The C++ standard for the F-35 Fighter Jet [video]

(www.youtube.com)

327 points AareyBaba | 2 comments | 07 Dec 25 18:07 UTC | HN request time: 0.399s | source

PDF: https://www.stroustrup.com/JSF-AV-rules.pdf

Show context

time4tea ◴[07 Dec 25 19:31 UTC] No.46184345[source]▶

>>46183657 (OP) #

a = a; // misra

Actual code i have seen with my own eyes. (Not in F-35 code)

Its a way to avoid removing an unused parameter from a method. Unused parameters are disallowed, but this is fine?

I am sceptical that these coding standards make for good code!

replies(11): >>46184442 #>>46184460 #>>46184571 #>>46185232 #>>46185373 #>>46186276 #>>46186377 #>>46186457 #>>46186510 #>>46186705 #>>46189488 #

1. platinumrad ◴[07 Dec 25 23:57 UTC] No.46186705[source]▶

>>46184345 #

I've (unfortunately) written plenty of "safety critical" code professionally and coding standards definitely have a negative effect overall. The thing keeping planes from falling out of the sky is careful design, which in practice means fail-safes, watchdogs, redundancy, and most-importantly, requirements that aren't overly ambitious.

While maybe 10% of rules are sensible, these sensible rules also tend to be blindingly obvious, or at least table stakes on embedded systems (e.g. don't try to allocate on a system which probably doesn't have a full libc in the first place).

replies(1): >>46187323 #

2. dilyevsky ◴[08 Dec 25 01:33 UTC] No.46187323[source]▶

>>46186705 (TP) #

Many coding standards rules have nothing to do with correctness and everything to do with things like readability and reducing cognitive load (“which style should I use here?”)

↑