Comment by throwawaymaths

1 day ago

thats fine. you dont need to run static analysis on a quick program that you yourself write that, say, downloads a file off the internet and processes it, and you're the only consumer.

or a hpc workload for a physic simulation that gets run once on 400,000 cores, and if it doesnt crash on your test run it probably won't at scale.

if youre writing an OS, you will turn it on. in fact, even rust ecosystem suggests this as a strategy, for example, with MIRI.

8 comments

throwawaymaths

solidsnack9000 1 day ago

Are you going to write a "quick program" in C, though? That is what we are comparing to, when we consider kernel development.

I wouldn't argue that Rust is a good replacement for Makefiles, shell build scripts, Python scripts...

An amazing thing about Rust, though, is that you actually can write many "quick programs" -- application level programs -- and it's a reasonably good experience.

throwawaymaths 1 day ago
> Are you going to write a "quick program" in C, though?
of course not, for kernel development. and in those cases, you WILL statically analyze.
- solidsnack9000 1 day ago
  
  But then what is the disagreement here, with regard to Rust and kernel development?

steveklabnik 1 day ago

(Miri is not static analysis)

throwawaymaths 1 day ago
thats besides the point. its a unit outside of the compiler that exists to give you extra safety checks.
- steveklabnik 1 day ago
  
  Yes, I do agree that it doesn't change the shape of things, I was just trying to clarify a little detail, not say that you're incorrect. I have my own feelings about this but they're not super straightforward.
  
  1 reply →