Re: Ada safety road Was: Which is right ...

comp.lang.ada
 help / color / mirror / Atom feed

From: "Vladimir Olensky" <vladimir_olensky@yahoo.com>
Subject: Re: Ada safety road Was: Which is right ...
Date: 1999/06/07
Date: 1999-06-07T00:00:00+00:00	[thread overview]
Message-ID: <928783635.953.42@news.remarQ.com> (raw)
In-Reply-To: ZFS63.4277$DI2.4848@cynws01.we.mediaone.net

Pascal F. Martin wrote in message ...
>In article <7jf1ik$8v6$1@nnrp1.deja.com>,
> Robert Dewar <robert_dewar@my-deja.com> writes:
>> In article <928703068.617.98@news.remarQ.com>,
>>   "Vladimir Olensky" <vladimir_olensky@yahoo.com> wrote:
>>
>>> I was just thinking about different aspects of providing some
>>> general kind of "foolproofness" to program written in Ada in
>> places where RM
>>> define program behavior as erroneous.
>>> I think nobody would like to be on a plane that performed
>>> erroneous flight
>>> """' ' '  ^~\_+.
>>> Anyone would prefer to be accidentally on board of the wrong
>>> flight instead.
>>
>> [...]
>>
>> I don't want to be on a plane that executes erroneous code,
>> but I also don't want the captain to get a message saying
>> that Constraint_Error was raised at such and such a location :-)
>
>I remember that the first Ariane 5 rocket had been lost when
>an Ada program did hit a runtime check ! The exception was not
>the cause of the problem (it was a design error), but it made
>the rocket crash.
>
>Sometime, it make sense to ignore errors and continue on.
>Constraint_Error is for developpers, not for users, and
>a program cannot be in "debug mode" forevever.

I remember that report. Some parameters went out of the limits that were set
for Ariane 4. These limits were not changed for Ariane 5 though it was
equipped with the new engines and  operation conditions during launch time
were quite different. But needed software tests for new operational
conditions were not performed properly and we have seen the results.

I fully agree that most of the run time checks are usually used in debug
mode and they serve  for application testing.
In release mode most of them are usually  turned off. So most of the
developing systems provide ability to set parameters for each mode
independently and create any additional configuration profile if needed.
The more could be done in debug mode the less possibility that something
could sneak into release mode.

Anyway it was just a  joke with some hyperbolic meaning.
Record extracted from the plane black
box just confirms that: """' ' '  ^~\_+.

Regards,
Vladimir Olensky.

next prev parent reply	other threads:[~1999-06-07  0:00 UTC|newest]

Thread overview: 57+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
1999-05-30  0:00 Which is right here - GNAT or OA ? Vladimir Olensky
1999-05-30  0:00 ` Florian Weimer
1999-05-31  0:00   ` Vladimir Olensky
1999-05-31  0:00     ` Robert Dewar
1999-06-05  0:00       ` Vladimir Olensky
1999-06-05  0:00         ` Vladimir Olensky
1999-06-05  0:00           ` Robert Dewar
1999-06-07  0:00             ` Ada safety road Was: Which is right Vladimir Olensky
1999-06-06  0:00               ` Larry Kilgallen
1999-06-07  0:00                 ` Keith Thompson
1999-06-07  0:00                   ` Hyman Rosen
1999-06-08  0:00                     ` Robert A Duff
1999-06-08  0:00                       ` Keith Thompson
1999-06-09  0:00                         ` Robert Dewar
1999-06-09  0:00                           ` Tucker Taft
1999-06-09  0:00                             ` Robert Dewar
1999-06-09  0:00                         ` dennison
1999-06-09  0:00                           ` Entamology of "Nasal Demons" dennison
1999-06-08  0:00                       ` Ada safety road Was: Which is right Robert Dewar
1999-06-09  0:00                       ` dennison
1999-06-08  0:00                   ` Robert A Duff
1999-06-08  0:00                   ` Robert Dewar
1999-06-07  0:00                     ` Keith Thompson
1999-06-08  0:00                     ` Robert A Duff
1999-06-14  0:00                   ` Ada safety road Franco Mazzanti
1999-06-15  0:00                     ` Franco Mazzanti
1999-06-16  0:00                       ` Vladimir Olensky
1999-06-06  0:00               ` Ada safety road Was: Which is right Robert Dewar
1999-06-07  0:00                 ` Pascal F. Martin
1999-06-07  0:00                   ` Vladimir Olensky [this message]
1999-06-08  0:00                 ` Robert A Duff
1999-06-10  0:00               ` Peter Amey
1999-06-10  0:00                 ` Markus Kuhn
1999-06-11  0:00                   ` Vladimir Olensky
1999-06-12  0:00                     ` Robert Dewar
1999-06-12  0:00                       ` JP Thornley
1999-06-13  0:00                         ` Vladimir Olensky
1999-06-16  0:00                         ` William Dale
1999-06-19  0:00                           ` JP Thornley
1999-06-21  0:00                           ` Robert A Duff
1999-06-13  0:00                       ` Vladimir Olensky
1999-06-12  0:00                         ` Matthew Heaney
1999-06-13  0:00                           ` Vladimir Olensky
1999-06-13  0:00                         ` Robert Dewar
1999-06-13  0:00                           ` swhalen
1999-06-13  0:00                           ` Vladimir Olensky
1999-06-13  0:00                         ` Robert Dewar
1999-06-13  0:00                           ` Vladimir Olensky
1999-06-05  0:00         ` Which is right here - GNAT or OA ? Florian Weimer
1999-06-01  0:00   ` Tucker Taft
1999-05-30  0:00 ` Robert Dewar
1999-05-31  0:00   ` Vladimir Olensky
1999-05-31  0:00     ` Robert Dewar
1999-06-01  0:00   ` dennison
1999-05-31  0:00 ` David Botton
1999-06-01  0:00   ` dennison
1999-06-03  0:00 ` Matthew Heaney

replies disabled

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox