lysdexic

@ lysdexic @programming.dev

Posts

439
Comments

601
Joined

3 yr. ago

Moderating

C++ programming.dev

Node.js programming.dev

Cloud programming.dev

Data Structures and Algorithms programming.dev

lysdexic @programming.dev 2y ago

But in my humble opinion, those projects shouldn’t really exist.

What's the point of your opinion if not only do these projects exist but they are also pervasive?

You cannot wish things away and pretend reality is something different.

devblogs.microsoft.com /oldnewthing/20240325-00/

2y ago

Why isn't C++ using my default parameter to deduce a template type? - The Old New Thing

Programming @programming.dev

www.joelonsoftware.com /2000/04/06/things-you-should-never-do-part-i/

2y ago

Things You Should Never Do, Part I (2000)

2y ago

C can be memory-safe (2023)

https://www.joelonsoftware.com/2000/04/06/things-you-should-never-do-part-i/

The problem isn’t a principle of a computer science, but one of just safety.

I think you missed the point entirely.

You can focus all you want in artificial Ivory tower scenarios, such as a hypothetical ability to rewrite everything from scratch with the latest and greatest tech stacks. Back in the real world, that is a practical impossibility in virtually all scenarios, and a renowned project killer.

In addition, the point stressed in the article is that you can add memory safety features even to C programs.

Also, who said this is a principle of computer science?

Anyone who devotes any resource learning software engineering.

Here's a somewhat popular essay in the subject:

2y ago

GitHub - nvm-sh/nvm: Node Version Manager - POSIX-compliant bash script to manage multiple active node.js versions

I never used this app but it looks like it just does what nvm already does. What exactly makes n more elegant than nvm?

From what I'm seeing, n drops the ball on Windows support, which nvm handles well.

Node.js @programming.dev

2y ago

GitHub - nvm-sh/nvm: Node Version Manager - POSIX-compliant bash script to manage multiple active node.js versions

github.com /nvm-sh/nvm

2y ago

C can be memory-safe (2023)

lysdexic @programming.dev 2y ago

I think this can be explained by underlining the differences between could, would, and should.

The blog states the fact that at least some C compilers already offer the necessary and sufficient tools that characterize "memory-safe" languages, and proceeds to illustrate examples. This isn't new. However, just like "memory-safe" languages enforce narrow coding styles through a happy path that is expected to prevent the introduction of some classes of vulnerabilities, leveraging these compiler features in C projects also requires the same type of approach.

This isn't new or unheard of. Some C++ frameworks are also known for supporting their own memory management and object ownership strategies, but you need to voluntarily adhere to them.

getdeploying.com /reference/data-egress

2y ago

Data Egress: What is it and how much does it cost?

Node.js @programming.dev

gist.github.com /Widdershin/98fd4f0e416e8eb2906d11fd1da62984

2y ago

The absurd complexity of server-side rendering

C Programming Language @programming.dev

blog.erratasec.com /2023/02/c-can-be-memory-safe.html

2y ago

C can be memory-safe (2023)

Data Structures and Algorithms @programming.dev

jakelazaroff.com /words/an-interactive-intro-to-crdts/

2y ago

An Interactive Intro to CRDTs

Data Structures and Algorithms @programming.dev

alyssaq.github.io /stl-complexities/

2y ago

C++ STL Complexities

alyssaq.github.io /stl-complexities/

2y ago

C++ STL Complexities

lemire.me /blog/2024/03/22/passing-recursive-c-lambdas-as-function-pointers/

2y ago

Passing recursive C++ lambdas as function pointers – Daniel Lemire's blog

stormatics.tech /alis-planet-postgresql/transitioning-from-heroku-postgresql-to-aws-ec2-step-by-step-guide

2y ago

Transitioning from Heroku PostgreSQL to AWS EC2: Step-by-Step Guide

herbsutter.com /2024/03/22/trip-report-winter-iso-c-standards-meeting-tokyo-japan/

2y ago

Trip report: Winter ISO C++ standards meeting (Tokyo, Japan)

docs.aws.amazon.com /AmazonS3/latest/userguide/optimizing-performance-design-patterns.html

2y ago

Performance Design Patterns for Amazon S3

2y ago

C++ creator rebuts White House warning

C++ can be written to be safe. I don’t think WH is the right authority to issue this warning. Naming C++ rather than going after specific features is unfair.

I suspect that the white house just received a report from some people in the industry stating that faulty software is vulnerable to attacks from bad actors, and from that basis they just went the simplistic path of arguing that 1) lots of software is written in C++, 2) that software has bugs, therefore if we don't use C++ then we won't have bugs.

As a branch of government, their role is not to evaluate technical merits of proposals but to hear what their representatives have to say.

2y ago

C++ creator rebuts White House warning

lysdexic @programming.dev 2y ago

Honestly his defence is rather weak. “It’s been improving and there are ways to use it safely.”

I think it's a very good and clear point to make.

Some programming languages are blindly deemed "safe" in spite of supporting unsafe memory management strategies, and somehow not enforcing those rules does not render them unsafe.

Why is this logic not applied to C++?

2y ago

C++ creator rebuts White House warning

lysdexic @programming.dev 2y ago

The time for the c++ committee to show they can overcome the language’s issues has passed IMHO there are much better, and more expressive, alternatives.

I'm not sure if this is a good take.

Languages deemed "safe" boil down to two features: supporting specific memory management strategies, and adding static code analysis checks that enforce rules and best practices.

Can't this be done already without involving committees?

2y ago

Permanently Deleted

lysdexic @programming.dev 2y ago

Even following the guidelines, modern C++ is just a huge pile of half-finished ideas.

You're making it pretty clear that you are completely oblivious to what C++ is, what are the differences between C++ versions, and what are the real world issues solved by each new version.

I would ask you to clarify your persona clams by providing a concrete example to back each of your statements, but I know you have none.

2y ago

Permanently Deleted

lysdexic @programming.dev 2y ago

Well ok, but the concern is about the weaknesses, Mr. Stroustrup.

I don't think these discussions on "weaknesses" come from a place of intelectual honesty. None of these arguments even touches the fact that there are already a myriad of freely available static code analysis tools and memory profilers that do a very good job catching memory safety issues.

For some unexplainable reason, these criticisms of C++ always focus on a single strawman: these tools do not exist and no developer in the world cares about the topic.

2y ago

Permanently Deleted

lysdexic @programming.dev 2y ago

So how fucked am I for starting to learn cpp as my first language, or is this a later down the road thing to worry about?

I don't see why you should be concerned, except that no professional software developer is limited to use one specific programming language.

Even if you pay attention to the disaster prophets in the crowd, which are mainly comprised of fanboys implicitly and explicitly promoting their pet language/frameworks, C++ dominates all aspects of the computing ecosystem, which means that in the very least the whole world needs to maintain existing C++ projects to continue to work. See COBOL for reference.

www.infoworld.com /article/3714401/c-plus-plus-creator-rebuts-white-house-warning.html

2y ago

C++ creator rebuts White House warning

2y ago

Redis is no longer OSS

lysdexic @programming.dev 2y ago

Such a braindead exercise to see Redis follow suit

I agree, this sounds like a desperate cash grab.

I mean, cloud providers who are already using Redis will continue to do so without paying anything at all, as they're using stable versions of a software project already released under a permissive license. That ship has sailed.

Major cloud providers can certainly afford developing their own services. If Amazon can afford S3 and DynamoDB, they can certainly develop from the ground up their own Redis-like memory cache. In fact, Microsoft already announced Garnet, which apparently outperforms Redis in no small way.

So who exactly is expected to pay for this?

2y ago

Redis is no longer OSS

lysdexic @programming.dev 2y ago

${CORPORATION} has profited off of Redis without giving much back (...)

I don't understand this blend of comment.

If you purposely release your work as something anyone in the world is free to use and change to adapt to their own personal needs without any expectation of retribution or compensation, why are you complaining that people are using your work without any retribution or compensation?

More to the point, why are you singling out specific adopters while leaving out the bulk of your community?

It makes absolutely no sense at all.

redis.com /blog/redis-adopts-dual-source-available-licensing/

2y ago

Redis Adopts Dual Source-Available Licensing

Java @programming.dev

openjdk.org /projects/jdk/22/

2y ago

JDK 22 released

2y ago

Safety, Revisited

lysdexic @programming.dev 2y ago

This sounds like it would be hotly disputed by almost anyone you said it out loud to, even if you said it 40 years ago.

I think you're expressing uninformed and uneducated opinions.

Even Debian's computer language benchmarks game showcases C consistently outperforming Rust, with some notable exceptions in some key benchmarks.

And Rust was not a thing 40 years ago.

Anyway, I think I proved my point with regards to the silly idea that performance is a decisive trait. You cannot have your cake and eat it, too.

beta.boost.org /doc/libs/1_55_0/libs/geometry/doc/html/geometry/design.html

2y ago

Boost geometry: design rationale

www.cloudcomputing-news.net /news/2024/mar/14/half-of-emea-cloud-costs-going-to-fees-but-most-plan-to-increase-capacity/

2y ago

Half of EMEA cloud costs going to fees, but most plan to increase capacity

Data Structures and Algorithms @programming.dev

www.baeldung.com /cs/skip-lists

2y ago

The Skip List Data Structure | Baeldung on Computer Science

2y ago

Safety, Revisited

lysdexic @programming.dev 2y ago

While I can agree we don’t have sufficient data to make hard conclusions on this front, I think there are enough early indications that point to Rust being able to stay on par with or even outperform C++ in this regard:

I'm skeptical of these claims, not because X or Y is better or worse, but because milking the last drop of performance has far more to do with software architecture than it has to do with the programming language per se.

Also, I think this sort of argument always leads to specious reasoning. C is the undisputed performance lead, and you surely do not see Rust proponents using benchmarks to argue they should rewrite all Rust code in C.

2y ago

Safety, Revisited

lysdexic @programming.dev 2y ago

What I find surprising is that there are a lot of steps between a free-for-all and state intervention through regulation that those experts seemed to have skipped altogether, such as voluntary auditing, state-sponsored industry initiatives to specify best practices, invest in the development of static analysis tools and memory profilers, or making vulnerable companies liable for the consequences of attacks.

But no, they jumped straight into state-imposed regulation. Because keeping people out is a solution?

2y ago

Modern Git Commands and Features You Should Be Using

lysdexic @programming.dev 2y ago

Highly recommended

I agree. Once we get a hang of the value that bisect brings, one unintended consequence is that we start to value atomic commits a whole lot more. There is nothing more annoying than bisecting a bug and suddenly stumbling upon a commit that does it all: updates dependencies, touches everything under the sun, does cleanup commits for unrelated files, etc. Yuck.

2y ago

I've got a domain but whats next?

Does anyone have other ideas?

Being this programming.dev, I feel compelled to suggest self-hosting a Lemmy instance.

The basics would be a simple personal webpage, which you can serve directly with a file server.

I like running syncthing as my personal alternative to Dropbox.

Some registrars like Namecheap offer services such as email rerouting, which gets you to use any custom email address in your domain through Gmail.

Don't pay attention to anyone mentioning CDNs or any nonsense of the sort. If your services aren't expected to serve a lot of traffic of have SLIs to meet, you do not need them. You only need a system with static IP address open to external traffic, and get your domain registrar to resolve a domain/subdomain to that IP address.

Just make sure everything you serve through that domain can be redeployed on a whim. A rarely discussed topic is how the internet is a wild jungle with dozens of vulnerability scanners running around the clock to find any unmaintained server they can exploit. Any server that's not managed by a professional team 24/7 fits that criteria.

2y ago

Does programming.dev have a dilution problem due to too many communities?