The best way to create a string in C# that you shouldn't use

@@Bertiii That's very bad practice, because you are modifying the existing string, ClearValue, which is supposed to be immutable. There are no guarantees that the string instance won't be used again elsewhere in .NET especially in the case where you would perform a hash on that password for storage into a database.

I could not mention every possible way, there are probably 10s of ways to solve the problem and I wanted to show some fairly common ones that everyone would have used. PadRight on string builder will have similar performance as the string builder one

Would be first choice also for me

That approach is awesome to know!I didnt know about PadRight,i like string manipulations in general.ONe error i can see though is you should write Padright(ClearValue.Length-3,'*'); because since your substring is the first three characters the rest of the string is asterisks you should subtract three from the overall original length.

@@nickchapsas oh, no worries, I do understand that ;) I didn't meant to sound like "bUt yOU DiDnT Do THiS or ThAT" i was just surprised that one of the most straightforward (or at least easy to understand imo) wasn't included instead of one of the others. As you've said there's 10s of ways of solving the same problem, so it's good to look at some of them either way. Keep up the good work with the videos ;)

@@ZeroSleap actually, no. PadRight takes final string length as parameter, not amount of symbols to be added.

Yeah I like it! Span is essentially a non-owning, bounds checked pointer.

You can mutate a string even in C# if you really want to (requires enabling unsafe code):
string result = new string('*', original.Length);
fixed (char* mutableString = result)
mutableString[0] = original[0]; // P***********

You can't really append to a c++ std::string without reallocation going on in the background either. You could make a point for realloc, but if the space is no longer available that will fail, besides realloc is much more C then C++, which would use new and delete instead. The advantage is that you can modify already allocated values, but I would argue that string.Create is practically the same here.

@@raphaelbaier6984 It's pretty different. string.Create doesn't allow any mutability either; it just allow you to specify how to fill the initial allocation in a much more flexible way.

SkipLocalsInit requires unsafe code. It is a big no-no. Also, it is not faster.
| Method | Mean | Error | StdDev | Gen 0 | Allocated |
|----------------- |---------:|----------:|----------:|-------:|----------:|
| StackAllocCreate | 9.503 ns | 0.0781 ns | 0.0730 ns | 0.0029 | 48 B |
| MaskStringCreate | 7.846 ns | 0.0701 ns | 0.0655 ns | 0.0029 | 48 B |

hi, may i ask you if you have this code on a public repository just to check it for learning purposes? Or if you have any resources to share about it. Thanks!

@ilh86 Do you have some "getting started with spans" tutorials that you can recommend?

It is not. I am benchmarking it and it is always performing worse with an average of 1 nanosecond slower.

Does it matter tho, Im just asking?

@@rade6063 looks more usable than vs community im using

This is already mentioned in the comments multiple times. It was originally part of the video but it was cut out because I think I’d out of scope. The focus is on the method not the string/char. The char size applies to all of them so they cost equally and they can get sped up equally

Done that already and replied in a different comment. For this size, it saved 1 ns so it wasn’t noticeable

@@nickchapsas No probs.

The default capacity of StringBuilder is 16. So it will not reallocate in this specific scenario. But you can still save 4 bytes by pushing 12 to constructor.

Why would you think it would be slower?

But late to the party, but I think up to 3/4 appends stringbuilder is slightly slower, purely for setting up the string builder in the first place (though the memory is still less). After that it's faster. I wouldn't bother using a sb for two strings for example.
And for specific things like file paths you have methods to deal with those like Path.Join() etc.

it's not emoji but UTF-8, ie up to 4 bytes.
You can't create someting like this:
char x = '😉';
but you can
string y = "😉";
and during debuging there are actually 2 chars in *y* string - 55357 \ud83d and 56841 \uded09 or 0xF09F9889

@@29Aios Alas, even in JavaScript adding the 4-byte characters was a hack. A reminder that you can try to future-proof but you'll fail.

@@BobFrTube Well, there is a problem with dynamic size of UTF-8 chars, span suppose to be used as a constant size

He actually did

Default capacity is 16 so it wouldn't have made much difference (other than allocating 4 less bytes, but it wouldn't have extended the capacity)

@@lucassaarcerqueira4088 should have used new StringBuilder(ClearValue.Length) to initialize to full required size. When just the first 3 characters were used, it would have to grow the space used when appending. I'd need to double check the constructors that there isn't something which allows you to assign the initial string and the length, but it is the resize which takes place that is in question.

PadRight is the second best alongside the CharArray approach at 14ns in terms of speed but allocated less memory than char array at 80B compared to 96B

@@nickchapsas I see, thanks

The whole point is that you should not be passing anything from outside, that's why the length and the initial string are parameters in the delegate in the first place, so they are not captured in closures.

@@nickchapsas Yes, you should not. But you can. If you want to make some computed string and you know the absolute length limit (you can trim the empty space later if it matters) - you might be misled to believe that string.Create would be good for that. I've watched a bit further now and you've actually mentioned closures, so that's on me for my comment eagerness
I've just stumbled upon a similar task that involves string concatenation and considered all the options (remembering this particular video). I'm actually curious now if closures will make it worse than a regular concatenation

string is a class ;-)

This isn’t about the amount of memory. It’s about allocating the memory in the first place. What we re trying to prevent is the GC locking our app to collect memory that we can avoid and ultimately that improves stability and speed. The memory itself isn’t really that much of a problem

Pretty sure this will create a new string per array allocation. Should be as slow as the first one. It’s definitely not better than string builder and below

@@nickchapsas Actually, nevermind... the indexer of a string is actually readonly :facepalm:

But with a small change:
public string StringAsArray() {
char[] pwd = ClearValue.ToCharArray();
for(int i = 3; i < pwd.Length; i++) {
pwd[i] = '*';
}
return pwd.ToString();
}
We get better memory results than StringBuilder.
| Method | Mean | Error | StdDev | Gen 0 | Allocated |
|-------------- |---------:|---------:|---------:|-------:|----------:|
| StringAsArray | 44.61 ns | 0.935 ns | 1.183 ns | 0.0114 | 48 B |

And for completness sake, here are the results for both StringAsArray and StringAsPointer... pretty interesting they both appear to give the (almost) exact same results.
public unsafe string StringAsPointer() {
int len = ClearValue.Length;
fixed(char* pwd = ClearValue) {
for(int i = 3; i < len; i++) {
pwd[i] = '*';
}
return new string(pwd, 0, len);
}
}
| Method | Mean | Error | StdDev | Gen 0 | Allocated |
|---------------- |---------:|---------:|---------:|-------:|----------:|
| StringAsArray | 44.12 ns | 0.976 ns | 1.335 ns | 0.0114 | 48 B |
| StringAsPointer | 44.20 ns | 0.452 ns | 0.423 ns | 0.0114 | 48 B |

@@alcoholrelated4529 Yes, I should have provided a baseline for comparison.
Here are the results for the three test-runs:
| Method | Mean | Error | StdDev | Gen 0 | Allocated |
|----------------- |---------:|---------:|---------:|-------:|----------:|
| StringAsArray | 44.26 ns | 0.963 ns | 1.412 ns | 0.0114 | 48 B |
| StringAsPointer | 39.98 ns | 0.346 ns | 0.324 ns | 0.0114 | 48 B |
| MaskStringCreate | 98.69 ns | 1.081 ns | 0.958 ns | 0.0440 | 184 B |
| Method | Mean | Error | StdDev | Gen 0 | Allocated |
|----------------- |----------:|---------:|---------:|-------:|----------:|
| StringAsArray | 45.67 ns | 0.842 ns | 0.788 ns | 0.0114 | 48 B |
| StringAsPointer | 45.79 ns | 1.012 ns | 1.243 ns | 0.0114 | 48 B |
| MaskStringCreate | 104.77 ns | 2.106 ns | 3.955 ns | 0.0440 | 184 B |
| Method | Mean | Error | StdDev | Gen 0 | Allocated |
|----------------- |----------:|---------:|---------:|-------:|----------:|
| StringAsArray | 44.48 ns | 0.676 ns | 0.600 ns | 0.0114 | 48 B |
| StringAsPointer | 43.52 ns | 0.584 ns | 0.546 ns | 0.0114 | 48 B |
| MaskStringCreate | 101.39 ns | 1.448 ns | 1.355 ns | 0.0440 | 184 B |
I think that StringAsArray is the easiest to implement, and the optimal solution for handling very large strings (not the fastest though).

The chat arrays approach is 16ns. Didn’t add it because it would bloat the video and it’s not as common as the previous ones. Unsafe code was out of the question

@@nickchapsas fits the theme of "the best way you shouldn't use" though :D

Haha true true. Might make another video with unsafe stuff as well. I’m always fascinated by how much you can do with unsafe code in C#

@@nickchapsas safety has a cost... a huge cost, after you have designed, debugged and al..
optimizing with unsafe should bring the most performance, and then you add some unit-test for safety

@@moestietabarnak If I wanted to write unsafe code I'd write C++. This is all within the context of safe code.

var has nothing to do with strong typing. It is type inference. Good naming should make the use of the actual type redundant. If I don’t know what the type is just by looking at the name then I should fix the name not cover up the problem with an explicit type

@@nickchapsas I would prefer "StringBuilder stringBuilder = new(blah)" as it clear from the start what the datatype is with no guessing !

Like I’ve mentioned in the video and in the pinned comment, unsafe methods are out of the question. If unsafe as allowed then there are even faster approaches than this one but it’s not

Actually the second best in my benchmarks in terms of speed and memory. uses span internally.

It also reads incredibly well.. Wonder what the performance is like.

In the first iteration yeah but at this length there is no performance hit. I’ve benchmarked it.

@@nickchapsas Got it. For large strings maybe worth thinking about, but only for the few of us working with large amounts of text :) Thanks for your videos!

Unsafe methods were explicitly out of the video's scope

No but unsafe code is a no-no in several codebases, so this is the closest you can get without unsafe code

No it would be between the new string() and the string.Create

Thank you!

The upper left shows a RD - that has to be 'Rider' provided by jetbrains.

"localize your program at some point" I disagree. You usually know at the very early stage if you're going to localize in the nearest future (2-3 years, maybe even longer for certain apps), if you don't plan for it then it's time and money wasted on futureproofing. If you do plan it, then you have a lot more to consider than simple "use enum instead of string" - fonts that support diacritics, layout (some text in other language may be waaay longer), right to left text,input methods, icons, graphics or even colors (some symbols are offensive in some regions), even complete ui revamp if habits and culture are vastly different and differencent ui could result in better sales.
Not saying simple "string replace" localization is bad, but doing it blindly without thinking of scenarios to cover is definitely not a recommended way

It's between new string and string.create. In my tests it runs at 16ns and 96B of allocated memory. (Not with string builder but new string(charArray)

The reason why this is faster is because in my example I first copy the full string in the span and then overwrite the last characters

I've tested that against already improved version where only 3 chars are copied to the span 'value.AsSpan()[..3].CopyTo(span);' - not sure why doing it manually is faster but it only actually is when copying 3 chars or less... I guess the CopyTo() has better time complexity but with some initial cost.

Have to admit, being able to just access strings as arrays right off the bat in C and C++ is convenient.

The compiler isn’t that smart. It will do what you tell it and in this case, it won’t.

​@@nickchapsas Yeah I guess they thought the benefits are not worth the effort then. Don't have that much knowledge about C# tbh.
Just assumed it because that's what Java does.

Java doesn’t have Span or something equivalent and every string “mutation” is a new allocation so in java the 4th approach doesn’t exist. Do you have a scenario where Java will optimise this?

​@@nickchapsas
String numbers = "";
for(int i = 0; i

Premature optimization quotes are the worst thing that has happened to software engineers.

.NET compiler is not very good at optimizing ;-)
But the main thing is - programmer must know how to optimize too!
Otherwise it's just "monkey coding".

I never heard of a compiler that optimize a bubble sort into a quicksort..or whatever algo... do they now?
-signed Old C programmer

@@moestietabarnak no it not do that much. if i remember correctly i heard that java will auto convert + operator to string builder, so you can use + without performance penalty. (i known that string builder is better, but for me i think + is more readable)

@@mix5003 yup readability trump optimization

The obvious most performant Unsafe approach was one of the things excluded as “acceptable” for this. You’re pinning the string in memory so it’s technically safe but not something that should be used IMO unless the team is heavily using unsafe in other places

I don't find #4 to be unreadable.

Firstly, thumbs up or down, they both count as engagement so thank you!
Now for your points.
1. Why isn't it? Do you have a better approach that isn't using unsafe code? I'd really like to know
2. The ones I didn't explore are not faster. I tried A LOT of them and they are all slower than string.Create. The only faster ones use unsafe code, which is out of the question.
3. Sounds like you are one not understanding heap vs stack. I would really like to know which part is wrong.

@@nickchapsas Well, I really don't want to turn this to a public argument, but for the sake of education (including mine, because I could be wrong and actually learn something from this), let me try to explain myself a bit more. Most of these points were already made by
@Aidiakapi though.
1. string.Create probably is the fastest way without unsafe code and probably just as fast as with (correct) unsafe code - after all, it is designed to be just that. The reason your code is not the most efficient is because you're copying the whole original string into the new string, instead of only the first 3 characters. I know for this sting length the difference is miniscule, but still faster. For huge strings the difference will be noticeable.
2. One variant worth exploring is to use StringBuilder with preallocated length (so only 1 memory allocation is done, no reallocating), then copy the first 3 characters with something like stringBuilder.Append(ClearValue, 0, 3), then add the extra '*' characters using stringBuilder.Append('*', length - 3). This is probably the best we could do in the old days (before string.Create and Span) without unsafe code. It is still slower than string.Create because of the additional memory allocation which will happen on stringBuilder.ToString(), otherwise (before the .ToString()) it should be comparable in performance (as it is literally doing the same thing, just not in the final memory).
3. I am pretty sure all strings reside on the heap. I cannot guarantee (without disassembly) that string.Create doesn't directly allocate heap memory, instead of allocating stack memory and then copying it to a newly allocated heap memory after the delegate is finished, but I don't see why it would - it would only make things worse (less efficient). Imagine you string.Create'd a 100MB string - what would be the point of allocating 100MB of stack memory (which you may not even have), just to copy it later into the heap? And stack memory by itself is not faster than the heap - it is the same kind of memory. Also Span is perfectly capable of "pointing" to heap memory - being ref struct only means that the Span variable itself is always on the stack, not the memory it points to. Think of Span as just a "pointer" and a size, except that "pointer" is a little bit more complicated than a regular unsafe pointer.
One more thing about unsafe code: using it to override the internal buffer of the input string is a very bad idea, because of shared strings, precomputed hash codes, etc. Using it to change the internal buffer of a newly allocated string is still a hack, but apparently it works (and is the best we could do before string.Create and Span). If you think about it, string.Create is just the better (safer) way of doing the same thing - allocate some memory on the heap and let you fill that memory at the correct time (before the string initialization is finshed, not after that), using Span instead of an unsafe pointer.
And one more thing worth mentioning - one has to be careful with the delegate passed as callback - if it uses some local variable from the calling function, it becomes a closure, which means heap allocation and all the efficiency goes out the window. Unless the compiler / JIT does some very clever optimisation, which I doubt. This is why the delegate has a 'state' argument passed to it.

Classic

Someone tried it in the comments. No difference at all but it’s most likely due to the size of the span. If it was a waaaay bigger one it should be faster

You don't have to know all this and you don't have to optimize any of that. You only have to worry about all that when you've optimized everything else in high level and you now need to do microptimizations

I'm sorryu but you have to know how things works or you will be just "monkey coding" :-)

Programming is difficult business. It should never be undertaken in ignorance. - Douglas Crockford

@@MikeWardNet True!
I like C# because it let's you create something useful with very little knowledge. But the more you know - the better your program became.
Same with Python.

Having to keep track of a lot of flags would not make anything simpler. :)