Skip to content

make buildNormalizedPath() @safe #6357

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
dlang-bot merged 1 commit into from
Mar 28, 2018
Merged

make buildNormalizedPath() @safe #6357

dlang-bot merged 1 commit into from
Mar 28, 2018

Conversation

@WalterBright
Copy link
Member

@WalterBright WalterBright commented Mar 28, 2018

Shrink the @trusted to the smallest bit of the function that needs it. The rest is to follow the convention that result is for the return value.

@dlang-bot
Copy link
Contributor

dlang-bot commented Mar 28, 2018

Thanks for your pull request, @WalterBright!

Bugzilla references

Your PR doesn't reference any Bugzilla issue.

If your PR contains non-trivial changes, please reference a Bugzilla issue or create a manual changelog.

Testing this PR locally

If you don't have a local development environment setup, you can use Digger to test this PR:

dub fetch digger
dub run digger -- build "master + phobos#6357"

@WalterBright WalterBright added the Review:Vision Vision Plan https://wiki.dlang.org/Vision/2018H1 label Mar 28, 2018
@WalterBright WalterBright mentioned this pull request Mar 28, 2018
Closed
aG0aep6G
aG0aep6G reviewed Mar 28, 2018
View reviewed changes
std/path.d Outdated
result = asNormalizedPath(result).array;
return cast(typeof(return)) result;
auto result = asNormalizedPath(chained).array; // .array returns a copy, so we know it is unique
return () @trusted { return assumeUnique(result); } ();
Copy link
Contributor

@aG0aep6G aG0aep6G Mar 28, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I realize that this has become an accepted way to do @trusted. But I think it actually goes against the idea behind it.

The @trusted snippet doesn't ensure safety by itself. It relies on the rest of the code not messing with result. That means, you can trigger undefined behavior by editing @safe code. Exactly what should not be possible.

Copy link
Member Author

@WalterBright WalterBright Mar 28, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good point.

@wilzbach wilzbach mentioned this pull request Mar 28, 2018
Closed
quickfur
quickfur reviewed Mar 28, 2018
View reviewed changes
std/path.d
return cast(typeof(return)) result;
auto result = asNormalizedPath(chained);
// .array returns a copy, so we know it is unique
return () @trusted { return assumeUnique(result.array); } ();
Copy link
Member

@quickfur quickfur Mar 28, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hmm. If .array returns a unique array, how come the compiler can't infer it? I would have thought that it should be inferred as pure, and the compiler would have been able to implicitly convert it to immutable without a @trusted escape.

Copy link
Member Author

@WalterBright WalterBright Mar 28, 2018

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pure isn't enough to infer the result is immutable.

@dlang-bot dlang-bot merged commit 012395e into dlang:master Mar 28, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@quickfur quickfur quickfur left review comments

@CyberShadow CyberShadow Awaiting requested review from CyberShadow CyberShadow is a code owner

@kyllingstad kyllingstad Awaiting requested review from kyllingstad

+3 more reviewers

@aG0aep6G aG0aep6G aG0aep6G left review comments

@JackStouffer JackStouffer JackStouffer approved these changes

@wilzbach wilzbach wilzbach approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

Merge:auto-merge Review:Vision Vision Plan https://wiki.dlang.org/Vision/2018H1

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@WalterBright @dlang-bot @quickfur @JackStouffer @wilzbach @aG0aep6G