From mboxrd@z Thu Jan  1 00:00:00 1970
X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me
X-Spam-Level: 
X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,FREEMAIL_FROM
	autolearn=ham autolearn_force=no version=3.4.4
X-Google-Language: ENGLISH,ASCII-7-bit
X-Google-Thread: 103376,f039470e8f537101
X-Google-Attributes: gid103376,public
X-Google-ArrivalTime: 2003-07-23 13:33:30 PST
Path: archiver1.google.com!postnews1.google.com!not-for-mail
From: snarflemike@yahoo.com (Mike Silva)
Newsgroups: comp.lang.ada
Subject: Re: Ariane5 FAQ
Date: 23 Jul 2003 13:33:29 -0700
Organization: http://groups.google.com/
Message-ID: <20619edc.0307231233.24f27e91@posting.google.com>
References: <mailman.26.1058753354.24167.comp.lang.ada@ada.eu.org>
 <bfh2gb$eeiv4$1@ID-175126.news.uni-berlin.de>
 <1058810510.375902@master.nyc.kbcfp.com>
 <bfhaed$e786b$1@ID-175126.news.uni-berlin.de>
 <1058813341.841940@master.nyc.kbcfp.com>
 <bfhe55$eqglr$1@ID-175126.news.uni-berlin.de>
 <1058816605.566685@master.nyc.kbcfp.com>
 <bfhjjr$eftm1$1@ID-175126.news.uni-berlin.de>
 <AY0Ta.14787$0F4.7550@nwrdny02.gnilink.net>
 <PmiTa.119324$ye4.85458@sccrnsc01> <1058969472.350716@master.nyc.kbcfp.com>
NNTP-Posting-Host: 154.6.152.68
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
X-Trace: posting.google.com 1058992409 1769 127.0.0.1 (23 Jul 2003 20:33:29
 GMT)
X-Complaints-To: groups-abuse@google.com
NNTP-Posting-Date: 23 Jul 2003 20:33:29 GMT
Xref: archiver1.google.com comp.lang.ada:40725
Date: 2003-07-23T20:33:29+00:00
List-Id: <comp.lang.ada>

Hyman Rosen <hyrosen@mail.com> wrote in message news:<1058969472.350716@master.nyc.kbcfp.com>...
> 
> I'm not saying that the Ariane 4 people did anything unsuitable for
> the Ariane 4. But doing it this way made the code brittle.
> The investigation board said
>     "No reference to justification of this decision was found
>      directly in the source code. Given the large amount of
>      documentation associated with any industrial application,
>      the assumption, although agreed, was essentially obscured,
>      though not deliberately, from any external review."
> 
> This is exactly the kind of coding practice that leads to problems
> like integer overflow, buffer overflow, and Y2K issues. Shortcuts
> are taken in order to optimize a program for local conditions, but
> the dependencies are not communicated properly to people who then
> go on to use the code in situations where the local conditions no
> longer apply.

So you are arguing that, lacking written documentation to the
contrary, any piece of code should be assumed capable of handling all
possible input values in a way that is appropriate to all possible
systems in which the code is employed.  Tell me, honestly, would you
fly in a rocket designed under such assumptions?

No matter how many times you argue your case (and you do get points
for tenaciousness!) the fact is that the code did the right thing for
the Ariane-4 system, and the Ariane-5 people had no legitimate reason
to assume that what the code did would also be right in the Ariane-5
system.  As has been pointed out, there were other portions of the
(correct) Ariane-4 software which were also used without legitimate
justification in the -5, and would probably also, in their turn, have
destroyed the -5.