|
|
|
|
|
|
by ambrop7
3505 days ago
|
|
|
For my hobby projects I admittedly don't do much testing - simply because no one is paying me to. Only in rare cases do I intentionally write a test when something seems complex. And I do run address sanitizer etc. where that can reasonably be done (e.g. not on microcontroller code). Anyway my point is, my code has considerably less bugs than what you'd get from reasonably proficient programmers even if they DID write tests. For example, I'm currently writing a TCP/IP stack for embedded systems [1]. While it's not quite complete yet (misses some essential code like fragmentation and congestion control), I'm very confident that it has (and will have when complete) much less bugs than related portions of lwIP; see for yourself all the bugs I've found in lwIP [2]. Again feel free to find bugs in my code. I very much appreciate people pointing out bugs, as it helps me make even fewer bugs :) > We live in a world of exploitable 1-byte buffer overflows. Indeed. But buffer overflows are so easy to avoid, just don't write over the end of the buffer. I doubt I've done a buffer overflow in years. The bugs that I do make, are much more complex. [1] https://github.com/ambrop72/aprinter/tree/ipstack/aprinter/i... [2] https://savannah.nongnu.org/bugs/index.php?go_report=Apply&g... |
|
|