"do no harm"

a philosophical addition
This commit is contained in:
Bjarne Stroustrup 2016-04-16 20:23:44 -04:00
parent 111dcfada1
commit d76d8c31ef

View File

@ -1,6 +1,6 @@
# <a name="main"></a>C++ Core Guidelines # <a name="main"></a>C++ Core Guidelines
April 7, 2016 April 17, 2016
Editors: Editors:
@ -222,6 +222,14 @@ The rules are not value-neutral.
They are meant to make code simpler and more correct/safer than most existing C++ code, without loss of performance. They are meant to make code simpler and more correct/safer than most existing C++ code, without loss of performance.
They are meant to inhibit perfectly valid C++ code that correlates with errors, spurious complexity, and poor performance. They are meant to inhibit perfectly valid C++ code that correlates with errors, spurious complexity, and poor performance.
The rules are not perfect.
A rule can do harm by prohibiting something that is useful in a given situation.
A rule can do harm by failing to prohibit something that enables a serious error in a given situation.
A rule can do a lot of harm by being vague, ambiguous, unenforcable, or by enabling every solution to a problem.
It is impossible to completely meet the "do no harm" criteria.
Instead, our aim is the less ambitious: "Do the most good for most programmers";
if you cannot live with a rule, object to it, ignore it, but don't water it down until it becomes meaningless.
## <a name="SS-force"></a>In.force: Enforcement ## <a name="SS-force"></a>In.force: Enforcement
Rules with no enforcement are unmanageable for large code bases. Rules with no enforcement are unmanageable for large code bases.