From: Ludovic Brenta <ludovic@ludovic-brenta.org>
Subject: Compiler quality (was: Extending discriminant types)
Date: Sun, 23 Nov 2008 00:48:46 -0800 (PST)
Date: 2008-11-23T00:48:46-08:00 [thread overview]
Message-ID: <6691d418-5ce8-4584-8a09-3eb6bbc6d17f@v13g2000yqm.googlegroups.com> (raw)
In-Reply-To: vF4Wk.149868$Mh5.87085@bgtnsc04-news.ops.worldnet.att.net
On Nov 23, 5:06 am, a...@anon.org (anon) wrote:
> What I am saying is that ALL BUG have been seen and reported by now for the
> GNAT-3.xx compilers, because of the volume of users and the amount of time
> that GNAT 3.xx series has been around.
Like I said i my earlier post, this is wrong, as has just been proven
when we discovered a previously inknown bug in GNAT 3.15p just a
couple of days ago. The bug is that GNAT 3.15p accepts T'Base for non-
scalar T, in the default (Ada 95) mode. Even 100 years from now, if a
single person still uses GNAT 3.15p, it will be possible for them to
discover a previously unknown bug.
Even an infinite amount of testing cannot prove a program to be bug-
free; it can only uncover an infinite amount of bugs. If you want to
prove a program correct, you must use formal methods, not testing.
> Also, professors may or may not call
> Adacore if they find a BUG, but they normally note the error for future
> reference.
I certainly hope professors (or any other user) don't keep their
records secret but instead report the bugs publicly, either in the
Debian bug tracking system (for GNAT 3.15p) or the GCC bugzilla (for
later versions).
> And that until 1997, all Ada compiler including the GNAT-3.xx series were
> under the control of the US's DOD and the RM and only the RM. All newer
> compilers are not under such strong arm control or limitation, rather that's
> the US gov't or the direct rules of the RM. So, you may see a more relax view
> on applying the RM, which mean that newer compiler nay have this and others
> types of an error, not found in the GNAT 3.xx series.
No, there is no "more relaxed view of the RM". The one thing that is
more relaxed is the trademark control over the name "Ada". All
versions of GNAT, in fact, undergo a constantly growing suite of tests
that includes and extends the ACATS. Every bug ever fixed has an
associated test to ensure the bug is never reintroduced. Of course,
bugs that are not yet fixed do not yet have such a test.
[...]
> Plus, the complete Ada 2005 specification compiler aka GNAT 2008, has only
> been around a few months and has yet to be fully tested by the Ada community
> which can take years.
Correct but that does not make GNAT 3.15p bug-free.
> As for GNAT 5.01 and GNAT Pro 6.01, well they were not written under the
> DOD and the RM only control. And they have not been around 10 to 14 years
> yet, for someone to say that 5.01 or 6.01 have been fully checked.
Like I said, even if you would use, say, GNAT Pro 5.01 for an infinite
amount of time, you could discover and correct an infinite number of
bugs and never be sure that the program is bug-free.
That's what first year CS students ought to learn, anyway.
--
Ludovic Brenta.
next prev parent reply other threads:[~2008-11-23 8:48 UTC|newest]
Thread overview: 68+ messages / expand[flat|nested] mbox.gz Atom feed top
2008-11-15 9:16 Extending discriminant types Stefan Bellon
2008-11-15 18:50 ` Jeffrey R. Carter
2008-11-17 16:30 ` Adam Beneschan
2008-11-18 11:02 ` christoph.grein
2008-11-18 23:24 ` Adam Beneschan
2008-11-19 9:49 ` anon
2008-11-19 10:15 ` christoph.grein
2008-11-19 19:19 ` Georg Bauhaus
2008-11-19 11:38 ` Martin
2008-11-20 7:21 ` anon
2008-11-20 8:30 ` christoph.grein
2008-11-20 8:36 ` Ludovic Brenta
2008-11-20 11:45 ` Georg Bauhaus
2008-11-20 11:46 ` Georg Bauhaus
2008-11-20 23:01 ` anon
2008-11-21 11:54 ` Ludovic Brenta
2008-11-20 14:03 ` Dmitry A. Kazakov
2008-11-20 15:03 ` Robert A Duff
2008-11-20 15:57 ` Stefan Bellon
2008-11-21 0:32 ` Adam Beneschan
2008-11-20 16:11 ` Adam Beneschan
2008-11-20 22:59 ` anon
2008-11-21 0:29 ` Adam Beneschan
2008-11-21 7:25 ` anon
2008-11-21 9:19 ` Jean-Pierre Rosen
2008-11-21 10:11 ` christoph.grein
2008-11-21 12:00 ` Ludovic Brenta
2008-11-21 22:31 ` anon
2008-11-22 0:18 ` Stefan Bellon
2008-11-23 4:06 ` anon
2008-11-23 5:39 ` Georg Bauhaus
2008-11-23 8:00 ` anon
2008-11-24 10:08 ` Georg Bauhaus
2008-11-24 22:16 ` anon
2008-11-25 10:37 ` Martin
2008-11-25 11:24 ` Georg Bauhaus
2008-11-25 20:49 ` Jeffrey R. Carter
2008-11-25 21:01 ` Adam Beneschan
2008-11-25 22:09 ` Georg Bauhaus
2008-11-25 22:33 ` Jeffrey R. Carter
2008-11-26 0:58 ` Adam Beneschan
2008-11-26 1:45 ` Jeffrey R. Carter
2008-11-26 9:31 ` Martin
2008-11-26 9:38 ` Stefan Bellon
2008-11-26 9:48 ` Martin
2008-11-26 10:16 ` Stefan Bellon
2008-11-26 11:05 ` Ludovic Brenta
2008-11-26 11:33 ` Stefan Bellon
2008-11-26 15:49 ` Adam Beneschan
2008-11-26 16:15 ` Ludovic Brenta
2008-11-26 11:10 ` Niklas Holsti
2008-11-23 8:48 ` Ludovic Brenta [this message]
2008-11-24 23:33 ` Compiler quality (was: Extending discriminant types) anon
2008-11-25 6:54 ` christoph.grein
2008-11-25 10:01 ` Ludovic Brenta
2008-11-26 23:34 ` anon
2008-11-27 10:24 ` Compiler quality Georg Bauhaus
2008-11-27 14:46 ` Ludovic Brenta
2008-11-28 9:13 ` Martin
2008-11-28 10:28 ` Georg Bauhaus
2008-12-02 3:51 ` Randy Brukardt
2008-11-22 13:10 ` Extending discriminant types Gautier
2008-11-24 8:24 ` christoph.grein
2008-11-21 6:11 ` christoph.grein
2008-11-21 21:12 ` Jeffrey R. Carter
2008-11-22 16:41 ` sjw
2008-11-21 11:44 ` Martin
2008-11-20 9:55 ` Martin
replies disabled
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox