On 24.04.2017 13:33, Ola Fosheim Grøstad wrote:
On Monday, 24 April 2017 at 06:37:40 UTC, Walter Bright wrote:
The trouble is, one cannot look at a piece of code and tell if it
follows the rules or not.
I.e. it's not about it being possible to write memory safe code in C
or C++ (it is), it's about verifying an arbitrary piece of code as
being memory safe.
I don't think D and Rust fare any better than modern C++ as far as
ARBITRARY code goes. Swift and Java does...
Swift allows raw pointer manipulation. Java implementations expose
similar unsafe features. JVMs have bugs. Also, Java's type system is
unsound.
