From mboxrd@z Thu Jan  1 00:00:00 1970
X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me
X-Spam-Level: 
X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=ham
	autolearn_force=no version=3.4.4
X-Google-Thread: 103376,703c4f68db81387d
X-Google-Thread: 109fba,703c4f68db81387d
X-Google-Thread: 115aec,703c4f68db81387d
X-Google-Thread: f43e6,703c4f68db81387d
X-Google-Attributes: gid103376,gid109fba,gid115aec,gidf43e6,public
X-Google-Language: ENGLISH,ASCII-7-bit
Path: 
 g2news1.google.com!news3.google.com!news.glorb.com!cyclone1.gnilink.net!spamkiller2.gnilink.net!gnilink.net!trndny07.POSTED!c2bfcbcf!not-for-mail
Subject: Re: [OT] Re: Teaching new tricks to an old dog (C++ -->Ada)
Newsgroups: comp.lang.ada,comp.lang.c++,comp.realtime,comp.software-eng
References: <4229bad9$0$1019$afc38c87@news.optusnet.com.au>
 <1110032222.447846.167060@g14g2000cwa.googlegroups.com>
 <871xau9nlh.fsf@insalien.org>
 <3SjWd.103128$Vf.3969241@news000.worldonline.dk>
 <87r7iu85lf.fsf@insalien.org>
 <y8lWd.103136$Vf.3969714@news000.worldonline.dk>
 <87is4598pm.fsf@insalien.org>
 <GDqWd.103192$Vf.3970697@news000.worldonline.dk>
 <871xat8zsz.fsf@insalien.org>
From: "Ed Falis" <falis@verizon.net>
Content-Type: text/plain; format=flowed; delsp=yes; charset=us-ascii
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Message-ID: <opsm6x9mde5afhvo@localhost>
User-Agent: Opera M2(BETA1)/8.00 (Linux, build 913)
Date: Sun, 06 Mar 2005 00:58:20 GMT
NNTP-Posting-Host: 70.19.208.151
X-Complaints-To: abuse@verizon.net
X-Trace: trndny07 1110070700 70.19.208.151 (Sat, 05 Mar 2005 19:58:20 EST)
NNTP-Posting-Date: Sat, 05 Mar 2005 19:58:20 EST
Xref: g2news1.google.com comp.lang.ada:8700 comp.lang.c++:44256
 comp.realtime:983 comp.software-eng:4514
Date: 2005-03-06T00:58:20+00:00
List-Id: <comp.lang.ada>

On Sat, 05 Mar 2005 23:59:08 +0100, Ludovic Brenta  
<ludovic.brenta@insalien.org> wrote:

>>> What other mechanism would you suggest?
>>
>> Termination of the program. Some might argue that they can't
>> tolerate such an event. But can such an environment tolerate a
>> faulty running program?
> That's what an unhandled exception results in.  In avionics, where we
> have no operating system and no run-time system, exceptions cannot
> propagate and thus always result in program termination.  When testing
> the program, we prove that no exception is ever raised.


There are certainly other strategies available.  For instance, in an  
"integrated modular avionics" architecture, an unhandled Ada exception in  
a single partition could be forwarded to a global health monitoring  
facility that may restart that partition, a set of partitions, or the  
whole system - or do something else for error recovery.  This implies that  
exception propagation is a quite flexible capability, and can be embedded  
in a system with even greater error handling flexibility in a comfortable  
way.