digitalmars.D - Ada, HCSS and more
- bearophile (9/10) Oct 25 2011 (Report after a mistake.)
- bcs (5/15) Oct 28 2011 Regarding integer overflow problems:
- bearophile (7/9) Oct 29 2011 Very nice paper, thank you for the link. I presume this paper nicely kic...
- Caligo (4/18) Oct 29 2011 Walter once said that Ada is a failed language.
(Report after a mistake.) This looks mostly like Ada advertisement, but it's readable (May 2008): http://www.mil-embedded.com/articles/id/?3277 The Reddit thread about it: http://www.reddit.com/r/programming/comments/lol4l/ccjava_a_gazillion_features_and_still_suck_at/ From the article:Last year's High Confidence Software and Systems (HCSS) conference, sponsored by NSA to address security-critical issues, featured an interesting presentation from Microsoft addressing such issues in the context of Windows. The primary sources of problems in Microsoft's experience are buffer overruns and integer overflow problems.<I have done some searching, but I have not found this presentation. Bye, bearophile
Oct 25 2011
On 10/25/2011 08:16 PM, bearophile wrote:(Report after a mistake.) This looks mostly like Ada advertisement, but it's readable (May 2008): http://www.mil-embedded.com/articles/id/?3277 The Reddit thread about it: http://www.reddit.com/r/programming/comments/lol4l/ccjava_a_gazillion_features_and_still_suck_at/ From the article:Regarding integer overflow problems: http://blog.regehr.org/archives/598 It would be interesting to run DMD/DMC through his integer checking tool: http://embed.cs.utah.edu/ioc/Last year's High Confidence Software and Systems (HCSS) conference, sponsored by NSA to address security-critical issues, featured an interesting presentation from Microsoft addressing such issues in the context of Windows. The primary sources of problems in Microsoft's experience are buffer overruns and integer overflow problems.<I have done some searching, but I have not found this presentation. Bye, bearophile
Oct 28 2011
bcs:Regarding integer overflow problems: http://blog.regehr.org/archives/598Very nice paper, thank you for the link. I presume this paper nicely kicks ass of plenty of C-style programmers. It gives experimental findings in performance reduction, explains the kinds of bugs, and shows some common ones found both in benchmarks and real world code. The paper shows that unsigned wrap-arounds too are often bugs, but suggests to offer the programmer ways to tell the compiler when a specific unsigned wrap-around in the code is acceptable and correct. Nowadays you can't say your language has a high regard for code correctness if it fails to address such problems in a systematic and built-in way. The paper misses to underline one point, because it only has tested already developed and debugged code. Despite the presence of overflow bugs in such debugged code, in my opinion their presence is more common in exploratory coding. When I am writing code to test an hypothesis, often I don't know what the result will be, and in such cases often I don't know how big various numbers in the program will become. In such situations overflow tests in Delphi code are precious to tell apart bogus results produced by overflows, and a bit more likely results. (Exploratory coding is probably more often done in languages like Mathematica or Python that have multi-precision integers on default, that avoid this problem too). Bye, bearophile
Oct 29 2011
On Tue, Oct 25, 2011 at 10:16 PM, bearophile <bearophileHUGS lycos.com>wrote:(Report after a mistake.) This looks mostly like Ada advertisement, but it's readable (May 2008): http://www.mil-embedded.com/articles/id/?3277 The Reddit thread about it: http://www.reddit.com/r/programming/comments/lol4l/ccjava_a_gazillion_features_and_still_suck_at/ From the article:Walter once said that Ada is a failed language. http://www.digitalmars.com/d/archives/digitalmars/D/Clay_language_125339.html#N125402 Why?Last year's High Confidence Software and Systems (HCSS) conference,sponsored by NSA to address security-critical issues, featured an interesting presentation from Microsoft addressing such issues in the context of Windows. The primary sources of problems in Microsoft's experience are buffer overruns and integer overflow problems.< I have done some searching, but I have not found this presentation. Bye, bearophile
Oct 29 2011