Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

isn't C++ more like "once it compiles, it works, but later you discover 10 places where it segfaults"?


This really depends on your development style and experience, but not in general, no.


Yep. It's why Mozilla invented Rust in first place.


Kinda yeah, but more worryingly, 10 years later you discover it had an exploitable buffer overflow vulnerability the whole time. Now you have no idea who else has known about it, how long they've known, what systems they've compromised in what way using it, etc.


That is how the propaganda goes. But in modern C++ style, memory errors just don't have many opportunities to happen. I.e., with the more powerful libraries C++14 and up enables, there is little temptation to drop to a risky level. And, anywhere you choose to, you can give it your full attention.

So, overwhelmingly the bugs you do get are specification bugs: the code does what was asked, but the ask was wrong. The only way to avoid those is to pay attention. Anything that steals attention generates them, in C++ as in Rust.

Old, pre-C++11 codebases (and codebases still written that way, or in C-with-classes style) suffer more. Mozilla and Google have a lot of old code.


You can down-vote all you like, but it remains true all the same.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: