I do not know TLA+, but there is an abundance of other theorem provers that can ... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

RaxcN 4 months ago | parent | context | favorite | on: Formal methods: Just good engineering practice?

I do not know TLA+, but there is an abundance of other theorem provers that can model C very closely, including overflow, assignments, etc.

So closely, that when you transcribe such an algorithm to C, there is very little room for error, even if the C code isn't proven directly.

rramadass 4 months ago [–]

> there is an abundance of other theorem provers that can model C very closely

Can you list some/all of them please? Would be helpful to others here.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact