how much it is
used in DMD. The format string could also be checked or rewritten
at runtime, but that would have other disadvantages.
> Those functions could maybe be marked @trusted on the basis
> that the current dmd tests with the feature have checked all
> calls to them, and dmd as a library could require the new
> version of dmd for the API with the new @trusted functions.
That would work if the format string is only checked by the
compiler. The DIP proposes, that it is also silently modified.
Compiling DMD with an old bootstrap compiler could then contain a
wrong format string.
More information about the dip.development
mailing list