I can bit-blast it into a buffer. But how can I bit-blast it out of a
buffer?

struct X { const int val; };

// this is all well and good
alignas(X) char buffer[sizeof(X)];
new (buffer) X{42};
::send(buffer, sizeof(buffer));

alignas(X) char recv_buffer[sizeof(X)];
::recv(recv_buffer, sizeof(recv_buffer));

// can't do this
X x; // nope
memcpy(&a, recv_buffer, sizeof(a));

// this is UB
X b(*reinterpret_cast<X const*>(recv_buffer));

// this is well-defined yet totally unmaintainable
int v;
memcpy(&v, recv_buffer, sizeof(v));
X c{v};

There's no question of doubting or not doubting. The question is "does
static_cast create an object?" Because that's what you seem to want.

If that's what you want, then *say that*. That's what I'm talking about
with "inferring;" it's nonsense. Either performing an operation creates a
*specific* object or it doesn't. If it does, then we need to know exactly
which operations should be creating exactly which objects and under exactly
which circumstances.

Without that, you can't have a specification.
Again, there's this pointless question of doubting or not doubting. C++ is
very clear here: if your `allocate` function did indeed return an `S`
object, then your code works. If it did not return an `S` object, then you
get UB.

Doubt is not in question; the compiler is doing what it was told: if there
was no object there, then you get UB.

The problem being discussed in this thread is when *there is no object
there*. When there is merely a collection of bits that might form that
object, but no object actually exists there yet. No object has been started
in accord with the rules of [intro.object]/1.

Pretending that there is an object somewhere when there isn't is UB.

The only way to make that code legal, while still having a memory model
that is coherent, is to have one of the operations in that code actually
create the object.

So which operation should it be?
Which POD? If I call `malloc`, which POD did it create? It cannot
simultaneously create all PODs. So which one was it?

Because if you cannot answer that question, then you have a dysfunctional
memory model. We cannot have a Schrodinger's Cat memory model, where the
memory contains some quantum state object that is all POD types
simultaneously until you first look at it.
Initialization is irrelevant. Objects can be created without initializing
them; trivial default constructors do it all the time.

What matters is when an object is *created*.

Now, the lifetime can end if you repurpose the storage by memcpy'ing
But it doesn't provoke UB; [expr.static.cast]/13 says so. It's accessing
data through that pointer that provokes UB. So such "UBSan" are wrong.
The compiler most certainly can prove that malloc did not create an object
of type `S`. Because `std::malloc` is not specified to create an object of *any
type*; it merely allocates memory. As such, the compiler is free to assume
that the memory `std::malloc` returns has no objects in it.
Please read [intro.object]/1. The two pieces of code are not identical. No
matter the fact that `new(ptr) S` will be a no-op for real-life compilers,
it still *does something*. It creates the object. Without that line, you
have storage that contains no objects.

Finally, since the default ::operator new function just calls malloc, it's
It proves no such thing. Given sufficient power and inlining, the compiler
can recognize that you're calling `std::malloc`, which as defined by the
standard does not create an object. The compiler can see that `allocate`
also does not create a C++ object. Therefore, the compiler has all the
information to know that, if you don't create an object in that memory
yourself, then trying to access it will invoke UB. And therefore, the
compiler is technically free to wipe out any of those operations that don't
have side-effects. For example:

auto ptr = allocate();
auto s_ptr = static_cast<S*>(ptr);
s_ptr->i = 5;

Memory allocation has side-effects, so they can't be wiped out. But the
third line could be freely ignored by a really smart compiler, because it
knows that there is no `S` object there.

Now granted, I have no idea why someone would write a compiler that does
that. If `allocate` did indeed create an `S` object, then the compiler
would compile the code as normal. And if `allocate` doesn't create an `S`
object... what would be the point of removing the third line? The user may
have provoked UB, but you're not saving any performance in a well-defined
program.

But the fear some people have on this thread is that the C++ memory model
permits the compiler to throw out such code. And therefore, should be
"fixed"... somehow.

There is already a mechanism in the language syntax for interoperability
with C.

extern "C" { // <-- this!

Struct Bar { double d; }
struct Foo { int bar_count; Bar[] bars }; // this is clearly an object
that C can initialise
Foo* makeFoo(); // make a foo with a number of Bars. N will be 1+
destroyFoo(Foo*);
};

// this should be predictable and correct in the standard
auto pfoo = std::unique_ptr<Foo, void(*)(Foo*)>(makeFoo(), &destroyFoo);
auto first = pfoo->bars;
auto last = first + pfoo->bar_count;
doBarThings(first, last);

As the standard is currently worded, this code is UB. That's unacceptable.

Only if you enjoy complicating your life.
behavior, but a lot of code relies on C-isms, so compilers aren't free to
discard them or do anything about them. The solutions being tossed about
here are that we should make them well-defined behavior.

The problem is that intrinsic types are not objects, and neither are PODs.
To treat them the same is counter-factual. aligned memory is inherently a
union of all PODs that will fit. Make it so in the standard. End the
argument forever.

This makes the C++ behaviour the same as C behaviour when intrinsics and
PODS are mapped onto memory. It's logical, everyone does it anyway, and
it's never going away in gcc or clang. End of problem. Lets get on with
something new.
pointer casting and so forth, we make C++ equivalents. Placement `new` is
one such C++-ism which allows the creation of C++ objects in arbitrary
memory. But we can add many more.

NO - because that just adds more useless work for programmers. It's the
reverse of what *auto* does - which is make life easier and better. Useless
work like having to formally introduce storage (which is what you're
suggesting) is what COBOL and Pascal did. They're dead now. Let's not do
that.
code and use that as a C++ object which is compatible with the layout of
that memory, lets provide them with a function that does that. If people
need a way to initialize an object directly from compatible data externally
provided, let's provide them a way to do that. Let's take all of the useful
C-isms and provide C++ ways to do them, rather than promoting pointer
casting and whatnot as good code.

No need for any of that. It already happens in gcc. gcc *is* the standard.
The ISO standard needs to catch up.