From mboxrd@z Thu Jan  1 00:00:00 1970
X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me
X-Spam-Level: 
X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00
	autolearn=unavailable autolearn_force=no version=3.4.4
Path: 
 eternal-september.org!reader01.eternal-september.org!reader02.eternal-september.org!feeder.eternal-september.org!aioe.org!.POSTED!not-for-mail
From: "J-P. Rosen" <rosen@adalog.fr>
Newsgroups: comp.lang.ada
Subject: Re: How to get Ada to ?cross the chasm??
Date: Sat, 12 May 2018 08:44:42 +0200
Organization: Adalog
Message-ID: <pd62gp$h1o$1@gioia.aioe.org>
References: <1c73f159-eae4-4ae7-a348-03964b007197@googlegroups.com>
 <pc8l7e$km5$1@franka.jacob-sparre.dk> <87in88m43h.fsf@nightsong.com>
 <cd866ee8-ad4d-489e-a38b-d8e5f5d4af00@googlegroups.com>
 <87efiuope8.fsf@nightsong.com> <pcdagp$7pn$1@franka.jacob-sparre.dk>
 <87lgd1heva.fsf@nightsong.com> <pcg54t$gul$1@franka.jacob-sparre.dk>
 <87zi1gz3kl.fsf@nightsong.com> <pciqcd$ou1$1@franka.jacob-sparre.dk>
 <878t8x7k1j.fsf@nightsong.com> <fl7t0uF410rU1@mid.individual.net>
 <87fu342q1o.fsf@nightsong.com> <fleiqiFjhprU1@mid.individual.net>
 <87mux9645j.fsf@nightsong.com> <fljn0oFnugqU1@mid.individual.net>
 <8736yz18e4.fsf@nightsong.com>
 <e47585a0-8bb0-46c2-82be-140b189643e8@googlegroups.com>
 <pd4gmg$koe$1@dont-email.me> <87mux62it0.fsf@nightsong.com>
 <flm7hdFainiU1@mid.individual.net> <87k1sat1ie.fsf@nightsong.com>
 <flmdbnFbrgaU1@mid.individual.net> <pd52t3$s1k$2@franka.jacob-sparre.dk>
 <flmiajFct8kU1@mid.individual.net>
NNTP-Posting-Host: TKk5kT01+2w6guVcOjcsiQ.user.gioia.aioe.org
Mime-Version: 1.0
Content-Type: text/plain; charset=windows-1252
Content-Transfer-Encoding: 8bit
X-Complaints-To: abuse@aioe.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101
 Thunderbird/52.7.0
Openpgp: preference=signencrypt
X-Notice: Filtered by postfilter v. 0.8.3
Content-Language: fr
Xref: reader02.eternal-september.org comp.lang.ada:52307
Date: 2018-05-12T08:44:42+02:00
List-Id: <comp.lang.ada>

Le 12/05/2018 à 00:04, Niklas Holsti a écrit :
>> Also note that in the common special case of loop iteration, no checks
>> are
>> needed at all, either at the generation of the index or it's use:
>>
>>      for I in Arr'Range loop
>>           ... Arr(I) ...
>>      end loop;
>>
>> I cannot be outside of it's range by construction, so no checks needed
>> there
>> other than the usual loop termination check, and that being the case, no
>> checks are needed on the array indexing, either.
> 
> Yes, but for the analogous C loop, a bounds-checking C compiler would
> seldom need deep analysis to come to the same conclusion, using perhaps
> one or two checks on the loop limits against the size of the array
> (which a bounds-checking C compiler would have to pass around, to
> simulate the Ada 'Length attribute).
I doubt it, because the loop index can be modified at any time. It might
be provable if the index is local to the loop (is it possible in C, or
is it just C++?), its address is not taken, it is not visible from nor
passed to any function, it can be proven that the upper bound is not
changed by the loop...

Very far away from the general guarantee of Ada!

-- 
J-P. Rosen
Adalog
2 rue du Docteur Lombard, 92441 Issy-les-Moulineaux CEDEX
Tel: +33 1 45 29 21 52, Fax: +33 1 45 29 25 00
http://www.adalog.fr