Ferrocene released as open source

Posted Oct 13, 2023 11:47 UTC (Fri) by farnz (subscriber, #17727)
In reply to: Ferrocene released as open source by NRArnot
Parent article: Ferrocene released as open source

Note that the compiler will never be certified - the certification says "this component meets these safety requirements", and that's meaningless for the compiler (the compiler should never be running in the safety critical area of the system). Instead, the compiler is qualified; a qualified toolchain comes with a set of rules that you use when auditing the source code of your safety critical components, and a promise that if your audit confirms that you don't breach those rules plus the rules from a listed safety standard (e.g. ISO 26262, IEC 61508), then the resulting binary does not breach any of the safety rules from that listed standard.

The certification applies to the final component, and says that you've audited the mechanical, electrical, electronic and software parts of the component, and your audit confirms that you meet the rules in the safety standards you're claiming to meet.

In the case of the car, many components will be required to be certified to ISO 26262 or an equivalent standard for the car to be legal to sell in the UK; if the certification cannot be found, or if it's shown that that the audit was incomplete, erroneous, or fraudulent, then the importers and manufacturers are on the hook to recall all cars with those components, and either fully refund the owners, or pay to replace the components with ones that meet standards.