top | item 33507178

(no title)

nspattak | 3 years ago

In my opinion, the problem is that we failed to create some additional layers on top of C. an extended std lib with data structs and algorithms as well as a style/practices for everyday use (ie non compiler writers).

i adore C, it was my first language and i still like its simplicity very much. Still, I have come to believe that only strictly vetted licensed people should be allowed to use it :)

discuss

pclmulqdq|3 years ago

There are an incredibly large number of analysis tools for C to check things like memory safety. It doesn't look like they are always used in important code, though.

A lot of memory safety CVEs come down to "we wrote a static analyzer and found a latent memory bug here."

timbit42|3 years ago

Maybe a language with the checking by default in the compiler would be a good idea, like Ada or SPARK.

ilyt|3 years ago

That doesn't stop bugs, that just makes them less likely. VS making them impossible on accident