From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me X-Spam-Level: X-Spam-Status: No, score=-1.3 required=5.0 tests=BAYES_00,INVALID_MSGID autolearn=no autolearn_force=no version=3.4.4 X-Google-Language: ENGLISH,ASCII-7-bit X-Google-Thread: fac41,2c6139ce13be9980 X-Google-Attributes: gidfac41,public X-Google-Thread: f43e6,2c6139ce13be9980 X-Google-Attributes: gidf43e6,public X-Google-Thread: 103376,3d3f20d31be1c33a X-Google-Attributes: gid103376,public X-Google-Thread: 1108a1,2c6139ce13be9980 X-Google-Attributes: gid1108a1,public From: Joachim Durchholz Subject: Re: Safety-critical development in Ada and Eiffel Date: 1997/07/20 Message-ID: <33D24C91.C9730CBA@munich.netsurf.de>#1/1 X-Deja-AN: 258449283 References: <33CD1722.2D24@calfp.co.uk> X-Priority: 3 (Normal) Organization: ccn - computer consultant network GmbH Newsgroups: comp.object,comp.software-eng,comp.lang.ada,comp.lang.eiffel Date: 1997-07-20T00:00:00+00:00 List-Id: Robert Dewar wrote: > The idea that REMOVING the evaluation of boolean expressions > completely > is semantically neutral is also completely bogus. That's a bit strong. > Such removal can > affect > Icache locality of the code that is left, again affecting timing, OK. Is an issue for real-time software where code timing is important. I'm somewhat astonished that such code is still written (the last time I saw this done was on a C64), but then I'm not in the hard RT field. > and > can > also result in code being at different locations, resulting in > differences > of behavior with unbounded consequences. Now *that* sounds bogus to me. The code should execute in exactly the same way, wether assertions are turned on or off. If you don't have enough confidence in the compiler to generate code that runs correctly, why do you use a compiler at all? Yes I know compilers are buggy. Assertions within the compiler's source code should help, but I also know this still cannot *guarantee* correctness. But claiming "differences of behaviour with unbounded consequences" overdoes it. Regards, Joachim -- Please don't send unsolicited ads.