A little off topic but I read a letter today in an electronics magazine questioning the legality of using C or C++ in safety critical systems due to the use of defered pointers and type conversions using casts which may be passed by the compiler yet lead to code reading outside the boundaries of arrays and generaly 'difficult'code etc and suggesting that ada95 is typically used in space systems for example.
I would have thought that lint is good enough to catch that kind of error and that along with a simulator would catch any errors caused by the short comings in C compilers.I was just wondering what other people think and if they are involved in the development of safety critical systems and they are aware of any legal requirements in the US and Europe. I know that some people use delphi for example because it doesnt allow casts.