[SystemSafety] OpenSSL Bug
Messer Robin
robin.messer at altran.com
Mon Apr 14 16:21:48 CEST 2014
In my experience the best thing to do about runtime checks is to prove, statically, using automated tools, that they will never be raised.
-----Original Message-----
From: systemsafety-bounces at lists.techfak.uni-bielefeld.de [mailto:systemsafety-bounces at lists.techfak.uni-bielefeld.de] On Behalf Of Derek M Jones
Sent: 14 April 2014 15:15
To: systemsafety at lists.techfak.uni-bielefeld.de
Subject: Re: [SystemSafety] OpenSSL Bug
<snip>
There is also the issue of what to do about runtime checks. Code is surprisingly robust in the presence of minor infringements, it works as intended. But if runtime checking is on an error gets raise.
Having an error raised can cause more problems than ignoring the problem (the safety people on this list will know a lot more about this issue than me).
<snip>
More information about the systemsafety
mailing list