Re: Code safety and information hiding

comp.lang.ada
 help / color / mirror / Atom feed

From: Maciej Sobczak <no.spam@no.spam.com>
Subject: Re: Code safety and information hiding
Date: Wed, 16 Aug 2006 15:23:47 +0200
Date: 2006-08-16T15:23:47+02:00	[thread overview]
Message-ID: <ebv692$ljb$1@sunnews.cern.ch> (raw)
In-Reply-To: <44e2fc24$1_1@glkas0286.greenlnk.net>

Stuart wrote:

> Rod's distinction between detail and information is a good one.  It should 
> also be remembered that the objective of SPARK is to allow you to reason 
> about what your program will do.  Often, in less rigorous design processes, 
> you might assume that a subprogram you use has no unexpected consequences 
> (e.g. side-effects).  SPARK is much more rigorous - it makes sure that 
> subprograms have no side-effects: the consequence is that _all_ effects of a 
> subprogram must be recorded (e.g. updating the Seed in the Random number 
> example).

I understand it. It's clear to me now that the spec should declare any 
interaction of the given subprogram with its environment and global 
variables are part of it - but it also became clear that with adding 
'global' annotations the network of known and checked dependencies is 
getting much denser. It's this density of dependencies that has struck 
me at the beginning.


-- 
Maciej Sobczak : http://www.msobczak.com/
Programming    : http://www.msobczak.com/prog/

next prev parent reply	other threads:[~2006-08-16 13:23 UTC|newest]

Thread overview: 34+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2006-08-16  7:56 [SPARK] Code safety and information hiding Maciej Sobczak
2006-08-16  8:53 ` roderick.chapman
2006-08-16 11:18   ` Stuart
2006-08-16 13:23     ` Maciej Sobczak [this message]
2006-08-16 19:49 ` [SPARK] " Jeffrey R. Carter
2006-08-17  7:01   ` Maciej Sobczak
2006-08-17 18:08     ` Jeffrey R. Carter
2006-08-17 20:00       ` Björn Persson
2006-08-18  1:22         ` Jeffrey R. Carter
2006-08-18 19:39           ` Björn Persson
2006-08-19  5:35             ` Jeffrey R. Carter
2006-08-19 12:47               ` Björn Persson
2006-08-20  3:58                 ` Jeffrey R. Carter
2006-08-20 11:35                   ` Björn Persson
2006-08-18 23:02   ` Robert A Duff
2006-08-19  5:40     ` Jeffrey R. Carter
2006-08-19  9:49       ` Stephen Leake
2006-08-20  3:52         ` Jeffrey R. Carter
2006-08-20 19:06           ` Stephen Leake
2006-08-21  1:07             ` Jeffrey R. Carter
2006-08-21  7:25               ` Maciej Sobczak
2006-08-21 19:31                 ` Jeffrey R. Carter
2006-08-21 19:58                   ` Dmitry A. Kazakov
2006-08-21 21:06                     ` Björn Persson
2006-08-22  7:16                       ` Maciej Sobczak
2006-08-22  9:45                         ` Björn Persson
2006-08-22 12:42                           ` Maciej Sobczak
2006-08-22  7:27                       ` Dmitry A. Kazakov
2006-08-21 11:30             ` Colin Paul Gloster
2006-08-22 10:51               ` Stephen Leake
2006-08-23  9:44     ` Peter Amey
2006-08-23 22:37       ` Jeffrey R. Carter
2006-08-24 10:55         ` Peter Amey
2006-08-24 23:33           ` Jeffrey R. Carter

replies disabled

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox