Span allows undesirable conversions

Question

Span allows undesirable conversions

melak47 opened this issue 4 years ago · 3 comments

Describe the bug
Span<Base> can be constructed from Span<Derived> (or some container of Derived), but iterating over (or indexing) into that Span<Base> will cause undefined behavior if sizeof(Base) != sizeof(Derived).

Expected behavior
The constructors should only allow cv qualifier adjustments, like Span<int> -> Span<const int>, not everything that is permitted by static_cast<pointer>(source.data()).

Answer 1 · 2020-11-08T16:38:39.000Z

Thanks for landing the fix. I'd argue that it should be allowed since we are propagating the behavior of the pointer type

Answer 2 · 2020-11-09T08:13:25.000Z

Hm, maybe the conversion could be made explicit for such cases, rather than disallowed entirely.

Answer 3 · 2020-11-11T23:35:45.000Z

Hm, maybe the conversion could be made explicit for such cases, rather than disallowed entirely.

True true. That makes sense then.
Closing this issue as resolved.