FRESH

Hacker News

Hardening the C++ Standard Library at scale

155 points by ndesaulniers

by Panzerschrek

4 subcomments

by xiphias2

1 subcomments

It's great that finally bounds checking happened in C++ by (mostly) default.
The only thing that's less great is that this got so much less upvotes than all the Safe-C++ languages that never really had the chance to get into production in old code.

by BinaryIgor

4 subcomments

Interesting how C++ is still improving; seems like changes of this kind my rival at least some of the Rust use cases; time will tell

by fweimer

1 subcomments

How does this compare to _GLIBCXX_ASSERTIONS in libstdc++ (on by default in Fedora since 2018)?

by ris

0 subcomment

See also the "lite assertions" mode @ https://gcc.gnu.org/wiki/LibstdcxxDebugMode for glibc, however these are less well documented and it's less clear what performance impact these measures are expected to have.

by tialaramex

3 subcomments

> those that lead to undefined behavior but aren't security-critical.
Once again C++ people imagining into existence Undefined Behaviour which isn't Security Critical as if somehow that's a thing.
Mostly I read the link because I was intrigued as to how this counted as "at scale" and it turns out that's misleading, the article's main body is about the (at scale) deployment at Google, not the actual hardening work itself which wasn't in some special way "at scale".

by dana321

1 subcomments

by semiinfinitely

0 subcomment

by fighterhao

0 subcomment

by on_the_train

4 subcomments

std::optional is unsafe in idiomatic use cases? I'd like to challenge that.
Seems like the daily anti c++ post