Date: Mon, 26 Feb 2001 10:37:43 -0700 (MST) From: Nate Williams <nate@yogotech.com> To: seebs@plethora.net (Peter Seebach) Cc: freebsd-hackers@FreeBSD.ORG Subject: Re: Setting memory allocators for library functions. Message-ID: <15002.37991.500583.137739@nomad.yogotech.com> In-Reply-To: <200102261723.f1QHN6613015@guild.plethora.net> References: <15002.36869.925599.285850@nomad.yogotech.com> <200102261723.f1QHN6613015@guild.plethora.net>
next in thread | previous in thread | raw e-mail | index | archive | help
> >Even in this case, there's no way to prove your code is not going to > >crash. > > Sure. But you can at least prove that all crashes are the result of bugs, > not merely design "features". 'Proving' something is correct is left as an excercise for the folks who have way too much time on their hand. At my previous job (SRI), we have folks who work full-time trying to prove algorithms. In general, proving out simple algorithms takes months, when the algorithm itself took 1-2 hours to design and write. Another thing is that crashes may have occurred because of invalid input, invalid output, valid but not expected input, etc... Again, memory overcommit is only *one* class of bugs that is avoided. The phrase "can't see the forest for the trees" jumps to mind. :) Nate To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?15002.37991.500583.137739>