Tweet
Originally posted by pal666
View Post
-
Underflow is also a type of overflow. -
antifeatures yay! instead of spending time trying to figure out how to hold everyones hand and make code slower, please stay focused on actual features like improving codegen.
if someone wants their hand held thats fine, they can use rustComment
-
I am dismayed that I cannot make GCC or Clang emit a warning for this code. I was sure that any compiler would complain about mixed unsigned/signed arithmetic, but apparently I was wrong.Originally posted by doom_Oo7 View PostComment
-
yes, you are wrong. result wouldn't change if you replace 1 with 1u. compilers warn on mixed signedness comparison, but obviously only when it could matter(not when positive signed literal is promoted to unsigned)Originally posted by bluescarni View PostComment
-
You are right, but it is not about changing the result, it is about triggering an implicit integral conversion that changes signedness of one of the operands. Whether you are doing a == b or a + b, when sign-changing implicit integral promotion triggers I'd like the compiler to unconditionally warn me. I am just surprised that this option is not available.Originally posted by pal666 View PostLast edited by bluescarni; 25 September 2021, 04:22 PM.Comment
-
it will be wall of noise in most programs. in places where you are concerned with promotions, you can use zero overhead abstraction in c++ which will do as you want. i know there are coding styles prohibiting promotions, maybe there are some accompanying tools, but it doesn't look practical. for solving out-of-bounds access issues it's much simpler to use .at(), or gsl::at()Originally posted by bluescarni View PostLast edited by pal666; 25 September 2021, 04:30 PM.Comment
-
Would be better if one could enable such warnings on say just size_t since that is more likely to be used for only buffer lengths than random unsigned integer.Originally posted by carewolf View PostComment
-
And apparently GCC turned down adding such an option back in 2019 https://gcc.gnu.org/bugzilla/show_bug.cgi?id=91547#c1Originally posted by ddriver View PostComment
-
That's not a proper solution, if vec has more than SSIZE_MAX (but less than SIZE_MAX) elements.Originally posted by pal666 View Post
The only proper way is `if (vec.size() == 0) { /* just don't do this (and any subsequent code that would depends on any particular 'result' */ } else { result = vec.size() - 1; }`Comment
-
your example is unrealistic, there are no vectors with 2^63 elements. proper size is signed(its unsignedness is just historic baggage). btw your solution is broken with - 2 and any other number.Originally posted by uxmkt View PostComment
Comment