In that case you issue a recall, which is the correct way of dealing with potentially fatal manufacturing defects.

Which will be costly. Also, it does not guarantee the user will return your car, right?

It should be costly. You want to encourage companies to make better/safer products that have been well tested. The whole “Move quick and break things” is from the perspective of a completely nonessential social media service. They have no consequences when they break things, although even that has changed as every minute of downtime is lost revenue. Self inflicted financial pain is completely acceptable, if they choose to take that path. Car companies should not.

Yeah, but the user will be liable for not returning the vehicle under a recall.

As for cost, surely you can ask Ford's lawyers who worked there in the 70s to give you a good calculation on life vs recall costs.

Just issuing a recall is not enough. There are countless reasons why someone does not return the product: They maybe simple not know, and there is no way to reach them.

That is why Samsung push update to disable note 7 even after recalling them.

> There are countless reasons why someone does not return the product: They maybe simple not know, and there is no way to reach them.

In Germany we let the Kraftfahrtbundesamt handle this. You are required by law to keep your address updated with the authorities, and all vehicles have to be registered to get a license plate. When a recall for safety reasons happens, the Kraftfahrtbundesamt writes a notification letter, and if you do not respond in time with evidence of having the recall issue remediated by a qualified shop (or doing it yourself and getting a sign-off from a licensed inspector), eventually they write to your local DMV office that can ban your vehicle from the roads, and if you miss that the police shows up at your home and physically removes the license sticker from the table.

And heaven forbid you get actually caught driving the car after having gotten the notification letter from your local DMV. That's automatically felony territory. Our authorities really, really do not mess around.

[1] https://www.kba.de/DE/Themen/Marktueberwachung/Rueckrufe/rue...

As American, I assume most the thread above was assuming US locale and it Seems like a solid case of the all too common “impossible by US status quo standards” when in fact the solution can be quite simple we just lack the imagination or willingness to see what worths elsewhere

> on the other hand, if you know your old software is buggy and could cause fatal accident, you release a software update

No. You test it. And release it if and when it is fully tested. (you know, V-cycle). But we are Agile now and testing is expensive.

You can apply every fancy safety model (V cycle, iso262626, ASIL, MIRSA) and nothing can guarantee you write one-shot bug free software when your software is slightly more complex than just controlling some lights, sensors or actuators.

But you’d catch cases like this where the hardware is immediately bricked during driving. If you didn’t, your tests aren’t up to snuff.

Let’s not let perfection obstruct progress.

>your tests aren’t up to snuff

Yup, my test is not perfect, but "Let’s not let perfection obstruct progress".

Are you suggesting the “does it drive” test after an update isn’t a reasonable test that should be a fairly common sense one to add in?

In all scenarios, tricky bugs will happen. Something inconceivable will go untested. But that’s not what happened here. This is basically functionality being lost that very obviously should have been tested.

In that sense, they could have made progress. Nobody is expecting perfection. You seem to be hung up on the distinction

This is not a case of 'absolutely bug free', more a case of 'not obviously and stupidly broken'.