From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=unavailable autolearn_force=no version=3.4.4 Path: eternal-september.org!reader01.eternal-september.org!reader02.eternal-september.org!news.eternal-september.org!news.eternal-september.org!.POSTED!not-for-mail From: Simon Wright Newsgroups: comp.lang.ada Subject: Re: Ada features supported by SPARK 2014 Date: Tue, 06 Dec 2016 09:17:57 +0000 Organization: A noiseless patient Spider Message-ID: References: <0bba1203-42cf-4689-afd1-c417c681f5f6@googlegroups.com> Mime-Version: 1.0 Content-Type: text/plain Injection-Info: mx02.eternal-september.org; posting-host="864bc9c0338a1658b2b7d47e9713a3a4"; logging-data="18557"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX18QL2jS4oM7Q4hpvDY5KZDuH8vdrAORlGY=" User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.1 (darwin) Cancel-Lock: sha1:RN6/ImIc3ZqyWjD+Rr9/UY2jKco= sha1:2zXMW2PIj76q+0Fg5IR2Pcf3EGY= Xref: news.eternal-september.org comp.lang.ada:32636 Date: 2016-12-06T09:17:57+00:00 List-Id: Daniel King writes: > In addition, for tasking features, SPARK is limited to the "Ravenscar > profile", which is basically a set of restrictions on Ada's tasking > features, to permit static analysis for formal verification. I found that - as soon as there's anything involving time - I couldn't work out how to specify flow (when I "fixed" one problem, another would pop up somewhere else; if I "fixed" that, the first would pop up again). So I left it up to the tool to infer flow for itself according to whatever arcane rules it wanted to (not really a satisfactory state of affairs for something that's supposed to increase my confidence in the code).