From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=unavailable autolearn_force=no version=3.4.4 X-Received: by 10.66.147.227 with SMTP id tn3mr1501859pab.4.1406716913772; Wed, 30 Jul 2014 03:41:53 -0700 (PDT) Path: eternal-september.org!reader01.eternal-september.org!reader02.eternal-september.org!news.eternal-september.org!news.eternal-september.org!news.eternal-september.org!feeder.eternal-september.org!feeder.erje.net!eu.feeder.erje.net!news2.arglkargh.de!news.glorb.com!h18no10382311igc.0!news-out.google.com!j6ni24539qas.0!nntp.google.com!Xl.tags.giganews.com!border1.nntp.dca.giganews.com!nntp.giganews.com!local2.nntp.dca.giganews.com!news.giganews.com.POSTED!not-for-mail NNTP-Posting-Date: Wed, 30 Jul 2014 05:41:53 -0500 Date: Wed, 30 Jul 2014 06:41:53 -0400 From: Peter Chapin User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:31.0) Gecko/20100101 Thunderbird/31.0 MIME-Version: 1.0 Newsgroups: comp.lang.ada Subject: Re: seL4 as base of an AdaOS with some Spark proofing? References: <791c07d0-575d-42be-ad5c-219aa3cf7734@googlegroups.com> In-Reply-To: Message-ID: X-Usenet-Provider: http://www.giganews.com X-Trace: sv3-lBo01LplMK7gdsA7U2vG7K4AxyahZ40Pmh13k3df8RNCJKzQ/Nv27G3Gzr7lcL/BT4MhWvZn01nxnfF!mhpMPZVuHS63LV2bHzPrFrVTcgT8kZEUlhjlA5P3cCiXt6Hvzp70+pry8dCgzXI= X-Complaints-To: abuse@giganews.com X-DMCA-Notifications: http://www.giganews.com/info/dmca.html X-Abuse-and-DMCA-Info: Please be sure to forward a copy of ALL headers X-Abuse-and-DMCA-Info: Otherwise we will be unable to process your complaint properly X-Postfilter: 1.3.40 X-Original-Bytes: 1634 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit Xref: news.eternal-september.org comp.lang.ada:21350 Date: 2014-07-30T06:41:53-04:00 List-Id: On 2014-07-30 05:06, Georg Bauhaus wrote: > Having an OS written in C that is proven correct and available > online shows that Ada / GNATSpark is not needed any more. It is not news that it is possible to prove certain C programs correct. I refer you to the Frama-C project and it's deductive verification plugins as one example. The question one must ask is: how difficult is it to do and how much "normal" code can you effectively prove? Peter