Annotated Ada Reference ManualLegal Information
Contents   Index   References   Search   Previous   Next 

 13.12 Pragma Restrictions and Pragma ProfilePragma Restrictions

{AI05-0246-1} [A pragma Restrictions expresses the user's intent to abide by certain restrictions. A pragma Profile expresses the user's intent to abide by a set of Restrictions or other specified run-time policies. These This may facilitate the construction of simpler run-time environments.] 


The form of a pragma Restrictions is as follows: 
  pragma Restrictions(restriction{, restriction});
{AI95-00381-01} restriction ::= restriction_identifier
    | restriction_parameter_identifier => restriction_parameter_argument expression
{AI95-00381-01} restriction_parameter_argument ::= name | expression

Name Resolution Rules

Unless otherwise specified for a particular restriction, the expression is expected to be of any integer type. 

Legality Rules

Unless otherwise specified for a particular restriction, the expression shall be static, and its value shall be nonnegative. 

Static Semantics

{AI95-00394-01} The set of restrictions restrictions is implementation defined. 
Implementation defined: The set of restrictions restrictions allowed in a pragma Restrictions.

Post-Compilation Rules

{AI05-0013-1} A pragma Restrictions is a configuration pragma. If a pragma Restrictions applies to any compilation unit included in the partition, this may impose either (or both) of two kinds of requirements, as; unless otherwise specified for the a particular restriction:, a partition shall obey the restriction if a pragma Restrictions applies to any compilation unit included in the partition.
{AI05-0013-1} A restriction may impose requirements on some or all of the units comprising the partition. Unless otherwise specified for a particular restriction, such a requirement applies to all of the units comprising the partition and is enforced via a post-compilation check.
{AI05-0013-1} A restriction may impose requirements on the runtime behavior of the program, as indicated by the specification of runtime behavior associated with a violation of the requirement.
Ramification: In this latter case, there is no post-compilation check needed for the requirement.
  {8652/0042} {AI95-00130-01} For the purpose of checking whether a partition contains constructs that violate any restriction (unless specified otherwise for a particular restriction):
{8652/0042} {AI95-00130-01} Generic instances are logically expanded at the point of instantiation;
{8652/0042} {AI95-00130-01} If an object of a type is declared or allocated and not explicitly initialized, then all expressions appearing in the definition for the type and any of its ancestors are presumed to be used;
{8652/0042} {AI95-00130-01} A default_expression for a formal parameter or a generic formal object is considered to be used if and only if the corresponding actual parameter is not provided in a given call or instantiation. 

Implementation Permissions

An implementation may place limitations on the values of the expression that are supported, and limitations on the supported combinations of restrictions. The consequences of violating such limitations are implementation defined. 
Implementation defined: The consequences of violating limitations on Restrictions pragmas.
Ramification: Such limitations may be enforced at compile time or at run time. Alternatively, the implementation is allowed to declare violations of the restrictions to be erroneous, and not enforce them at all. 
  {8652/0042} {AI95-00130-01} An implementation is permitted to omit restriction checks for code that is recognized at compile time to be unreachable and for which no code is generated.
  {8652/0043} {AI95-00190-01} Whenever enforcement of a restriction is not required prior to execution, an implementation may nevertheless enforce the restriction prior to execution of a partition to which the restriction applies, provided that every execution of the partition would violate the restriction.


{AI95-00249-01} {AI05-0246-1} The form of a pragma Profile is as follows: 
  pragma Profile (profile_identifier {, profile_pragma_argument_association});

Legality Rules

 {AI95-00249-01} {AI05-0246-1} The profile_identifier shall be the name of a usage profile. The semantics of any profile_pragma_argument_associations are defined by the usage profile specified by the profile_identifier.

Static Semantics

 {AI95-00249-01} {AI05-0246-1} A profile is equivalent to the set of configuration pragmas that is defined for each usage profile. 

Post-Compilation Rules

 {AI95-00249-01} A pragma Profile is a configuration pragma. There may be more than one pragma Profile for a partition. 
37  {AI95-00347-01} Restrictions intended to facilitate the construction of efficient tasking run-time systems are defined in D.7. Restrictions intended for use when constructing high integrity systems Safety- and security-related restrictions are defined in H.4.
38  An implementation has to enforce the restrictions in cases where enforcement is required, even if it chooses not to take advantage of the restrictions in terms of efficiency. 
Discussion: It is not the intent that an implementation will support a different run-time system for every possible combination of restrictions. An implementation might support only two run-time systems, and document a set of restrictions that is sufficient to allow use of the more efficient and safe one. 

Extensions to Ada 83

Pragma Restrictions is new to Ada 95. 

Extensions to Ada 95

{AI95-00249-01} {AI05-0246-1} Pragma Profile is new; it was moved here by Ada 2012 and renamed to a "usage profile" but was otherwise unchanged. 

Wording Changes from Ada 95

{8652/0042} {AI95-00130-01} Corrigendum: Corrected the wording so that restrictions are checked inside of generic instantiations and in default expressions. Since not making these checks would violate the purpose of restrictions, we are not documenting this as an incompatibility.
{8652/0043} {AI95-00190-01} Corrigendum: Added a permission that restrictions can be enforced at compile-time. While this is technically incompatible, documenting it as such would be unnecessarily alarming - there should not be any programs depending on the runtime failure of restrictions.
{AI95-00381-01} The syntax of a restriction_parameter_argument has been defined to better support restriction No_Dependence (see 13.12.1).

Wording Changes from Ada 2005

{AI05-0013-1} Correction: When restrictions are checked has been clarified. 

Contents   Index   References   Search   Previous   Next 
Ada-Europe Ada 2005 and 2012 Editions sponsored in part by Ada-Europe