This is the mail archive of the gcc@gcc.gnu.org mailing list for the GCC project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [PATCH][4.3] Deprecate -ftrapv

From: Robert Dewar <dewar at adacore dot com>
To: Mark Mitchell <mark at codesourcery dot com>
Cc: "Joseph S. Myers" <joseph at codesourcery dot com>, Richard Kenner <kenner at vlsi1 dot ultra dot nyu dot edu>, gcc-patches at gcc dot gnu dot org, gcc at gcc dot gnu dot org, rguenther at suse dot de
Date: Sun, 02 Mar 2008 06:28:19 -0500
Subject: Re: [PATCH][4.3] Deprecate -ftrapv
References: <Pine.LNX.4.64.0803010041110.4133@zhemvz.fhfr.qr> <47C89DB1.6030200@codesourcery.com> <Pine.LNX.4.64.0803010109540.4133@zhemvz.fhfr.qr> <47C8AB88.10503@codesourcery.com> <Pine.LNX.4.64.0803010144400.21300@digraph.polyomino.org.uk> <Pine.LNX.4.64.0803011331150.4133@zhemvz.fhfr.qr> <Pine.LNX.4.64.0803011304270.26609@digraph.polyomino.org.uk> <10803011408.AA02772@vlsi1.ultra.nyu.edu> <Pine.LNX.4.64.0803011827510.19405@digraph.polyomino.org.uk> <47CA750E.9080409@codesourcery.com>

Mark Mitchell wrote:

However, I don't think doing all of that work is required to make this feature useful to people. You seem to be focusing on making -ftrapv capture 100% of overflows, so that people could depend on their programs crashing if they had an overflow. That might be useful in two circumstances: (a) getting bugs out (though for an example like the one above, I can well imagine many people not considering that a bug worth fixing), and (b) in safety-critical situations where it's better to die than do the wrong thing.

I don't agree with this list, first it misses

(c) be useful for Ada conformance, where 100% of cases must be caught

Second, generally speaking in safety-critical systems, you don't want
overflow checking, because

a) it would generate deactivated code intefering with certification

b) in sc code, you have to make sure a priori that there are no
overflows (see http://www.praxis-cs.com/pdfs/Industrial_strength.pdf
for one approach).

c) exceptions can be safety hazards if you don't carefully consider
what to do with them (think about Ariane 5).

So for me, the two uses of -ftrapv are debugging in languages
like C and Fortran, and for debugging and language conformance
in languages like Ada.

Certainly for the debugging use, a solution that is not 100%
is still useful.

References:
- Re: [PATCH][4.3] Deprecate -ftrapv
  - From: Mark Mitchell
- Re: [PATCH][4.3] Deprecate -ftrapv
  - From: Richard Guenther
- Re: [PATCH][4.3] Deprecate -ftrapv
  - From: Mark Mitchell
- Re: [PATCH][4.3] Deprecate -ftrapv
  - From: Joseph S. Myers
- Re: [PATCH][4.3] Deprecate -ftrapv
  - From: Richard Guenther
- Re: [PATCH][4.3] Deprecate -ftrapv
  - From: Joseph S. Myers
- Re: [PATCH][4.3] Deprecate -ftrapv
  - From: Richard Kenner
- Re: [PATCH][4.3] Deprecate -ftrapv
  - From: Joseph S. Myers
- Re: [PATCH][4.3] Deprecate -ftrapv
  - From: Mark Mitchell

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]