From: Marin David Condic <nobody@noplace.com>
Subject: Re: Typing in Ada
Date: Wed, 02 Jun 2004 11:26:31 GMT
Date: 2004-06-02T11:26:31+00:00 [thread overview]
Message-ID: <40BDB944.3060605@noplace.com> (raw)
In-Reply-To: qrCdnSyjQIYlxyDdRVn-sA@gbronline.com
Sometimes its an issue for verification. High reliability systems often
prohibit the inclusion of any code that is not necessary to meet a
requirement because it presents an opportunity to introduce an error
that would not need to occur because there is no requirement to do this.
So a similar argument can be made for restricting the number of apples
even if the spec doesn't say Thou Shalt Not Count 101 Apples. Kind of a
case of avoiding building the proverbial brick outhouse - don't make it
do anything more than is required because you can't then be sure it will
handle those cases correctly.
But then again, there are few of those sort of systems and far many more
of the type where this would not be an issue. Then saying "At minimum,
100 apples must be supported..." is fine and if the programmer gives you
2**32 apples, it probably doesn't hurt anything.
MDC
Wes Groleau wrote:
>
> In a way, you are correct. But why must we put
> so much effort into preventing behavior that is
> not prohibited just because it is not required?
>
> Does the specification say ... ?
> "The program shall not tolerate apple counts higher than 100"
>
> Did some domain expert persuade the programmers that 101 apples
> was not reasonable?
>
> In other words, when a specification says
> "A count of 100 must be supported," the
> programmers should NOT mentally rewrite it
> to "Counts larger than 100 must not be supported."
>
--
======================================================================
Marin David Condic
I work for: http://www.belcan.com/
My project is: http://www.jsf.mil/NSFrames.htm
Send Replies To: m o d c @ a m o g
c n i c . r
"Face it ladies, its not the dress that makes you look fat.
Its the FAT that makes you look fat."
-- Al Bundy
======================================================================
next prev parent reply other threads:[~2004-06-02 11:26 UTC|newest]
Thread overview: 67+ messages / expand[flat|nested] mbox.gz Atom feed top
2004-05-31 13:32 Typing in Ada Empit
2004-05-31 14:04 ` Poul-Erik Andreasen
2004-05-31 17:01 ` Jeffrey Carter
2004-05-31 20:03 ` Peter C. Chapin
2004-05-31 22:56 ` tmoran
2004-06-01 1:09 ` Peter C. Chapin
2004-06-01 4:40 ` tmoran
2004-06-01 11:26 ` Peter C. Chapin
2004-06-10 3:01 ` Dave Thompson
2004-06-10 3:00 ` Dave Thompson
2004-05-31 23:22 ` Nick Roberts
2004-06-01 1:04 ` Peter C. Chapin
2004-06-01 2:29 ` Nick Roberts
2004-06-02 4:39 ` Robert I. Eachus
2004-06-02 15:17 ` Hyman Rosen
2004-06-01 2:36 ` Hyman Rosen
2004-06-01 4:27 ` Larry Kilgallen
2004-06-01 4:05 ` Hyman Rosen
[not found] ` <d4vnb0tepd4togdrvdrbqpok1ne6n9i2vp@4ax.com>
2004-06-01 14:36 ` Wes Groleau
2004-06-01 20:24 ` Niklas Holsti
2004-06-02 4:43 ` Wes Groleau
2004-06-02 5:28 ` Robert I. Eachus
2004-06-02 8:19 ` tmoran
2004-06-02 14:47 ` Wes Groleau
2004-06-02 11:26 ` Marin David Condic [this message]
2004-06-02 14:54 ` gratuitous restrictions (was:Typing in Ada) Wes Groleau
2004-06-02 5:04 ` Typing in Ada Robert I. Eachus
2004-06-01 2:14 ` David C. Hoos
2004-06-02 1:30 ` Jeffrey Carter
2004-06-02 10:53 ` Peter C. Chapin
2004-06-02 11:38 ` Marin David Condic
2004-06-17 2:50 ` Dave Thompson
2004-06-17 4:24 ` James Rogers
2004-06-17 12:28 ` Hyman Rosen
2004-06-17 23:42 ` James Rogers
2004-06-20 11:27 ` Nick Roberts
2004-06-20 23:29 ` new revision ada Brian May
2004-06-21 2:16 ` tmoran
2004-06-21 2:34 ` James Rogers
2004-06-22 2:16 ` Roland Illig
2004-06-22 3:41 ` James Rogers
2004-06-22 6:53 ` Martin Krischik
2004-06-21 23:33 ` Brian May
2004-06-22 20:26 ` Simon Wright
2004-06-23 0:50 ` Larry Elmore
2004-06-22 22:06 ` tmoran
2004-06-21 5:31 ` Wes Groleau
2004-06-21 12:27 ` new revision ada (limited with, excpetion handling) Nick Roberts
2004-06-21 13:04 ` Martin Dowie
2004-06-22 10:38 ` new revision ada Georg Bauhaus
2004-06-22 12:45 ` James Rogers
2004-06-22 15:17 ` Martin Krischik
2004-06-22 16:09 ` new revision ada (exception handling) Nick Roberts
2004-06-23 7:55 ` Pascal Obry
2004-06-23 8:40 ` Martin Krischik
2004-06-23 19:33 ` Randy Brukardt
2004-06-24 6:57 ` Martin Krischik
2004-06-24 21:13 ` Randy Brukardt
2004-06-25 8:05 ` Dmitry A. Kazakov
2004-06-25 17:28 ` Randy Brukardt
2004-06-23 4:31 ` new revision ada Brian May
2004-06-23 19:47 ` Randy Brukardt
2004-06-22 16:37 ` Georg Bauhaus
2004-06-26 14:57 ` Robert I. Eachus
2004-06-01 1:02 ` Typing in Ada Alexander E. Kopilovich
-- strict thread matches above, loose matches on Subject: below --
2004-06-01 2:11 David C. Hoos, Sr.
2004-06-01 2:13 David C. Hoos, Sr.
replies disabled
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox