From: Robert A Duff <bobduff@shell01.TheWorld.com>
Subject: Re: High-Integrity OO and controlled types
Date: Mon, 02 May 2011 20:08:43 -0400
Date: 2011-05-02T20:08:43-04:00 [thread overview]
Message-ID: <wcchb9csl10.fsf@shell01.TheWorld.com> (raw)
In-Reply-To: 47nrp21n5a5b.1tmmgxawdp4ko$.dlg@40tude.net
"Dmitry A. Kazakov" <mailbox@dmitry-kazakov.de> writes:
> On Mon, 02 May 2011 12:32:53 -0400, Robert A Duff wrote:
>> Note that we're talking about pragmas Restrictions and Profile.
>
> Rather about rationale behind such restrictions.
OK.
>...You gave an example of an
> overhead caused by local access-to-controlled types.
No, all access-to-controlled types -- not just local ones.
And access to non-controlled types that contain controlled components.
And it's not just overhead (as in run-time efficiency) -- it's the complexity of
the run-time support.
And it's not access types per se -- it's heap-allocated objects
(i.e. "new") that introduces most of the complexity.
>..That has a far
> narrower scope than *any* usage of controlled types.
Yes, that's a fair point. Perhaps the restrictions should have been
somewhat narrower. But note that until recently, GNAT used a bunch of
run-time system calls (and linked lists) for stack-allocated controlled
objects, too. It was a huge amount of work to fix that.
Another thing to consider: limited controlled types are simpler than
non-limited ones.
>...A restriction of such
> access types can be reasonable (as well as, and much more importantly,
> precluding dynamic accessibility checks).
Well, dynamic accessibility checks are a separate issue, but I must say:
I do NOT like dynamic accessibility checks.
>...Prohibiting all controlled types
> is just irrational.
I think "irrational" is too strong. The people who want these sorts
of restrictions tend to like conservative rules.
- Bob
next prev parent reply other threads:[~2011-05-03 0:08 UTC|newest]
Thread overview: 32+ messages / expand[flat|nested] mbox.gz Atom feed top
2011-05-01 20:38 High-Integrity OO and controlled types Maciej Sobczak
2011-05-01 21:29 ` Robert A Duff
2011-05-01 22:44 ` Simon Wright
2011-05-02 7:59 ` Dmitry A. Kazakov
2011-05-02 16:32 ` Robert A Duff
2011-05-02 19:39 ` Dmitry A. Kazakov
2011-05-03 0:08 ` Robert A Duff [this message]
2011-05-03 7:30 ` Dmitry A. Kazakov
2011-05-03 16:51 ` Robert A Duff
2011-05-02 9:50 ` Cyrille
2011-05-02 10:01 ` Cyrille
2011-05-02 19:25 ` Maciej Sobczak
2011-05-03 9:32 ` Cyrille
2011-05-03 9:59 ` Maciej Sobczak
2011-05-03 10:24 ` Dmitry A. Kazakov
2011-05-03 16:53 ` Robert A Duff
2011-05-03 17:37 ` Dmitry A. Kazakov
2011-05-03 11:28 ` Georg Bauhaus
2011-05-03 12:27 ` Dmitry A. Kazakov
2011-05-03 15:22 ` Georg Bauhaus
2011-05-03 16:28 ` Dmitry A. Kazakov
2011-05-04 8:48 ` Georg Bauhaus
2011-05-04 9:28 ` Dmitry A. Kazakov
2011-05-04 14:46 ` Georg Bauhaus
2011-05-04 15:01 ` Dmitry A. Kazakov
2011-05-04 15:25 ` Georg Bauhaus
2011-05-04 16:23 ` Dmitry A. Kazakov
2011-05-04 17:06 ` Georg Bauhaus
2011-05-04 20:16 ` Dmitry A. Kazakov
2011-05-05 7:13 ` Maciej Sobczak
2011-05-05 10:58 ` Cyrille
2011-05-05 12:35 ` Dmitry A. Kazakov
replies disabled
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox