Perhaps because C wasn't designed for it, and was designed only as a low-level language?
For C++, on the other hand, it might be possible and/or worth it, since it is a higher level language.
Type: Posts; User: Elysia
Perhaps because C wasn't designed for it, and was designed only as a low-level language?
For C++, on the other hand, it might be possible and/or worth it, since it is a higher level language.
What? Preprocessor? How?
Eh, but I'd rather like functions that tells me of overflows instead of me having to test for them.
And virtual machines are slow -_-
Buffer size is (usually) easy to get right, however, if that's any consolidation. I think it's better than nothing. But they could be better, yes.
As for /analyze:
:(
That seems stupid. I only...
Catching buffer overflows is very, very useful too. And it's part of strcpy_s, strcat_s, among others.
And not just security applications, but any desktop (ie PC/Mac) application.
I would dearly love them to be part of the new standard. Clearly, a good thing would be for the standard to add them and deprecate the old functions, meaning that in new projects, the new functions...
I am with Microsoft on this boat, however.
This did it quickly - added what the industry needed.
Now, they can try to continue persuading the ones in charge of the standard later in hopes of...
Well, wow. All I can say is that Microsoft do make buggy software.
Thankfully, I don't have 2003 anymore.
I find it annoying that no-one uses the safer versions and sticks to old, messy crap...