First I was thinking this is a prank / fake news, because I never heard of governments telling developers what to do, but the linked PDF is hosted on whitehouse.gov, so it’s real 👀 Thanks for sharing. Let’s see what my colleagues working on older C++ products think of this. 😬

"Recent studies from Microsoft and Google have found that about 70 percent of all security vulnerabilities are caused by memory safety issues."

And I have no problem to believe that.

The problem is that memory safety issues are a known issue. I'm sure newer languages (Rust, etc...) will develop their own set of issues that are currently unknown. And then the cycle continues...

The famous talks of Robert C. Martin about Clean Code always started with words about how we as developers need to craft better software or else governments will step in and regulate our space (like they do with banking, stocks, etc.). As I never saw governments doing such a thing before this feels big to me. Now they „urge“. The next step is to prohibit. 👀

Microsoft would have to break their "backward compatibility" promise if they tried to convert Windows OS into Rust.

Microsoft becomes more and more Apple anyways 🤷‍♂️

Some developers are like "Sorry, my hand-tied with the project manager decisions"

Robert’s talk is quite funny. „Why did you let happen the death of 10000 people?“ - „My boss told me it had to be done on Tuesday.“ 😂 This line always gets me. He has a point. I’m a big fan of clean architecture and clean code.

lol

Steve Ballmer, the monkey boy 🦧

by that time, they would join union

?

Software Developer didn't have own union

What Union? What is that? I think you lost me there.

if they tried to regulate developers, more would quit without proper benefits

What benefits? I can’t follow you. You see that they now start to regulate… the White House is urging developers do drop C and C++ with the next likely step of prohibiting it. One day you can’t write software for controlling banking, cars or aircraft’s in C, because it will be illegal. What Robert said 2019 slowly starts to become real. Listen to the talk I linked above.

🙄 both NIST and the DoD have been making similar recommendations for a while now, please reevaluate what "regulation" really means. https://www.nist.gov/itl/ssd/software-quality-group/safer-languages https://media.defense.gov/2023/Dec/06/2003352724/-1/-1/0/THE-CASE-FOR-MEMORY-SAFE-ROADMAPS-TLP-CLEAR.PDF

🙄 both NIST and the DoD have been making similar recommendations for a while now, please reevaluate what "regulation" really means.

I understand that we are now in the recommendation phase. As I said this is one step before a regulation. Regulation of course means actual laws.

No one can say for sure what the future holds, but I highly doubt the US government would ever regulate what programming languages could be used across the board. Maybe I could see them doing that within governmental agencies, but even that is a stretch, because they only can mandate that for federal agencies, and there isn't enough understanding about the issue at the higher levels that would cause this to get mandated. And let's be honest. If something like this was ever imposed on the industry at large in the US, there would be lawsuits bogging it down in court instantly, and for a long time 😅

Yes, but’s a language allowing to make some kind of errors that are impossible to make in other languages. That’s why they „urge“.

There's no such thing as a language where it's impossible to make dangerous errors. Like I said above using Rust as an example, we might not even know what those are yet, which I think is more dangerous than a known issue.

Yes, there may be not. But honestly, we all know that C code is prone to such security problems. I‘m on Robert C. Martins side. An accident big enough needs to happen and regulations will follow.

A lot is made of "memory safety" without thinking in detail about what it means, but instead trashing C++ in favour of languages with garbage collection, thinking that that somehow makes applications "memory safe". What does that even mean? Typical problems with memory safety: • Failing to free memory, resulting in memory leaks -> Java and Kotlin are not immune to memory leaks either, due to inadvertently holding on to objects that are no longer needed. • Accessing memory beyond the bounds of an array -> We also have ArrayIndexOutOfBoundsException, so no, there's not much of an advantage here. (Admittedly, throwing AIOOBE is safer than C++'s "undefined behaviour", but only if you do something sensible with the exception.) • Having to manage memory manually -> On the JVM memory is managed by the runtime, but actually, memory is not the only resource. There is no garbage collector for InputStreams, OutputStreams and other Closeables, for example. Yes, we have try-with-resources and .use {}, but so does C++ with its destructors and RAII. In both cases, we programmers have to consiously use them. So calling Java and Kotlin "memory safe" is a bit of a relative term.

I guess it's more about possible attack vectors / vulnerabilities like overwriting values from other apps by overflow and such things. Less about memory leaks. The paper seems to have a focus on security, not performance.

JVM does use C++. Java makes everything as a pointer. All it did was hide it from you.

Indeed. I suspect also other languages to use C++ under the hood. To C# as a former Java clone the same may apply. And the python interpreter may also be implemented in C. I believe their point is not to prohibit everything made with C, but to encourage using higher level languages that make security issues due to errors in memory handling less likely. We all know that this is hard and can easily lead to errors. That’s why GC was invented. Rust may have other issues, but as far as I understand it doesn’t have this. If it turns out that there is a big issue elsewhere whatever comes after Rust will fix it. Ultimately we will have a language without all that big flaws. That’s evolution. Looks like the White House wants to speed up that process a bit.

According to Google, Clang is going to try the experimental flag for the borrow checker. https://docs.google.com/document/d/e/2PACX-1vSt2VB1zQAJ6JDMaIA9PlmEgBxz2K5Tx6w2JqJNeYCy0gU4aoubdTxlENSKNSrQ2TXqPWcuwtXe6PlO/pub