From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=ham autolearn_force=no version=3.4.4 X-Google-Language: ENGLISH,ASCII-7-bit X-Google-Thread: 103376,85034d1ac78a66eb X-Google-Attributes: gid103376,public X-Google-ArrivalTime: 2002-02-23 11:01:42 PST Path: archiver1.google.com!news1.google.com!newsfeed.stanford.edu!news-spur1.maxwell.syr.edu!news.maxwell.syr.edu!newsfeed.cwix.com!newsfeed1.cidera.com!Cidera!cyclone.socal.rr.com!cyclone3.kc.rr.com!news3.kc.rr.com!typhoon.san.rr.com!not-for-mail Message-ID: <3C77E71C.68412C65@san.rr.com> From: Darren New X-Mailer: Mozilla 4.77 [en] (Windows NT 5.0; U) X-Accept-Language: en MIME-Version: 1.0 Newsgroups: comp.lang.ada Subject: Re: Ada Operating System References: <5Tzc8.111999$H37.15018616@news2-win.server.ntlworld.com> <3C73F480.5010806@mail.com> <9ff447f2.0202220108.7f14c9bc@posting.google.com> <9ff447f2.0202222044.78c44b25@posting.google.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Date: Sat, 23 Feb 2002 19:01:55 GMT NNTP-Posting-Host: 66.75.151.160 X-Complaints-To: abuse@rr.com X-Trace: typhoon.san.rr.com 1014490915 66.75.151.160 (Sat, 23 Feb 2002 11:01:55 PST) NNTP-Posting-Date: Sat, 23 Feb 2002 11:01:55 PST Organization: Road Runner Xref: archiver1.google.com comp.lang.ada:20311 Date: 2002-02-23T19:01:55+00:00 List-Id: Adrian Hoe wrote: > Sometime ago, I was thrown a question while giving talks in > Universities. "What language do they use to build the Ada compiler?" > and an (assumed) answer from the audience was "C". Then raised another > question: "If Ada has many safety features that C does not have and > the Ada compiler was written in C, how exactly safe is Ada?" It's possible for the Ada compiler to be unsafe yet the code it generates is safe, yes? That is, if the compiler crashes, is that considered a safety-critical failure? I wouldn't think so, but I don't write safety-critical code. In any case, regardless of what you do, the code you generate eventually turns into machine language, and is therefore only as "safe" as the underlying machine. Language safety comes from preventing a programmer from stepping outside the defined semantics of the language. It doesn't really matter what language you use to check whether a program is safe; it only matters what language you are checking. If you wrote a C compiler in Ada, would C suddenly become "safer"? No, of course not. So why would an Ada compiler in C be less safe? Richard wrote: > It seems that, for the compiler under discussion, things such as > integer overflow, etc. were not directly addressed. This is yet another question, which is how one generates the machine code using other tools, and how safe those tools are. I.e., this is confusing "the code the compiler's written in" with "the code the compiler generates", whereas the question seemed to be about "the code the compiler's written in" vs "the code the compiler understands how to compile". Three different systems there - Input, Compiler, and Output. Depending on how the compiler's built, the output may be more or less easy to get "right", i.e., accurately reflecting the semantics of the input. -- Darren New San Diego, CA, USA (PST). Cryptokeys on demand. To the user, everything works just as expected, assuming the user's expectations are correct.