From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,FREEMAIL_FROM autolearn=ham autolearn_force=no version=3.4.4 X-Google-Thread: 103376,e646052dc594401f X-Google-NewGroupId: yes X-Google-Attributes: gida07f3367d7,domainid0,public,usenet X-Google-Language: ENGLISH,ASCII Path: g2news2.google.com!postnews.google.com!k39g2000yqb.googlegroups.com!not-for-mail From: Claude Newsgroups: comp.lang.ada Subject: Re: Strategies with SPARK which does not support exceptions Date: Tue, 22 Jun 2010 16:14:35 -0700 (PDT) Organization: http://groups.google.com Message-ID: <93966134-a285-41c5-a7f6-8c59151718a7@k39g2000yqb.googlegroups.com> References: NNTP-Posting-Host: 70.79.53.248 Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable X-Trace: posting.google.com 1277248475 20781 127.0.0.1 (22 Jun 2010 23:14:35 GMT) X-Complaints-To: groups-abuse@google.com NNTP-Posting-Date: Tue, 22 Jun 2010 23:14:35 +0000 (UTC) Complaints-To: groups-abuse@google.com Injection-Info: k39g2000yqb.googlegroups.com; posting-host=70.79.53.248; posting-account=WPcl4AoAAAC3CTqLAgWnftzSSCqiCJ4J User-Agent: G2/1.0 X-HTTP-UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.3) Gecko/20100401 Firefox/3.6.3,gzip(gfe) Xref: g2news2.google.com comp.lang.ada:12846 Date: 2010-06-22T16:14:35-07:00 List-Id: On Jun 17, 8:33=A0am, Yannick Duch=EAne (Hibou57) wrote: > Hello, > > (This topic will probably not be the most exiting topic to some people). > > When I use SPARK, or even when I don't use SPARK while I still have SPARK= =A0 > design style in mind (even with Pascal which I still use), I have like an= y =A0 > one else, to forget about exceptions. Exceptions are not the best way to process error. (i.e., Not just a SPARK topic). Who even remember having already tested the exception error handling as the software behaviour alternative? That is about falling within shortcuts, verifications and rescue processing all about unpredictable/uncompleted states/operations/tasks to not being left behind - (risks are about remaining inconsistencies triggering blockages or instability). Usually, large critical software applications shall process a "Semantic Response", with "add error" or "add warning" annotation methods and "is complete" or "is successful" checking operations. And generally speaking, the goal is no much about to abort something, but let it go and collect as many errors or warnings to trace the vulnerabilities. Indeed, the functional behaviour would rely on "semantic response" as a part of the system requirements, in terms of fault tolerance: (Because, faults or failures happen, whether internally or within interactions). Semantic responses shall trigger a selective processing in case of error or eventually a complementary processing in case of warning only. In such a case, better to use a formal language like Ada and testing as a software development approach. Claude Defour