R
Richard Tobin
Chris Hills said:
Has a compiler producer ever been successfully sued for a bug in the
compiler?
Given the number of companies who use gcc, I think your objection is
purely theoretical.
-- Richard
Has a compiler producer ever been successfully sued for a bug in the
compiler?
Given the number of companies who use gcc, I think your objection is
purely theoretical.
-- Richard
C
Chris Hills
Richard Tobin said:
No idea. I would expect this would have been settled out of court long
before it hit the news if it has.
IANAL
At the moment possibly only theoretical. However the game is changing.
Engineers are being licensed (world wide) and there are changes to the
corporate manslaughter act. (UK that I know of)
The problem is that the laws are going to relate to accidents that
happen after the law comes in. That means the actual development may
have been done some time before.
It only needs one successful prosecution because one well meaning idiot
modified the compiler and did insufficient testing of the system so a
bug slipped though and caused an accident. The system will cause the
accident but the lawyers will look at the development process and the
tools. If the programer is using free tools that he modified (and did
not fully test with an "industry standard" test suite etc) they will
jump on it.
This could be anywhere in the world under any jurisdiction.
As lawyers go for easy targets it will be a small company or contractor
who gets hit. The lawyers may not care that the don't make any money of
a small case suing a one man company because if it sets a precedent they
will make a fortune on the other cases that will come up.
It is the same as any other industry. Liability, "proper" tools,
professional process. With more and more software being safety and
mission critical it is only a matter of time.
There is much you ca do to guard against these problems, use version
control, proper specs, static analysis, test plans basically show due
diligence.
J
Joe Wright
[ Too much snippage I fear ]
I said;
Chris,
I was addressing 'guarantee' and now you 'liability' as regards Open
Source Software (OSS). IANAL either but if you were to offer me a piece
of software as free and open, and I accept it, great. As I didn't pay
for it, the idea of guarantee is meaningless (Double your money back?).
If you disclaim any merchantability or fitness for use for this software
of yours, which I got for nothing, how can I possibly hold you liable
when the program, trying to kill a process, actually kills my cat?
Do you use the gcc stuff? I do. It's OSS. It's free. It doesn't have a
guarantee. There is nobody to sue if your program doesn't work right.
When was the last time Microsoft, Oracle, or any software company paid
off on a liability suit on poor software? When?
I said;
Chris,
I was addressing 'guarantee' and now you 'liability' as regards Open
Source Software (OSS). IANAL either but if you were to offer me a piece
of software as free and open, and I accept it, great. As I didn't pay
for it, the idea of guarantee is meaningless (Double your money back?).
If you disclaim any merchantability or fitness for use for this software
of yours, which I got for nothing, how can I possibly hold you liable
when the program, trying to kill a process, actually kills my cat?
Do you use the gcc stuff? I do. It's OSS. It's free. It doesn't have a
guarantee. There is nobody to sue if your program doesn't work right.
When was the last time Microsoft, Oracle, or any software company paid
off on a liability suit on poor software? When?
S
Sensei
Thanks to everyone who helped me! 