| blob | 8226e107565b519d4adb9310689c148e7d80e93d |
1 ------------------------------------------------------------------------------
2 -- --
3 -- GNAT COMPILER COMPONENTS --
4 -- --
5 -- S E M _ E L A B --
6 -- --
7 -- B o d y --
8 -- --
9 -- Copyright (C) 1997-2018, Free Software Foundation, Inc. --
10 -- --
11 -- GNAT is free software; you can redistribute it and/or modify it under --
12 -- terms of the GNU General Public License as published by the Free Soft- --
13 -- ware Foundation; either version 3, or (at your option) any later ver- --
14 -- sion. GNAT is distributed in the hope that it will be useful, but WITH- --
15 -- OUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY --
16 -- or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License --
17 -- for more details. You should have received a copy of the GNU General --
18 -- Public License distributed with GNAT; see file COPYING3. If not, go to --
19 -- http://www.gnu.org/licenses for a complete copy of the license. --
20 -- --
21 -- GNAT was originally developed by the GNAT team at New York University. --
22 -- Extensive contributions were provided by Ada Core Technologies Inc. --
23 -- --
24 ------------------------------------------------------------------------------
66 -----------------------------------------
67 -- Access-before-elaboration mechanism --
68 -----------------------------------------
70 -- The access-before-elaboration (ABE) mechanism implemented in this unit
71 -- has the following objectives:
72 --
73 -- * Diagnose at compile-time or install run-time checks to prevent ABE
74 -- access to data and behaviour.
75 --
76 -- The high-level idea is to accurately diagnose ABE issues within a
77 -- single unit because the ABE mechanism can inspect the whole unit.
78 -- As soon as the elaboration graph extends to an external unit, the
79 -- diagnostics stop because the body of the unit may not be available.
80 -- Due to control and data flow, the ABE mechanism cannot accurately
81 -- determine whether a particular scenario will be elaborated or not.
82 -- Conditional ABE checks are therefore used to verify the elaboration
83 -- status of a local and external target at run time.
84 --
85 -- * Supply elaboration dependencies for a unit to binde
86 --
87 -- The ABE mechanism registers each outgoing elaboration edge for the
88 -- main unit in its ALI file. GNATbind and binde can then reconstruct
89 -- the full elaboration graph and determine the proper elaboration
90 -- order for all units in the compilation.
91 --
92 -- The ABE mechanism supports three models of elaboration:
93 --
94 -- * Dynamic model - This is the most permissive of the three models.
95 -- When the dynamic model is in effect, the mechanism performs very
96 -- little diagnostics and generates run-time checks to detect ABE
97 -- issues. The behaviour of this model is identical to that specified
98 -- by the Ada RM. This model is enabled with switch -gnatE.
99 --
100 -- * Static model - This is the middle ground of the three models. When
101 -- the static model is in effect, the mechanism diagnoses and installs
102 -- run-time checks to detect ABE issues in the main unit. In addition,
103 -- the mechanism generates implicit Elaborate or Elaborate_All pragmas
104 -- to ensure the prior elaboration of withed units. The model employs
105 -- textual order, with clause context, and elaboration-related source
106 -- pragmas. This is the default model.
107 --
108 -- * SPARK model - This is the most conservative of the three models and
109 -- impelements the semantics defined in SPARK RM 7.7. The SPARK model
110 -- is in effect only when a context resides in a SPARK_Mode On region,
111 -- otherwise the mechanism falls back to one of the previous models.
112 --
113 -- The ABE mechanism consists of a "recording" phase and a "processing"
114 -- phase.
116 -----------------
117 -- Terminology --
118 -----------------
120 -- * ABE - An attempt to activate, call, or instantiate a scenario which
121 -- has not been fully elaborated.
122 --
123 -- * Bridge target - A type of target. A bridge target is a link between
124 -- scenarios. It is usually a byproduct of expansion and does not have
125 -- any direct ABE ramifications.
126 --
127 -- * Call marker - A special node used to indicate the presence of a call
128 -- in the tree in case expansion transforms or eliminates the original
129 -- call. N_Call_Marker nodes do not have static and run-time semantics.
130 --
131 -- * Conditional ABE - A type of ABE. A conditional ABE occurs when the
132 -- elaboration or invocation of a target by a scenario within the main
133 -- unit causes an ABE, but does not cause an ABE for another scenarios
134 -- within the main unit.
135 --
136 -- * Declaration level - A type of enclosing level. A scenario or target is
137 -- at the declaration level when it appears within the declarations of a
138 -- block statement, entry body, subprogram body, or task body, ignoring
139 -- enclosing packages.
140 --
141 -- * Early call region - A section of code which ends at a subprogram body
142 -- and starts from the nearest non-preelaborable construct which precedes
143 -- the subprogram body. The early call region extends from a package body
144 -- to a package spec when the spec carries pragma Elaborate_Body.
145 --
146 -- * Generic library level - A type of enclosing level. A scenario or
147 -- target is at the generic library level if it appears in a generic
148 -- package library unit, ignoring enclosing packages.
149 --
150 -- * Guaranteed ABE - A type of ABE. A guaranteed ABE occurs when the
151 -- elaboration or invocation of a target by all scenarios within the
152 -- main unit causes an ABE.
153 --
154 -- * Instantiation library level - A type of enclosing level. A scenario
155 -- or target is at the instantiation library level if it appears in an
156 -- instantiation library unit, ignoring enclosing packages.
157 --
158 -- * Library level - A type of enclosing level. A scenario or target is at
159 -- the library level if it appears in a package library unit, ignoring
160 -- enclosng packages.
161 --
162 -- * Non-library-level encapsulator - A construct that cannot be elaborated
163 -- on its own and requires elaboration by a top-level scenario.
164 --
165 -- * Scenario - A construct or context which may be elaborated or executed
166 -- by elaboration code. The scenarios recognized by the ABE mechanism are
167 -- as follows:
168 --
169 -- - '[Unrestricted_]Access of entries, operators, and subprograms
170 --
171 -- - Assignments to variables
172 --
173 -- - Calls to entries, operators, and subprograms
174 --
175 -- - Derived type declarations
176 --
177 -- - Instantiations
178 --
179 -- - Pragma Refined_State
180 --
181 -- - Reads of variables
182 --
183 -- - Task activation
184 --
185 -- * Target - A construct referenced by a scenario. The targets recognized
186 -- by the ABE mechanism are as follows:
187 --
188 -- - For '[Unrestricted_]Access of entries, operators, and subprograms,
189 -- the target is the entry, operator, or subprogram.
190 --
191 -- - For assignments to variables, the target is the variable
192 --
193 -- - For calls, the target is the entry, operator, or subprogram
194 --
195 -- - For derived type declarations, the target is the derived type
196 --
197 -- - For instantiations, the target is the generic template
198 --
199 -- - For pragma Refined_State, the targets are the constituents
200 --
201 -- - For reads of variables, the target is the variable
202 --
203 -- - For task activation, the target is the task body
204 --
205 -- * Top-level scenario - A scenario which appears in a non-generic main
206 -- unit. Depending on the elaboration model is in effect, the following
207 -- addotional restrictions apply:
208 --
209 -- - Dynamic model - No restrictions
210 --
211 -- - SPARK model - Falls back to either the dynamic or static model
212 --
213 -- - Static model - The scenario must be at the library level
215 ---------------------
216 -- Recording phase --
217 ---------------------
219 -- The Recording phase coincides with the analysis/resolution phase of the
220 -- compiler. It has the following objectives:
221 --
222 -- * Record all top-level scenarios for examination by the Processing
223 -- phase.
224 --
225 -- Saving only a certain number of nodes improves the performance of
226 -- the ABE mechanism. This eliminates the need to examine the whole
227 -- tree in a separate pass.
228 --
229 -- * Record certain SPARK scenarios which are not necessarily executable
230 -- during elaboration, but still require elaboration-related checks.
231 --
232 -- Saving only a certain number of nodes improves the performance of
233 -- the ABE mechanism. This eliminates the need to examine the whole
234 -- tree in a separate pass.
235 --
236 -- * Detect and diagnose calls in preelaborable or pure units, including
237 -- generic bodies.
238 --
239 -- This diagnostic is carried out during the Recording phase because it
240 -- does not need the heavy recursive traversal done by the Processing
241 -- phase.
242 --
243 -- * Detect and diagnose guaranteed ABEs caused by instantiations,
244 -- calls, and task activation.
245 --
246 -- The issues detected by the ABE mechanism are reported as warnings
247 -- because they do not violate Ada semantics. Forward instantiations
248 -- may thus reach gigi, however gigi cannot handle certain kinds of
249 -- premature instantiations and may crash. To avoid this limitation,
250 -- the ABE mechanism must identify forward instantiations as early as
251 -- possible and suppress their bodies. Calls and task activations are
252 -- included in this category for completeness.
254 ----------------------
255 -- Processing phase --
256 ----------------------
258 -- The Processing phase is a separate pass which starts after instantiating
259 -- and/or inlining of bodies, but before the removal of Ghost code. It has
260 -- the following objectives:
261 --
262 -- * Examine all top-level scenarios saved during the Recording phase
263 --
264 -- The top-level scenarios act as roots for depth-first traversal of
265 -- the call/instantiation/task activation graph. The traversal stops
266 -- when an outgoing edge leaves the main unit.
267 --
268 -- * Examine all SPARK scenarios saved during the Recording phase
269 --
270 -- * Depending on the elaboration model in effect, perform the following
271 -- actions:
272 --
273 -- - Dynamic model - Install run-time conditional ABE checks.
274 --
275 -- - SPARK model - Enforce the SPARK elaboration rules
276 --
277 -- - Static model - Diagnose conditional ABEs, install run-time
278 -- conditional ABE checks, and guarantee the elaboration of
279 -- external units.
280 --
281 -- * Examine nested scenarios
282 --
283 -- Nested scenarios discovered during the depth-first traversal are
284 -- in turn subjected to the same actions outlined above and examined
285 -- for the next level of nested scenarios.
287 ------------------
288 -- Architecture --
289 ------------------
291 -- Analysis/Resolution
292 -- |
293 -- +- Build_Call_Marker
294 -- |
295 -- +- Build_Variable_Reference_Marker
296 -- |
297 -- +- | -------------------- Recording phase ---------------------------+
298 -- | v |
299 -- | Record_Elaboration_Scenario |
300 -- | | |
301 -- | +--> Check_Preelaborated_Call |
302 -- | | |
303 -- | +--> Process_Guaranteed_ABE |
304 -- | | | |
305 -- | | +--> Process_Guaranteed_ABE_Activation |
306 -- | | | |
307 -- | | +--> Process_Guaranteed_ABE_Call |
308 -- | | | |
309 -- | | +--> Process_Guaranteed_ABE_Instantiation |
310 -- | | |
311 -- +- | ----------------------------------------------------------------+
312 -- |
313 -- |
314 -- +--> SPARK_Scenarios
315 -- | +-----------+-----------+ .. +-----------+
316 -- | | Scenario1 | Scenario2 | .. | ScenarioN |
317 -- | +-----------+-----------+ .. +-----------+
318 -- |
319 -- +--> Top_Level_Scenarios
320 -- | +-----------+-----------+ .. +-----------+
321 -- | | Scenario1 | Scenario2 | .. | ScenarioN |
322 -- | +-----------+-----------+ .. +-----------+
323 -- |
324 -- End of Compilation
325 -- |
326 -- +- | --------------------- Processing phase -------------------------+
327 -- | v |
328 -- | Check_Elaboration_Scenarios |
329 -- | | |
330 -- | +--> Check_SPARK_Scenario |
331 -- | | | |
332 -- | | +--> Check_SPARK_Derived_Type |
333 -- | | | |
334 -- | | +--> Check_SPARK_Instantiation |
335 -- | | | |
336 -- | | +--> Check_SPARK_Refined_State_Pragma |
337 -- | | |
338 -- | +--> Process_Conditional_ABE <---------------------------+ |
339 -- | | | |
340 -- | +--> Process_Conditional_ABE_Access Is_Suitable_Scenario |
341 -- | | ^ |
342 -- | +--> Process_Conditional_ABE_Activation | |
343 -- | | | | |
344 -- | | +-----------------------------+ | |
345 -- | | | | |
346 -- | +--> Process_Conditional_ABE_Call +--------> Traverse_Body |
347 -- | | | | |
348 -- | | +-----------------------------+ |
349 -- | | |
350 -- | +--> Process_Conditional_ABE_Instantiation |
351 -- | | |
352 -- | +--> Process_Conditional_ABE_Variable_Assignment |
353 -- | | |
354 -- | +--> Process_Conditional_ABE_Variable_Reference |
355 -- | |
356 -- +--------------------------------------------------------------------+
358 ----------------------
359 -- Important points --
360 ----------------------
362 -- The Processing phase starts after the analysis, resolution, expansion
363 -- phase has completed. As a result, no current semantic information is
364 -- available. The scope stack is empty, global flags such as In_Instance
365 -- or Inside_A_Generic become useless. To remedy this, the ABE mechanism
366 -- must either save or recompute semantic information.
368 -- Expansion heavily transforms calls and to some extent instantiations. To
369 -- remedy this, the ABE mechanism generates N_Call_Marker nodes in order to
370 -- capture the target and relevant attributes of the original call.
372 -- The diagnostics of the ABE mechanism depend on accurate source locations
373 -- to determine the spacial relation of nodes.
375 -----------------------------------------
376 -- Suppression of elaboration warnings --
377 -----------------------------------------
379 -- Elaboration warnings along multiple traversal paths rooted at a scenario
380 -- are suppressed when the scenario has elaboration warnings suppressed.
381 --
382 -- Root scenario
383 -- |
384 -- +-- Child scenario 1
385 -- | |
386 -- | +-- Grandchild scenario 1
387 -- | |
388 -- | +-- Grandchild scenario N
389 -- |
390 -- +-- Child scenario N
391 --
392 -- If the root scenario has elaboration warnings suppressed, then all its
393 -- child, grandchild, etc. scenarios will have their elaboration warnings
394 -- suppressed.
395 --
396 -- In addition to switch -gnatwL, pragma Warnings may be used to suppress
397 -- elaboration-related warnings when used in the following manner:
398 --
399 -- pragma Warnings ("L");
400 -- <scenario-or-target>
401 --
402 -- <target>
403 -- pragma Warnings (Off, target);
404 --
405 -- pragma Warnings (Off);
406 -- <scenario-or-target>
407 --
408 -- * To suppress elaboration warnings for '[Unrestricted_]Access of
409 -- entries, operators, and subprograms, either:
410 --
411 -- - Suppress the entry, operator, or subprogram, or
412 -- - Suppress the attribute, or
413 -- - Use switch -gnatw.f
414 --
415 -- * To suppress elaboration warnings for calls to entries, operators,
416 -- and subprograms, either:
417 --
418 -- - Suppress the entry, operator, or subprogram, or
419 -- - Suppress the call
420 --
421 -- * To suppress elaboration warnings for instantiations, suppress the
422 -- instantiation.
423 --
424 -- * To suppress elaboration warnings for task activations, either:
425 --
426 -- - Suppress the task object, or
427 -- - Suppress the task type, or
428 -- - Suppress the activation call
430 --------------
431 -- Switches --
432 --------------
434 -- The following switches may be used to control the behavior of the ABE
435 -- mechanism.
436 --
437 -- -gnatd_a stop elaboration checks on accept or select statement
438 --
439 -- The ABE mechanism stops the traversal of a task body when it
440 -- encounters an accept or a select statement. This behavior is
441 -- equivalent to restriction No_Entry_Calls_In_Elaboration_Code,
442 -- but without penalizing actual entry calls during elaboration.
443 --
444 -- -gnatd_e ignore entry calls and requeue statements for elaboration
445 --
446 -- The ABE mechanism does not generate N_Call_Marker nodes for
447 -- protected or task entry calls as well as requeue statements.
448 -- As a result, the calls and requeues are not recorded or
449 -- processed.
450 --
451 -- -gnatdE elaboration checks on predefined units
452 --
453 -- The ABE mechanism considers scenarios which appear in internal
454 -- units (Ada, GNAT, Interfaces, System).
455 --
456 -- -gnatd.G ignore calls through generic formal parameters for elaboration
457 --
458 -- The ABE mechanism does not generate N_Call_Marker nodes for
459 -- calls which occur in expanded instances, and invoke generic
460 -- actual subprograms through generic formal subprograms. As a
461 -- result, the calls are not recorded or processed.
462 --
463 -- -gnatd_i ignore activations and calls to instances for elaboration
464 --
465 -- The ABE mechanism ignores calls and task activations when they
466 -- target a subprogram or task type defined an external instance.
467 -- As a result, the calls and task activations are not processed.
468 --
469 -- -gnatdL ignore external calls from instances for elaboration
470 --
471 -- The ABE mechanism does not generate N_Call_Marker nodes for
472 -- calls which occur in expanded instances, do not invoke generic
473 -- actual subprograms through formal subprograms, and the target
474 -- is external to the instance. As a result, the calls are not
475 -- recorded or processed.
476 --
477 -- -gnatd.o conservative elaboration order for indirect calls
478 --
479 -- The ABE mechanism treats '[Unrestricted_]Access of an entry,
480 -- operator, or subprogram as an immediate invocation of the
481 -- target. As a result, it performs ABE checks and diagnostics on
482 -- the immediate call.
483 --
484 -- -gnatd_p ignore assertion pragmas for elaboration
485 --
486 -- The ABE mechanism does not generate N_Call_Marker nodes for
487 -- calls to subprograms which verify the run-time semantics of
488 -- the following assertion pragmas:
489 --
490 -- Default_Initial_Condition
491 -- Initial_Condition
492 -- Invariant
493 -- Invariant'Class
494 -- Post
495 -- Post'Class
496 -- Postcondition
497 -- Type_Invariant
498 -- Type_Invariant_Class
499 --
500 -- As a result, the assertion expressions of the pragmas are not
501 -- processed.
502 --
503 -- -gnatd_s stop elaboration checks on synchronous suspension
504 --
505 -- The ABE mechanism stops the traversal of a task body when it
506 -- encounters a call to one of the following routines:
507 --
508 -- Ada.Synchronous_Barriers.Wait_For_Release
509 -- Ada.Synchronous_Task_Control.Suspend_Until_True
510 --
511 -- -gnatd.U ignore indirect calls for static elaboration
512 --
513 -- The ABE mechanism does not consider '[Unrestricted_]Access of
514 -- entries, operators, and subprograms. As a result, the scenarios
515 -- are not recorder or processed.
516 --
517 -- -gnatd.v enforce SPARK elaboration rules in SPARK code
518 --
519 -- The ABE mechanism applies some of the SPARK elaboration rules
520 -- defined in the SPARK reference manual, chapter 7.7. Note that
521 -- certain rules are always enforced, regardless of whether the
522 -- switch is active.
523 --
524 -- -gnatd.y disable implicit pragma Elaborate_All on task bodies
525 --
526 -- The ABE mechanism does not generate implicit Elaborate_All when
527 -- the need for the pragma came from a task body.
528 --
529 -- -gnatE dynamic elaboration checking mode enabled
530 --
531 -- The ABE mechanism assumes that any scenario is elaborated or
532 -- invoked by elaboration code. The ABE mechanism performs very
533 -- little diagnostics and generates condintional ABE checks to
534 -- detect ABE issues at run-time.
535 --
536 -- -gnatel turn on info messages on generated Elaborate[_All] pragmas
537 --
538 -- The ABE mechanism produces information messages on generated
539 -- implicit Elabote[_All] pragmas along with traceback showing
540 -- why the pragma was generated. In addition, the ABE mechanism
541 -- produces information messages for each scenario elaborated or
542 -- invoked by elaboration code.
543 --
544 -- -gnateL turn off info messages on generated Elaborate[_All] pragmas
545 --
546 -- The complementary switch for -gnatel.
547 --
548 -- -gnatH legacy elaboration checking mode enabled
549 --
550 -- When this switch is in effect, the pre-18.x ABE model becomes
551 -- the defacto ABE model. This ammounts to cutting off all entry
552 -- points into the new ABE mechanism, and giving full control to
553 -- the old ABE mechanism.
554 --
555 -- -gnatJ permissive elaboration checking mode enabled
556 --
557 -- This switch activates the following switches:
558 --
559 -- -gnatd_a
560 -- -gnatd_e
561 -- -gnatd.G
562 -- -gnatd_i
563 -- -gnatdL
564 -- -gnatd_p
565 -- -gnatd_s
566 -- -gnatd.U
567 -- -gnatd.y
568 --
569 -- IMPORTANT: The behavior of the ABE mechanism becomes more
570 -- permissive at the cost of accurate diagnostics and runtime
571 -- ABE checks.
572 --
573 -- -gnatw.f turn on warnings for suspicious Subp'Access
574 --
575 -- The ABE mechanism treats '[Unrestricted_]Access of an entry,
576 -- operator, or subprogram as a pseudo invocation of the target.
577 -- As a result, it performs ABE diagnostics on the pseudo call.
578 --
579 -- -gnatw.F turn off warnings for suspicious Subp'Access
580 --
581 -- The complementary switch for -gnatw.f.
582 --
583 -- -gnatwl turn on warnings for elaboration problems
584 --
585 -- The ABE mechanism produces warnings on detected ABEs along with
586 -- a traceback showing the graph of the ABE.
587 --
588 -- -gnatwL turn off warnings for elaboration problems
589 --
590 -- The complementary switch for -gnatwl.
592 ---------------------------
593 -- Adding a new scenario --
594 ---------------------------
596 -- The following steps describe how to add a new elaboration scenario and
597 -- preserve the existing architecture. Note that not all of the steps may
598 -- need to be carried out.
599 --
600 -- 1) Update predicate Is_Scenario
601 --
602 -- 2) Add predicate Is_Suitable_xxx. Include a call to it in predicate
603 -- Is_Suitable_Scenario.
604 --
605 -- 3) Update routine Record_Elaboration_Scenario
606 --
607 -- 4) Add routine Process_Conditional_ABE_xxx. Include a call to it in
608 -- routine Process_Conditional_ABE.
609 --
610 -- 5) Add routine Process_Guaranteed_ABE_xxx. Include a call to it in
611 -- routine Process_Guaranteed_ABE.
612 --
613 -- 6) Add routine Check_SPARK_xxx. Include a call to it in routine
614 -- Check_SPARK_Scenario.
615 --
616 -- 7) Add routine Info_xxx. Include a call to it in routine
617 -- Process_Conditional_ABE_xxx.
618 --
619 -- 8) Add routine Output_xxx. Include a call to it in routine
620 -- Output_Active_Scenarios.
621 --
622 -- 9) Add routine Extract_xxx_Attributes
623 --
624 -- 10) Update routine Is_Potential_Scenario
626 -------------------------
627 -- Adding a new target --
628 -------------------------
630 -- The following steps describe how to add a new elaboration target and
631 -- preserve the existing architecture. Note that not all of the steps may
632 -- need to be carried out.
633 --
634 -- 1) Add predicate Is_xxx.
635 --
636 -- 2) Update the following predicates
637 --
638 -- Is_Ada_Semantic_Target
639 -- Is_Assertion_Pragma_Target
640 -- Is_Bridge_Target
641 -- Is_SPARK_Semantic_Target
642 --
643 -- If necessary, create a new category.
644 --
645 -- 3) Update the appropriate Info_xxx routine.
646 --
647 -- 4) Update the appropriate Output_xxx routine.
648 --
649 -- 5) Update routine Extract_Target_Attributes. If necessary, create a
650 -- new Extract_xxx routine.
652 --------------------------
653 -- Debugging ABE issues --
654 --------------------------
656 -- * If the issue involves a call, ensure that the call is eligible for ABE
657 -- processing and receives a corresponding call marker. The routines of
658 -- interest are
659 --
660 -- Build_Call_Marker
661 -- Record_Elaboration_Scenario
663 -- * If the issue involves an arbitrary scenario, ensure that the scenario
664 -- is either recorded, or is successfully recognized while traversing a
665 -- body. The routines of interest are
666 --
667 -- Record_Elaboration_Scenario
668 -- Process_Conditional_ABE
669 -- Process_Guaranteed_ABE
670 -- Traverse_Body
672 -- * If the issue involves a circularity in the elaboration order, examine
673 -- the ALI files and look for the following encodings next to units:
674 --
675 -- E indicates a source Elaborate
676 --
677 -- EA indicates a source Elaborate_All
678 --
679 -- AD indicates an implicit Elaborate_All
680 --
681 -- ED indicates an implicit Elaborate
682 --
683 -- If possible, compare these encodings with those generated by the old
684 -- ABE mechanism. The routines of interest are
685 --
686 -- Ensure_Prior_Elaboration
688 ----------------
689 -- Attributes --
690 ----------------
692 -- To minimize the amount of code within routines, the ABE mechanism relies
693 -- on "attribute" records to capture relevant information for a scenario or
694 -- a target.
696 -- The following type captures relevant attributes which pertain to a call
700 -- This flag is set when the call has elaboration checks enabled
703 -- This flag is set when the call has elaboration warnings elabled
706 -- This flag is set when the call comes from source
709 -- This flag is set when the call appears in a region subject to pragma
710 -- Ghost with policy Ignore.
713 -- This flag is set when the call appears at the declaration level
716 -- This flag is set when the call is dispatching
719 -- This flag is set when the call appears in a region subject to pragma
720 -- SPARK_Mode with value On.
723 -- The following type captures relevant attributes which pertain to the
724 -- prior elaboration of a unit. This type is coupled together with a unit
725 -- to form a key -> value relationship.
729 -- This attribute denotes a source Elaborate or Elaborate_All pragma
730 -- which guarantees the prior elaboration of some unit with respect
731 -- to the main unit. The pragma may come from the following contexts:
733 -- * The main unit
734 -- * The spec of the main unit (if applicable)
735 -- * Any parent spec of the main unit (if applicable)
736 -- * Any parent subunit of the main unit (if applicable)
738 -- The attribute remains Empty if no such pragma is available. Source
739 -- pragmas play a role in satisfying SPARK elaboration requirements.
742 -- This attribute denotes an internally generated or source with clause
743 -- for some unit withed by the main unit. With clauses carry flags which
744 -- represent implicit Elaborate or Elaborate_All pragmas. These clauses
745 -- play a role in supplying the elaboration dependencies to binde.
752 -- The following type captures relevant attributes which pertain to an
753 -- instantiation.
757 -- This flag is set when the instantiation has elaboration checks
758 -- enabled.
761 -- This flag is set when the instantiation has elaboration warnings
762 -- enabled.
765 -- This flag is set when the instantiation appears in a region subject
766 -- to pragma Ghost with policy ignore, or starts one such region.
769 -- This flag is set when the instantiation appears at the declaration
770 -- level.
773 -- This flag is set when the instantiation appears in a region subject
774 -- to pragma SPARK_Mode with value On, or starts one such region.
777 -- The following type captures relevant attributes which pertain to the
778 -- state of the Processing phase.
782 -- This flag is set when the Processing phase must not generate any
783 -- implicit Elaborate[_All] pragmas.
786 -- This flag is set when the Processing phase must not emit any warnings
787 -- on elaboration problems.
790 -- This flag is set when the Processing phase is currently examining a
791 -- scenario which was reached from an initial condition procedure.
794 -- This flag is set when the Processing phase is currently examining a
795 -- scenario which was reached from a scenario defined in an instance.
798 -- This flag is set when the Processing phase is currently examining a
799 -- scenario which was reached from a partial finalization procedure.
802 -- This flag is set when the Processing phase is currently examining a
803 -- scenario which was reached from a task body.
814 -- The following type captures relevant attributes which pertain to a
815 -- target.
819 -- This flag is set when the target has elaboration checks enabled
822 -- This flag is set when the target has elaboration warnings enabled
825 -- This flag is set when the target comes from source
828 -- This flag is set when the target appears in a region subject to
829 -- pragma Ghost with policy ignore, or starts one such region.
832 -- This flag is set when the target appears in a region subject to
833 -- pragma SPARK_Mode with value On, or starts one such region.
836 -- This attribute denotes the declaration of Spec_Id
839 -- This attribute denotes the top unit where Spec_Id resides
841 -- The semantics of the following attributes depend on the target
847 -- The target is a generic package or a subprogram
848 --
849 -- * Body_Barf - Empty
850 --
851 -- * Body_Decl - This attribute denotes the generic or subprogram
852 -- body.
853 --
854 -- * Spec_Id - This attribute denotes the entity of the generic
855 -- package or subprogram.
857 -- The target is a protected entry
858 --
859 -- * Body_Barf - This attribute denotes the body of the barrier
860 -- function if expansion took place, otherwise it is Empty.
861 --
862 -- * Body_Decl - This attribute denotes the body of the procedure
863 -- which emulates the entry if expansion took place, otherwise it
864 -- denotes the body of the protected entry.
865 --
866 -- * Spec_Id - This attribute denotes the entity of the procedure
867 -- which emulates the entry if expansion took place, otherwise it
868 -- denotes the protected entry.
870 -- The target is a protected subprogram
871 --
872 -- * Body_Barf - Empty
873 --
874 -- * Body_Decl - This attribute denotes the body of the protected or
875 -- unprotected version of the protected subprogram if expansion took
876 -- place, otherwise it denotes the body of the protected subprogram.
877 --
878 -- * Spec_Id - This attribute denotes the entity of the protected or
879 -- unprotected version of the protected subprogram if expansion took
880 -- place, otherwise it is the entity of the protected subprogram.
882 -- The target is a task entry
883 --
884 -- * Body_Barf - Empty
885 --
886 -- * Body_Decl - This attribute denotes the body of the procedure
887 -- which emulates the task body if expansion took place, otherwise
888 -- it denotes the body of the task type.
889 --
890 -- * Spec_Id - This attribute denotes the entity of the procedure
891 -- which emulates the task body if expansion took place, otherwise
892 -- it denotes the entity of the task type.
895 -- The following type captures relevant attributes which pertain to a task
896 -- type.
900 -- This attribute denotes the declaration of the procedure body which
901 -- emulates the behaviour of the task body.
904 -- This flag is set when the task type has elaboration checks enabled
907 -- This flag is set when the task type has elaboration warnings enabled
910 -- This flag is set when the task type appears in a region subject to
911 -- pragma Ghost with policy ignore, or starts one such region.
914 -- This flag is set when the task type appears in a region subject to
915 -- pragma SPARK_Mode with value On, or starts one such region.
918 -- This attribute denotes the entity of the initial declaration of the
919 -- procedure body which emulates the behaviour of the task body.
922 -- This attribute denotes the declaration of the task type
925 -- This attribute denotes the entity of the compilation unit where the
926 -- task type resides.
929 -- The following type captures relevant attributes which pertain to a
930 -- variable.
934 -- This attribute denotes the entity of the compilation unit where the
935 -- variable resides.
938 ---------------------
939 -- Data structures --
940 ---------------------
942 -- The ABE mechanism employs lists and hash tables to store information
943 -- pertaining to scenarios and targets, as well as the Processing phase.
944 -- The need for data structures comes partly from the size limitation of
945 -- nodes. Note that the use of hash tables is conservative and operations
946 -- are carried out only when a particular hash table has at least one key
947 -- value pair (see xxx_In_Use flags).
949 -- The following table stores the early call regions of subprogram bodies
955 function Early_Call_Regions_Hash
957 -- Obtain the hash value of entity Key
960 -- This flag determines whether table Early_Call_Regions contains at least
961 -- least one key/value pair.
973 -- The following table stores the elaboration status of all units withed by
974 -- the main unit.
980 function Elaboration_Statuses_Hash
982 -- Obtain the hash value of entity Key
985 -- This flag flag determines whether table Elaboration_Statuses contains at
986 -- least one key/value pair.
989 No_Elaboration_Attributes;
999 -- The following table stores a status flag for each SPARK scenario saved
1000 -- in table SPARK_Scenarios.
1007 function Recorded_SPARK_Scenarios_Hash
1009 -- Obtain the hash value of Key
1012 -- This flag flag determines whether table Recorded_SPARK_Scenarios
1013 -- contains at least one key/value pair.
1025 -- The following table stores a status flag for each top-level scenario
1026 -- recorded in table Top_Level_Scenarios.
1033 function Recorded_Top_Level_Scenarios_Hash
1035 -- Obtain the hash value of entity Key
1038 -- This flag flag determines whether table Recorded_Top_Level_Scenarios
1039 -- contains at least one key/value pair.
1051 -- The following table stores all active scenarios in a recursive traversal
1052 -- starting from a top-level scenario. This table must be maintained in a
1053 -- FIFO fashion.
1063 -- The following table stores SPARK scenarios which are not necessarily
1064 -- executable during elaboration, but still require elaboration-related
1065 -- checks.
1075 -- The following table stores all top-level scenario saved during the
1076 -- Recording phase. The contents of this table act as traversal roots
1077 -- later in the Processing phase. This table must be maintained in a
1078 -- LIFO fashion.
1088 -- The following table stores the bodies of all eligible scenarios visited
1089 -- during a traversal starting from a top-level scenario. The contents of
1090 -- this table must be reset upon each new traversal.
1097 -- Obtain the hash value of node Key
1100 -- This flag determines whether table Visited_Bodies contains at least one
1101 -- key/value pair.
1113 -----------------------
1114 -- Local subprograms --
1115 -----------------------
1117 -- Multiple local subprograms are utilized to lower the semantic complexity
1118 -- of the Recording and Processing phase.
1122 -- Verify that entry, operator, or subprogram call Call does not appear at
1123 -- the library level of a preelaborated unit.
1127 -- Verify that the freeze node of a derived type denoted by declaration
1128 -- Typ_Decl is within the early call region of each overriding primitive
1129 -- body that belongs to the derived type (SPARK RM 7.7(8)).
1133 -- Verify that expanded instance Exp_Inst does not precede the generic body
1134 -- it instantiates (SPARK RM 7.7(6)).
1138 -- Determine whether a suitable elaboration model is currently in effect
1139 -- for verifying the SPARK rules of scenario N. Emit a warning if this is
1140 -- not the case.
1144 -- Top-level dispatcher for verifying SPARK scenarios which are not always
1145 -- executable during elaboration but still need elaboration-related checks.
1149 -- Verify that each constituent of Refined_State pragma N which belongs to
1150 -- an abstract state mentioned in pragma Initializes has prior elaboration
1151 -- with respect to the main unit (SPARK RM 7.7.1(7)).
1155 -- Return the N_Compilation_Unit node of unit Unit_Id
1159 -- Return the early call region associated with entry or subprogram body
1160 -- Body_Id. IMPORTANT: This routine does not find the early call region.
1161 -- To compute it, use routine Find_Early_Call_Region.
1163 procedure Elab_Msg_NE
1170 -- Wrapper around Error_Msg_NE. Emit message Msg concerning arbitrary node
1171 -- N and entity. If flag Info_Msg is set, the routine emits an information
1172 -- message, otherwise it emits an error. If flag In_SPARK is set, then
1173 -- string " in SPARK" is added to the end of the message.
1175 function Elaboration_Status
1178 -- Return the set of elaboration attributes associated with unit Unit_Id
1180 procedure Ensure_Prior_Elaboration
1185 -- Guarantee the elaboration of unit Unit_Id with respect to the main unit
1186 -- by installing pragma Elaborate or Elaborate_All denoted by Prag_Nam. N
1187 -- denotes the related scenario. State denotes the current state of the
1188 -- Processing phase.
1190 procedure Ensure_Prior_Elaboration_Dynamic
1194 -- Guarantee the elaboration of unit Unit_Id with respect to the main unit
1195 -- by suggesting the use of Elaborate[_All] with name Prag_Nam. N denotes
1196 -- the related scenario.
1198 procedure Ensure_Prior_Elaboration_Static
1202 -- Guarantee the elaboration of unit Unit_Id with respect to the main unit
1203 -- by installing an implicit Elaborate[_All] pragma with name Prag_Nam. N
1204 -- denotes the related scenario.
1208 -- Obtain the Name attribute of assignment statement Asmt
1210 procedure Extract_Call_Attributes
1215 -- Obtain attributes Attrs associated with call Call. Target_Id is the
1216 -- entity of the call target.
1220 -- Obtain the Name attribute of entry or subprogram call Call
1222 procedure Extract_Instance_Attributes
1227 -- Obtain body Inst_Body and spec Inst_Decl of expanded instance Exp_Inst
1229 procedure Extract_Instantiation_Attributes
1236 -- Obtain attributes Attrs associated with expanded instantiation Exp_Inst.
1237 -- Inst is the instantiation. Inst_Id is the entity of the instance. Gen_Id
1238 -- is the entity of the generic unit being instantiated.
1240 procedure Extract_Target_Attributes
1243 -- Obtain attributes Attrs associated with an entry, package, or subprogram
1244 -- denoted by Target_Id.
1246 procedure Extract_Task_Attributes
1250 -- Obtain attributes Attrs associated with task type Typ
1252 procedure Extract_Variable_Reference_Attributes
1257 -- Obtain attributes Attrs associated with reference Ref that mentions
1258 -- variable Var_Id.
1262 -- Return the code unit which contains arbitrary node or entity N. This
1263 -- is the unit of the file which physically contains the related construct
1264 -- denoted by N except when N is within an instantiation. In that case the
1265 -- unit is that of the top-level instantiation.
1267 function Find_Early_Call_Region
1271 -- Find the start of the early call region which belongs to subprogram body
1272 -- Body_Decl as defined in SPARK RM 7.7. The behavior of the routine is to
1273 -- find the early call region, memoize it, and return it, but this behavior
1274 -- can be altered. Flag Assume_Elab_Body should be set when a package spec
1275 -- may lack pragma Elaborate_Body, but the routine must still examine that
1276 -- spec. Flag Skip_Memoization should be set when the routine must avoid
1277 -- memoizing the region.
1280 -- Populate table Elaboration_Statuses with all units which have prior
1281 -- elaboration with respect to the main unit.
1285 -- Find the declaration or body of the nearest expanded instance which
1286 -- encloses arbitrary node N. Return Empty if no such instance exists.
1290 -- Return the top unit which contains arbitrary node or entity N. The unit
1291 -- is obtained by logically unwinding instantiations and subunits when N
1292 -- resides within one.
1296 -- Return the entity of unit N
1300 -- Return the type of subprogram Subp_Id's first formal parameter. If the
1301 -- subprogram lacks formal parameters, return Empty.
1304 -- Determine whether package declaration Pack_Decl has a corresponding body
1305 -- or would eventually have one.
1307 function Has_Prior_Elaboration
1313 -- Determine whether unit Unit_Id is elaborated prior to the main unit.
1314 -- If flag Context_OK is set, the routine considers the following case
1315 -- as valid prior elaboration:
1316 --
1317 -- * Unit_Id is in the elaboration context of the main unit
1318 --
1319 -- If flag Elab_Body_OK is set, the routine considers the following case
1320 -- as valid prior elaboration:
1321 --
1322 -- * Unit_Id has pragma Elaborate_Body and is not the main unit
1323 --
1324 -- If flag Same_Unit_OK is set, the routine considers the following cases
1325 -- as valid prior elaboration:
1326 --
1327 -- * Unit_Id is the main unit
1328 --
1329 -- * Unit_Id denotes the spec of the main unit body
1331 function In_External_Instance
1335 -- Determine whether a target desctibed by its declaration Target_Decl
1336 -- resides in a package instance which is external to scenario N.
1340 -- Determine whether arbitrary node N appears within the main compilation
1341 -- unit.
1343 function In_Same_Context
1347 -- Determine whether two arbitrary nodes N1 and N2 appear within the same
1348 -- context ignoring enclosing library levels. Nested_OK should be set when
1349 -- the context of N1 can enclose that of N2.
1353 -- Determine whether arbitrary node N appears within a task body
1355 procedure Info_Call
1360 -- Output information concerning call Call which invokes target Target_Id.
1361 -- If flag Info_Msg is set, the routine emits an information message,
1362 -- otherwise it emits an error. If flag In_SPARK is set, then the string
1363 -- " in SPARK" is added to the end of the message.
1365 procedure Info_Instantiation
1371 -- Output information concerning instantiation Inst which instantiates
1372 -- generic unit Gen_Id. If flag Info_Msg is set, the routine emits an
1373 -- information message, otherwise it emits an error. If flag In_SPARK
1374 -- is set, then string " in SPARK" is added to the end of the message.
1376 procedure Info_Variable_Reference
1382 -- Output information concerning reference Ref which mentions variable
1383 -- Var_Id. If flag Info_Msg is set, the routine emits an information
1384 -- message, otherwise it emits an error. If flag In_SPARK is set, then
1385 -- string " in SPARK" is added to the end of the message.
1389 -- Obtain the proper insertion node of an ABE check or failure for scenario
1390 -- N and candidate insertion node Ins_Nod.
1392 procedure Install_ABE_Check
1396 -- Insert a run-time ABE check for elaboration scenario N which verifies
1397 -- whether arbitrary entity Id is elaborated. The check in inserted prior
1398 -- to node Ins_Nod.
1400 procedure Install_ABE_Check
1406 -- Insert a run-time ABE check for elaboration scenario N which verifies
1407 -- whether target Target_Id with initial declaration Target_Decl and body
1408 -- Target_Body is elaborated. The check is inserted prior to node Ins_Nod.
1411 -- Insert a Program_Error concerning a guaranteed ABE for elaboration
1412 -- scenario N. The failure is inserted prior to node Node_Id.
1416 -- Determine whether arbitrary entity Id denotes an internally generated
1417 -- procedure which encapsulates the statements of an accept alternative.
1421 -- Determine whether arbitrary entity Id denotes a runtime procedure in
1422 -- charge with activating tasks.
1426 -- Determine whether arbitrary entity Id denodes a source or internally
1427 -- generated subprogram which emulates Ada semantics.
1431 -- Determine whether arbitrary entity Id denotes a procedure which varifies
1432 -- the run-time semantics of an assertion pragma.
1436 -- Determine whether subprogram Subp_Id will never have a body
1438 function Is_Controlled_Proc
1442 -- Determine whether subprogram Subp_Id denotes controlled type primitives
1443 -- Adjust, Finalize, or Initialize as denoted by name Subp_Nam.
1447 -- Determine whether arbitrary entity Id denotes internally generated
1448 -- routine Default_Initial_Condition.
1452 -- Determine whether arbitrary entity Id denotes internally generated
1453 -- routine _Finalizer.
1455 function Is_Guaranteed_ABE
1460 -- Determine whether scenario N with a target described by its initial
1461 -- declaration Target_Decl and body Target_Decl results in a guaranteed
1462 -- ABE.
1466 -- Determine whether arbitrary entity Id denotes internally generated
1467 -- routine Initial_Condition.
1471 -- Determine whether object declaration Obj_Decl is initialized
1475 -- Determine whether arbitrary entity Id denotes an invariant procedure
1479 -- Determine whether arbitrary node N is a non-library encapsulator
1483 -- Determine whether arbitrary entity Id denotes a partial invariant
1484 -- procedure.
1488 -- Determine whether arbitrary entity Id denotes internally generated
1489 -- routine _Postconditions.
1493 -- Determine whether arbitrary entity Id denotes a unit which is subject to
1494 -- one of the following pragmas:
1495 --
1496 -- * Preelaborable
1497 -- * Pure
1498 -- * Remote_Call_Interface
1499 -- * Remote_Types
1500 -- * Shared_Passive
1504 -- Determine whether arbitrary entity Id denotes a protected entry
1508 -- Determine whether entity Id denotes a protected subprogram
1512 -- Determine whether entity Id denotes the protected or unprotected version
1513 -- of a protected subprogram.
1517 -- Determine whether arbitrary node N is a recorded SPARK scenario which
1518 -- appears in table SPARK_Scenarios.
1522 -- Determine whether arbitrary node N is a recorded top-level scenario
1523 -- which appears in table Top_Level_Scenarios.
1525 function Is_Safe_Activation
1529 -- Determine whether call Call which activates a task object described by
1530 -- declaration Task_Decl is always ABE-safe.
1532 function Is_Safe_Call
1536 -- Determine whether call Call which invokes a target described by
1537 -- attributes Target_Attrs is always ABE-safe.
1539 function Is_Safe_Instantiation
1543 -- Determine whether instance Inst which instantiates a generic unit
1544 -- described by attributes Gen_Attrs is always ABE-safe.
1546 function Is_Same_Unit
1550 -- Determine whether entities Unit_1 and Unit_2 denote the same unit
1554 -- Determine whether attribute node N denotes a scenario. The scenario may
1555 -- not necessarily be eligible for ABE processing.
1559 -- Determine whether arbitrary entity Id nodes a source or internally
1560 -- generated subprogram which emulates SPARK semantics.
1564 -- Determine whether arbitrary node N denotes a suitable attribute for ABE
1565 -- processing.
1569 -- Determine whether arbitrary node N denotes a suitable call for ABE
1570 -- processing.
1574 -- Determine whether arbitrary node N is a suitable instantiation for ABE
1575 -- processing.
1579 -- Determine whether arbitrary node N is a suitable scenario for ABE
1580 -- processing.
1584 -- Determine whether arbitrary node N denotes a suitable derived type
1585 -- declaration for ABE processing using the SPARK rules.
1589 -- Determine whether arbitrary node N denotes a suitable instantiation for
1590 -- ABE processing using the SPARK rules.
1592 function Is_Suitable_SPARK_Refined_State_Pragma
1595 -- Determine whether arbitrary node N denotes a suitable Refined_State
1596 -- pragma for ABE processing using the SPARK rules.
1600 -- Determine whether arbitrary node N denotes a suitable assignment for ABE
1601 -- processing.
1605 -- Determine whether arbitrary node N is a suitable variable reference for
1606 -- ABE processing.
1610 -- Determine whether arbitrary node N denotes a call to one the following
1611 -- routines:
1612 --
1613 -- Ada.Synchronous_Barriers.Wait_For_Release
1614 -- Ada.Synchronous_Task_Control.Suspend_Until_True
1618 -- Determine whether arbitrary entity Id denotes a task entry
1622 -- Determine whether the current root resides at the declaration level. If
1623 -- this is the case, determine whether a target described by declaration
1624 -- Target_Decl is within a context which encloses the current root or is in
1625 -- a different unit.
1629 -- Determine whether subprogram body Body_Decl is already visited during a
1630 -- recursive traversal started from a top-level scenario.
1632 procedure Meet_Elaboration_Requirement
1636 -- Determine whether elaboration requirement Req_Nam for scenario N with
1637 -- target Target_Id is met by the context of the main unit using the SPARK
1638 -- rules. Req_Nam must denote either Elaborate or Elaborate_All. Emit an
1639 -- error if this is not the case.
1643 -- Return the full view of private type Typ if available, otherwise return
1644 -- type Typ.
1647 -- Output the contents of the active scenario stack from earliest to latest
1648 -- to supplement an earlier error emitted for node Error_Nod.
1652 -- Pop the top of the scenario stack. A check is made to ensure that the
1653 -- scenario being removed is the same as N.
1655 generic
1656 with procedure Process_Single_Activation
1662 -- Perform ABE checks and diagnostics for task activation call Call
1663 -- which activates task Obj_Id. Call_Attrs are the attributes of the
1664 -- activation call. Task_Attrs are the attributes of the task type.
1665 -- State is the current state of the Processing phase.
1667 procedure Process_Activation_Generic
1671 -- Perform ABE checks and diagnostics for activation call Call by invoking
1672 -- routine Process_Single_Activation on each task object being activated.
1673 -- Call_Attrs are the attributes of the activation call. State is the
1674 -- current state of the Processing phase.
1676 procedure Process_Conditional_ABE
1679 -- Top-level dispatcher for processing of various elaboration scenarios.
1680 -- Perform conditional ABE checks and diagnostics for scenario N. State
1681 -- is the current state of the Processing phase.
1683 procedure Process_Conditional_ABE_Access
1686 -- Perform ABE checks and diagnostics for 'Access to entry, operator, or
1687 -- subprogram denoted by Attr. State is the current state of the Processing
1688 -- phase.
1690 procedure Process_Conditional_ABE_Activation_Impl
1696 -- Perform common conditional ABE checks and diagnostics for call Call
1697 -- which activates task Obj_Id ignoring the Ada or SPARK rules. Call_Attrs
1698 -- are the attributes of the activation call. Task_Attrs are the attributes
1699 -- of the task type. State is the current state of the Processing phase.
1701 procedure Process_Conditional_ABE_Call
1706 -- Top-level dispatcher for processing of calls. Perform ABE checks and
1707 -- diagnostics for call Call which invokes target Target_Id. Call_Attrs
1708 -- are the attributes of the call. State is the current state of the
1709 -- Processing phase.
1711 procedure Process_Conditional_ABE_Call_Ada
1717 -- Perform ABE checks and diagnostics for call Call which invokes target
1718 -- Target_Id using the Ada rules. Call_Attrs are the attributes of the
1719 -- call. Target_Attrs are attributes of the target. State is the current
1720 -- state of the Processing phase.
1722 procedure Process_Conditional_ABE_Call_SPARK
1727 -- Perform ABE checks and diagnostics for call Call which invokes target
1728 -- Target_Id using the SPARK rules. Target_Attrs denotes the attributes of
1729 -- the target. State is the current state of the Processing phase.
1731 procedure Process_Conditional_ABE_Instantiation
1734 -- Top-level dispatcher for processing of instantiations. Perform ABE
1735 -- checks and diagnostics for expanded instantiation Exp_Inst. State is
1736 -- the current state of the Processing phase.
1738 procedure Process_Conditional_ABE_Instantiation_Ada
1745 -- Perform ABE checks and diagnostics for expanded instantiation Exp_Inst
1746 -- of generic Gen_Id using the Ada rules. Inst is the instantiation node.
1747 -- Inst_Attrs are the attributes of the instance. Gen_Attrs denotes the
1748 -- attributes of the generic. State is the current state of the Processing
1749 -- phase.
1751 procedure Process_Conditional_ABE_Instantiation_SPARK
1756 -- Perform ABE checks and diagnostics for instantiation Inst of generic
1757 -- Gen_Id using the SPARK rules. Gen_Attrs denotes the attributes of the
1758 -- generic. State is the current state of the Processing phase.
1761 -- Top-level dispatcher for processing of variable assignments. Perform ABE
1762 -- checks and diagnostics for assignment statement Asmt.
1764 procedure Process_Conditional_ABE_Variable_Assignment_Ada
1767 -- Perform ABE checks and diagnostics for assignment statement Asmt that
1768 -- updates the value of variable Var_Id using the Ada rules.
1770 procedure Process_Conditional_ABE_Variable_Assignment_SPARK
1773 -- Perform ABE checks and diagnostics for assignment statement Asmt that
1774 -- updates the value of variable Var_Id using the SPARK rules.
1777 -- Top-level dispatcher for processing of variable references. Perform ABE
1778 -- checks and diagnostics for variable reference Ref.
1780 procedure Process_Conditional_ABE_Variable_Reference_Read
1784 -- Perform ABE checks and diagnostics for reference Ref described by its
1785 -- attributes Attrs, that reads variable Var_Id.
1788 -- Top-level dispatcher for processing of scenarios which result in a
1789 -- guaranteed ABE.
1791 procedure Process_Guaranteed_ABE_Activation_Impl
1797 -- Perform common guaranteed ABE checks and diagnostics for call Call which
1798 -- activates task Obj_Id ignoring the Ada or SPARK rules. Call_Attrs are
1799 -- the attributes of the activation call. Task_Attrs are the attributes of
1800 -- the task type. State is provided for compatibility and is not used.
1802 procedure Process_Guaranteed_ABE_Call
1806 -- Perform common guaranteed ABE checks and diagnostics for call Call which
1807 -- invokes target Target_Id ignoring the Ada or SPARK rules. Call_Attrs are
1808 -- the attributes of the call.
1811 -- Perform common guaranteed ABE checks and diagnostics for expanded
1812 -- instantiation Exp_Inst of generic Gen_Id ignoring the Ada or SPARK
1813 -- rules.
1817 -- Push scenario N on top of the scenario stack
1821 -- Save SPARK scenario N in table SPARK_Scenarios for later processing
1825 -- Clear the contents of table Visited_Bodies
1829 -- Return the top-level scenario which started a recursive search for other
1830 -- scenarios. It is assumed that there is a valid top-level scenario on the
1831 -- active scenario stack.
1835 -- Associate an early call region with begins at construct Start with entry
1836 -- or subprogram body Body_Id.
1838 procedure Set_Elaboration_Status
1842 -- Associate an set of elaboration attributes with unit Unit_Id
1844 procedure Set_Is_Recorded_SPARK_Scenario
1848 -- Mark scenario N as being recorded in table SPARK_Scenarios
1850 procedure Set_Is_Recorded_Top_Level_Scenario
1854 -- Mark scenario N as being recorded in table Top_Level_Scenarios
1858 -- Mark subprogram body Subp_Body as being visited during a recursive
1859 -- traversal started from a top-level scenario.
1863 -- Determine whether the static model is in effect
1866 -- Inspect the declarative and statement lists of subprogram body N for
1867 -- suitable elaboration scenarios and process them. State is the current
1868 -- state of the Processing phase.
1872 -- Return the entity of the initial declaration for unit Unit_Id
1876 -- Update all relevant internal data structures when scenario Old_N is
1877 -- transformed into scenario New_N by Atree.Rewrite.
1879 -----------------------
1880 -- Build_Call_Marker --
1881 -----------------------
1884 function In_External_Context
1888 -- Determine whether a target described by attributes Target_Attrs is
1889 -- external to call Call which must reside within an instance.
1892 -- Determine whether call Call appears within a premature context
1896 -- Determine whether arbitrary entity Id denotes a bridge target
1900 -- Determine whether call Call acts as the expression of a defaulted
1901 -- parameter within a source call.
1905 -- Determine whether subprogram Subp_Id denotes a generic formal
1906 -- subprogram which appears in the "prologue" of an instantiation.
1908 -------------------------
1909 -- In_External_Context --
1910 -------------------------
1912 function In_External_Context
1915 is
1920 begin
1921 -- Performance note: parent traversal
1925 -- The call appears within an instance
1929 -- The call comes from the main unit and the target does not
1933 then
1936 -- Otherwise the target declaration must not appear within the
1937 -- instance spec or body.
1939 else
1940 Extract_Instance_Attributes
1945 -- Performance note: parent traversal
1947 return not In_Subtree
1957 --------------------------
1958 -- In_Premature_Context --
1959 --------------------------
1964 begin
1965 -- Climb the parent chain looking for premature contexts
1970 -- Aspect specifications and generic associations are premature
1971 -- contexts because nested calls has not been relocated to their
1972 -- final context.
1975 N_Generic_Association)
1976 then
1979 -- Prevent the search from going too far
1991 ----------------------
1992 -- Is_Bridge_Target --
1993 ----------------------
1996 begin
1997 return
2007 ---------------------------
2008 -- Is_Default_Expression --
2009 ---------------------------
2015 begin
2016 -- To qualify, the node must appear immediately within a source call
2017 -- which invokes a source target.
2020 N_Function_Call,
2021 N_Procedure_Call_Statement)
2023 then
2026 return
2036 ----------------------------
2037 -- Is_Generic_Formal_Subp --
2038 ----------------------------
2044 begin
2045 -- To qualify, the subprogram must rename a generic actual subprogram
2046 -- where the enclosing context is an instantiation.
2048 return
2052 N_Package_Specification,
2053 N_Procedure_Specification)
2057 -- Local variables
2065 -- Start of processing for Build_Call_Marker
2067 begin
2068 -- Nothing to do when switch -gnatH (legacy elaboration checking mode
2069 -- enabled) is in effect because the legacy ABE mechanism does not need
2070 -- to carry out this action.
2075 -- Nothing to do for ASIS because ABE checks and diagnostics are not
2076 -- performed in this mode.
2081 -- Nothing to do when the call is being preanalyzed as the marker will
2082 -- be inserted in the wrong place.
2087 -- Nothing to do when the input does not denote a call or a requeue
2090 N_Function_Call,
2091 N_Procedure_Call_Statement,
2092 N_Requeue_Statement)
2093 then
2096 -- Nothing to do when the input denotes entry call or requeue statement,
2097 -- and switch -gnatd_e (ignore entry calls and requeue statements for
2098 -- elaboration) is in effect.
2100 elsif Debug_Flag_Underscore_E
2102 then
2108 -- Nothing to do when the call is erroneous or left in a bad state
2113 then
2116 -- Nothing to do when the call invokes a generic formal subprogram and
2117 -- switch -gnatd.G (ignore calls through generic formal parameters for
2118 -- elaboration) is in effect. This check must be performed with the
2119 -- direct target of the call to avoid the side effects of mapping
2120 -- actuals to formals using renamings.
2122 elsif Debug_Flag_Dot_GG
2124 then
2127 -- Nothing to do when the call is analyzed/resolved too early within an
2128 -- intermediate context. This check is saved for last because it incurs
2129 -- a performance penalty.
2131 -- Performance note: parent traversal
2137 Extract_Call_Attributes
2142 Extract_Target_Attributes
2146 -- Nothing to do when the call appears within the expanded spec or
2147 -- body of an instantiated generic, the call does not invoke a generic
2148 -- formal subprogram, the target is external to the instance, and switch
2149 -- -gnatdL (ignore external calls from instances for elaboration) is in
2150 -- effect.
2152 if Debug_Flag_LL
2155 -- Performance note: parent traversal
2157 and then In_External_Context
2160 then
2163 -- Nothing to do when the call invokes an assertion pragma procedure
2164 -- and switch -gnatd_p (ignore assertion pragmas for elaboration) is
2165 -- in effect.
2167 elsif Debug_Flag_Underscore_P
2169 then
2172 -- Source calls to source targets are always considered because they
2173 -- reflect the original call graph.
2178 -- A call to a source function which acts as the default expression in
2179 -- another call requires special detection.
2184 then
2187 -- The target emulates Ada semantics
2192 -- The target acts as a link between scenarios
2197 -- The target emulates SPARK semantics
2202 -- Otherwise the call is not suitable for ABE processing. This prevents
2203 -- the generation of call markers which will never play a role in ABE
2204 -- diagnostics.
2206 else
2210 -- At this point it is known that the call will play some role in ABE
2211 -- checks and diagnostics. Create a corresponding call marker in case
2212 -- the original call is heavily transformed by expansion later on.
2216 -- Inherit the attributes of the original call
2221 Set_Is_Elaboration_Checks_OK_Node
2223 Set_Is_Elaboration_Warnings_OK_Node
2229 -- The marker is inserted prior to the original call. This placement has
2230 -- several desirable effects:
2232 -- 1) The marker appears in the same context, in close proximity to
2233 -- the call.
2235 -- <marker>
2236 -- <call>
2238 -- 2) Inserting the marker prior to the call ensures that an ABE check
2239 -- will take effect prior to the call.
2241 -- <ABE check>
2242 -- <marker>
2243 -- <call>
2245 -- 3) The above two properties are preserved even when the call is a
2246 -- function which is subsequently relocated in order to capture its
2247 -- result. Note that if the call is relocated to a new context, the
2248 -- relocated call will receive a marker of its own.
2250 -- <ABE check>
2251 -- <maker>
2252 -- Temp : ... := Func_Call ...;
2253 -- ... Temp ...
2255 -- The insertion must take place even when the call does not occur in
2256 -- the main unit to keep the tree symmetric. This ensures that internal
2257 -- name serialization is consistent in case the call marker causes the
2258 -- tree to transform in some way.
2262 -- The marker becomes the "corresponding" scenario for the call. Save
2263 -- the marker for later processing by the ABE phase.
2268 -------------------------------------
2269 -- Build_Variable_Reference_Marker --
2270 -------------------------------------
2272 procedure Build_Variable_Reference_Marker
2276 is
2281 begin
2282 Extract_Variable_Reference_Attributes
2289 -- Inherit the attributes of the original variable reference
2295 -- The marker is inserted prior to the original variable reference. The
2296 -- insertion must take place even when the reference does not occur in
2297 -- the main unit to keep the tree symmetric. This ensures that internal
2298 -- name serialization is consistent in case the variable marker causes
2299 -- the tree to transform in some way.
2303 -- The marker becomes the "corresponding" scenario for the reference.
2304 -- Save the marker for later processing for the ABE phase.
2309 ---------------------------------
2310 -- Check_Elaboration_Scenarios --
2311 ---------------------------------
2314 begin
2315 -- Nothing to do when switch -gnatH (legacy elaboration checking mode
2316 -- enabled) is in effect because the legacy ABE mechanism does not need
2317 -- to carry out this action.
2322 -- Nothing to do for ASIS because ABE checks and diagnostics are not
2323 -- performed in this mode.
2329 -- Restore the original elaboration model which was in effect when the
2330 -- scenarios were first recorded. The model may be specified by pragma
2331 -- Elaboration_Checks which appears on the initial declaration of the
2332 -- main unit.
2336 -- Examine the context of the main unit and record all units with prior
2337 -- elaboration with respect to it.
2339 Find_Elaborated_Units;
2341 -- Examine each top-level scenario saved during the Recording phase for
2342 -- conditional ABEs and perform various actions depending on the model
2343 -- in effect. The table of visited bodies is created for each new top-
2344 -- level scenario.
2347 Reset_Visited_Bodies;
2352 -- Examine each SPARK scenario saved during the Recording phase which
2353 -- is not necessarily executable during elaboration, but still requires
2354 -- elaboration-related checks.
2361 ------------------------------
2362 -- Check_Preelaborated_Call --
2363 ------------------------------
2367 -- Determine whether arbitrary node appears in a preelaborated context
2369 ------------------------------
2370 -- In_Preelaborated_Context --
2371 ------------------------------
2377 begin
2378 -- The node appears within a package body whose corresponding spec is
2379 -- subject to pragma Remote_Call_Interface or Remote_Types. This does
2380 -- not result in a preelaborated context because the package body may
2381 -- be on another machine.
2387 then
2390 -- Otherwise the node appears within a preelaborated context when the
2391 -- associated unit is preelaborated.
2393 else
2398 -- Local variables
2404 -- Start of processing for Check_Preelaborated_Call
2406 begin
2407 Extract_Call_Attributes
2412 -- Nothing to do when the call is internally generated because it is
2413 -- assumed that it will never violate preelaboration.
2419 -- Performance note: parent traversal
2423 -- Library-level calls are always considered because they are part of
2424 -- the associated unit's elaboration actions.
2429 -- Calls at the library level of a generic package body must be checked
2430 -- because they would render an instantiation illegal if the template is
2431 -- marked as preelaborated. Note that this does not apply to calls at
2432 -- the library level of a generic package spec.
2437 -- Otherwise the call does not appear at the proper level and must not
2438 -- be considered for this check.
2440 else
2444 -- The call appears within a preelaborated unit. Emit a warning only for
2445 -- internal uses, otherwise this is an error.
2449 Error_Msg_N
2454 ------------------------------
2455 -- Check_SPARK_Derived_Type --
2456 ------------------------------
2461 -- NOTE: The routines within Check_SPARK_Derived_Type are intentionally
2462 -- unnested to avoid deep indentation of code.
2465 -- This exception is raised when the freeze node violates the placement
2466 -- rules.
2468 procedure Check_Overriding_Primitive
2472 -- Verify that freeze node FNode is within the early call region of
2473 -- overriding primitive Prim's body.
2477 -- Return a more accurate source location associated with freeze node
2478 -- FNode.
2482 -- Determine whether arbitrary node N appears prior to some source
2483 -- construct.
2485 procedure Suggest_Elaborate_Body
2490 -- Suggest the use of pragma Elaborate_Body when the pragma will allow
2491 -- for node N to appear within the early call region of subprogram body
2492 -- Body_Decl. The suggestion is attached to Error_Nod as a continuation
2493 -- error.
2495 --------------------------------
2496 -- Check_Overriding_Primitive --
2497 --------------------------------
2499 procedure Check_Overriding_Primitive
2502 is
2508 begin
2509 -- Nothing to do for predefined primitives because they are artifacts
2510 -- of tagged type expansion and cannot override source primitives.
2518 -- Nothing to do when the primitive does not have a corresponding
2519 -- body. This can happen when the unit with the bodies is not the
2520 -- main unit subjected to ABE checks.
2525 -- The primitive overrides a parent or progenitor primitive
2529 -- Nothing to do when overriding an interface primitive happens by
2530 -- inheriting a non-interface primitive as the check would be done
2531 -- on the parent primitive.
2537 -- Nothing to do when the primitive is not overriding. The body of
2538 -- such a primitive cannot be targeted by a dispatching call which
2539 -- is executable during elaboration, and cannot cause an ABE.
2541 else
2548 -- The freeze node appears prior to the early call region of the
2549 -- primitive body.
2551 -- IMPORTANT: This check must always be performed even when -gnatd.v
2552 -- (enforce SPARK elaboration rules in SPARK code) is not specified
2553 -- because the static model cannot guarantee the absence of ABEs in
2554 -- in the presence of dispatching calls.
2558 Error_Msg_NE
2572 -- If applicable, suggest the use of pragma Elaborate_Body in the
2573 -- associated package spec.
2575 Suggest_Elaborate_Body
2584 --------------------------
2585 -- Freeze_Node_Location --
2586 --------------------------
2595 begin
2596 -- In general, the source location of the freeze node is as close as
2597 -- possible to the real freeze point, except when the freeze node is
2598 -- at the "bottom" of a package spec.
2604 -- The freeze node appears in the private declarations of the
2605 -- package.
2609 then
2612 -- The freeze node appears in the visible declarations of the
2613 -- package and there are no private declarations.
2618 then
2621 -- Otherwise the freeze node is not in the "last" declarative list
2622 -- of the package. Use the existing source location of the freeze
2623 -- node.
2625 else
2629 -- The freeze node appears at the "bottom" of the package when it
2630 -- is in the "last" declarative list and is either the last in the
2631 -- list or is followed by internal constructs only. In that case
2632 -- the more appropriate source location is that of the package end
2633 -- label.
2643 -------------------------------
2644 -- Precedes_Source_Construct --
2645 -------------------------------
2650 begin
2656 -- A generated body for a source expression function is treated as
2657 -- a source construct.
2662 then
2672 ----------------------------
2673 -- Suggest_Elaborate_Body --
2674 ----------------------------
2676 procedure Suggest_Elaborate_Body
2680 is
2684 begin
2685 -- The suggestion applies only when the subprogram body resides in a
2686 -- compilation package body, and a pragma Elaborate_Body would allow
2687 -- for the node to appear in the early call region of the subprogram
2688 -- body. This implies that all code from the subprogram body up to
2689 -- the node is preelaborable.
2693 -- Find the start of the early call region again assuming that the
2694 -- package spec has pragma Elaborate_Body. Note that the internal
2695 -- data structures are intentionally not updated because this is a
2696 -- speculative search.
2698 Region :=
2699 Find_Early_Call_Region
2704 -- If the node appears within the early call region, assuming that
2705 -- the package spec carries pragma Elaborate_Body, then it is safe
2706 -- to suggest the pragma.
2710 Error_Msg_NE
2717 -- Local variables
2724 -- Start of processing for Check_SPARK_Derived_Type
2726 begin
2727 -- A type should have its freeze node set by the time SPARK scenarios
2728 -- are being verified.
2732 -- Verify that the freeze node of the derived type is within the early
2733 -- call region of each overriding primitive body (SPARK RM 7.7(8)).
2738 Check_Overriding_Primitive
2746 exception
2751 -------------------------------
2752 -- Check_SPARK_Instantiation --
2753 -------------------------------
2762 begin
2763 Extract_Instantiation_Attributes
2772 -- The instantiation and the generic body are both in the main unit
2777 -- If the instantiation appears prior to the generic body, then the
2778 -- instantiation is illegal (SPARK RM 7.7(6)).
2780 -- IMPORTANT: This check must always be performed even when -gnatd.v
2781 -- (enforce SPARK elaboration rules in SPARK code) is not specified
2782 -- because the rule prevents use-before-declaration of objects that
2783 -- may precede the generic body.
2786 then
2791 ---------------------------------
2792 -- Check_SPARK_Model_In_Effect --
2793 ---------------------------------
2796 -- This flag prevents the same SPARK model-related warning from being
2797 -- emitted multiple times.
2800 begin
2801 -- Do not emit the warning multiple times as this creates useless noise
2806 -- SPARK rule verification requires the "strict" static model
2811 -- Any other combination of models does not guarantee the absence of ABE
2812 -- problems for SPARK rule verification purposes. Note that there is no
2813 -- need to check for the legacy ABE mechanism because the legacy code
2814 -- has its own orthogonal processing for SPARK rules.
2816 else
2819 Error_Msg_N
2824 else
2831 --------------------------
2832 -- Check_SPARK_Scenario --
2833 --------------------------
2836 begin
2837 -- Ensure that a suitable elaboration model is in effect for SPARK rule
2838 -- verification.
2842 -- Add the current scenario to the stack of active scenarios
2856 -- Remove the current scenario from the stack of active scenarios once
2857 -- all ABE diagnostics and checks have been performed.
2862 --------------------------------------
2863 -- Check_SPARK_Refined_State_Pragma --
2864 --------------------------------------
2868 -- NOTE: The routines within Check_SPARK_Refined_State_Pragma are
2869 -- intentionally unnested to avoid deep indentation of code.
2873 -- Ensure that a single constituent Constit_Id is elaborated prior to
2874 -- the main unit.
2878 -- Ensure that all constituents found in list Constits are elaborated
2879 -- prior to the main unit.
2883 -- Ensure that the constituents of single abstract state State are
2884 -- elaborated prior to the main unit.
2888 -- Ensure that the constituents of all abstract states which appear in
2889 -- the Initializes pragma of package Pack_Id are elaborated prior to the
2890 -- main unit.
2892 -----------------------------
2893 -- Check_SPARK_Constituent --
2894 -----------------------------
2899 begin
2900 -- Nothing to do for "null" constituents
2905 -- Nothing to do for illegal constituents
2913 -- The check applies only when the constituent is subject to pragma
2914 -- SPARK_Mode On.
2918 then
2919 -- An external constituent of an abstract state which appears in
2920 -- the Initializes pragma of a package spec imposes an Elaborate
2921 -- requirement on the context of the main unit. Determine whether
2922 -- the context has a pragma strong enough to meet the requirement.
2924 -- IMPORTANT: This check is performed only when -gnatd.v (enforce
2925 -- SPARK elaboration rules in SPARK code) is in effect because the
2926 -- static model can ensure the prior elaboration of the unit which
2927 -- contains a constituent by installing implicit Elaborate pragma.
2930 Meet_Elaboration_Requirement
2935 -- Otherwise ensure that the unit with the external constituent is
2936 -- elaborated prior to the main unit.
2938 else
2939 Ensure_Prior_Elaboration
2948 ------------------------------
2949 -- Check_SPARK_Constituents --
2950 ------------------------------
2955 begin
2965 -----------------------------------
2966 -- Check_SPARK_Initialized_State --
2967 -----------------------------------
2973 begin
2974 -- Nothing to do for "null" initialization items
2979 -- Nothing to do for illegal states
2987 -- Sanitize the state
2999 -- The check is performed only when the abstract state is subject to
3000 -- SPARK_Mode On.
3006 then
3011 ------------------------------------
3012 -- Check_SPARK_Initialized_States --
3013 ------------------------------------
3020 begin
3024 -- Avoid processing a "null" initialization list. The only other
3025 -- alternative is an aggregate.
3029 -- The initialization items appear in list form:
3030 --
3031 -- (state1, state2)
3041 -- The initialization items appear in associated form:
3042 --
3043 -- (state1 => item1,
3044 -- state2 => (item2, item3))
3057 -- Local variables
3061 -- Start of processing for Check_SPARK_Refined_State_Pragma
3063 begin
3064 -- Pragma Refined_State must be associated with a package body
3066 pragma Assert
3069 -- Verify that each external contitunent of an abstract state mentioned
3070 -- in pragma Initializes is properly elaborated.
3075 ----------------------
3076 -- Compilation_Unit --
3077 ----------------------
3082 begin
3085 -- Handle the case where a concurrent subunit is rewritten as a null
3086 -- statement due to expansion activities.
3090 N_Task_Body)
3091 then
3095 -- Otherwise use the declaration node of the unit
3097 else
3101 -- Handle the case where a subprogram instantiation which acts as a
3102 -- compilation unit is expanded into an anonymous package that wraps
3103 -- the instantiated subprogram.
3107 N_Function_Instantiation,
3108 N_Procedure_Instantiation)
3109 then
3112 -- Handle the case where the compilation unit is a subunit
3123 -----------------------
3124 -- Early_Call_Region --
3125 -----------------------
3128 begin
3130 E_Entry_Family,
3131 E_Function,
3132 E_Procedure,
3133 E_Subprogram_Body));
3142 -----------------------------
3143 -- Early_Call_Regions_Hash --
3144 -----------------------------
3146 function Early_Call_Regions_Hash
3148 is
3149 begin
3153 -----------------
3154 -- Elab_Msg_NE --
3155 -----------------
3157 procedure Elab_Msg_NE
3163 is
3165 -- Obtain the prefix of the message
3168 -- Obtain the suffix of the message
3170 ------------
3171 -- Prefix --
3172 ------------
3175 begin
3178 else
3183 ------------
3184 -- Suffix --
3185 ------------
3188 begin
3191 else
3196 -- Start of processing for Elab_Msg_NE
3198 begin
3202 ------------------------
3203 -- Elaboration_Status --
3204 ------------------------
3206 function Elaboration_Status
3208 is
3209 begin
3217 -------------------------------
3218 -- Elaboration_Statuses_Hash --
3219 -------------------------------
3221 function Elaboration_Statuses_Hash
3223 is
3224 begin
3228 ------------------------------
3229 -- Ensure_Prior_Elaboration --
3230 ------------------------------
3232 procedure Ensure_Prior_Elaboration
3237 is
3238 begin
3241 -- Nothing to do when the caller has suppressed the generation of
3242 -- implicit Elaborate[_All] pragmas.
3247 -- Nothing to do when the need for prior elaboration came from a partial
3248 -- finalization routine which occurs in an initialization context. This
3249 -- behaviour parallels that of the old ABE mechanism.
3254 -- Nothing to do when the need for prior elaboration came from a task
3255 -- body and switch -gnatd.y (disable implicit pragma Elaborate_All on
3256 -- task bodies) is in effect.
3261 -- Nothing to do when the unit is elaborated prior to the main unit.
3262 -- This check must also consider the following cases:
3264 -- * No check is made against the context of the main unit because this
3265 -- is specific to the elaboration model in effect and requires custom
3266 -- handling (see Ensure_xxx_Prior_Elaboration).
3268 -- * Unit_Id is subject to pragma Elaborate_Body. An implicit pragma
3269 -- Elaborate[_All] MUST be generated even though Unit_Id is always
3270 -- elaborated prior to the main unit. This is a conservative strategy
3271 -- which ensures that other units withed by Unit_Id will not lead to
3272 -- an ABE.
3274 -- package A is package body A is
3275 -- procedure ABE; procedure ABE is ... end ABE;
3276 -- end A; end A;
3278 -- with A;
3279 -- package B is package body B is
3280 -- pragma Elaborate_Body; procedure Proc is
3281 -- begin
3282 -- procedure Proc; A.ABE;
3283 -- package B; end Proc;
3284 -- end B;
3286 -- with B;
3287 -- package C is package body C is
3288 -- ... ...
3289 -- end C; begin
3290 -- B.Proc;
3291 -- end C;
3293 -- In the example above, the elaboration of C invokes B.Proc. B is
3294 -- subject to pragma Elaborate_Body. If no pragma Elaborate[_All] is
3295 -- generated for B in C, then the following elaboratio order will lead
3296 -- to an ABE:
3298 -- spec of A elaborated
3299 -- spec of B elaborated
3300 -- body of B elaborated
3301 -- spec of C elaborated
3302 -- body of C elaborated <-- calls B.Proc which calls A.ABE
3303 -- body of A elaborated <-- problem
3305 -- The generation of an implicit pragma Elaborate_All (B) ensures that
3306 -- the elaboration order mechanism will not pick the above order.
3308 -- An implicit Elaborate is NOT generated when the unit is subject to
3309 -- Elaborate_Body because both pragmas have the exact same effect.
3311 -- * Unit_Id is the main unit. An implicit pragma Elaborate[_All] MUST
3312 -- NOT be generated in this case because a unit cannot depend on its
3313 -- own elaboration. This case is therefore treated as valid prior
3314 -- elaboration.
3316 elsif Has_Prior_Elaboration
3320 then
3323 -- Suggest the use of pragma Prag_Nam when the dynamic model is in
3324 -- effect.
3327 Ensure_Prior_Elaboration_Dynamic
3332 -- Install an implicit pragma Prag_Nam when the static model is in
3333 -- effect.
3335 else
3338 Ensure_Prior_Elaboration_Static
3345 --------------------------------------
3346 -- Ensure_Prior_Elaboration_Dynamic --
3347 --------------------------------------
3349 procedure Ensure_Prior_Elaboration_Dynamic
3353 is
3356 -- Output information concerning missing Elaborate or Elaborate_All
3357 -- pragma with name Prag_Nam for scenario N, which would ensure the
3358 -- prior elaboration of Unit_Id.
3360 -------------------------
3361 -- Info_Missing_Pragma --
3362 -------------------------
3365 begin
3366 -- Internal units are ignored as they cause unnecessary noise
3370 -- The name of the unit subjected to the elaboration pragma is
3371 -- fully qualified to improve the clarity of the info message.
3381 -- Local variables
3386 -- Start of processing for Ensure_Prior_Elaboration_Dynamic
3388 begin
3391 -- Nothing to do when the unit is guaranteed prior elaboration by means
3392 -- of a source Elaborate[_All] pragma.
3398 -- Output extra information on a missing Elaborate[_All] pragma when
3399 -- switch -gnatel (info messages on implicit Elaborate[_All] pragmas
3400 -- is in effect.
3404 -- Performance note: parent traversal
3408 -- Declaration-level scenario
3412 then
3415 -- Library-level scenario
3420 -- Instantiation library-level scenario
3425 -- Otherwise the scenario does not appear at the proper level and
3426 -- cannot possibly act as a top-level scenario.
3428 else
3432 Info_Missing_Pragma;
3436 -------------------------------------
3437 -- Ensure_Prior_Elaboration_Static --
3438 -------------------------------------
3440 procedure Ensure_Prior_Elaboration_Static
3444 is
3445 function Find_With_Clause
3449 -- Find a nonlimited with clause in the list of context items Items
3450 -- that withs unit Withed_Id. Return Empty if no such clause is found.
3454 -- Output information concerning an implicitly generated Elaborate or
3455 -- Elaborate_All pragma with name Prag_Nam for scenario N which ensures
3456 -- the prior elaboration of unit Unit_Id.
3458 ----------------------
3459 -- Find_With_Clause --
3460 ----------------------
3462 function Find_With_Clause
3465 is
3468 begin
3469 -- Examine the context clauses looking for a suitable with. Note that
3470 -- limited clauses do not affect the elaboration order.
3478 then
3488 --------------------------
3489 -- Info_Implicit_Pragma --
3490 --------------------------
3493 begin
3494 -- Internal units are ignored as they cause unnecessary noise
3498 -- The name of the unit subjected to the elaboration pragma is
3499 -- fully qualified to improve the clarity of the info message.
3504 Error_Msg_NE
3512 -- Local variables
3522 -- Start of processing for Ensure_Prior_Elaboration_Static
3524 begin
3527 -- Nothing to do when the unit is guaranteed prior elaboration by means
3528 -- of a source Elaborate[_All] pragma.
3533 -- Nothing to do when the unit has an existing implicit Elaborate[_All]
3534 -- pragma installed by a previous scenario.
3538 -- The unit is already guaranteed prior elaboration by means of an
3539 -- implicit Elaborate pragma, however the current scenario imposes
3540 -- a stronger requirement of Elaborate_All. "Upgrade" the existing
3541 -- pragma to match this new requirement.
3545 then
3553 -- At this point it is known that the unit has no prior elaboration
3554 -- according to pragmas and hierarchical relationships.
3563 -- Locate the with clause for the unit. Note that there may not be a
3564 -- clause if the unit is visible through a subunit-body, body-spec, or
3565 -- spec-parent relationship.
3567 Clause :=
3568 Find_With_Clause
3572 -- Generate:
3573 -- with Id;
3575 -- Note that adding implicit with clauses is safe because analysis,
3576 -- resolution, and expansion have already taken place and it is not
3577 -- possible to interfere with visibility.
3580 Clause :=
3590 -- Mark the with clause depending on the pragma required
3594 else
3598 -- The implicit Elaborate[_All] ensures the prior elaboration of the
3599 -- unit. Include the unit in the elaboration context of the main unit.
3601 Set_Elaboration_Status
3604 With_Clause => Clause));
3606 -- Output extra information on an implicit Elaborate[_All] pragma when
3607 -- switch -gnatel (info messages on implicit Elaborate[_All] pragmas is
3608 -- in effect.
3610 if Elab_Info_Messages then
3611 Info_Implicit_Pragma;
3612 end if;
3613 end Ensure_Prior_Elaboration_Static;
3615 -----------------------------
3616 -- Extract_Assignment_Name --
3617 -----------------------------
3619 function Extract_Assignment_Name (Asmt : Node_Id) return Node_Id is
3620 Nam : Node_Id;
3622 begin
3623 Nam := Name (Asmt);
3625 -- When the name denotes an array or record component, find the whole
3626 -- object.
3628 while Nkind_In (Nam, N_Explicit_Dereference,
3629 N_Indexed_Component,
3630 N_Selected_Component,
3631 N_Slice)
3632 loop
3633 Nam := Prefix (Nam);
3634 end loop;
3636 return Nam;
3637 end Extract_Assignment_Name;
3639 -----------------------------
3640 -- Extract_Call_Attributes --
3641 -----------------------------
3643 procedure Extract_Call_Attributes
3644 (Call : Node_Id;
3645 Target_Id : out Entity_Id;
3646 Attrs : out Call_Attributes)
3647 is
3648 From_Source : Boolean;
3649 In_Declarations : Boolean;
3650 Is_Dispatching : Boolean;
3652 begin
3653 -- Extraction for call markers
3655 if Nkind (Call) = N_Call_Marker then
3656 Target_Id := Target (Call);
3657 From_Source := Is_Source_Call (Call);
3658 In_Declarations := Is_Declaration_Level_Node (Call);
3659 Is_Dispatching := Is_Dispatching_Call (Call);
3661 -- Extraction for entry calls, requeue, and subprogram calls
3663 else
3664 pragma Assert (Nkind_In (Call, N_Entry_Call_Statement,
3665 N_Function_Call,
3666 N_Procedure_Call_Statement,
3667 N_Requeue_Statement));
3669 Target_Id := Entity (Extract_Call_Name (Call));
3670 From_Source := Comes_From_Source (Call);
3672 -- Performance note: parent traversal
3674 In_Declarations := Find_Enclosing_Level (Call) = Declaration_Level;
3675 Is_Dispatching :=
3676 Nkind_In (Call, N_Function_Call, N_Procedure_Call_Statement)
3677 and then Present (Controlling_Argument (Call));
3678 end if;
3680 -- Obtain the original entry or subprogram which the target may rename
3681 -- except when the target is an instantiation. In this case the alias
3682 -- is the internally generated subprogram which appears within the the
3683 -- anonymous package created for the instantiation. Such an alias is not
3684 -- a suitable target.
3686 if not (Is_Subprogram (Target_Id)
3687 and then Is_Generic_Instance (Target_Id))
3688 then
3689 Target_Id := Get_Renamed_Entity (Target_Id);
3690 end if;
3692 -- Set all attributes
3694 Attrs.Elab_Checks_OK := Is_Elaboration_Checks_OK_Node (Call);
3695 Attrs.Elab_Warnings_OK := Is_Elaboration_Warnings_OK_Node (Call);
3696 Attrs.From_Source := From_Source;
3697 Attrs.Ghost_Mode_Ignore := Is_Ignored_Ghost_Node (Call);
3698 Attrs.In_Declarations := In_Declarations;
3699 Attrs.Is_Dispatching := Is_Dispatching;
3700 Attrs.SPARK_Mode_On := Is_SPARK_Mode_On_Node (Call);
3701 end Extract_Call_Attributes;
3703 -----------------------
3704 -- Extract_Call_Name --
3705 -----------------------
3707 function Extract_Call_Name (Call : Node_Id) return Node_Id is
3708 Nam : Node_Id;
3710 begin
3711 Nam := Name (Call);
3713 -- When the call invokes an entry family, the name appears as an indexed
3714 -- component.
3716 if Nkind (Nam) = N_Indexed_Component then
3717 Nam := Prefix (Nam);
3718 end if;
3720 -- When the call employs the object.operation form, the name appears as
3721 -- a selected component.
3723 if Nkind (Nam) = N_Selected_Component then
3724 Nam := Selector_Name (Nam);
3725 end if;
3727 return Nam;
3728 end Extract_Call_Name;
3730 ---------------------------------
3731 -- Extract_Instance_Attributes --
3732 ---------------------------------
3734 procedure Extract_Instance_Attributes
3735 (Exp_Inst : Node_Id;
3736 Inst_Body : out Node_Id;
3737 Inst_Decl : out Node_Id)
3738 is
3739 Body_Id : Entity_Id;
3741 begin
3742 -- Assume that the attributes are unavailable
3744 Inst_Body := Empty;
3745 Inst_Decl := Empty;
3747 -- Generic package or subprogram spec
3749 if Nkind_In (Exp_Inst, N_Package_Declaration,
3750 N_Subprogram_Declaration)
3751 then
3752 Inst_Decl := Exp_Inst;
3753 Body_Id := Corresponding_Body (Inst_Decl);
3755 if Present (Body_Id) then
3756 Inst_Body := Unit_Declaration_Node (Body_Id);
3757 end if;
3759 -- Generic package or subprogram body
3761 else
3762 pragma Assert
3763 (Nkind_In (Exp_Inst, N_Package_Body, N_Subprogram_Body));
3765 Inst_Body := Exp_Inst;
3766 Inst_Decl := Unit_Declaration_Node (Corresponding_Spec (Inst_Body));
3767 end if;
3768 end Extract_Instance_Attributes;
3770 --------------------------------------
3771 -- Extract_Instantiation_Attributes --
3772 --------------------------------------
3774 procedure Extract_Instantiation_Attributes
3775 (Exp_Inst : Node_Id;
3776 Inst : out Node_Id;
3777 Inst_Id : out Entity_Id;
3778 Gen_Id : out Entity_Id;
3779 Attrs : out Instantiation_Attributes)
3780 is
3781 begin
3782 Inst := Original_Node (Exp_Inst);
3783 Inst_Id := Defining_Entity (Inst);
3785 -- Traverse a possible chain of renamings to obtain the original generic
3786 -- being instantiatied.
3788 Gen_Id := Get_Renamed_Entity (Entity (Name (Inst)));
3790 -- Set all attributes
3792 Attrs.Elab_Checks_OK := Is_Elaboration_Checks_OK_Node (Inst);
3793 Attrs.Elab_Warnings_OK := Is_Elaboration_Warnings_OK_Node (Inst);
3794 Attrs.Ghost_Mode_Ignore := Is_Ignored_Ghost_Node (Inst);
3795 Attrs.In_Declarations := Is_Declaration_Level_Node (Inst);
3796 Attrs.SPARK_Mode_On := Is_SPARK_Mode_On_Node (Inst);
3797 end Extract_Instantiation_Attributes;
3799 -------------------------------
3800 -- Extract_Target_Attributes --
3801 -------------------------------
3803 procedure Extract_Target_Attributes
3804 (Target_Id : Entity_Id;
3805 Attrs : out Target_Attributes)
3806 is
3807 procedure Extract_Package_Or_Subprogram_Attributes
3808 (Spec_Id : out Entity_Id;
3809 Body_Decl : out Node_Id);
3810 -- Obtain the attributes associated with a package or a subprogram.
3811 -- Spec_Id is the package or subprogram. Body_Decl is the declaration
3812 -- of the corresponding package or subprogram body.
3814 procedure Extract_Protected_Entry_Attributes
3815 (Spec_Id : out Entity_Id;
3816 Body_Decl : out Node_Id;
3817 Body_Barf : out Node_Id);
3818 -- Obtain the attributes associated with a protected entry [family].
3819 -- Spec_Id is the entity of the protected body subprogram. Body_Decl
3820 -- is the declaration of Spec_Id's corresponding body. Body_Barf is
3821 -- the declaration of the barrier function body.
3823 procedure Extract_Protected_Subprogram_Attributes
3824 (Spec_Id : out Entity_Id;
3825 Body_Decl : out Node_Id);
3826 -- Obtain the attributes associated with a protected subprogram. Formal
3827 -- Spec_Id is the entity of the protected body subprogram. Body_Decl is
3828 -- the declaration of Spec_Id's corresponding body.
3830 procedure Extract_Task_Entry_Attributes
3831 (Spec_Id : out Entity_Id;
3832 Body_Decl : out Node_Id);
3833 -- Obtain the attributes associated with a task entry [family]. Formal
3834 -- Spec_Id is the entity of the task body procedure. Body_Decl is the
3835 -- declaration of Spec_Id's corresponding body.
3837 ----------------------------------------------
3838 -- Extract_Package_Or_Subprogram_Attributes --
3839 ----------------------------------------------
3841 procedure Extract_Package_Or_Subprogram_Attributes
3842 (Spec_Id : out Entity_Id;
3843 Body_Decl : out Node_Id)
3844 is
3845 Body_Id : Entity_Id;
3846 Init_Id : Entity_Id;
3847 Spec_Decl : Node_Id;
3849 begin
3850 -- Assume that the body is not available
3852 Body_Decl := Empty;
3853 Spec_Id := Target_Id;
3855 -- For body retrieval purposes, the entity of the initial declaration
3856 -- is that of the spec.
3858 Init_Id := Spec_Id;
3860 -- The only exception to the above is a function which returns a
3861 -- constrained array type in a SPARK-to-C compilation. In this case
3862 -- the function receives a corresponding procedure which has an out
3863 -- parameter. The proper body for ABE checks and diagnostics is that
3864 -- of the procedure.
3866 if Ekind (Init_Id) = E_Function
3867 and then Rewritten_For_C (Init_Id)
3868 then
3869 Init_Id := Corresponding_Procedure (Init_Id);
3870 end if;
3872 -- Extract the attributes of the body
3874 Spec_Decl := Unit_Declaration_Node (Init_Id);
3876 -- The initial declaration is a stand alone subprogram body
3878 if Nkind (Spec_Decl) = N_Subprogram_Body then
3879 Body_Decl := Spec_Decl;
3881 -- Otherwise the package or subprogram has a spec and a completing
3882 -- body.
3884 elsif Nkind_In (Spec_Decl, N_Generic_Package_Declaration,
3885 N_Generic_Subprogram_Declaration,
3886 N_Package_Declaration,
3887 N_Subprogram_Body_Stub,
3888 N_Subprogram_Declaration)
3889 then
3890 Body_Id := Corresponding_Body (Spec_Decl);
3892 if Present (Body_Id) then
3893 Body_Decl := Unit_Declaration_Node (Body_Id);
3894 end if;
3895 end if;
3896 end Extract_Package_Or_Subprogram_Attributes;
3898 ----------------------------------------
3899 -- Extract_Protected_Entry_Attributes --
3900 ----------------------------------------
3902 procedure Extract_Protected_Entry_Attributes
3903 (Spec_Id : out Entity_Id;
3904 Body_Decl : out Node_Id;
3905 Body_Barf : out Node_Id)
3906 is
3907 Barf_Id : Entity_Id;
3908 Body_Id : Entity_Id;
3910 begin
3911 -- Assume that the bodies are not available
3913 Body_Barf := Empty;
3914 Body_Decl := Empty;
3916 -- When the entry [family] has already been expanded, it carries both
3917 -- the procedure which emulates the behavior of the entry [family] as
3918 -- well as the barrier function.
3920 if Present (Protected_Body_Subprogram (Target_Id)) then
3921 Spec_Id := Protected_Body_Subprogram (Target_Id);
3923 -- Extract the attributes of the barrier function
3925 Barf_Id :=
3926 Corresponding_Body
3927 (Unit_Declaration_Node (Barrier_Function (Target_Id)));
3929 if Present (Barf_Id) then
3930 Body_Barf := Unit_Declaration_Node (Barf_Id);
3931 end if;
3933 -- Otherwise no expansion took place
3935 else
3936 Spec_Id := Target_Id;
3937 end if;
3939 -- Extract the attributes of the entry body
3941 Body_Id := Corresponding_Body (Unit_Declaration_Node (Spec_Id));
3943 if Present (Body_Id) then
3944 Body_Decl := Unit_Declaration_Node (Body_Id);
3945 end if;
3946 end Extract_Protected_Entry_Attributes;
3948 ---------------------------------------------
3949 -- Extract_Protected_Subprogram_Attributes --
3950 ---------------------------------------------
3952 procedure Extract_Protected_Subprogram_Attributes
3953 (Spec_Id : out Entity_Id;
3954 Body_Decl : out Node_Id)
3955 is
3956 Body_Id : Entity_Id;
3958 begin
3959 -- Assume that the body is not available
3961 Body_Decl := Empty;
3963 -- When the protected subprogram has already been expanded, it
3964 -- carries the subprogram which seizes the lock and invokes the
3965 -- original statements.
3967 if Present (Protected_Subprogram (Target_Id)) then
3968 Spec_Id :=
3969 Protected_Body_Subprogram (Protected_Subprogram (Target_Id));
3971 -- Otherwise no expansion took place
3973 else
3974 Spec_Id := Target_Id;
3975 end if;
3977 -- Extract the attributes of the body
3979 Body_Id := Corresponding_Body (Unit_Declaration_Node (Spec_Id));
3981 if Present (Body_Id) then
3982 Body_Decl := Unit_Declaration_Node (Body_Id);
3983 end if;
3984 end Extract_Protected_Subprogram_Attributes;
3986 -----------------------------------
3987 -- Extract_Task_Entry_Attributes --
3988 -----------------------------------
3990 procedure Extract_Task_Entry_Attributes
3991 (Spec_Id : out Entity_Id;
3992 Body_Decl : out Node_Id)
3993 is
3994 Task_Typ : constant Entity_Id := Non_Private_View (Scope (Target_Id));
3995 Body_Id : Entity_Id;
3997 begin
3998 -- Assume that the body is not available
4000 Body_Decl := Empty;
4002 -- The the task type has already been expanded, it carries the
4003 -- procedure which emulates the behavior of the task body.
4005 if Present (Task_Body_Procedure (Task_Typ)) then
4006 Spec_Id := Task_Body_Procedure (Task_Typ);
4008 -- Otherwise no expansion took place
4010 else
4011 Spec_Id := Task_Typ;
4012 end if;
4014 -- Extract the attributes of the body
4016 Body_Id := Corresponding_Body (Unit_Declaration_Node (Spec_Id));
4018 if Present (Body_Id) then
4019 Body_Decl := Unit_Declaration_Node (Body_Id);
4020 end if;
4021 end Extract_Task_Entry_Attributes;
4023 -- Local variables
4025 Prag : constant Node_Id := SPARK_Pragma (Target_Id);
4026 Body_Barf : Node_Id;
4027 Body_Decl : Node_Id;
4028 Spec_Id : Entity_Id;
4030 -- Start of processing for Extract_Target_Attributes
4032 begin
4033 -- Assume that the body of the barrier function is not available
4035 Body_Barf := Empty;
4037 -- The target is a protected entry [family]
4039 if Is_Protected_Entry (Target_Id) then
4040 Extract_Protected_Entry_Attributes
4041 (Spec_Id => Spec_Id,
4042 Body_Decl => Body_Decl,
4043 Body_Barf => Body_Barf);
4045 -- The target is a protected subprogram
4047 elsif Is_Protected_Subp (Target_Id)
4048 or else Is_Protected_Body_Subp (Target_Id)
4049 then
4050 Extract_Protected_Subprogram_Attributes
4051 (Spec_Id => Spec_Id,
4052 Body_Decl => Body_Decl);
4054 -- The target is a task entry [family]
4056 elsif Is_Task_Entry (Target_Id) then
4057 Extract_Task_Entry_Attributes
4058 (Spec_Id => Spec_Id,
4059 Body_Decl => Body_Decl);
4061 -- Otherwise the target is a package or a subprogram
4063 else
4064 Extract_Package_Or_Subprogram_Attributes
4065 (Spec_Id => Spec_Id,
4066 Body_Decl => Body_Decl);
4067 end if;
4069 -- Set all attributes
4071 Attrs.Body_Barf := Body_Barf;
4072 Attrs.Body_Decl := Body_Decl;
4073 Attrs.Elab_Checks_OK := Is_Elaboration_Checks_OK_Id (Target_Id);
4074 Attrs.Elab_Warnings_OK := Is_Elaboration_Warnings_OK_Id (Target_Id);
4075 Attrs.From_Source := Comes_From_Source (Target_Id);
4076 Attrs.Ghost_Mode_Ignore := Is_Ignored_Ghost_Entity (Target_Id);
4077 Attrs.SPARK_Mode_On :=
4078 Present (Prag) and then Get_SPARK_Mode_From_Annotation (Prag) = On;
4079 Attrs.Spec_Decl := Unit_Declaration_Node (Spec_Id);
4080 Attrs.Spec_Id := Spec_Id;
4081 Attrs.Unit_Id := Find_Top_Unit (Target_Id);
4083 -- At this point certain attributes should always be available
4085 pragma Assert (Present (Attrs.Spec_Decl));
4086 pragma Assert (Present (Attrs.Spec_Id));
4087 pragma Assert (Present (Attrs.Unit_Id));
4088 end Extract_Target_Attributes;
4090 -----------------------------
4091 -- Extract_Task_Attributes --
4092 -----------------------------
4094 procedure Extract_Task_Attributes
4095 (Typ : Entity_Id;
4096 Attrs : out Task_Attributes)
4097 is
4098 Task_Typ : constant Entity_Id := Non_Private_View (Typ);
4100 Body_Decl : Node_Id;
4101 Body_Id : Entity_Id;
4102 Prag : Node_Id;
4103 Spec_Id : Entity_Id;
4105 begin
4106 -- Assume that the body of the task procedure is not available
4108 Body_Decl := Empty;
4110 -- The initial declaration is that of the task body procedure
4112 Spec_Id := Get_Task_Body_Procedure (Task_Typ);
4113 Body_Id := Corresponding_Body (Unit_Declaration_Node (Spec_Id));
4115 if Present (Body_Id) then
4116 Body_Decl := Unit_Declaration_Node (Body_Id);
4117 end if;
4119 Prag := SPARK_Pragma (Task_Typ);
4121 -- Set all attributes
4123 Attrs.Body_Decl := Body_Decl;
4124 Attrs.Elab_Checks_OK := Is_Elaboration_Checks_OK_Id (Task_Typ);
4125 Attrs.Elab_Warnings_OK := Is_Elaboration_Warnings_OK_Id (Task_Typ);
4126 Attrs.Ghost_Mode_Ignore := Is_Ignored_Ghost_Entity (Task_Typ);
4127 Attrs.SPARK_Mode_On :=
4128 Present (Prag) and then Get_SPARK_Mode_From_Annotation (Prag) = On;
4129 Attrs.Spec_Id := Spec_Id;
4130 Attrs.Task_Decl := Declaration_Node (Task_Typ);
4131 Attrs.Unit_Id := Find_Top_Unit (Task_Typ);
4133 -- At this point certain attributes should always be available
4135 pragma Assert (Present (Attrs.Spec_Id));
4136 pragma Assert (Present (Attrs.Task_Decl));
4137 pragma Assert (Present (Attrs.Unit_Id));
4138 end Extract_Task_Attributes;
4140 -------------------------------------------
4141 -- Extract_Variable_Reference_Attributes --
4142 -------------------------------------------
4144 procedure Extract_Variable_Reference_Attributes
4145 (Ref : Node_Id;
4146 Var_Id : out Entity_Id;
4147 Attrs : out Variable_Attributes)
4148 is
4149 function Get_Renamed_Variable (Id : Entity_Id) return Entity_Id;
4150 -- Obtain the ultimate renamed variable of variable Id
4152 --------------------------
4153 -- Get_Renamed_Variable --
4154 --------------------------
4156 function Get_Renamed_Variable (Id : Entity_Id) return Entity_Id is
4157 Ren_Id : Entity_Id;
4159 begin
4160 Ren_Id := Id;
4161 while Present (Renamed_Entity (Ren_Id))
4162 and then Nkind (Renamed_Entity (Ren_Id)) in N_Entity
4163 loop
4164 Ren_Id := Renamed_Entity (Ren_Id);
4165 end loop;
4167 return Ren_Id;
4168 end Get_Renamed_Variable;
4170 -- Start of processing for Extract_Variable_Reference_Attributes
4172 begin
4173 -- Extraction for variable reference markers
4175 if Nkind (Ref) = N_Variable_Reference_Marker then
4176 Var_Id := Target (Ref);
4178 -- Extraction for expanded names and identifiers
4180 else
4181 Var_Id := Entity (Ref);
4182 end if;
4184 -- Obtain the original variable which the reference mentions
4186 Var_Id := Get_Renamed_Variable (Var_Id);
4187 Attrs.Unit_Id := Find_Top_Unit (Var_Id);
4189 -- At this point certain attributes should always be available
4191 pragma Assert (Present (Attrs.Unit_Id));
4192 end Extract_Variable_Reference_Attributes;
4194 --------------------
4195 -- Find_Code_Unit --
4196 --------------------
4198 function Find_Code_Unit (N : Node_Or_Entity_Id) return Entity_Id is
4199 begin
4200 return Find_Unit_Entity (Unit (Cunit (Get_Code_Unit (N))));
4201 end Find_Code_Unit;
4203 ----------------------------
4204 -- Find_Early_Call_Region --
4205 ----------------------------
4207 function Find_Early_Call_Region
4208 (Body_Decl : Node_Id;
4209 Assume_Elab_Body : Boolean := False;
4210 Skip_Memoization : Boolean := False) return Node_Id
4211 is
4212 -- NOTE: The routines within Find_Early_Call_Region are intentionally
4213 -- unnested to avoid deep indentation of code.
4215 ECR_Found : exception;
4216 -- This exception is raised when the early call region has been found
4218 Start : Node_Id := Empty;
4219 -- The start of the early call region. This variable is updated by the
4220 -- various nested routines. Due to the use of exceptions, the variable
4221 -- must be global to the nested routines.
4223 -- The algorithm implemented in this routine attempts to find the early
4224 -- call region of a subprogram body by inspecting constructs in reverse
4225 -- declarative order, while navigating the tree. The algorithm consists
4226 -- of an Inspection phase and an Advancement phase. The pseudocode is as
4227 -- follows:
4228 --
4229 -- loop
4230 -- inspection phase
4231 -- advancement phase
4232 -- end loop
4233 --
4234 -- The infinite loop is terminated by raising exception ECR_Found. The
4235 -- algorithm utilizes two pointers, Curr and Start, to represent the
4236 -- current construct to inspect and the start of the early call region.
4237 --
4238 -- IMPORTANT: The algorithm must maintain the following invariant at all
4239 -- time for it to function properly - a nested construct is entered only
4240 -- when it contains suitable constructs. This guarantees that leaving a
4241 -- nested or encapsulating construct functions properly.
4242 --
4243 -- The Inspection phase determines whether the current construct is non-
4244 -- preelaborable, and if it is, the algorithm terminates.
4245 --
4246 -- The Advancement phase walks the tree in reverse declarative order,
4247 -- while entering and leaving nested and encapsulating constructs. It
4248 -- may also terminate the elaborithm. There are several special cases
4249 -- of advancement.
4250 --
4251 -- 1) General case:
4252 --
4253 -- <construct 1>
4254 -- ...
4255 -- <construct N-1> <- Curr
4256 -- <construct N> <- Start
4257 -- <subprogram body>
4258 --
4259 -- In the general case, a declarative or statement list is traversed in
4260 -- reverse order where Curr is the lead pointer, and Start indicates the
4261 -- last preelaborable construct.
4262 --
4263 -- 2) Entering handled bodies
4264 --
4265 -- package body Nested is <- Curr (2.3)
4266 -- <declarations> <- Curr (2.2)
4267 -- begin
4268 -- <statements> <- Curr (2.1)
4269 -- end Nested;
4270 -- <construct> <- Start
4271 --
4272 -- In this case, the algorithm enters a handled body by starting from
4273 -- the last statement (2.1), or the last declaration (2.2), or the body
4274 -- is consumed (2.3) because it is empty and thus preelaborable.
4275 --
4276 -- 3) Entering package declarations
4277 --
4278 -- package Nested is <- Curr (2.3)
4279 -- <visible declarations> <- Curr (2.2)
4280 -- private
4281 -- <private declarations> <- Curr (2.1)
4282 -- end Nested;
4283 -- <construct> <- Start
4284 --
4285 -- In this case, the algorithm enters a package declaration by starting
4286 -- from the last private declaration (2.1), the last visible declaration
4287 -- (2.2), or the package is consumed (2.3) because it is empty and thus
4288 -- preelaborable.
4289 --
4290 -- 4) Transitioning from list to list of the same construct
4291 --
4292 -- Certain constructs have two eligible lists. The algorithm must thus
4293 -- transition from the second to the first list when the second list is
4294 -- exhausted.
4295 --
4296 -- declare <- Curr (4.2)
4297 -- <declarations> <- Curr (4.1)
4298 -- begin
4299 -- <statements> <- Start
4300 -- end;
4301 --
4302 -- In this case, the algorithm has exhausted the second list (statements
4303 -- in the example), and continues with the last declaration (4.1) or the
4304 -- construct is consumed (4.2) because it contains only preelaborable
4305 -- code.
4306 --
4307 -- 5) Transitioning from list to construct
4308 --
4309 -- tack body Task is <- Curr (5.1)
4310 -- <- Curr (Empty)
4311 -- <construct 1> <- Start
4312 --
4313 -- In this case, the algorithm has exhausted a list, Curr is Empty, and
4314 -- the owner of the list is consumed (5.1).
4315 --
4316 -- 6) Transitioning from unit to unit
4317 --
4318 -- A package body with a spec subject to pragma Elaborate_Body extends
4319 -- the possible range of the early call region to the package spec.
4320 --
4321 -- package Pack is <- Curr (6.3)
4322 -- pragma Elaborate_Body; <- Curr (6.2)
4323 -- <visible declarations> <- Curr (6.2)
4324 -- private
4325 -- <private declarations> <- Curr (6.1)
4326 -- end Pack;
4327 --
4328 -- package body Pack is <- Curr, Start
4329 --
4330 -- In this case, the algorithm has reached a package body compilation
4331 -- unit whose spec is subject to pragma Elaborate_Body, or the caller
4332 -- of the algorithm has specified this behavior. This transition is
4333 -- equivalent to 3).
4334 --
4335 -- 7) Transitioning from unit to termination
4336 --
4337 -- Reaching a compilation unit always terminates the algorithm as there
4338 -- are no more lists to examine. This must take 6) into account.
4339 --
4340 -- 8) Transitioning from subunit to stub
4341 --
4342 -- package body Pack is separate; <- Curr (8.1)
4343 --
4344 -- separate (...)
4345 -- package body Pack is <- Curr, Start
4346 --
4347 -- Reaching a subunit continues the search from the corresponding stub
4348 -- (8.1).
4350 procedure Advance (Curr : in out Node_Id);
4351 pragma Inline (Advance);
4352 -- Update the Curr and Start pointers depending on their location in the
4353 -- tree to the next eligible construct. This routine raises ECR_Found.
4355 procedure Enter_Handled_Body (Curr : in out Node_Id);
4356 pragma Inline (Enter_Handled_Body);
4357 -- Update the Curr and Start pointers to enter a nested handled body if
4358 -- applicable. This routine raises ECR_Found.
4360 procedure Enter_Package_Declaration (Curr : in out Node_Id);
4361 pragma Inline (Enter_Package_Declaration);
4362 -- Update the Curr and Start pointers to enter a nested package spec if
4363 -- applicable. This routine raises ECR_Found.
4365 function Find_ECR (N : Node_Id) return Node_Id;
4366 pragma Inline (Find_ECR);
4367 -- Find an early call region starting from arbitrary node N
4369 function Has_Suitable_Construct (List : List_Id) return Boolean;
4370 pragma Inline (Has_Suitable_Construct);
4371 -- Determine whether list List contains at least one suitable construct
4372 -- for inclusion into an early call region.
4374 procedure Include (N : Node_Id; Curr : out Node_Id);
4375 pragma Inline (Include);
4376 -- Update the Curr and Start pointers to include arbitrary construct N
4377 -- in the early call region. This routine raises ECR_Found.
4379 function Is_OK_Preelaborable_Construct (N : Node_Id) return Boolean;
4380 pragma Inline (Is_OK_Preelaborable_Construct);
4381 -- Determine whether arbitrary node N denotes a preelaboration-safe
4382 -- construct.
4384 function Is_Suitable_Construct (N : Node_Id) return Boolean;
4385 pragma Inline (Is_Suitable_Construct);
4386 -- Determine whether arbitrary node N denotes a suitable construct for
4387 -- inclusion into the early call region.
4389 procedure Transition_Body_Declarations
4390 (Bod : Node_Id;
4391 Curr : out Node_Id);
4392 pragma Inline (Transition_Body_Declarations);
4393 -- Update the Curr and Start pointers when construct Bod denotes a block
4394 -- statement or a suitable body. This routine raises ECR_Found.
4396 procedure Transition_Handled_Statements
4397 (HSS : Node_Id;
4398 Curr : out Node_Id);
4399 pragma Inline (Transition_Handled_Statements);
4400 -- Update the Curr and Start pointers when node HSS denotes a handled
4401 -- sequence of statements. This routine raises ECR_Found.
4403 procedure Transition_Spec_Declarations
4404 (Spec : Node_Id;
4405 Curr : out Node_Id);
4406 pragma Inline (Transition_Spec_Declarations);
4407 -- Update the Curr and Start pointers when construct Spec denotes
4408 -- a concurrent definition or a package spec. This routine raises
4409 -- ECR_Found.
4411 procedure Transition_Unit (Unit : Node_Id; Curr : out Node_Id);
4412 pragma Inline (Transition_Unit);
4413 -- Update the Curr and Start pointers when node Unit denotes a potential
4414 -- compilation unit. This routine raises ECR_Found.
4416 -------------
4417 -- Advance --
4418 -------------
4420 procedure Advance (Curr : in out Node_Id) is
4421 Context : Node_Id;
4423 begin
4424 -- Curr denotes one of the following cases upon entry into this
4425 -- routine:
4426 --
4427 -- * Empty - There is no current construct when a declarative or a
4428 -- statement list has been exhausted. This does not necessarily
4429 -- indicate that the early call region has been computed as it
4430 -- may still be possible to transition to another list.
4431 --
4432 -- * Encapsulator - The current construct encapsulates declarations
4433 -- and/or statements. This indicates that the early call region
4434 -- may extend within the nested construct.
4435 --
4436 -- * Preelaborable - The current construct is always preelaborable
4437 -- because Find_ECR would not invoke Advance if this was not the
4438 -- case.
4440 -- The current construct is an encapsulator or is preelaborable
4442 if Present (Curr) then
4444 -- Enter encapsulators by inspecting their declarations and/or
4445 -- statements.
4447 if Nkind_In (Curr, N_Block_Statement, N_Package_Body) then
4448 Enter_Handled_Body (Curr);
4450 elsif Nkind (Curr) = N_Package_Declaration then
4451 Enter_Package_Declaration (Curr);
4453 -- Early call regions have a property which can be exploited to
4454 -- optimize the algorithm.
4455 --
4456 -- <preceding subprogram body>
4457 -- <preelaborable construct 1>
4458 -- ...
4459 -- <preelaborable construct N>
4460 -- <initiating subprogram body>
4461 --
4462 -- If a traversal initiated from a subprogram body reaches a
4463 -- preceding subprogram body, then both bodies share the same
4464 -- early call region.
4465 --
4466 -- The property results in the following desirable effects:
4467 --
4468 -- * If the preceding body already has an early call region, then
4469 -- the initiating body can reuse it. This minimizes the amount
4470 -- of processing performed by the algorithm.
4471 --
4472 -- * If the preceding body lack an early call region, then the
4473 -- algorithm can compute the early call region, and reuse it
4474 -- for the initiating body. This processing performs the same
4475 -- amount of work, but has the beneficial effect of computing
4476 -- the early call regions of all preceding bodies.
4478 elsif Nkind_In (Curr, N_Entry_Body, N_Subprogram_Body) then
4479 Start :=
4480 Find_Early_Call_Region
4481 (Body_Decl => Curr,
4482 Assume_Elab_Body => Assume_Elab_Body,
4483 Skip_Memoization => Skip_Memoization);
4485 raise ECR_Found;
4487 -- Otherwise current construct is preelaborable. Unpdate the early
4488 -- call region to include it.
4490 else
4491 Include (Curr, Curr);
4492 end if;
4494 -- Otherwise the current construct is missing, indicating that the
4495 -- current list has been exhausted. Depending on the context of the
4496 -- list, several transitions are possible.
4498 else
4499 -- The invariant of the algorithm ensures that Curr and Start are
4500 -- at the same level of nesting at the point of a transition. The
4501 -- algorithm can determine which list the traversal came from by
4502 -- examining Start.
4504 Context := Parent (Start);
4506 -- Attempt the following transitions:
4507 --
4508 -- private declarations -> visible declarations
4509 -- private declarations -> upper level
4510 -- private declarations -> terminate
4511 -- visible declarations -> upper level
4512 -- visible declarations -> terminate
4514 if Nkind_In (Context, N_Package_Specification,
4515 N_Protected_Definition,
4516 N_Task_Definition)
4517 then
4518 Transition_Spec_Declarations (Context, Curr);
4520 -- Attempt the following transitions:
4521 --
4522 -- statements -> declarations
4523 -- statements -> upper level
4524 -- statements -> corresponding package spec (Elab_Body)
4525 -- statements -> terminate
4527 elsif Nkind (Context) = N_Handled_Sequence_Of_Statements then
4528 Transition_Handled_Statements (Context, Curr);
4530 -- Attempt the following transitions:
4531 --
4532 -- declarations -> upper level
4533 -- declarations -> corresponding package spec (Elab_Body)
4534 -- declarations -> terminate
4536 elsif Nkind_In (Context, N_Block_Statement,
4537 N_Entry_Body,
4538 N_Package_Body,
4539 N_Protected_Body,
4540 N_Subprogram_Body,
4541 N_Task_Body)
4542 then
4543 Transition_Body_Declarations (Context, Curr);
4545 -- Otherwise it is not possible to transition. Stop the search
4546 -- because there are no more declarations or statements to check.
4548 else
4549 raise ECR_Found;
4550 end if;
4551 end if;
4552 end Advance;
4554 --------------------------
4555 -- Enter_Handled_Body --
4556 --------------------------
4558 procedure Enter_Handled_Body (Curr : in out Node_Id) is
4559 Decls : constant List_Id := Declarations (Curr);
4560 HSS : constant Node_Id := Handled_Statement_Sequence (Curr);
4561 Stmts : List_Id := No_List;
4563 begin
4564 if Present (HSS) then
4565 Stmts := Statements (HSS);
4566 end if;
4568 -- The handled body has a non-empty statement sequence. The construct
4569 -- to inspect is the last statement.
4571 if Has_Suitable_Construct (Stmts) then
4572 Curr := Last (Stmts);
4574 -- The handled body lacks statements, but has non-empty declarations.
4575 -- The construct to inspect is the last declaration.
4577 elsif Has_Suitable_Construct (Decls) then
4578 Curr := Last (Decls);
4580 -- Otherwise the handled body lacks both declarations and statements.
4581 -- The construct to inspect is the node which precedes the handled
4582 -- body. Update the early call region to include the handled body.
4584 else
4585 Include (Curr, Curr);
4586 end if;
4587 end Enter_Handled_Body;
4589 -------------------------------
4590 -- Enter_Package_Declaration --
4591 -------------------------------
4593 procedure Enter_Package_Declaration (Curr : in out Node_Id) is
4594 Pack_Spec : constant Node_Id := Specification (Curr);
4595 Prv_Decls : constant List_Id := Private_Declarations (Pack_Spec);
4596 Vis_Decls : constant List_Id := Visible_Declarations (Pack_Spec);
4598 begin
4599 -- The package has a non-empty private declarations. The construct to
4600 -- inspect is the last private declaration.
4602 if Has_Suitable_Construct (Prv_Decls) then
4603 Curr := Last (Prv_Decls);
4605 -- The package lacks private declarations, but has non-empty visible
4606 -- declarations. In this case the construct to inspect is the last
4607 -- visible declaration.
4609 elsif Has_Suitable_Construct (Vis_Decls) then
4610 Curr := Last (Vis_Decls);
4612 -- Otherwise the package lacks any declarations. The construct to
4613 -- inspect is the node which precedes the package. Update the early
4614 -- call region to include the package declaration.
4616 else
4617 Include (Curr, Curr);
4618 end if;
4619 end Enter_Package_Declaration;
4621 --------------
4622 -- Find_ECR --
4623 --------------
4625 function Find_ECR (N : Node_Id) return Node_Id is
4626 Curr : Node_Id;
4628 begin
4629 -- The early call region starts at N
4631 Curr := Prev (N);
4632 Start := N;
4634 -- Inspect each node in reverse declarative order while going in and
4635 -- out of nested and enclosing constructs. Note that the only way to
4636 -- terminate this infinite loop is to raise exception ECR_Found.
4638 loop
4639 -- The current construct is not preelaboration-safe. Terminate the
4640 -- traversal.
4642 if Present (Curr)
4643 and then not Is_OK_Preelaborable_Construct (Curr)
4644 then
4645 raise ECR_Found;
4646 end if;
4648 -- Advance to the next suitable construct. This may terminate the
4649 -- traversal by raising ECR_Found.
4651 Advance (Curr);
4652 end loop;
4654 exception
4655 when ECR_Found =>
4656 return Start;
4657 end Find_ECR;
4659 ----------------------------
4660 -- Has_Suitable_Construct --
4661 ----------------------------
4663 function Has_Suitable_Construct (List : List_Id) return Boolean is
4664 Item : Node_Id;
4666 begin
4667 -- Examine the list in reverse declarative order, looking for a
4668 -- suitable construct.
4670 if Present (List) then
4671 Item := Last (List);
4672 while Present (Item) loop
4673 if Is_Suitable_Construct (Item) then
4674 return True;
4675 end if;
4677 Prev (Item);
4678 end loop;
4679 end if;
4681 return False;
4682 end Has_Suitable_Construct;
4684 -------------
4685 -- Include --
4686 -------------
4688 procedure Include (N : Node_Id; Curr : out Node_Id) is
4689 begin
4690 Start := N;
4692 -- The input node is a compilation unit. This terminates the search
4693 -- because there are no more lists to inspect and there are no more
4694 -- enclosing constructs to climb up to. The transitions are:
4695 --
4696 -- private declarations -> terminate
4697 -- visible declarations -> terminate
4698 -- statements -> terminate
4699 -- declarations -> terminate
4701 if Nkind (Parent (Start)) = N_Compilation_Unit then
4702 raise ECR_Found;
4704 -- Otherwise the input node is still within some list
4706 else
4707 Curr := Prev (Start);
4708 end if;
4709 end Include;
4711 -----------------------------------
4712 -- Is_OK_Preelaborable_Construct --
4713 -----------------------------------
4715 function Is_OK_Preelaborable_Construct (N : Node_Id) return Boolean is
4716 begin
4717 -- Assignment statements are acceptable as long as they were produced
4718 -- by the ABE mechanism to update elaboration flags.
4720 if Nkind (N) = N_Assignment_Statement then
4721 return Is_Elaboration_Code (N);
4723 -- Block statements are acceptable even though they directly violate
4724 -- preelaborability. The intention is not to penalize the early call
4725 -- region when a block contains only preelaborable constructs.
4726 --
4727 -- declare
4728 -- Val : constant Integer := 1;
4729 -- begin
4730 -- pragma Assert (Val = 1);
4731 -- null;
4732 -- end;
4733 --
4734 -- Note that the Advancement phase does enter blocks, and will detect
4735 -- any non-preelaborable declarations or statements within.
4737 elsif Nkind (N) = N_Block_Statement then
4738 return True;
4739 end if;
4741 -- Otherwise the construct must be preelaborable. The check must take
4742 -- the syntactic and semantic structure of the construct. DO NOT use
4743 -- Is_Preelaborable_Construct here.
4745 return not Is_Non_Preelaborable_Construct (N);
4746 end Is_OK_Preelaborable_Construct;
4748 ---------------------------
4749 -- Is_Suitable_Construct --
4750 ---------------------------
4752 function Is_Suitable_Construct (N : Node_Id) return Boolean is
4753 Context : constant Node_Id := Parent (N);
4755 begin
4756 -- An internally-generated statement sequence which contains only a
4757 -- single null statement is not a suitable construct because it is a
4758 -- byproduct of the parser. Such a null statement should be excluded
4759 -- from the early call region because it carries the source location
4760 -- of the "end" keyword, and may lead to confusing diagnistics.
4762 if Nkind (N) = N_Null_Statement
4763 and then not Comes_From_Source (N)
4764 and then Present (Context)
4765 and then Nkind (Context) = N_Handled_Sequence_Of_Statements
4766 then
4767 return False;
4768 end if;
4770 -- Otherwise only constructs which correspond to pure Ada constructs
4771 -- are considered suitable.
4773 case Nkind (N) is
4774 when N_Call_Marker
4775 | N_Freeze_Entity
4776 | N_Freeze_Generic_Entity
4777 | N_Implicit_Label_Declaration
4778 | N_Itype_Reference
4779 | N_Pop_Constraint_Error_Label
4780 | N_Pop_Program_Error_Label
4781 | N_Pop_Storage_Error_Label
4782 | N_Push_Constraint_Error_Label
4783 | N_Push_Program_Error_Label
4784 | N_Push_Storage_Error_Label
4785 | N_SCIL_Dispatch_Table_Tag_Init
4786 | N_SCIL_Dispatching_Call
4787 | N_SCIL_Membership_Test
4788 | N_Variable_Reference_Marker
4789 =>
4790 return False;
4792 when others =>
4793 return True;
4794 end case;
4795 end Is_Suitable_Construct;
4797 ----------------------------------
4798 -- Transition_Body_Declarations --
4799 ----------------------------------
4801 procedure Transition_Body_Declarations
4802 (Bod : Node_Id;
4803 Curr : out Node_Id)
4804 is
4805 Decls : constant List_Id := Declarations (Bod);
4807 begin
4808 -- The search must come from the declarations of the body
4810 pragma Assert
4811 (Is_Non_Empty_List (Decls)
4812 and then List_Containing (Start) = Decls);
4814 -- The search finished inspecting the declarations. The construct
4815 -- to inspect is the node which precedes the handled body, unless
4816 -- the body is a compilation unit. The transitions are:
4817 --
4818 -- declarations -> upper level
4819 -- declarations -> corresponding package spec (Elab_Body)
4820 -- declarations -> terminate
4822 Transition_Unit (Bod, Curr);
4823 end Transition_Body_Declarations;
4825 -----------------------------------
4826 -- Transition_Handled_Statements --
4827 -----------------------------------
4829 procedure Transition_Handled_Statements
4830 (HSS : Node_Id;
4831 Curr : out Node_Id)
4832 is
4833 Bod : constant Node_Id := Parent (HSS);
4834 Decls : constant List_Id := Declarations (Bod);
4835 Stmts : constant List_Id := Statements (HSS);
4837 begin
4838 -- The search must come from the statements of certain bodies or
4839 -- statements.
4841 pragma Assert (Nkind_In (Bod, N_Block_Statement,
4842 N_Entry_Body,
4843 N_Package_Body,
4844 N_Protected_Body,
4845 N_Subprogram_Body,
4846 N_Task_Body));
4848 -- The search must come from the statements of the handled sequence
4850 pragma Assert
4851 (Is_Non_Empty_List (Stmts)
4852 and then List_Containing (Start) = Stmts);
4854 -- The search finished inspecting the statements. The handled body
4855 -- has non-empty declarations. The construct to inspect is the last
4856 -- declaration. The transitions are:
4857 --
4858 -- statements -> declarations
4860 if Has_Suitable_Construct (Decls) then
4861 Curr := Last (Decls);
4863 -- Otherwise the handled body lacks declarations. The construct to
4864 -- inspect is the node which precedes the handled body, unless the
4865 -- body is a compilation unit. The transitions are:
4866 --
4867 -- statements -> upper level
4868 -- statements -> corresponding package spec (Elab_Body)
4869 -- statements -> terminate
4871 else
4872 Transition_Unit (Bod, Curr);
4873 end if;
4874 end Transition_Handled_Statements;
4876 ----------------------------------
4877 -- Transition_Spec_Declarations --
4878 ----------------------------------
4880 procedure Transition_Spec_Declarations
4881 (Spec : Node_Id;
4882 Curr : out Node_Id)
4883 is
4884 Prv_Decls : constant List_Id := Private_Declarations (Spec);
4885 Vis_Decls : constant List_Id := Visible_Declarations (Spec);
4887 begin
4888 pragma Assert (Present (Start) and then Is_List_Member (Start));
4890 -- The search came from the private declarations and finished their
4891 -- inspection.
4893 if Has_Suitable_Construct (Prv_Decls)
4894 and then List_Containing (Start) = Prv_Decls
4895 then
4896 -- The context has non-empty visible declarations. The node to
4897 -- inspect is the last visible declaration. The transitions are:
4898 --
4899 -- private declarations -> visible declarations
4901 if Has_Suitable_Construct (Vis_Decls) then
4902 Curr := Last (Vis_Decls);
4904 -- Otherwise the context lacks visible declarations. The construct
4905 -- to inspect is the node which precedes the context unless the
4906 -- context is a compilation unit. The transitions are:
4907 --
4908 -- private declarations -> upper level
4909 -- private declarations -> terminate
4911 else
4912 Transition_Unit (Parent (Spec), Curr);
4913 end if;
4915 -- The search came from the visible declarations and finished their
4916 -- inspections. The construct to inspect is the node which precedes
4917 -- the context, unless the context is a compilaton unit. The
4918 -- transitions are:
4919 --
4920 -- visible declarations -> upper level
4921 -- visible declarations -> terminate
4923 elsif Has_Suitable_Construct (Vis_Decls)
4924 and then List_Containing (Start) = Vis_Decls
4925 then
4926 Transition_Unit (Parent (Spec), Curr);
4928 -- At this point both declarative lists are empty, but the traversal
4929 -- still came from within the spec. This indicates that the invariant
4930 -- of the algorithm has been violated.
4932 else
4933 pragma Assert (False);
4934 raise ECR_Found;
4935 end if;
4936 end Transition_Spec_Declarations;
4938 ---------------------
4939 -- Transition_Unit --
4940 ---------------------
4942 procedure Transition_Unit
4943 (Unit : Node_Id;
4944 Curr : out Node_Id)
4945 is
4946 Context : constant Node_Id := Parent (Unit);
4948 begin
4949 -- The unit is a compilation unit. This terminates the search because
4950 -- there are no more lists to inspect and there are no more enclosing
4951 -- constructs to climb up to.
4953 if Nkind (Context) = N_Compilation_Unit then
4955 -- A package body with a corresponding spec subject to pragma
4956 -- Elaborate_Body is an exception to the above. The annotation
4957 -- allows the search to continue into the package declaration.
4958 -- The transitions are:
4959 --
4960 -- statements -> corresponding package spec (Elab_Body)
4961 -- declarations -> corresponding package spec (Elab_Body)
4963 if Nkind (Unit) = N_Package_Body
4964 and then (Assume_Elab_Body
4965 or else Has_Pragma_Elaborate_Body
4966 (Corresponding_Spec (Unit)))
4967 then
4968 Curr := Unit_Declaration_Node (Corresponding_Spec (Unit));
4969 Enter_Package_Declaration (Curr);
4971 -- Otherwise terminate the search. The transitions are:
4972 --
4973 -- private declarations -> terminate
4974 -- visible declarations -> terminate
4975 -- statements -> terminate
4976 -- declarations -> terminate
4978 else
4979 raise ECR_Found;
4980 end if;
4982 -- The unit is a subunit. The construct to inspect is the node which
4983 -- precedes the corresponding stub. Update the early call region to
4984 -- include the unit.
4986 elsif Nkind (Context) = N_Subunit then
4987 Start := Unit;
4988 Curr := Corresponding_Stub (Context);
4990 -- Otherwise the unit is nested. The construct to inspect is the node
4991 -- which precedes the unit. Update the early call region to include
4992 -- the unit.
4994 else
4995 Include (Unit, Curr);
4996 end if;
4997 end Transition_Unit;
4999 -- Local variables
5001 Body_Id : constant Entity_Id := Defining_Entity (Body_Decl);
5002 Region : Node_Id;
5004 -- Start of processing for Find_Early_Call_Region
5006 begin
5007 -- The caller demands the start of the early call region without saving
5008 -- or retrieving it to/from internal data structures.
5010 if Skip_Memoization then
5011 Region := Find_ECR (Body_Decl);
5013 -- Default behavior
5015 else
5016 -- Check whether the early call region of the subprogram body is
5017 -- available.
5019 Region := Early_Call_Region (Body_Id);
5021 if No (Region) then
5023 -- Traverse the declarations in reverse order, starting from the
5024 -- subprogram body, searching for the nearest non-preelaborable
5025 -- construct. The early call region starts after this construct
5026 -- and ends at the subprogram body.
5028 Region := Find_ECR (Body_Decl);
5030 -- Associate the early call region with the subprogram body in
5031 -- case other scenarios need it.
5033 Set_Early_Call_Region (Body_Id, Region);
5034 end if;
5035 end if;
5037 -- A subprogram body must always have an early call region
5039 pragma Assert (Present (Region));
5041 return Region;
5042 end Find_Early_Call_Region;
5044 ---------------------------
5045 -- Find_Elaborated_Units --
5046 ---------------------------
5048 procedure Find_Elaborated_Units is
5049 procedure Add_Pragma (Prag : Node_Id);
5050 -- Determine whether pragma Prag denotes a legal Elaborate[_All] pragma.
5051 -- If this is the case, add the related unit to the elaboration context.
5052 -- For pragma Elaborate_All, include recursively all units withed by the
5053 -- related unit.
5055 procedure Add_Unit
5056 (Unit_Id : Entity_Id;
5057 Prag : Node_Id;
5058 Full_Context : Boolean);
5059 -- Add unit Unit_Id to the elaboration context. Prag denotes the pragma
5060 -- which prompted the inclusion of the unit to the elaboration context.
5061 -- If flag Full_Context is set, examine the nonlimited clauses of unit
5062 -- Unit_Id and add each withed unit to the context.
5064 procedure Find_Elaboration_Context (Comp_Unit : Node_Id);
5065 -- Examine the context items of compilation unit Comp_Unit for suitable
5066 -- elaboration-related pragmas and add all related units to the context.
5068 ----------------
5069 -- Add_Pragma --
5070 ----------------
5072 procedure Add_Pragma (Prag : Node_Id) is
5073 Prag_Args : constant List_Id := Pragma_Argument_Associations (Prag);
5074 Prag_Nam : constant Name_Id := Pragma_Name (Prag);
5075 Unit_Arg : Node_Id;
5077 begin
5078 -- Nothing to do if the pragma is not related to elaboration
5080 if not Nam_In (Prag_Nam, Name_Elaborate, Name_Elaborate_All) then
5081 return;
5083 -- Nothing to do when the pragma is illegal
5085 elsif Error_Posted (Prag) then
5086 return;
5087 end if;
5089 Unit_Arg := Get_Pragma_Arg (First (Prag_Args));
5091 -- The argument of the pragma may appear in package.package form
5093 if Nkind (Unit_Arg) = N_Selected_Component then
5094 Unit_Arg := Selector_Name (Unit_Arg);
5095 end if;
5097 Add_Unit
5098 (Unit_Id => Entity (Unit_Arg),
5099 Prag => Prag,
5100 Full_Context => Prag_Nam = Name_Elaborate_All);
5101 end Add_Pragma;
5103 --------------
5104 -- Add_Unit --
5105 --------------
5107 procedure Add_Unit
5108 (Unit_Id : Entity_Id;
5109 Prag : Node_Id;
5110 Full_Context : Boolean)
5111 is
5112 Clause : Node_Id;
5113 Elab_Attrs : Elaboration_Attributes;
5115 begin
5116 -- Nothing to do when some previous error left a with clause or a
5117 -- pragma in a bad state.
5119 if No (Unit_Id) then
5120 return;
5121 end if;
5123 Elab_Attrs := Elaboration_Status (Unit_Id);
5125 -- The unit is already included in the context by means of pragma
5126 -- Elaborate[_All].
5128 if Present (Elab_Attrs.Source_Pragma) then
5130 -- Upgrade an existing pragma Elaborate when the unit is subject
5131 -- to Elaborate_All because the new pragma covers a larger set of
5132 -- units.
5134 if Pragma_Name (Elab_Attrs.Source_Pragma) = Name_Elaborate
5135 and then Pragma_Name (Prag) = Name_Elaborate_All
5136 then
5137 Elab_Attrs.Source_Pragma := Prag;
5139 -- Otherwise the unit retains its existing pragma and does not
5140 -- need to be included in the context again.
5142 else
5143 return;
5144 end if;
5146 -- The current unit is not part of the context. Prepare a new set of
5147 -- attributes.
5149 else
5150 Elab_Attrs :=
5155 -- Add or update the attributes of the unit
5159 -- Includes all units withed by the current one when computing the
5160 -- full context.
5164 -- Process all nonlimited with clauses found in the context of
5165 -- the current unit. Note that limited clauses do not impose an
5166 -- elaboration order.
5173 then
5174 Add_Unit
5185 ------------------------------
5186 -- Find_Elaboration_Context --
5187 ------------------------------
5192 begin
5195 -- Process all elaboration-related pragmas found in the context of
5196 -- the compilation unit.
5208 -- Local variables
5213 -- Start of processing for Find_Elaborated_Units
5215 begin
5216 -- Perform a traversal which examines the context of the main unit and
5217 -- populates the Elaboration_Context table with all units elaborated
5218 -- prior to the main unit. The traversal performs the following jumps:
5220 -- subunit -> parent subunit
5221 -- parent subunit -> body
5222 -- body -> spec
5223 -- spec -> parent spec
5224 -- parent spec -> grandparent spec and so on
5226 -- The traversal relies on units rather than scopes because the scope of
5227 -- a subunit is some spec, while this traversal must process the body as
5228 -- well. Given that protected and task bodies can also be subunits, this
5229 -- complicates the scope approach even further.
5233 -- Perform the following traversals when the main unit is a subunit
5235 -- subunit -> parent subunit
5236 -- parent subunit -> body
5241 -- Continue the traversal by going to the unit which contains the
5242 -- corresponding stub.
5247 -- Otherwise the subunit may be erroneous or left in a bad state
5249 else
5254 -- Perform the following traversal now that subunits have been taken
5255 -- care of, or the main unit is a body.
5257 -- body -> spec
5261 then
5264 -- Continue the traversal by going to the unit which contains the
5265 -- corresponding spec.
5272 -- Perform the following traversals now that the body has been taken
5273 -- care of, or the main unit is a spec.
5275 -- spec -> parent spec
5276 -- parent spec -> grandparent spec and so on
5280 N_Generic_Subprogram_Declaration,
5281 N_Package_Declaration,
5282 N_Subprogram_Declaration)
5283 then
5286 -- Process a potential chain of parent units which ends with the
5287 -- main unit spec. The traversal can now safely rely on the scope
5288 -- chain.
5299 -----------------------------
5300 -- Find_Enclosing_Instance --
5301 -----------------------------
5307 begin
5308 -- Climb the parent chain looking for an enclosing instance spec or body
5313 -- Generic package or subprogram spec
5316 N_Subprogram_Declaration)
5318 then
5321 -- Generic package or subprogram body
5337 --------------------------
5338 -- Find_Enclosing_Level --
5339 --------------------------
5343 -- Obtain the corresponding level of unit Unit
5345 --------------
5346 -- Level_Of --
5347 --------------
5352 begin
5365 -- The body belongs to a generic package
5369 then
5372 -- Otherwise the body belongs to a non-generic package. This also
5373 -- treats an illegal package body without a corresponding spec as
5374 -- a non-generic package body.
5376 else
5384 -- Local variables
5390 -- Start of processing for Find_Enclosing_Level
5392 begin
5393 -- Call markers and instantiations which appear at the declaration level
5394 -- but are later relocated in a different context retain their original
5395 -- declaration level.
5398 N_Function_Instantiation,
5399 N_Package_Instantiation,
5400 N_Procedure_Instantiation)
5402 then
5406 -- Climb the parent chain looking at the enclosing levels
5412 -- A traversal from a subunit continues via the corresponding stub
5417 -- The current construct is a package. Packages are ignored because
5418 -- they are always elaborated when the enclosing context is invoked
5419 -- or elaborated.
5424 -- The current construct is a block statement
5428 -- Ignore internally generated blocks created by the expander for
5429 -- various purposes such as abort defer/undefer.
5434 -- If the traversal came from the handled sequence of statments,
5435 -- then the node appears at the level of the enclosing construct.
5436 -- This is a more reliable test because transients scopes within
5437 -- the declarative region of the encapsulator are hard to detect.
5441 then
5444 -- Otherwise the traversal came from the declarations, the node is
5445 -- at the declaration level.
5447 else
5451 -- The current construct is a declaration-level encapsulator
5454 N_Subprogram_Body,
5455 N_Task_Body)
5456 then
5457 -- If the traversal came from the handled sequence of statments,
5458 -- then the node cannot possibly appear at any level. This is
5459 -- a more reliable test because transients scopes within the
5460 -- declarative region of the encapsulator are hard to detect.
5464 then
5467 -- Otherwise the traversal came from the declarations, the node is
5468 -- at the declaration level.
5470 else
5474 -- The current construct is a non-library-level encapsulator which
5475 -- indicates that the node cannot possibly appear at any level.
5476 -- Note that this check must come after the declaration-level check
5477 -- because both predicates share certain nodes.
5482 -- The sole exception is when the encapsulator is the compilation
5483 -- utit itself because the compilation unit node requires special
5484 -- processing (see below).
5488 then
5491 -- Otherwise the node is not at any level
5493 else
5497 -- The current construct is a compilation unit. The node appears at
5498 -- the [generic] library level when the unit is a [generic] package.
5511 -------------------
5512 -- Find_Top_Unit --
5513 -------------------
5516 begin
5520 ----------------------
5521 -- Find_Unit_Entity --
5522 ----------------------
5528 begin
5529 -- The unit denotes a package body of an instantiation which acts as
5530 -- a compilation unit. The proper entity is that of the package spec.
5535 then
5538 -- The unit denotes an anonymous package created to wrap a subprogram
5539 -- instantiation which acts as a compilation unit. The proper entity is
5540 -- that of the "related instance".
5544 N_Procedure_Instantiation)
5546 then
5547 return
5550 -- Otherwise the proper entity is the defining entity
5552 else
5557 -----------------------
5558 -- First_Formal_Type --
5559 -----------------------
5565 begin
5569 -- Handle various combinations of concurrent and private types
5571 loop
5574 then
5583 else
5594 --------------
5595 -- Has_Body --
5596 --------------
5600 -- Try to locate the corresponding body of spec Spec_Id. If no body is
5601 -- found, return Empty.
5603 function Find_Body
5606 -- Try to locate the corresponding body of spec Spec_Id in the node list
5607 -- which follows arbitrary node From. If no body is found, return Empty.
5610 -- Attempt to load the body of unit Unit_Nam. If the load failed, return
5611 -- Empty. If the compilation will not generate code, return Empty.
5613 -----------------------------
5614 -- Find_Corresponding_Body --
5615 -----------------------------
5623 begin
5630 -- The package is at the library and requires a body. Load the
5631 -- corresponding body because the optional body may be declared
5632 -- there.
5635 return
5636 Load_Package_Body
5639 -- Otherwise there is no optional body
5641 else
5645 -- The immediate context is a package. The optional body may be
5646 -- within the body of that package.
5648 -- procedure Proc is
5649 -- package Nested_1 is
5650 -- package Nested_2 is
5651 -- generic
5652 -- package Pack is
5653 -- end Pack;
5654 -- end Nested_2;
5655 -- end Nested_1;
5657 -- package body Nested_1 is
5658 -- package body Nested_2 is separate;
5659 -- end Nested_1;
5661 -- separate (Proc.Nested_1.Nested_2)
5662 -- package body Nested_2 is
5663 -- package body Pack is -- optional body
5664 -- ...
5665 -- end Pack;
5666 -- end Nested_2;
5671 -- The optional body is within the body of the enclosing package
5674 return
5675 Find_Body
5679 -- Otherwise the enclosing package does not have a body. This may
5680 -- be the result of an error or a genuine lack of a body.
5682 else
5686 -- Otherwise the immediate context is a body. The optional body may
5687 -- be within the same list as the spec.
5689 -- procedure Proc is
5690 -- generic
5691 -- package Pack is
5692 -- end Pack;
5694 -- package body Pack is -- optional body
5695 -- ...
5696 -- end Pack;
5698 else
5699 return
5700 Find_Body
5706 ---------------
5707 -- Find_Body --
5708 ---------------
5710 function Find_Body
5713 is
5718 begin
5722 -- The current item denotes the optional body
5726 then
5729 -- The current item denotes a stub, the optional body may be in
5730 -- the subunit.
5734 then
5737 -- The corresponding subunit was previously loaded
5742 -- Otherwise attempt to load the corresponding subunit
5744 else
5755 -----------------------
5756 -- Load_Package_Body --
5757 -----------------------
5763 begin
5764 -- The load is performed only when the compilation will generate code
5767 Unit_Num :=
5768 Load_Unit
5774 -- The load failed most likely because the physical file is
5775 -- missing.
5780 -- Otherwise the load was successful, return the body of the unit
5782 else
5785 -- If the unit is a subunit with an available proper body,
5786 -- return the proper body.
5790 then
5801 -- Local variables
5805 -- Start of processing for Has_Body
5807 begin
5808 -- The body is available
5813 -- The body is required if the package spec contains a construct which
5814 -- requires a completion in a body.
5819 -- The body may be optional
5821 else
5826 ---------------------------
5827 -- Has_Prior_Elaboration --
5828 ---------------------------
5830 function Has_Prior_Elaboration
5835 is
5838 begin
5839 -- A preelaborated unit is always elaborated prior to the main unit
5844 -- An internal unit is always elaborated prior to a non-internal main
5845 -- unit.
5849 then
5852 -- A unit has prior elaboration if it appears within the context of the
5853 -- main unit. Consider this case only when requested by the caller.
5855 elsif Context_OK
5857 then
5860 -- A unit whose body is elaborated together with its spec has prior
5861 -- elaboration except with respect to itself. Consider this case only
5862 -- when requested by the caller.
5864 elsif Elab_Body_OK
5867 then
5870 -- A unit has no prior elaboration with respect to itself, but does not
5871 -- require any means of ensuring its own elaboration either. Treat this
5872 -- case as valid prior elaboration only when requested by the caller.
5881 --------------------------
5882 -- In_External_Instance --
5883 --------------------------
5885 function In_External_Instance
5888 is
5893 begin
5894 -- Performance note: parent traversal
5898 -- The target declaration appears within an instance spec. Visibility is
5899 -- ignored because internally generated primitives for private types may
5900 -- reside in the private declarations and still be invoked from outside.
5904 then
5905 -- The scenario comes from the main unit and the instance does not
5909 then
5912 -- Otherwise the scenario must not appear within the instance spec or
5913 -- body.
5915 else
5916 Extract_Instance_Attributes
5921 -- Performance note: parent traversal
5923 return not In_Subtree
5933 ---------------------
5934 -- In_Main_Context --
5935 ---------------------
5938 begin
5939 -- Scenarios outside the main unit are not considered because the ALI
5940 -- information supplied to binde is for the main unit only.
5945 -- Scenarios within internal units are not considered unless switch
5946 -- -gnatdE (elaboration checks on predefined units) is in effect.
5955 ---------------------
5956 -- In_Same_Context --
5957 ---------------------
5959 function In_Same_Context
5963 is
5965 -- Return the nearest enclosing non-library-level or compilation unit
5966 -- node which which encapsulates arbitrary node N. Return Empty is no
5967 -- such context is available.
5969 function In_Nested_Context
5972 -- Determine whether arbitrary node Outer encapsulates arbitrary node
5973 -- Inner.
5975 ----------------------------
5976 -- Find_Enclosing_Context --
5977 ----------------------------
5983 begin
5987 -- A traversal from a subunit continues via the corresponding stub
5992 -- Stop the traversal when the nearest enclosing non-library-level
5993 -- encapsulator has been reached.
5998 -- The sole exception is when the encapsulator is the unit of
5999 -- compilation because this case requires special processing
6000 -- (see below).
6004 then
6007 else
6011 -- Reaching a compilation unit node without hitting a non-library-
6012 -- level encapsulator indicates that N is at the library level in
6013 -- which case the compilation unit is the context.
6025 -----------------------
6026 -- In_Nested_Context --
6027 -----------------------
6029 function In_Nested_Context
6032 is
6035 begin
6039 -- A traversal from a subunit continues via the corresponding stub
6054 -- Local variables
6059 -- Start of processing for In_Same_Context
6061 begin
6062 -- Both nodes appear within the same context
6067 -- Both nodes appear in compilation units. Determine whether one unit
6068 -- is the body of the other.
6072 then
6073 return
6074 Is_Same_Unit
6078 -- The context of N1 encloses the context of N2
6087 ------------------
6088 -- In_Task_Body --
6089 ------------------
6094 begin
6095 -- Climb the parent chain looking for a task body [procedure]
6104 then
6107 -- Prevent the search from going too far. Note that this predicate
6108 -- shares nodes with the two cases above, and must come last.
6120 ----------------
6121 -- Initialize --
6122 ----------------
6125 begin
6126 -- Set the soft link which enables Atree.Rewrite to update a top-level
6127 -- scenario each time it is transformed into another node.
6132 ---------------
6133 -- Info_Call --
6134 ---------------
6136 procedure Info_Call
6141 is
6144 -- Output information concerning an accept alternative
6148 -- Output information concerning the call
6152 -- Output information concerning action Action of a type
6154 procedure Info_Verification_Call
6159 -- Output information concerning the verification of predicate Pred
6160 -- applied to related entity Id with kind Id_Kind.
6162 -----------------------------
6163 -- Info_Accept_Alternative --
6164 -----------------------------
6169 begin
6172 Elab_Msg_NE
6180 ----------------------
6181 -- Info_Simple_Call --
6182 ----------------------
6185 begin
6186 Elab_Msg_NE
6194 -----------------------
6195 -- Info_Type_Actions --
6196 -----------------------
6201 begin
6204 Elab_Msg_NE
6212 ----------------------------
6213 -- Info_Verification_Call --
6214 ----------------------------
6216 procedure Info_Verification_Call
6220 is
6221 begin
6224 Elab_Msg_NE
6234 -- Start of processing for Info_Call
6236 begin
6237 -- Do not output anything for targets defined in internal units because
6238 -- this creates noise.
6242 -- Accept alternative
6245 Info_Accept_Alternative;
6247 -- Adjustment
6252 -- Default_Initial_Condition
6255 Info_Verification_Call
6260 -- Entries
6263 Info_Simple_Call;
6265 -- Task entry calls are never processed because the entry being
6266 -- invoked does not have a corresponding "body", it has a select.
6271 -- Finalization
6276 -- Calls to _Finalizer procedures must not appear in the output
6277 -- because this creates confusing noise.
6282 -- Initial_Condition
6285 Info_Verification_Call
6290 -- Initialization
6294 then
6297 -- Invariant
6300 Info_Verification_Call
6305 -- Partial invariant calls must not appear in the output because this
6306 -- creates confusing noise.
6311 -- _Postconditions
6314 Info_Verification_Call
6319 -- Subprograms must come last because some of the previous cases fall
6320 -- under this category.
6323 Info_Simple_Call;
6326 Info_Simple_Call;
6328 else
6335 ------------------------
6336 -- Info_Instantiation --
6337 ------------------------
6339 procedure Info_Instantiation
6344 is
6345 begin
6346 Elab_Msg_NE
6354 -----------------------------
6355 -- Info_Variable_Reference --
6356 -----------------------------
6358 procedure Info_Variable_Reference
6363 is
6364 begin
6366 Elab_Msg_NE
6375 --------------------
6376 -- Insertion_Node --
6377 --------------------
6380 begin
6381 -- When the scenario denotes an instantiation, the proper insertion node
6382 -- is the instance spec. This ensures that the generic actuals will not
6383 -- be evaluated prior to a potential ABE.
6387 then
6390 -- Otherwise the proper insertion node is the candidate insertion node
6392 else
6397 -----------------------
6398 -- Install_ABE_Check --
6399 -----------------------
6401 procedure Install_ABE_Check
6405 is
6407 -- Insert the check prior to this node
6414 begin
6415 -- Nothing to do when compiling for GNATprove because raise statements
6416 -- are not supported.
6421 -- Nothing to do when the compilation will not produce an executable
6426 -- Nothing to do for a compilation unit because there is no executable
6427 -- environment at that level.
6432 -- Nothing to do when the unit is elaborated prior to the main unit.
6433 -- This check must also consider the following cases:
6435 -- * Id's unit appears in the context of the main unit
6437 -- * Id's unit is subject to pragma Elaborate_Body. An ABE check MUST
6438 -- NOT be generated because Id's unit is always elaborated prior to
6439 -- the main unit.
6441 -- * Id's unit is the main unit. An ABE check MUST be generated in this
6442 -- case because a conditional ABE may be raised depending on the flow
6443 -- of execution within the main unit (flag Same_Unit_OK is False).
6445 elsif Has_Prior_Elaboration
6449 then
6453 -- Prevent multiple scenarios from installing the same ABE check
6457 -- Install the nearest enclosing scope of the scenario as there must be
6458 -- something on the scope stack.
6460 -- Performance note: parent traversal
6467 -- Generate:
6468 -- if not Spec_Id'Elaborated then
6469 -- raise Program_Error with "access before elaboration";
6470 -- end if;
6474 Condition =>
6476 Right_Opnd =>
6482 Pop_Scope;
6485 -----------------------
6486 -- Install_ABE_Check --
6487 -----------------------
6489 procedure Install_ABE_Check
6495 is
6498 -- Create a new elaboration flag for Target_Id, insert it prior to
6499 -- Target_Decl, and set it after Body_Decl.
6501 ------------------------------
6502 -- Build_Elaboration_Entity --
6503 ------------------------------
6509 begin
6510 -- Create the declaration of the elaboration flag. The name carries a
6511 -- unique counter in case of name overloading.
6513 Flag_Id :=
6522 -- Generate:
6523 -- Enn : Short_Integer := 0;
6528 Object_Definition =>
6532 -- Generate:
6533 -- Enn := 1;
6537 Pop_Scope;
6540 -- Local variables
6544 -- Start for processing for Install_ABE_Check
6546 begin
6547 -- Nothing to do when compiling for GNATprove because raise statements
6548 -- are not supported.
6553 -- Nothing to do when the compilation will not produce an executable
6558 -- Nothing to do when the target is a protected subprogram because the
6559 -- check is associated with the protected body subprogram.
6564 -- Nothing to do when the target is elaborated prior to the main unit.
6565 -- This check must also consider the following cases:
6567 -- * The unit of the target appears in the context of the main unit
6569 -- * The unit of the target is subject to pragma Elaborate_Body. An ABE
6570 -- check MUST NOT be generated because the unit is always elaborated
6571 -- prior to the main unit.
6573 -- * The unit of the target is the main unit. An ABE check MUST be added
6574 -- in this case because a conditional ABE may be raised depending on
6575 -- the flow of execution within the main unit (flag Same_Unit_OK is
6576 -- False).
6578 elsif Has_Prior_Elaboration
6582 then
6585 -- Create an elaboration flag for the target when it does not have one
6588 Build_Elaboration_Entity;
6591 Install_ABE_Check
6597 -------------------------
6598 -- Install_ABE_Failure --
6599 -------------------------
6603 -- Insert the failure prior to this node
6608 begin
6609 -- Nothing to do when compiling for GNATprove because raise statements
6610 -- are not supported.
6615 -- Nothing to do when the compilation will not produce an executable
6620 -- Do not install an ABE check for a compilation unit because there is
6621 -- no executable environment at that level.
6627 -- Prevent multiple scenarios from installing the same ABE failure
6631 -- Install the nearest enclosing scope of the scenario as there must be
6632 -- something on the scope stack.
6634 -- Performance note: parent traversal
6641 -- Generate:
6642 -- raise Program_Error with "access before elaboration";
6648 Pop_Scope;
6651 --------------------------------
6652 -- Is_Accept_Alternative_Proc --
6653 --------------------------------
6656 begin
6657 -- To qualify, the entity must denote a procedure with a receiving entry
6662 ------------------------
6663 -- Is_Activation_Proc --
6664 ------------------------
6667 begin
6668 -- To qualify, the entity must denote one of the runtime procedures in
6669 -- charge of task activation.
6674 else
6682 ----------------------------
6683 -- Is_Ada_Semantic_Target --
6684 ----------------------------
6687 begin
6688 return
6701 --------------------------------
6702 -- Is_Assertion_Pragma_Target --
6703 --------------------------------
6706 begin
6707 return
6715 ----------------------------
6716 -- Is_Bodiless_Subprogram --
6717 ----------------------------
6720 begin
6721 -- An abstract subprogram does not have a body
6724 E_Operator,
6725 E_Procedure)
6727 then
6730 -- A formal subprogram does not have a body
6735 -- An imported subprogram may have a body, however it is not known at
6736 -- compile or bind time where the body resides and whether it will be
6737 -- elaborated on time.
6746 ------------------------
6747 -- Is_Controlled_Proc --
6748 ------------------------
6750 function Is_Controlled_Proc
6753 is
6756 begin
6758 Name_Finalize,
6759 Name_Initialize));
6761 -- To qualify, the subprogram must denote a source procedure with name
6762 -- Adjust, Finalize, or Initialize where the sole formal is controlled.
6767 then
6770 return
6779 ---------------------------------------
6780 -- Is_Default_Initial_Condition_Proc --
6781 ---------------------------------------
6783 function Is_Default_Initial_Condition_Proc
6785 is
6786 begin
6787 -- To qualify, the entity must denote a Default_Initial_Condition
6788 -- procedure.
6793 -----------------------
6794 -- Is_Finalizer_Proc --
6795 -----------------------
6798 begin
6799 -- To qualify, the entity must denote a _Finalizer procedure
6804 -----------------------
6805 -- Is_Guaranteed_ABE --
6806 -----------------------
6808 function Is_Guaranteed_ABE
6812 is
6813 begin
6814 -- Avoid cascaded errors if there were previous serious infractions.
6815 -- As a result the scenario will not be treated as a guaranteed ABE.
6816 -- This behaviour parallels that of the old ABE mechanism.
6821 -- The scenario and the target appear within the same context ignoring
6822 -- enclosing library levels.
6824 -- Performance note: parent traversal
6828 -- The target body has already been encountered. The scenario results
6829 -- in a guaranteed ABE if it appears prior to the body.
6834 -- Otherwise the body has not been encountered yet. The scenario is
6835 -- a guaranteed ABE since the body will appear later. It is assumed
6836 -- that the caller has already checked whether the scenario is ABE-
6837 -- safe as optional bodies are not considered here.
6839 else
6847 -------------------------------
6848 -- Is_Initial_Condition_Proc --
6849 -------------------------------
6852 begin
6853 -- To qualify, the entity must denote an Initial_Condition procedure
6855 return
6859 --------------------
6860 -- Is_Initialized --
6861 --------------------
6864 begin
6865 -- To qualify, the object declaration must have an expression
6867 return
6871 -----------------------
6872 -- Is_Invariant_Proc --
6873 -----------------------
6876 begin
6877 -- To qualify, the entity must denote the "full" invariant procedure
6882 ---------------------------------------
6883 -- Is_Non_Library_Level_Encapsulator --
6884 ---------------------------------------
6887 begin
6889 when N_Abstract_Subprogram_Declaration
6890 | N_Aspect_Specification
6891 | N_Component_Declaration
6892 | N_Entry_Body
6893 | N_Entry_Declaration
6894 | N_Expression_Function
6895 | N_Formal_Abstract_Subprogram_Declaration
6896 | N_Formal_Concrete_Subprogram_Declaration
6897 | N_Formal_Object_Declaration
6898 | N_Formal_Package_Declaration
6899 | N_Formal_Type_Declaration
6900 | N_Generic_Association
6901 | N_Implicit_Label_Declaration
6902 | N_Incomplete_Type_Declaration
6903 | N_Private_Extension_Declaration
6904 | N_Private_Type_Declaration
6905 | N_Protected_Body
6906 | N_Protected_Type_Declaration
6907 | N_Single_Protected_Declaration
6908 | N_Single_Task_Declaration
6909 | N_Subprogram_Body
6910 | N_Subprogram_Declaration
6911 | N_Task_Body
6912 | N_Task_Type_Declaration
6913 =>
6921 -------------------------------
6922 -- Is_Partial_Invariant_Proc --
6923 -------------------------------
6926 begin
6927 -- To qualify, the entity must denote the "partial" invariant procedure
6929 return
6933 ----------------------------
6934 -- Is_Postconditions_Proc --
6935 ----------------------------
6938 begin
6939 -- To qualify, the entity must denote a _Postconditions procedure
6941 return
6945 ---------------------------
6946 -- Is_Preelaborated_Unit --
6947 ---------------------------
6950 begin
6951 return
6959 ------------------------
6960 -- Is_Protected_Entry --
6961 ------------------------
6964 begin
6965 -- To qualify, the entity must denote an entry defined in a protected
6966 -- type.
6968 return
6973 -----------------------
6974 -- Is_Protected_Subp --
6975 -----------------------
6978 begin
6979 -- To qualify, the entity must denote a subprogram defined within a
6980 -- protected type.
6982 return
6987 ----------------------------
6988 -- Is_Protected_Body_Subp --
6989 ----------------------------
6992 begin
6993 -- To qualify, the entity must denote a subprogram with attribute
6994 -- Protected_Subprogram set.
6996 return
7001 --------------------------------
7002 -- Is_Recorded_SPARK_Scenario --
7003 --------------------------------
7006 begin
7014 ------------------------------------
7015 -- Is_Recorded_Top_Level_Scenario --
7016 ------------------------------------
7019 begin
7027 ------------------------
7028 -- Is_Safe_Activation --
7029 ------------------------
7031 function Is_Safe_Activation
7034 is
7035 begin
7036 -- The activation of a task coming from an external instance cannot
7037 -- cause an ABE because the generic was already instantiated. Note
7038 -- that the instantiation itself may lead to an ABE.
7040 return
7041 In_External_Instance
7046 ------------------
7047 -- Is_Safe_Call --
7048 ------------------
7050 function Is_Safe_Call
7053 is
7054 begin
7055 -- The target is either an abstract subprogram, formal subprogram, or
7056 -- imported, in which case it does not have a body at compile or bind
7057 -- time. Assume that the call is ABE-safe.
7062 -- The target is an instantiation of a generic subprogram. The call
7063 -- cannot cause an ABE because the generic was already instantiated.
7064 -- Note that the instantiation itself may lead to an ABE.
7069 -- The invocation of a target coming from an external instance cannot
7070 -- cause an ABE because the generic was already instantiated. Note that
7071 -- the instantiation itself may lead to an ABE.
7073 elsif In_External_Instance
7076 then
7079 -- The target is a subprogram body without a previous declaration. The
7080 -- call cannot cause an ABE because the body has already been seen.
7084 then
7087 -- The target is a subprogram body stub without a prior declaration.
7088 -- The call cannot cause an ABE because the proper body substitutes
7089 -- the stub.
7093 then
7096 -- Subprogram bodies which wrap attribute references used as actuals
7097 -- in instantiations are always ABE-safe. These bodies are artifacts
7098 -- of expansion.
7103 then
7110 ---------------------------
7111 -- Is_Safe_Instantiation --
7112 ---------------------------
7114 function Is_Safe_Instantiation
7117 is
7118 begin
7119 -- The generic is an intrinsic subprogram in which case it does not
7120 -- have a body at compile or bind time. Assume that the instantiation
7121 -- is ABE-safe.
7126 -- The instantiation of an external nested generic cannot cause an ABE
7127 -- if the outer generic was already instantiated. Note that the instance
7128 -- of the outer generic may lead to an ABE.
7130 elsif In_External_Instance
7133 then
7136 -- The generic is a package. The instantiation cannot cause an ABE when
7137 -- the package has no body.
7141 then
7148 ------------------
7149 -- Is_Same_Unit --
7150 ------------------
7152 function Is_Same_Unit
7155 is
7156 begin
7160 -----------------
7161 -- Is_Scenario --
7162 -----------------
7165 begin
7167 when N_Assignment_Statement
7168 | N_Attribute_Reference
7169 | N_Call_Marker
7170 | N_Entry_Call_Statement
7171 | N_Expanded_Name
7172 | N_Function_Call
7173 | N_Function_Instantiation
7174 | N_Identifier
7175 | N_Package_Instantiation
7176 | N_Procedure_Call_Statement
7177 | N_Procedure_Instantiation
7178 | N_Requeue_Statement
7179 =>
7187 ------------------------------
7188 -- Is_SPARK_Semantic_Target --
7189 ------------------------------
7192 begin
7193 return
7198 ------------------------
7199 -- Is_Suitable_Access --
7200 ------------------------
7207 begin
7208 -- This scenario is relevant only when the static model is in effect
7209 -- because it is graph-dependent and does not involve any run-time
7210 -- checks. Allowing it in the dynamic model would create confusing
7211 -- noise.
7216 -- Nothing to do when switch -gnatd.U (ignore 'Access) is in effect
7221 -- Nothing to do when the scenario is not an attribute reference
7226 -- Nothing to do for internally-generated attributes because they are
7227 -- assumed to be ABE safe.
7236 -- Sanitize the prefix of the attribute
7251 -- Traverse a possible chain of renamings to obtain the original entry
7252 -- or subprogram which the prefix may rename.
7256 -- To qualify, the attribute must meet the following prerequisites:
7258 return
7260 -- The prefix must denote a source entry, operator, or subprogram
7261 -- which is not imported.
7267 -- The attribute name must be one of the 'Access forms. Note that
7268 -- 'Unchecked_Access cannot apply to a subprogram.
7273 ----------------------
7274 -- Is_Suitable_Call --
7275 ----------------------
7278 begin
7279 -- Entry and subprogram calls are intentionally ignored because they
7280 -- may undergo expansion depending on the compilation mode, previous
7281 -- errors, generic context, etc. Call markers play the role of calls
7282 -- and provide a uniform foundation for ABE processing.
7287 -------------------------------
7288 -- Is_Suitable_Instantiation --
7289 -------------------------------
7293 -- Use the original node in case an instantiation library unit is
7294 -- rewritten as a package or subprogram.
7296 begin
7297 -- To qualify, the instantiation must come from source
7299 return
7304 --------------------------
7305 -- Is_Suitable_Scenario --
7306 --------------------------
7309 begin
7310 -- NOTE: Derived types and pragma Refined_State are intentionally left
7311 -- out because they are not executable during elaboration.
7313 return
7321 ------------------------------------
7322 -- Is_Suitable_SPARK_Derived_Type --
7323 ------------------------------------
7329 begin
7330 -- To qualify, the type declaration must denote a derived tagged type
7331 -- with primitive operations, subject to pragma SPARK_Mode On.
7335 then
7339 return
7349 -------------------------------------
7350 -- Is_Suitable_SPARK_Instantiation --
7351 -------------------------------------
7360 begin
7361 -- To qualify, both the instantiation and the generic must be subject to
7362 -- SPARK_Mode On.
7365 Extract_Instantiation_Attributes
7380 --------------------------------------------
7381 -- Is_Suitable_SPARK_Refined_State_Pragma --
7382 --------------------------------------------
7384 function Is_Suitable_SPARK_Refined_State_Pragma
7386 is
7387 begin
7388 -- To qualfy, the pragma must denote Refined_State
7390 return
7395 -------------------------------------
7396 -- Is_Suitable_Variable_Assignment --
7397 -------------------------------------
7408 begin
7409 -- This scenario is relevant only when the static model is in effect
7410 -- because it is graph-dependent and does not involve any run-time
7411 -- checks. Allowing it in the dynamic model would create confusing
7412 -- noise.
7417 -- Nothing to do when the scenario is not an assignment
7422 -- Nothing to do for internally-generated assignments because they are
7423 -- assumed to be ABE safe.
7428 -- Assignments are ignored in GNAT mode on the assumption that they are
7429 -- ABE-safe. This behaviour parallels that of the old ABE mechanism.
7437 -- Sanitize the left hand side of the assignment
7448 -- Sanitize the variable
7469 -- To qualify, the assignment must meet the following prerequisites:
7471 return
7474 -- The variable must be declared in the spec of compilation unit U
7478 -- Performance note: parent traversal
7482 -- The assignment must occur in the body of compilation unit U
7489 ------------------------------------
7490 -- Is_Suitable_Variable_Reference --
7491 ------------------------------------
7494 begin
7495 -- Expanded names and identifiers are intentionally ignored because they
7496 -- be folded, optimized away, etc. Variable references markers play the
7497 -- role of variable references and provide a uniform foundation for ABE
7498 -- processing.
7503 ------------------------------------
7504 -- Is_Synchronous_Suspension_Call --
7505 ------------------------------------
7511 begin
7512 -- To qualify, the call must invoke one of the runtime routines which
7513 -- perform synchronous suspension.
7516 Extract_Call_Attributes
7521 return
7523 or else
7530 -------------------
7531 -- Is_Task_Entry --
7532 -------------------
7535 begin
7536 -- To qualify, the entity must denote an entry defined in a task type
7538 return
7542 ------------------------
7543 -- Is_Up_Level_Target --
7544 ------------------------
7549 begin
7550 -- The root appears within the declaratons of a block statement, entry
7551 -- body, subprogram body, or task body ignoring enclosing packages. The
7552 -- root is always within the main unit. An up-level target is a notion
7553 -- applicable only to the static model because scenarios are reached by
7554 -- means of graph traversal started from a fixed declarative or library
7555 -- level.
7557 -- Performance note: parent traversal
7559 if Static_Elaboration_Checks
7561 then
7562 -- The target is within the main unit. It acts as an up-level target
7563 -- when it appears within a context which encloses the root.
7565 -- package body Main_Unit is
7566 -- function Func ...; -- target
7568 -- procedure Proc is
7569 -- X : ... := Func; -- root scenario
7573 -- Performance note: parent traversal
7577 -- Otherwise the target is external to the main unit which makes it
7578 -- an up-level target.
7580 else
7588 ---------------------
7589 -- Is_Visited_Body --
7590 ---------------------
7593 begin
7601 -------------------------------
7602 -- Kill_Elaboration_Scenario --
7603 -------------------------------
7608 -- Eliminate scenario N from table SPARK_Scenarios if it is recorded
7609 -- there.
7613 -- Eliminate scenario N from table Top_Level_Scenarios if it is recorded
7614 -- there.
7616 -------------------------
7617 -- Kill_SPARK_Scenario --
7618 -------------------------
7623 begin
7626 -- Performance note: list traversal
7632 -- The SPARK scenario is no longer recorded
7639 -- A recorded SPARK scenario must be in the table of recorded
7640 -- SPARK scenarios.
7646 -----------------------------
7647 -- Kill_Top_Level_Scenario --
7648 -----------------------------
7653 begin
7656 -- Performance node: list traversal
7662 -- The top-level scenario is no longer recorded
7669 -- A recorded top-level scenario must be in the table of recorded
7670 -- top-level scenarios.
7676 -- Start of processing for Kill_Elaboration_Scenario
7678 begin
7679 -- Nothing to do when switch -gnatH (legacy elaboration checking mode
7680 -- enabled) is in effect because the legacy ABE lechanism does not need
7681 -- to carry out this action.
7687 -- Eliminate a recorded scenario when it appears within dead code
7688 -- because it will not be executed at elaboration time.
7691 Kill_SPARK_Scenario;
7692 Kill_Top_Level_Scenario;
7696 ----------------------------------
7697 -- Meet_Elaboration_Requirement --
7698 ----------------------------------
7700 procedure Meet_Elaboration_Requirement
7704 is
7708 function Find_Preelaboration_Pragma
7711 -- Traverse the visible declarations of unit Unit_Id and locate a source
7712 -- preelaboration-related pragma with name Prag_Nam.
7716 -- Output information concerning pragma Prag which meets requirement
7717 -- Req_Nam.
7721 -- Output information concerning scenario N
7723 --------------------------------
7724 -- Find_Preelaboration_Pragma --
7725 --------------------------------
7727 function Find_Preelaboration_Pragma
7729 is
7733 begin
7734 -- A preelaboration-related pragma comes from source and appears at
7735 -- the top of the visible declarations of a package.
7743 then
7746 -- Otherwise the construct terminates the region where the
7747 -- preelaboration-related pragma may appear.
7749 else
7761 --------------------------
7762 -- Info_Requirement_Met --
7763 --------------------------
7766 begin
7771 Error_Msg_NE
7775 -------------------
7776 -- Info_Scenario --
7777 -------------------
7780 begin
7782 Info_Call
7789 Info_Instantiation
7796 Error_Msg_N
7798 N);
7801 Info_Variable_Reference
7807 -- No other scenario may impose a requirement on the context of the
7808 -- main unit.
7810 else
7816 -- Local variables
7822 -- Start of processing for Meet_Elaboration_Requirement
7824 begin
7827 -- Assume that the requirement has not been met
7831 -- Elaboration requirements are verified only when the static model is
7832 -- in effect because this diagnostic is graph-dependent.
7837 -- If the target is within the main unit, either at the source level or
7838 -- through an instantiation, then there is no real requirement to meet
7839 -- because the main unit cannot force its own elaboration by means of an
7840 -- Elaborate[_All] pragma. Treat this case as valid coverage.
7845 -- Otherwise the target resides in an external unit
7847 -- The requirement is met when the target comes from an internal unit
7848 -- because such a unit is elaborated prior to a non-internal unit.
7852 then
7855 -- The requirement is met when the target comes from a preelaborated
7856 -- unit. This portion must parallel predicate Is_Preelaborated_Unit.
7861 -- Output extra information when switch -gnatel (info messages on
7862 -- implicit Elaborate[_All] pragmas.
7877 else
7885 -- Determine whether the context of the main unit has a pragma strong
7886 -- enough to meet the requirement.
7888 else
7891 -- The pragma must be either Elaborate_All or be as strong as the
7892 -- requirement.
7896 Name_Elaborate_All,
7897 Req_Nam)
7898 then
7901 -- Output extra information when switch -gnatel (info messages on
7902 -- implicit Elaborate[_All] pragmas.
7910 -- The requirement was not met by the context of the main unit, issue an
7911 -- error.
7914 Info_Scenario;
7924 ----------------------
7925 -- Non_Private_View --
7926 ----------------------
7929 begin
7932 else
7937 -----------------------------
7938 -- Output_Active_Scenarios --
7939 -----------------------------
7943 -- Emit a specific diagnostic message for 'Access denote by N
7946 -- Emit a specific diagnostic message for task activation N
7949 -- Emit a specific diagnostic message for call N which invokes target
7950 -- Target_Id.
7953 -- Emit a specific diagnostic message for the unit of the root scenario
7956 -- Emit a specific diagnostic message for instantiation N
7959 -- Emit a specific diagnostic message for Refined_State pragma N
7962 -- Emit a specific diagnostic message for assignment statement N
7965 -- Emit a specific diagnostic message for reference N which mentions a
7966 -- variable.
7968 -------------------
7969 -- Output_Access --
7970 -------------------
7975 begin
7981 ----------------------------
7982 -- Output_Activation_Call --
7983 ----------------------------
7987 -- Find the nearest enclosing construct which houses call Call
7989 --------------------
7990 -- Find_Activator --
7991 --------------------
7996 begin
7997 -- Climb the parent chain looking for a package [body] or a
7998 -- construct with a statement sequence.
8015 -- Local variables
8019 -- Start of processing for Output_Activation_Call
8021 begin
8027 -----------------
8028 -- Output_Call --
8029 -----------------
8034 -- Emit a specific diagnostic message concerning an accept
8035 -- alternative.
8039 -- Emit a specific diagnostic message concerning a call of kind Kind
8043 -- Emit a specific diagnostic message concerning action Action of a
8044 -- type.
8046 procedure Output_Verification_Call
8051 -- Emit a specific diagnostic message concerning the verification of
8052 -- predicate Pred applied to related entity Id with kind Id_Kind.
8054 -------------------------------
8055 -- Output_Accept_Alternative --
8056 -------------------------------
8061 begin
8067 -----------------
8068 -- Output_Call --
8069 -----------------
8072 begin
8076 -------------------------
8077 -- Output_Type_Actions --
8078 -------------------------
8083 begin
8086 Error_Msg_NE
8090 ------------------------------
8091 -- Output_Verification_Call --
8092 ------------------------------
8094 procedure Output_Verification_Call
8098 is
8099 begin
8102 Error_Msg_NE
8107 -- Start of processing for Output_Call
8109 begin
8112 -- Accept alternative
8115 Output_Accept_Alternative;
8117 -- Adjustment
8122 -- Default_Initial_Condition
8125 Output_Verification_Call
8130 -- Entries
8135 -- Task entry calls are never processed because the entry being
8136 -- invoked does not have a corresponding "body", it has a select. A
8137 -- task entry call appears in the stack of active scenarios for the
8138 -- sole purpose of checking No_Entry_Calls_In_Elaboration_Code and
8139 -- nothing more.
8144 -- Finalization
8149 -- Calls to _Finalizer procedures must not appear in the output
8150 -- because this creates confusing noise.
8155 -- Initial_Condition
8158 Output_Verification_Call
8163 -- Initialization
8167 then
8170 -- Invariant
8173 Output_Verification_Call
8178 -- Partial invariant calls must not appear in the output because this
8179 -- creates confusing noise. Note that a partial invariant is always
8180 -- invoked by the "full" invariant which is already placed on the
8181 -- stack.
8186 -- _Postconditions
8189 Output_Verification_Call
8194 -- Subprograms must come last because some of the previous cases fall
8195 -- under this category.
8203 else
8209 -------------------
8210 -- Output_Header --
8211 -------------------
8216 begin
8223 else
8228 --------------------------
8229 -- Output_Instantiation --
8230 --------------------------
8235 -- Emit a specific diagnostic message concerning an instantiation of
8236 -- generic unit Gen_Id. Kind denotes the kind of the instantiation.
8238 --------------------------
8239 -- Output_Instantiation --
8240 --------------------------
8243 begin
8244 Error_Msg_NE
8248 -- Local variables
8255 -- Start of processing for Output_Instantiation
8257 begin
8258 Extract_Instantiation_Attributes
8277 else
8283 ---------------------------------------
8284 -- Output_SPARK_Refined_State_Pragma --
8285 ---------------------------------------
8288 begin
8293 --------------------------------
8294 -- Output_Variable_Assignment --
8295 --------------------------------
8300 begin
8305 -------------------------------
8306 -- Output_Variable_Reference --
8307 -------------------------------
8313 begin
8314 Extract_Variable_Reference_Attributes
8324 else
8330 -- Local variables
8339 -- Start of processing for Output_Active_Scenarios
8341 begin
8342 -- Active scenarios are emitted only when the static model is in effect
8343 -- because there is an inherent order by which all these scenarios were
8344 -- reached from the declaration or library level.
8357 Output_Header;
8360 -- 'Access
8365 -- Calls
8368 Extract_Call_Attributes
8375 else
8379 -- Instantiations
8384 -- Pragma Refined_State
8389 -- Variable assignments
8394 -- Variable references
8399 else
8406 -------------------------
8407 -- Pop_Active_Scenario --
8408 -------------------------
8413 begin
8418 --------------------------------
8419 -- Process_Activation_Generic --
8420 --------------------------------
8422 procedure Process_Activation_Generic
8426 is
8428 -- Perform ABE checks and diagnostics for object Obj_Id with type Typ.
8429 -- Typ may be a task type or a composite type with at least one task
8430 -- component.
8433 -- Perform ABE checks and diagnostics for all task objects found in the
8434 -- list List.
8436 -------------------------
8437 -- Process_Task_Object --
8438 -------------------------
8447 -- Each step of the Processing phase constitutes a new state
8449 begin
8451 Extract_Task_Attributes
8455 -- Warnings are suppressed when a prior scenario is already in
8456 -- that mode, or when the object, activation call, or task type
8457 -- have warnings suppressed. Update the state of the Processing
8458 -- phase to reflect this.
8461 New_State.Suppress_Warnings
8466 -- Update the state of the Processing phase to indicate that any
8467 -- further traversal is now within a task body.
8471 Process_Single_Activation
8478 -- Examine the component type when the object is an array
8481 Process_Task_Object
8485 -- Examine individual component types when the object is a record
8490 Process_Task_Object
8499 --------------------------
8500 -- Process_Task_Objects --
8501 --------------------------
8508 begin
8509 -- Examine the contents of the list looking for an object declaration
8510 -- of a task type or one that contains a task within.
8519 Process_Task_Object
8529 -- Local variables
8534 -- Start of processing for Process_Activation_Generic
8536 begin
8537 -- Nothing to do when the activation is a guaranteed ABE
8543 -- Find the proper context of the activation call where all task objects
8544 -- being activated are declared. This is usually the immediate parent of
8545 -- the call.
8549 -- In the case of package bodies, the activation call is in the handled
8550 -- sequence of statements, but the task objects are in the declaration
8551 -- list of the body.
8555 then
8559 -- Process all task objects defined in both the spec and body when the
8560 -- activation call precedes the "begin" of a package body.
8563 Spec :=
8564 Specification
8571 -- Process all task objects defined in the spec when the activation call
8572 -- appears at the end of a package spec.
8578 -- Otherwise the context of the activation is some construct with a
8579 -- declarative part. Note that the corresponding record type of a task
8580 -- type is controlled. Because of this, the finalization machinery must
8581 -- relocate the task object to the handled statements of the construct
8582 -- to perform proper finalization in case of an exception. Examine the
8583 -- statements of the construct rather than the declarations.
8585 else
8592 ------------------------------------
8593 -- Process_Conditional_ABE_Access --
8594 ------------------------------------
8596 procedure Process_Conditional_ABE_Access
8599 is
8602 -- Create a suitable call marker which invokes target Target_Id
8604 -------------------------
8605 -- Build_Access_Marker --
8606 -------------------------
8611 begin
8614 -- Inherit relevant attributes from the attribute
8616 -- Performance note: parent traversal
8619 Set_Is_Declaration_Level_Node
8621 Set_Is_Dispatching_Call
8623 Set_Is_Elaboration_Checks_OK_Node
8625 Set_Is_Elaboration_Warnings_OK_Node
8627 Set_Is_Source_Call
8629 Set_Is_SPARK_Mode_On_Node
8632 -- Partially insert the call marker into the tree by setting its
8633 -- parent pointer.
8640 -- Local variables
8648 -- Each step of the Processing phase constitutes a new state
8650 -- Start of processing for Process_Conditional_ABE_Access
8652 begin
8653 -- Output relevant information when switch -gnatel (info messages on
8654 -- implicit Elaborate[_All] pragmas) is in effect.
8657 Error_Msg_NE
8661 Extract_Target_Attributes
8665 -- Warnings are suppressed when a prior scenario is already in that
8666 -- mode, or when the attribute or the target have warnings suppressed.
8667 -- Update the state of the Processing phase to reflect this.
8670 New_State.Suppress_Warnings
8674 -- Do not emit any ABE diagnostics when the current or previous scenario
8675 -- in this traversal has suppressed elaboration warnings.
8680 -- Both the attribute and the corresponding body are in the same unit.
8681 -- The corresponding body must appear prior to the root scenario which
8682 -- started the recursive search. If this is not the case, then there is
8683 -- a potential ABE if the access value is used to call the subprogram.
8684 -- Emit a warning only when switch -gnatw.f (warnings on suspucious
8685 -- 'Access) is in effect.
8687 elsif Warn_On_Elab_Access
8691 then
8699 -- Treat the attribute as an immediate invocation of the target when
8700 -- switch -gnatd.o (conservative elaboration order for indirect calls)
8701 -- is in effect. Note that the prior elaboration of the unit containing
8702 -- the target is ensured processing the corresponding call marker.
8705 Process_Conditional_ABE
8709 -- Otherwise ensure that the unit with the corresponding body is
8710 -- elaborated prior to the main unit.
8712 else
8713 Ensure_Prior_Elaboration
8721 ---------------------------------------------
8722 -- Process_Conditional_ABE_Activation_Impl --
8723 ---------------------------------------------
8725 procedure Process_Conditional_ABE_Activation_Impl
8731 is
8737 -- A run-time ABE check may be installed only when the object and the
8738 -- task type have active elaboration checks, and both are not ignored
8739 -- Ghost constructs.
8744 -- Each step of the Processing phase constitutes a new state
8746 begin
8747 -- Output relevant information when switch -gnatel (info messages on
8748 -- implicit Elaborate[_All] pragmas) is in effect.
8751 Error_Msg_NE
8755 -- Nothing to do when the call activates a task whose type is defined
8756 -- within an instance and switch -gnatd_i (ignore activations and calls
8757 -- to instances for elaboration) is in effect.
8759 if Debug_Flag_Underscore_I
8760 and then In_External_Instance
8763 then
8766 -- Nothing to do when the activation is a guaranteed ABE
8771 -- Nothing to do when the root scenario appears at the declaration
8772 -- level and the task is in the same unit, but outside this context.
8773 --
8774 -- task type Task_Typ; -- task declaration
8775 --
8776 -- procedure Proc is
8777 -- function A ... is
8778 -- begin
8779 -- if Some_Condition then
8780 -- declare
8781 -- T : Task_Typ;
8782 -- begin
8783 -- <activation call> -- activation site
8784 -- end;
8785 -- ...
8786 -- end A;
8787 --
8788 -- X : ... := A; -- root scenario
8789 -- ...
8790 --
8791 -- task body Task_Typ is
8792 -- ...
8793 -- end Task_Typ;
8794 --
8795 -- In the example above, the context of X is the declarative list of
8796 -- Proc. The "elaboration" of X may reach the activation of T whose body
8797 -- is defined outside of X's context. The task body is relevant only
8798 -- when Proc is invoked, but this happens only in "normal" elaboration,
8799 -- therefore the task body must not be considered if this is not the
8800 -- case.
8802 -- Performance note: parent traversal
8807 -- Nothing to do when the activation is ABE-safe
8808 --
8809 -- generic
8810 -- package Gen is
8811 -- task type Task_Typ;
8812 -- end Gen;
8813 --
8814 -- package body Gen is
8815 -- task body Task_Typ is
8816 -- begin
8817 -- ...
8818 -- end Task_Typ;
8819 -- end Gen;
8820 --
8821 -- with Gen;
8822 -- procedure Main is
8823 -- package Nested is
8824 -- package Inst is new Gen;
8825 -- T : Inst.Task_Typ;
8826 -- <activation call> -- safe activation
8827 -- end Nested;
8828 -- ...
8832 -- Note that the task body must still be examined for any nested
8833 -- scenarios.
8837 -- The activation call and the task body are both in the main unit
8841 then
8842 -- If the root scenario appears prior to the task body, then this is
8843 -- a possible ABE with respect to the root scenario.
8844 --
8845 -- task type Task_Typ;
8846 --
8847 -- function A ... is
8848 -- begin
8849 -- if Some_Condition then
8850 -- declare
8851 -- package Pack is
8852 -- T : Task_Typ;
8853 -- end Pack; -- activation of T
8854 -- ...
8855 -- end A;
8856 --
8857 -- X : ... := A; -- root scenario
8858 --
8859 -- task body Task_Typ is -- task body
8860 -- ...
8861 -- end Task_Typ;
8862 --
8863 -- Y : ... := A; -- root scenario
8864 --
8865 -- IMPORTANT: The activation of T is a possible ABE for X, but
8866 -- not for Y. Intalling an unconditional ABE raise prior to the
8867 -- activation call would be wrong as it will fail for Y as well
8868 -- but in Y's case the activation of T is never an ABE.
8872 -- Do not emit any ABE diagnostics when a previous scenario in
8873 -- this traversal has suppressed elaboration warnings.
8878 -- Do not emit any ABE diagnostics when the activation occurs in
8879 -- a partial finalization context because this leads to confusing
8880 -- noise.
8885 -- ABE diagnostics are emitted only in the static model because
8886 -- there is a well-defined order to visiting scenarios. Without
8887 -- this order diagnostics appear jumbled and result in unwanted
8888 -- noise.
8892 Error_Msg_N
8895 Error_Msg_N
8901 -- Install a conditional run-time ABE check to verify that the
8902 -- task body has been elaborated prior to the activation call.
8905 Install_ABE_Check
8912 -- Update the state of the Processing phase to indicate that
8913 -- no implicit Elaborate[_All] pragmas must be generated from
8914 -- this point on.
8915 --
8916 -- task type Task_Typ;
8917 --
8918 -- function A ... is
8919 -- begin
8920 -- if Some_Condition then
8921 -- declare
8922 -- package Pack is
8923 -- <ABE check>
8924 -- T : Task_Typ;
8925 -- end Pack; -- activation of T
8926 -- ...
8927 -- end A;
8928 --
8929 -- X : ... := A;
8930 --
8931 -- task body Task_Typ is
8932 -- begin
8933 -- External.Subp; -- imparts Elaborate_All
8934 -- end Task_Typ;
8935 --
8936 -- If Some_Condition is True, then the ABE check will fail at
8937 -- runtime and the call to External.Subp will never take place,
8938 -- rendering the implicit Elaborate_All useless.
8939 --
8940 -- If Some_Condition is False, then the call to External.Subp
8941 -- will never take place, rendering the implicit Elaborate_All
8942 -- useless.
8948 -- Otherwise the task body is not available in this compilation or it
8949 -- resides in an external unit. Install a run-time ABE check to verify
8950 -- that the task body has been elaborated prior to the activation call
8951 -- when the dynamic model is in effect.
8954 Install_ABE_Check
8960 -- Both the activation call and task type are subject to SPARK_Mode
8961 -- On, this triggers the SPARK rules for task activation. Compared to
8962 -- calls and instantiations, task activation in SPARK does not require
8963 -- the presence of Elaborate[_All] pragmas in case the task type is
8964 -- defined outside the main unit. This is because SPARK utilizes a
8965 -- special policy which activates all tasks after the main unit has
8966 -- finished its elaboration.
8971 -- Otherwise the Ada rules are in effect. Ensure that the unit with the
8972 -- task body is elaborated prior to the main unit.
8974 else
8975 Ensure_Prior_Elaboration
8982 Traverse_Body
8990 ----------------------------------
8991 -- Process_Conditional_ABE_Call --
8992 ----------------------------------
8994 procedure Process_Conditional_ABE_Call
8999 is
9001 -- Determine whether arbitrary node N appears within a type init proc,
9002 -- primitive [Deep_]Initialize, or a block created for initialization
9003 -- purposes.
9007 -- Determine whether call Call with target Target_Id invokes a partial
9008 -- finalization procedure.
9010 -------------------------------
9011 -- In_Initialization_Context --
9012 -------------------------------
9018 begin
9019 -- Climb the parent chain looking for initialization actions
9024 -- A block may be part of the initialization actions of a default
9025 -- initialized object.
9029 then
9032 -- A subprogram body may denote an initialization routine
9037 -- The current subprogram body denotes a type init proc or
9038 -- primitive [Deep_]Initialize.
9043 then
9047 -- Prevent the search from going too far
9059 ----------------------------------
9060 -- Is_Partial_Finalization_Proc --
9061 ----------------------------------
9064 begin
9065 -- To qualify, the target must denote primitive [Deep_]Finalize or a
9066 -- finalizer procedure, and the call must appear in an initialization
9067 -- context.
9069 return
9076 -- Local variables
9082 -- Each step of the Processing phase constitutes a new state
9084 -- Start of processing for Process_Conditional_ABE_Call
9086 begin
9087 Extract_Target_Attributes
9091 -- The SPARK rules are in effect when both the call and target are
9092 -- subject to SPARK_Mode On.
9094 SPARK_Rules_On :=
9097 -- Output relevant information when switch -gnatel (info messages on
9098 -- implicit Elaborate[_All] pragmas) is in effect.
9101 Info_Call
9108 -- Check whether the invocation of an entry clashes with an existing
9109 -- restriction.
9117 -- Task entry calls are never processed because the entry being
9118 -- invoked does not have a corresponding "body", it has a select.
9123 -- Nothing to do when the call invokes a target defined within an
9124 -- instance and switch -gnatd_i (ignore activations and calls to
9125 -- instances for elaboration) is in effect.
9127 if Debug_Flag_Underscore_I
9128 and then In_External_Instance
9131 then
9134 -- Nothing to do when the call is a guaranteed ABE
9139 -- Nothing to do when the root scenario appears at the declaration level
9140 -- and the target is in the same unit, but outside this context.
9141 --
9142 -- function B ...; -- target declaration
9143 --
9144 -- procedure Proc is
9145 -- function A ... is
9146 -- begin
9147 -- if Some_Condition then
9148 -- return B; -- call site
9149 -- ...
9150 -- end A;
9151 --
9152 -- X : ... := A; -- root scenario
9153 -- ...
9154 --
9155 -- function B ... is
9156 -- ...
9157 -- end B;
9158 --
9159 -- In the example above, the context of X is the declarative region of
9160 -- Proc. The "elaboration" of X may eventually reach B which is defined
9161 -- outside of X's context. B is relevant only when Proc is invoked, but
9162 -- this happens only by means of "normal" elaboration, therefore B must
9163 -- not be considered if this is not the case.
9165 -- Performance note: parent traversal
9171 -- Warnings are suppressed when a prior scenario is already in that
9172 -- mode, or the call or target have warnings suppressed. Update the
9173 -- state of the Processing phase to reflect this.
9176 New_State.Suppress_Warnings
9180 -- The call occurs in an initial condition context when a prior scenario
9181 -- is already in that mode, or when the target is an Initial_Condition
9182 -- procedure. Update the state of the Processing phase to reflect this.
9185 New_State.Within_Initial_Condition
9188 -- The call occurs in a partial finalization context when a prior
9189 -- scenario is already in that mode, or when the target denotes a
9190 -- [Deep_]Finalize primitive or a finalizer within an initialization
9191 -- context. Update the state of the Processing phase to reflect this.
9194 New_State.Within_Partial_Finalization
9197 -- The SPARK rules are in effect. Note that -gnatd.v (enforce SPARK
9198 -- elaboration rules in SPARK code) is intentionally not taken into
9199 -- account here because Process_Conditional_ABE_Call_SPARK has two
9200 -- separate modes of operation.
9203 Process_Conditional_ABE_Call_SPARK
9209 -- Otherwise the Ada rules are in effect
9211 else
9212 Process_Conditional_ABE_Call_Ada
9220 -- Inspect the target body (and barried function) for other suitable
9221 -- elaboration scenarios.
9223 Traverse_Body
9227 Traverse_Body
9232 --------------------------------------
9233 -- Process_Conditional_ABE_Call_Ada --
9234 --------------------------------------
9236 procedure Process_Conditional_ABE_Call_Ada
9242 is
9248 -- A run-time ABE check may be installed only when both the call and the
9249 -- target have active elaboration checks, and both are not ignored Ghost
9250 -- constructs.
9255 -- Each step of the Processing phase constitutes a new state
9257 begin
9258 -- Nothing to do for an Ada dispatching call because there are no ABE
9259 -- diagnostics for either models. ABE checks for the dynamic model are
9260 -- handled by Install_Primitive_Elaboration_Check.
9265 -- Nothing to do when the call is ABE-safe
9266 --
9267 -- generic
9268 -- function Gen ...;
9269 --
9270 -- function Gen ... is
9271 -- begin
9272 -- ...
9273 -- end Gen;
9274 --
9275 -- with Gen;
9276 -- procedure Main is
9277 -- function Inst is new Gen;
9278 -- X : ... := Inst; -- safe call
9279 -- ...
9284 -- The call and the target body are both in the main unit
9288 then
9289 -- If the root scenario appears prior to the target body, then this
9290 -- is a possible ABE with respect to the root scenario.
9291 --
9292 -- function B ...;
9293 --
9294 -- function A ... is
9295 -- begin
9296 -- if Some_Condition then
9297 -- return B; -- call site
9298 -- ...
9299 -- end A;
9300 --
9301 -- X : ... := A; -- root scenario
9302 --
9303 -- function B ... is -- target body
9304 -- ...
9305 -- end B;
9306 --
9307 -- Y : ... := A; -- root scenario
9308 --
9309 -- IMPORTANT: The call to B from A is a possible ABE for X, but not
9310 -- for Y. Installing an unconditional ABE raise prior to the call to
9311 -- B would be wrong as it will fail for Y as well, but in Y's case
9312 -- the call to B is never an ABE.
9316 -- Do not emit any ABE diagnostics when a previous scenario in
9317 -- this traversal has suppressed elaboration warnings.
9322 -- Do not emit any ABE diagnostics when the call occurs in a
9323 -- partial finalization context because this leads to confusing
9324 -- noise.
9329 -- ABE diagnostics are emitted only in the static model because
9330 -- there is a well-defined order to visiting scenarios. Without
9331 -- this order diagnostics appear jumbled and result in unwanted
9332 -- noise.
9335 Error_Msg_NE
9342 -- Install a conditional run-time ABE check to verify that the
9343 -- target body has been elaborated prior to the call.
9346 Install_ABE_Check
9353 -- Update the state of the Processing phase to indicate that
9354 -- no implicit Elaborate[_All] pragmas must be generated from
9355 -- this point on.
9356 --
9357 -- function B ...;
9358 --
9359 -- function A ... is
9360 -- begin
9361 -- if Some_Condition then
9362 -- <ABE check>
9363 -- return B;
9364 -- ...
9365 -- end A;
9366 --
9367 -- X : ... := A;
9368 --
9369 -- function B ... is
9370 -- External.Subp; -- imparts Elaborate_All
9371 -- end B;
9372 --
9373 -- If Some_Condition is True, then the ABE check will fail at
9374 -- runtime and the call to External.Subp will never take place,
9375 -- rendering the implicit Elaborate_All useless.
9376 --
9377 -- If Some_Condition is False, then the call to External.Subp
9378 -- will never take place, rendering the implicit Elaborate_All
9379 -- useless.
9385 -- Otherwise the target body is not available in this compilation or it
9386 -- resides in an external unit. Install a run-time ABE check to verify
9387 -- that the target body has been elaborated prior to the call site when
9388 -- the dynamic model is in effect.
9391 Install_ABE_Check
9397 -- Ensure that the unit with the target body is elaborated prior to the
9398 -- main unit. The implicit Elaborate[_All] is generated only when the
9399 -- call has elaboration checks enabled. This behaviour parallels that of
9400 -- the old ABE mechanism.
9403 Ensure_Prior_Elaboration
9411 ----------------------------------------
9412 -- Process_Conditional_ABE_Call_SPARK --
9413 ----------------------------------------
9415 procedure Process_Conditional_ABE_Call_SPARK
9420 is
9423 begin
9424 -- Ensure that a suitable elaboration model is in effect for SPARK rule
9425 -- verification.
9429 -- The call and the target body are both in the main unit
9433 then
9434 -- If the call appears prior to the target body, then the call must
9435 -- appear within the early call region of the target body.
9436 --
9437 -- function B ...;
9438 --
9439 -- X : ... := B; -- call site
9440 --
9441 -- <preelaborable construct 1> --+
9442 -- ... | early call region
9443 -- <preelaborable construct N> --+
9444 --
9445 -- function B ... is -- target body
9446 -- ...
9447 -- end B;
9448 --
9449 -- When the call to B is not nested within some other scenario, the
9450 -- call is automatically illegal because it can never appear in the
9451 -- early call region of B's body. This is equivalent to a guaranteed
9452 -- ABE.
9453 --
9454 -- <preelaborable construct 1> --+
9455 -- |
9456 -- function B ...; |
9457 -- |
9458 -- function A ... is |
9459 -- begin | early call region
9460 -- if Some_Condition then
9461 -- return B; -- call site
9462 -- ...
9463 -- end A; |
9464 -- |
9465 -- <preelaborable construct N> --+
9466 --
9467 -- function B ... is -- target body
9468 -- ...
9469 -- end B;
9470 --
9471 -- When the call to B is nested within some other scenario, the call
9472 -- is always ABE-safe. It is not immediately obvious why this is the
9473 -- case. The elaboration safety follows from the early call region
9474 -- rule being applied to ALL calls preceding their associated bodies.
9475 --
9476 -- In the example above, the call to B is safe as long as the call to
9477 -- A is safe. There are several cases to consider:
9478 --
9479 -- <call 1 to A>
9480 -- function B ...;
9481 --
9482 -- <call 2 to A>
9483 -- function A ... is
9484 -- begin
9485 -- if Some_Condition then
9486 -- return B;
9487 -- ...
9488 -- end A;
9489 --
9490 -- <call 3 to A>
9491 -- function B ... is
9492 -- ...
9493 -- end B;
9494 --
9495 -- * Call 1 - This call is either nested within some scenario or not,
9496 -- which falls under the two general cases outlined above.
9497 --
9498 -- * Call 2 - This is the same case as Call 1.
9499 --
9500 -- * Call 3 - The placement of this call limits the range of B's
9501 -- early call region unto call 3, therefore the call to B is no
9502 -- longer within the early call region of B's body, making it ABE-
9503 -- unsafe and therefore illegal.
9507 -- Do not emit any ABE diagnostics when a previous scenario in
9508 -- this traversal has suppressed elaboration warnings.
9513 -- Do not emit any ABE diagnostics when the call occurs in an
9514 -- initial condition context because this leads to incorrect
9515 -- diagnostics.
9520 -- Do not emit any ABE diagnostics when the call occurs in a
9521 -- partial finalization context because this leads to confusing
9522 -- noise.
9527 -- ABE diagnostics are emitted only in the static model because
9528 -- there is a well-defined order to visiting scenarios. Without
9529 -- this order diagnostics appear jumbled and result in unwanted
9530 -- noise.
9534 -- Ensure that a call which textually precedes the subprogram
9535 -- body it invokes appears within the early call region of the
9536 -- subprogram body.
9538 -- IMPORTANT: This check must always be performed even when
9539 -- -gnatd.v (enforce SPARK elaboration rules in SPARK code) is
9540 -- not specified because the static model cannot guarantee the
9541 -- absence of elaboration issues in the presence of dispatching
9542 -- calls.
9547 Error_Msg_NE
9561 -- Otherwise the call appears after the target body. The call is
9562 -- ABE-safe as a consequence of applying the early call region rule
9563 -- to ALL calls preceding their associated bodies.
9565 else
9570 -- A call to a source target or to a target which emulates Ada or SPARK
9571 -- semantics imposes an Elaborate_All requirement on the context of the
9572 -- main unit. Determine whether the context has a pragma strong enough
9573 -- to meet the requirement.
9575 -- IMPORTANT: This check must be performed only when -gnatd.v (enforce
9576 -- SPARK elaboration rules in SPARK code) is active because the static
9577 -- model can ensure the prior elaboration of the unit which contains a
9578 -- body by installing an implicit Elaborate[_All] pragma.
9584 then
9585 Meet_Elaboration_Requirement
9591 -- Otherwise ensure that the unit with the target body is elaborated
9592 -- prior to the main unit.
9594 else
9595 Ensure_Prior_Elaboration
9603 -------------------------------------------
9604 -- Process_Conditional_ABE_Instantiation --
9605 -------------------------------------------
9607 procedure Process_Conditional_ABE_Instantiation
9610 is
9618 -- This flag is set when the SPARK rules are in effect
9621 -- Each step of the Processing phase constitutes a new state
9623 begin
9624 Extract_Instantiation_Attributes
9633 -- The SPARK rules are in effect when both the instantiation and generic
9634 -- are subject to SPARK_Mode On.
9638 -- Output relevant information when switch -gnatel (info messages on
9639 -- implicit Elaborate[_All] pragmas) is in effect.
9642 Info_Instantiation
9649 -- Nothing to do when the instantiation is a guaranteed ABE
9654 -- Nothing to do when the root scenario appears at the declaration level
9655 -- and the generic is in the same unit, but outside this context.
9656 --
9657 -- generic
9658 -- procedure Gen is ...; -- generic declaration
9659 --
9660 -- procedure Proc is
9661 -- function A ... is
9662 -- begin
9663 -- if Some_Condition then
9664 -- declare
9665 -- procedure I is new Gen; -- instantiation site
9666 -- ...
9667 -- ...
9668 -- end A;
9669 --
9670 -- X : ... := A; -- root scenario
9671 -- ...
9672 --
9673 -- procedure Gen is
9674 -- ...
9675 -- end Gen;
9676 --
9677 -- In the example above, the context of X is the declarative region of
9678 -- Proc. The "elaboration" of X may eventually reach Gen which appears
9679 -- outside of X's context. Gen is relevant only when Proc is invoked,
9680 -- but this happens only by means of "normal" elaboration, therefore
9681 -- Gen must not be considered if this is not the case.
9683 -- Performance note: parent traversal
9689 -- Warnings are suppressed when a prior scenario is already in that
9690 -- mode, or when the instantiation has warnings suppressed. Update
9691 -- the state of the processing phase to reflect this.
9696 -- The SPARK rules are in effect
9699 Process_Conditional_ABE_Instantiation_SPARK
9705 -- Otherwise the Ada rules are in effect, or SPARK code is allowed to
9706 -- violate the SPARK rules.
9708 else
9709 Process_Conditional_ABE_Instantiation_Ada
9719 -----------------------------------------------
9720 -- Process_Conditional_ABE_Instantiation_Ada --
9721 -----------------------------------------------
9723 procedure Process_Conditional_ABE_Instantiation_Ada
9730 is
9736 -- A run-time ABE check may be installed only when both the instance and
9737 -- the generic have active elaboration checks and both are not ignored
9738 -- Ghost constructs.
9743 -- Each step of the Processing phase constitutes a new state
9745 begin
9746 -- Nothing to do when the instantiation is ABE-safe
9747 --
9748 -- generic
9749 -- package Gen is
9750 -- ...
9751 -- end Gen;
9752 --
9753 -- package body Gen is
9754 -- ...
9755 -- end Gen;
9756 --
9757 -- with Gen;
9758 -- procedure Main is
9759 -- package Inst is new Gen (ABE); -- safe instantiation
9760 -- ...
9765 -- The instantiation and the generic body are both in the main unit
9769 then
9770 -- If the root scenario appears prior to the generic body, then this
9771 -- is a possible ABE with respect to the root scenario.
9772 --
9773 -- generic
9774 -- package Gen is
9775 -- ...
9776 -- end Gen;
9777 --
9778 -- function A ... is
9779 -- begin
9780 -- if Some_Condition then
9781 -- declare
9782 -- package Inst is new Gen; -- instantiation site
9783 -- ...
9784 -- end A;
9785 --
9786 -- X : ... := A; -- root scenario
9787 --
9788 -- package body Gen is -- generic body
9789 -- ...
9790 -- end Gen;
9791 --
9792 -- Y : ... := A; -- root scenario
9793 --
9794 -- IMPORTANT: The instantiation of Gen is a possible ABE for X, but
9795 -- not for Y. Installing an unconditional ABE raise prior to the
9796 -- instance site would be wrong as it will fail for Y as well, but in
9797 -- Y's case the instantiation of Gen is never an ABE.
9801 -- Do not emit any ABE diagnostics when a previous scenario in
9802 -- this traversal has suppressed elaboration warnings.
9807 -- Do not emit any ABE diagnostics when the instantiation occurs
9808 -- in partial finalization context because this leads to unwanted
9809 -- noise.
9814 -- ABE diagnostics are emitted only in the static model because
9815 -- there is a well-defined order to visiting scenarios. Without
9816 -- this order diagnostics appear jumbled and result in unwanted
9817 -- noise.
9820 Error_Msg_NE
9827 -- Install a conditional run-time ABE check to verify that the
9828 -- generic body has been elaborated prior to the instantiation.
9831 Install_ABE_Check
9838 -- Update the state of the Processing phase to indicate that
9839 -- no implicit Elaborate[_All] pragmas must be generated from
9840 -- this point on.
9841 --
9842 -- generic
9843 -- package Gen is
9844 -- ...
9845 -- end Gen;
9846 --
9847 -- function A ... is
9848 -- begin
9849 -- if Some_Condition then
9850 -- <ABE check>
9851 -- declare Inst is new Gen;
9852 -- ...
9853 -- end A;
9854 --
9855 -- X : ... := A;
9856 --
9857 -- package body Gen is
9858 -- begin
9859 -- External.Subp; -- imparts Elaborate_All
9860 -- end Gen;
9861 --
9862 -- If Some_Condition is True, then the ABE check will fail at
9863 -- runtime and the call to External.Subp will never take place,
9864 -- rendering the implicit Elaborate_All useless.
9865 --
9866 -- If Some_Condition is False, then the call to External.Subp
9867 -- will never take place, rendering the implicit Elaborate_All
9868 -- useless.
9874 -- Otherwise the generic body is not available in this compilation or it
9875 -- resides in an external unit. Install a run-time ABE check to verify
9876 -- that the generic body has been elaborated prior to the instantiation
9877 -- when the dynamic model is in effect.
9880 Install_ABE_Check
9886 -- Ensure that the unit with the generic body is elaborated prior to
9887 -- the main unit. No implicit pragma is generated if the instantiation
9888 -- has elaboration checks suppressed. This behaviour parallels that of
9889 -- the old ABE mechanism.
9892 Ensure_Prior_Elaboration
9900 -------------------------------------------------
9901 -- Process_Conditional_ABE_Instantiation_SPARK --
9902 -------------------------------------------------
9904 procedure Process_Conditional_ABE_Instantiation_SPARK
9909 is
9912 begin
9913 -- Ensure that a suitable elaboration model is in effect for SPARK rule
9914 -- verification.
9918 -- A source instantiation imposes an Elaborate[_All] requirement on the
9919 -- context of the main unit. Determine whether the context has a pragma
9920 -- strong enough to meet the requirement. The check is orthogonal to the
9921 -- ABE ramifications of the instantiation.
9923 -- IMPORTANT: This check must be performed only when -gnatd.v (enforce
9924 -- SPARK elaboration rules in SPARK code) is active because the static
9925 -- model can ensure the prior elaboration of the unit which contains a
9926 -- body by installing an implicit Elaborate[_All] pragma.
9931 else
9935 Meet_Elaboration_Requirement
9940 -- Otherwise ensure that the unit with the target body is elaborated
9941 -- prior to the main unit.
9943 else
9944 Ensure_Prior_Elaboration
9952 -------------------------------------------------
9953 -- Process_Conditional_ABE_Variable_Assignment --
9954 -------------------------------------------------
9961 -- This flag is set when the SPARK rules are in effect
9963 begin
9964 -- The SPARK rules are in effect when both the assignment and the
9965 -- variable are subject to SPARK_Mode On.
9967 SPARK_Rules_On :=
9972 -- Output relevant information when switch -gnatel (info messages on
9973 -- implicit Elaborate[_All] pragmas) is in effect.
9976 Elab_Msg_NE
9984 -- The SPARK rules are in effect. These rules are applied regardless of
9985 -- whether -gnatd.v (enforce SPARK elaboration rules in SPARK code) is
9986 -- in effect because the static model cannot ensure safe assignment of
9987 -- variables.
9990 Process_Conditional_ABE_Variable_Assignment_SPARK
9994 -- Otherwise the Ada rules are in effect
9996 else
9997 Process_Conditional_ABE_Variable_Assignment_Ada
10003 -----------------------------------------------------
10004 -- Process_Conditional_ABE_Variable_Assignment_Ada --
10005 -----------------------------------------------------
10007 procedure Process_Conditional_ABE_Variable_Assignment_Ada
10010 is
10014 begin
10015 -- Emit a warning when an uninitialized variable declared in a package
10016 -- spec without a pragma Elaborate_Body is initialized by elaboration
10017 -- code within the corresponding body.
10022 then
10023 Error_Msg_NE
10027 Error_Msg_NE
10033 -- Generate an implicit Elaborate_Body in the spec
10039 -------------------------------------------------------
10040 -- Process_Conditional_ABE_Variable_Assignment_SPARK --
10041 -------------------------------------------------------
10043 procedure Process_Conditional_ABE_Variable_Assignment_SPARK
10046 is
10050 begin
10051 -- Ensure that a suitable elaboration model is in effect for SPARK rule
10052 -- verification.
10056 -- Emit an error when an initialized variable declared in a package spec
10057 -- without pragma Elaborate_Body is further modified by elaboration code
10058 -- within the corresponding body.
10063 then
10064 Error_Msg_NE
10068 Error_Msg_NE
10076 ------------------------------------------------
10077 -- Process_Conditional_ABE_Variable_Reference --
10078 ------------------------------------------------
10084 begin
10085 Extract_Variable_Reference_Attributes
10091 Process_Conditional_ABE_Variable_Reference_Read
10098 -----------------------------------------------------
10099 -- Process_Conditional_ABE_Variable_Reference_Read --
10100 -----------------------------------------------------
10102 procedure Process_Conditional_ABE_Variable_Reference_Read
10106 is
10107 begin
10108 -- Output relevant information when switch -gnatel (info messages on
10109 -- implicit Elaborate[_All] pragmas) is in effect.
10112 Elab_Msg_NE
10120 -- Nothing to do when the variable appears within the main unit because
10121 -- diagnostics on reads are relevant only for external variables.
10126 -- Nothing to do when the variable is already initialized. Note that the
10127 -- variable may be further modified by the external unit.
10132 -- Nothing to do when the external unit guarantees the initialization of
10133 -- the variable by means of pragma Elaborate_Body.
10138 -- A variable read imposes an Elaborate requirement on the context of
10139 -- the main unit. Determine whether the context has a pragma strong
10140 -- enough to meet the requirement.
10142 else
10143 Meet_Elaboration_Requirement
10150 -----------------------------
10151 -- Process_Conditional_ABE --
10152 -----------------------------
10154 -- NOTE: The body of this routine is intentionally out of order because it
10155 -- invokes an instantiated subprogram (Process_Conditional_ABE_Activation).
10156 -- Placing the body in alphabetical order will result in a guaranteed ABE.
10158 procedure Process_Conditional_ABE
10161 is
10165 begin
10166 -- Add the current scenario to the stack of active scenarios
10170 -- 'Access
10173 Process_Conditional_ABE_Access
10177 -- Activations and calls
10181 -- In general, only calls found within the main unit are processed
10182 -- because the ALI information supplied to binde is for the main
10183 -- unit only. However, to preserve the consistency of the tree and
10184 -- ensure proper serialization of internal names, external calls
10185 -- also receive corresponding call markers (see Build_Call_Marker).
10186 -- Regardless of the reason, external calls must not be processed.
10189 Extract_Call_Attributes
10195 Process_Conditional_ABE_Activation
10200 else
10201 Process_Conditional_ABE_Call
10209 -- Instantiations
10212 Process_Conditional_ABE_Instantiation
10216 -- Variable assignments
10221 -- Variable references
10225 -- In general, only variable references found within the main unit
10226 -- are processed because the ALI information supplied to binde is for
10227 -- the main unit only. However, to preserve the consistency of the
10228 -- tree and ensure proper serialization of internal names, external
10229 -- variable references also receive corresponding variable reference
10230 -- markers (see Build_Varaible_Reference_Marker). Regardless of the
10231 -- reason, external variable references must not be processed.
10238 -- Remove the current scenario from the stack of active scenarios once
10239 -- all ABE diagnostics and checks have been performed.
10244 --------------------------------------------
10245 -- Process_Guaranteed_ABE_Activation_Impl --
10246 --------------------------------------------
10248 procedure Process_Guaranteed_ABE_Activation_Impl
10254 is
10262 -- A run-time ABE check may be installed only when the object and the
10263 -- task type have active elaboration checks, and both are not ignored
10264 -- Ghost constructs.
10266 begin
10267 -- Nothing to do when the root scenario appears at the declaration
10268 -- level and the task is in the same unit, but outside this context.
10269 --
10270 -- task type Task_Typ; -- task declaration
10271 --
10272 -- procedure Proc is
10273 -- function A ... is
10274 -- begin
10275 -- if Some_Condition then
10276 -- declare
10277 -- T : Task_Typ;
10278 -- begin
10279 -- <activation call> -- activation site
10280 -- end;
10281 -- ...
10282 -- end A;
10283 --
10284 -- X : ... := A; -- root scenario
10285 -- ...
10286 --
10287 -- task body Task_Typ is
10288 -- ...
10289 -- end Task_Typ;
10290 --
10291 -- In the example above, the context of X is the declarative list of
10292 -- Proc. The "elaboration" of X may reach the activation of T whose body
10293 -- is defined outside of X's context. The task body is relevant only
10294 -- when Proc is invoked, but this happens only in "normal" elaboration,
10295 -- therefore the task body must not be considered if this is not the
10296 -- case.
10298 -- Performance note: parent traversal
10303 -- Nothing to do when the activation is ABE-safe
10304 --
10305 -- generic
10306 -- package Gen is
10307 -- task type Task_Typ;
10308 -- end Gen;
10309 --
10310 -- package body Gen is
10311 -- task body Task_Typ is
10312 -- begin
10313 -- ...
10314 -- end Task_Typ;
10315 -- end Gen;
10316 --
10317 -- with Gen;
10318 -- procedure Main is
10319 -- package Nested is
10320 -- package Inst is new Gen;
10321 -- T : Inst.Task_Typ;
10322 -- end Nested; -- safe activation
10323 -- ...
10328 -- An activation call leads to a guaranteed ABE when the activation
10329 -- call and the task appear within the same context ignoring library
10330 -- levels, and the body of the task has not been seen yet or appears
10331 -- after the activation call.
10332 --
10333 -- procedure Guaranteed_ABE is
10334 -- task type Task_Typ;
10335 --
10336 -- package Nested is
10337 -- T : Task_Typ;
10338 -- <activation call> -- guaranteed ABE
10339 -- end Nested;
10340 --
10341 -- task body Task_Typ is
10342 -- ...
10343 -- end Task_Typ;
10344 -- ...
10346 -- Performance note: parent traversal
10348 elsif Is_Guaranteed_ABE
10352 then
10355 Error_Msg_N
10357 Obj_Id);
10361 -- Mark the activation call as a guaranteed ABE
10365 -- Install a run-time ABE failue because this activation call will
10366 -- always result in an ABE.
10369 Install_ABE_Failure
10379 ---------------------------------
10380 -- Process_Guaranteed_ABE_Call --
10381 ---------------------------------
10383 procedure Process_Guaranteed_ABE_Call
10387 is
10390 begin
10391 Extract_Target_Attributes
10395 -- Nothing to do when the root scenario appears at the declaration level
10396 -- and the target is in the same unit, but outside this context.
10397 --
10398 -- function B ...; -- target declaration
10399 --
10400 -- procedure Proc is
10401 -- function A ... is
10402 -- begin
10403 -- if Some_Condition then
10404 -- return B; -- call site
10405 -- ...
10406 -- end A;
10407 --
10408 -- X : ... := A; -- root scenario
10409 -- ...
10410 --
10411 -- function B ... is
10412 -- ...
10413 -- end B;
10414 --
10415 -- In the example above, the context of X is the declarative region of
10416 -- Proc. The "elaboration" of X may eventually reach B which is defined
10417 -- outside of X's context. B is relevant only when Proc is invoked, but
10418 -- this happens only by means of "normal" elaboration, therefore B must
10419 -- not be considered if this is not the case.
10421 -- Performance note: parent traversal
10426 -- Nothing to do when the call is ABE-safe
10427 --
10428 -- generic
10429 -- function Gen ...;
10430 --
10431 -- function Gen ... is
10432 -- begin
10433 -- ...
10434 -- end Gen;
10435 --
10436 -- with Gen;
10437 -- procedure Main is
10438 -- function Inst is new Gen;
10439 -- X : ... := Inst; -- safe call
10440 -- ...
10445 -- A call leads to a guaranteed ABE when the call and the target appear
10446 -- within the same context ignoring library levels, and the body of the
10447 -- target has not been seen yet or appears after the call.
10448 --
10449 -- procedure Guaranteed_ABE is
10450 -- function Func ...;
10451 --
10452 -- package Nested is
10453 -- Obj : ... := Func; -- guaranteed ABE
10454 -- end Nested;
10455 --
10456 -- function Func ... is
10457 -- ...
10458 -- end Func;
10459 -- ...
10461 -- Performance note: parent traversal
10463 elsif Is_Guaranteed_ABE
10467 then
10473 -- Mark the call as a guarnateed ABE
10477 -- Install a run-time ABE failure because the call will always result
10478 -- in an ABE. The failure is installed when both the call and target
10479 -- have enabled elaboration checks, and both are not ignored Ghost
10480 -- constructs.
10486 then
10487 Install_ABE_Failure
10494 ------------------------------------------
10495 -- Process_Guaranteed_ABE_Instantiation --
10496 ------------------------------------------
10505 begin
10506 Extract_Instantiation_Attributes
10515 -- Nothing to do when the root scenario appears at the declaration level
10516 -- and the generic is in the same unit, but outside this context.
10517 --
10518 -- generic
10519 -- procedure Gen is ...; -- generic declaration
10520 --
10521 -- procedure Proc is
10522 -- function A ... is
10523 -- begin
10524 -- if Some_Condition then
10525 -- declare
10526 -- procedure I is new Gen; -- instantiation site
10527 -- ...
10528 -- ...
10529 -- end A;
10530 --
10531 -- X : ... := A; -- root scenario
10532 -- ...
10533 --
10534 -- procedure Gen is
10535 -- ...
10536 -- end Gen;
10537 --
10538 -- In the example above, the context of X is the declarative region of
10539 -- Proc. The "elaboration" of X may eventually reach Gen which appears
10540 -- outside of X's context. Gen is relevant only when Proc is invoked,
10541 -- but this happens only by means of "normal" elaboration, therefore
10542 -- Gen must not be considered if this is not the case.
10544 -- Performance note: parent traversal
10549 -- Nothing to do when the instantiation is ABE-safe
10550 --
10551 -- generic
10552 -- package Gen is
10553 -- ...
10554 -- end Gen;
10555 --
10556 -- package body Gen is
10557 -- ...
10558 -- end Gen;
10559 --
10560 -- with Gen;
10561 -- procedure Main is
10562 -- package Inst is new Gen (ABE); -- safe instantiation
10563 -- ...
10568 -- An instantiation leads to a guaranteed ABE when the instantiation and
10569 -- the generic appear within the same context ignoring library levels,
10570 -- and the body of the generic has not been seen yet or appears after
10571 -- the instantiation.
10572 --
10573 -- procedure Guaranteed_ABE is
10574 -- generic
10575 -- procedure Gen;
10576 --
10577 -- package Nested is
10578 -- procedure Inst is new Gen; -- guaranteed ABE
10579 -- end Nested;
10580 --
10581 -- procedure Gen is
10582 -- ...
10583 -- end Gen;
10584 -- ...
10586 -- Performance note: parent traversal
10588 elsif Is_Guaranteed_ABE
10592 then
10594 Error_Msg_NE
10599 -- Mark the instantiation as a guarantee ABE. This automatically
10600 -- suppresses the instantiation of the generic body.
10604 -- Install a run-time ABE failure because the instantiation will
10605 -- always result in an ABE. The failure is installed when both the
10606 -- instance and the generic have enabled elaboration checks, and both
10607 -- are not ignored Ghost constructs.
10613 then
10614 Install_ABE_Failure
10621 ----------------------------
10622 -- Process_Guaranteed_ABE --
10623 ----------------------------
10625 -- NOTE: The body of this routine is intentionally out of order because it
10626 -- invokes an instantiated subprogram (Process_Guaranteed_ABE_Activation).
10627 -- Placing the body in alphabetical order will result in a guaranteed ABE.
10633 begin
10634 -- Add the current scenario to the stack of active scenarios
10638 -- Only calls, instantiations, and task activations may result in a
10639 -- guaranteed ABE.
10642 Extract_Call_Attributes
10648 Process_Guaranteed_ABE_Activation
10653 else
10654 Process_Guaranteed_ABE_Call
10664 -- Remove the current scenario from the stack of active scenarios once
10665 -- all ABE diagnostics and checks have been performed.
10670 --------------------------
10671 -- Push_Active_Scenario --
10672 --------------------------
10675 begin
10679 ---------------------------------
10680 -- Record_Elaboration_Scenario --
10681 ---------------------------------
10687 -- This flag is set when a particular scenario is allowed to appear at
10688 -- any level.
10691 -- This flag is set when a particular scenario is allowed to appear at
10692 -- the declaration level.
10695 -- This flag is set when a particular scenario is allowed to appear at
10696 -- the library level.
10698 begin
10699 -- Assume that the scenario cannot appear on any level
10705 -- Nothing to do when switch -gnatH (legacy elaboration checking mode
10706 -- enabled) is in effect because the legacy ABE mechanism does not need
10707 -- to carry out this action.
10712 -- Nothing to do for ASIS because ABE checks and diagnostics are not
10713 -- performed in this mode.
10718 -- Nothing to do when the scenario is being preanalyzed
10724 -- Ensure that a library-level call does not appear in a preelaborated
10725 -- unit. The check must come before ignoring scenarios within external
10726 -- units or inside generics because calls in those context must also be
10727 -- verified.
10733 -- Nothing to do when the scenario does not appear within the main unit
10738 -- Scenarios within a generic unit are never considered because generics
10739 -- cannot be elaborated.
10744 -- Scenarios which do not fall in one of the elaboration categories
10745 -- listed below are not considered. The categories are:
10747 -- 'Access for entries, operators, and subprograms
10748 -- Assignments to variables
10749 -- Calls (includes task activation)
10750 -- Derived types
10751 -- Instantiations
10752 -- Pragma Refined_State
10753 -- Reads of variables
10758 -- Signal any enclosing local exception handlers that the 'Access may
10759 -- raise Program_Error due to a failed ABE check when switch -gnatd.o
10760 -- (conservative elaboration order for indirect calls) is in effect.
10761 -- Marking the exception handlers ensures proper expansion by both
10762 -- the front and back end restriction when No_Exception_Propagation
10763 -- is in effect.
10773 -- Signal any enclosing local exception handlers that the call or
10774 -- instantiation may raise Program_Error due to a failed ABE check.
10775 -- Marking the exception handlers ensures proper expansion by both
10776 -- the front and back end restriction when No_Exception_Propagation
10777 -- is in effect.
10789 then
10792 -- Otherwise the input does not denote a suitable scenario
10794 else
10798 -- The static model imposes additional restrictions on the placement of
10799 -- scenarios. In contrast, the dynamic model assumes that every scenario
10800 -- will be elaborated or invoked at some point.
10804 -- Certain scenarios are allowed to appear at any level. This check
10805 -- is performed here in order to save on a parent traversal.
10810 -- Otherwise the scenario must appear at a specific level
10812 else
10813 -- Performance note: parent traversal
10817 -- Declaration-level scenario
10822 -- Library-level or instantiation scenario
10824 elsif Library_Level_OK
10826 then
10829 -- Otherwise the scenario does not appear at the proper level and
10830 -- cannot possibly act as a top-level scenario.
10832 else
10838 -- Derived types subject to SPARK_Mode On require elaboration-related
10839 -- checks even though the type may not be declared within elaboration
10840 -- code. The types are recorded in a separate table which is examined
10841 -- during the Processing phase. Note that the checks must be delayed
10842 -- because the bodies of overriding primitives are not available yet.
10847 -- Nothing left to do for derived types
10851 -- Instantiations of generics both subject to SPARK_Mode On require
10852 -- elaboration-related checks even though the instantiations may not
10853 -- appear within elaboration code. The instantiations are recored in
10854 -- a separate table which is examined during the Procesing phase. Note
10855 -- that the checks must be delayed because it is not known yet whether
10856 -- the generic unit has a body or not.
10858 -- IMPORTANT: A SPARK instantiation is also a normal instantiation which
10859 -- is subject to common conditional and guaranteed ABE checks.
10864 -- External constituents that refine abstract states which appear in
10865 -- pragma Initializes require elaboration-related checks even though
10866 -- a Refined_State pragma lacks any elaboration semantic.
10871 -- Nothing left to do for pragma Refined_State
10876 -- Perform early detection of guaranteed ABEs in order to suppress the
10877 -- instantiation of generic bodies as gigi cannot handle certain types
10878 -- of premature instantiations.
10882 -- At this point all checks have been performed. Record the scenario for
10883 -- later processing by the ABE phase.
10889 ---------------------------------------
10890 -- Record_SPARK_Elaboration_Scenario --
10891 ---------------------------------------
10894 begin
10899 -----------------------------------
10900 -- Recorded_SPARK_Scenarios_Hash --
10901 -----------------------------------
10903 function Recorded_SPARK_Scenarios_Hash
10905 is
10906 begin
10907 return
10911 ---------------------------------------
10912 -- Recorded_Top_Level_Scenarios_Hash --
10913 ---------------------------------------
10915 function Recorded_Top_Level_Scenarios_Hash
10917 is
10918 begin
10919 return
10920 Recorded_Top_Level_Scenarios_Index
10924 --------------------------
10925 -- Reset_Visited_Bodies --
10926 --------------------------
10929 begin
10936 -------------------
10937 -- Root_Scenario --
10938 -------------------
10943 begin
10944 -- Ensure that the scenario stack has at least one active scenario in
10945 -- it. The one at the bottom (index First) is the root scenario.
10951 ---------------------------
10952 -- Set_Early_Call_Region --
10953 ---------------------------
10956 begin
10958 E_Entry_Family,
10959 E_Function,
10960 E_Procedure,
10961 E_Subprogram_Body));
10967 ----------------------------
10968 -- Set_Elaboration_Status --
10969 ----------------------------
10971 procedure Set_Elaboration_Status
10974 is
10975 begin
10980 ------------------------------------
10981 -- Set_Is_Recorded_SPARK_Scenario --
10982 ------------------------------------
10984 procedure Set_Is_Recorded_SPARK_Scenario
10987 is
10988 begin
10993 ----------------------------------------
10994 -- Set_Is_Recorded_Top_Level_Scenario --
10995 ----------------------------------------
10997 procedure Set_Is_Recorded_Top_Level_Scenario
11000 is
11001 begin
11006 -------------------------
11007 -- Set_Is_Visited_Body --
11008 -------------------------
11011 begin
11016 -------------------------------
11017 -- Static_Elaboration_Checks --
11018 -------------------------------
11021 begin
11025 -------------------
11026 -- Traverse_Body --
11027 -------------------
11032 -- Examine the declarations and statements of subprogram body N for
11033 -- suitable scenarios.
11035 ---------------------------------------
11036 -- Find_And_Process_Nested_Scenarios --
11037 ---------------------------------------
11040 function Is_Potential_Scenario
11042 -- Determine whether arbitrary node Nod denotes a suitable scenario.
11043 -- If it does, save it in the Nested_Scenarios list of the subprogram
11044 -- body, and process it.
11048 -- Invoke Traverse_Potential_Scenarios on each node in list List
11053 ---------------------------
11054 -- Is_Potential_Scenario --
11055 ---------------------------
11057 function Is_Potential_Scenario
11059 is
11060 begin
11061 -- Special cases
11063 -- Skip constructs which do not have elaboration of their own and
11064 -- need to be elaborated by other means such as invocation, task
11065 -- activation, etc.
11070 -- Terminate the traversal of a task body when encountering an
11071 -- accept or select statement, and
11072 --
11073 -- * Entry calls during elaboration are not allowed. In this
11074 -- case the accept or select statement will cause the task
11075 -- to block at elaboration time because there are no entry
11076 -- calls to unblock it.
11077 --
11078 -- or
11079 --
11080 -- * Switch -gnatd_a (stop elaboration checks on accept or
11081 -- select statement) is in effect.
11084 or else Restriction_Active
11087 N_Selective_Accept)
11088 then
11091 -- Terminate the traversal of a task body when encountering a
11092 -- suspension call, and
11093 --
11094 -- * Entry calls during elaboration are not allowed. In this
11095 -- case the suspension call emulates an entry call and will
11096 -- cause the task to block at elaboration time.
11097 --
11098 -- or
11099 --
11100 -- * Switch -gnatd_s (stop elaboration checks on synchronous
11101 -- suspension) is in effect.
11102 --
11103 -- Note that the guard should not be checking the state of flag
11104 -- Within_Task_Body because only suspension calls which appear
11105 -- immediately within the statements of the task are supported.
11106 -- Flag Within_Task_Body carries over to deeper levels of the
11107 -- traversal.
11110 or else Restriction_Active
11114 then
11117 -- Certain nodes carry semantic lists which act as repositories
11118 -- until expansion transforms the node and relocates the contents.
11119 -- Examine these lists in case expansion is disabled.
11132 N_Iterated_Component_Association)
11133 then
11136 -- General case
11139 Process_Conditional_ABE
11147 -------------------
11148 -- Traverse_List --
11149 -------------------
11154 begin
11162 -- Start of processing for Find_And_Process_Nested_Scenarios
11164 begin
11165 -- Examine the declarations for suitable scenarios
11169 -- Examine the handled sequence of statements. This also includes any
11170 -- exceptions handlers.
11175 -- Start of processing for Traverse_Body
11177 begin
11178 -- Nothing to do when there is no body
11187 -- Nothing to do if the body was already traversed during the processing
11188 -- of the same top-level scenario.
11193 -- Otherwise mark the body as traversed
11195 else
11199 -- Examine the declarations and statements of the subprogram body for
11200 -- suitable scenarios, save and process them accordingly.
11202 Find_And_Process_Nested_Scenarios;
11205 -----------------
11206 -- Unit_Entity --
11207 -----------------
11212 -- Determine whether the entity of an initial declaration denotes a
11213 -- subunit.
11215 ----------------
11216 -- Is_Subunit --
11217 ----------------
11222 begin
11223 return
11225 N_Generic_Subprogram_Declaration,
11226 N_Package_Declaration,
11227 N_Protected_Type_Declaration,
11228 N_Subprogram_Declaration,
11229 N_Task_Type_Declaration)
11235 -- Local variables
11239 -- Start of processing for Unit_Entity
11241 begin
11244 -- Skip all subunits found in the scope chain which ends at the input
11245 -- unit.
11254 ---------------------------------
11255 -- Update_Elaboration_Scenario --
11256 ---------------------------------
11261 -- Update the contents of table SPARK_Scenarios if Old_N is recorded
11262 -- there.
11266 -- Update the contexts of table Top_Level_Scenarios if Old_N is recorded
11267 -- there.
11269 ---------------------------
11270 -- Update_SPARK_Scenario --
11271 ---------------------------
11276 begin
11279 -- Performance note: list traversal
11285 -- The old SPARK scenario is no longer recorded, but the new
11286 -- one is.
11294 -- A recorded SPARK scenario must be in the table of recorded
11295 -- SPARK scenarios.
11301 -------------------------------
11302 -- Update_Top_Level_Scenario --
11303 -------------------------------
11308 begin
11311 -- Performance note: list traversal
11317 -- The old top-level scenario is no longer recorded, but the
11318 -- new one is.
11326 -- A recorded top-level scenario must be in the table of recorded
11327 -- top-level scenarios.
11333 -- Start of processing for Update_Elaboration_Requirement
11335 begin
11336 -- Nothing to do when the old and new scenarios are one and the same
11341 -- A scenario is being transformed by Atree.Rewrite. Update all relevant
11342 -- internal data structures to reflect this change. This ensures that a
11343 -- potential run-time conditional ABE check or a guaranteed ABE failure
11344 -- is inserted at the proper place in the tree.
11347 Update_SPARK_Scenario;
11348 Update_Top_Level_Scenario;
11352 -------------------------
11353 -- Visited_Bodies_Hash --
11354 -------------------------
11357 begin
11361 ---------------------------------------------------------------------------
11362 -- --
11363 -- L E G A C Y A C C E S S B E F O R E E L A B O R A T I O N --
11364 -- --
11365 -- M E C H A N I S M --
11366 -- --
11367 ---------------------------------------------------------------------------
11369 -- This section contains the implementation of the pre-18.x legacy ABE
11370 -- mechanism. The mechanism can be activated using switch -gnatH (legacy
11371 -- elaboration checking mode enabled).
11373 -----------------------------
11374 -- Description of Approach --
11375 -----------------------------
11377 -- Every non-static call that is encountered by Sem_Res results in a call
11378 -- to Check_Elab_Call, with N being the call node, and Outer set to its
11379 -- default value of True. In addition X'Access is treated like a call
11380 -- for the access-to-procedure case, and in SPARK mode only we also
11381 -- check variable references.
11383 -- The goal of Check_Elab_Call is to determine whether or not the reference
11384 -- in question can generate an access before elaboration error (raising
11385 -- Program_Error) either by directly calling a subprogram whose body
11386 -- has not yet been elaborated, or indirectly, by calling a subprogram
11387 -- whose body has been elaborated, but which contains a call to such a
11388 -- subprogram.
11390 -- In addition, in SPARK mode, we are checking for a variable reference in
11391 -- another package, which requires an explicit Elaborate_All pragma.
11393 -- The only references that we need to look at the outer level are
11394 -- references that occur in elaboration code. There are two cases. The
11395 -- reference can be at the outer level of elaboration code, or it can
11396 -- be within another unit, e.g. the elaboration code of a subprogram.
11398 -- In the case of an elaboration call at the outer level, we must trace
11399 -- all calls to outer level routines either within the current unit or to
11400 -- other units that are with'ed. For calls within the current unit, we can
11401 -- determine if the body has been elaborated or not, and if it has not,
11402 -- then a warning is generated.
11404 -- Note that there are two subcases. If the original call directly calls a
11405 -- subprogram whose body has not been elaborated, then we know that an ABE
11406 -- will take place, and we replace the call by a raise of Program_Error.
11407 -- If the call is indirect, then we don't know that the PE will be raised,
11408 -- since the call might be guarded by a conditional. In this case we set
11409 -- Do_Elab_Check on the call so that a dynamic check is generated, and
11410 -- output a warning.
11412 -- For calls to a subprogram in a with'ed unit or a 'Access or variable
11413 -- reference (SPARK mode case), we require that a pragma Elaborate_All
11414 -- or pragma Elaborate be present, or that the referenced unit have a
11415 -- pragma Preelaborate, pragma Pure, or pragma Elaborate_Body. If none
11416 -- of these conditions is met, then a warning is generated that a pragma
11417 -- Elaborate_All may be needed (error in the SPARK case), or an implicit
11418 -- pragma is generated.
11420 -- For the case of an elaboration call at some inner level, we are
11421 -- interested in tracing only calls to subprograms at the same level, i.e.
11422 -- those that can be called during elaboration. Any calls to outer level
11423 -- routines cannot cause ABE's as a result of the original call (there
11424 -- might be an outer level call to the subprogram from outside that causes
11425 -- the ABE, but that gets analyzed separately).
11427 -- Note that we never trace calls to inner level subprograms, since these
11428 -- cannot result in ABE's unless there is an elaboration problem at a lower
11429 -- level, which will be separately detected.
11431 -- Note on pragma Elaborate. The checking here assumes that a pragma
11432 -- Elaborate on a with'ed unit guarantees that subprograms within the unit
11433 -- can be called without causing an ABE. This is not in fact the case since
11434 -- pragma Elaborate does not guarantee the transitive coverage guaranteed
11435 -- by Elaborate_All. However, we decide to trust the user in this case.
11437 --------------------------------------
11438 -- Instantiation Elaboration Errors --
11439 --------------------------------------
11441 -- A special case arises when an instantiation appears in a context that is
11442 -- known to be before the body is elaborated, e.g.
11444 -- generic package x is ...
11445 -- ...
11446 -- package xx is new x;
11447 -- ...
11448 -- package body x is ...
11450 -- In this situation it is certain that an elaboration error will occur,
11451 -- and an unconditional raise Program_Error statement is inserted before
11452 -- the instantiation, and a warning generated.
11454 -- The problem is that in this case we have no place to put the body of
11455 -- the instantiation. We can't put it in the normal place, because it is
11456 -- too early, and will cause errors to occur as a result of referencing
11457 -- entities before they are declared.
11459 -- Our approach in this case is simply to avoid creating the body of the
11460 -- instantiation in such a case. The instantiation spec is modified to
11461 -- include dummy bodies for all subprograms, so that the resulting code
11462 -- does not contain subprogram specs with no corresponding bodies.
11464 -- The following table records the recursive call chain for output in the
11465 -- Output routine. Each entry records the call node and the entity of the
11466 -- called routine. The number of entries in the table (i.e. the value of
11467 -- Elab_Call.Last) indicates the current depth of recursion and is used to
11468 -- identify the outer level.
11483 -- The following table records all calls that have been processed starting
11484 -- from an outer level call. The table prevents both infinite recursion and
11485 -- useless reanalysis of calls within the same context. The use of context
11486 -- is important because it allows for proper checks in more complex code:
11488 -- if ... then
11489 -- Call; -- requires a check
11490 -- Call; -- does not need a check thanks to the table
11491 -- elsif ... then
11492 -- Call; -- requires a check, different context
11493 -- end if;
11495 -- Call; -- requires a check, different context
11499 -- The entity of the subprogram being called
11502 -- The context where the call to the subprogram occurs
11513 -- The following table records delayed calls which must be examined after
11514 -- all generic bodies have been instantiated.
11518 -- The parameter N from the call to Check_Internal_Call. Note that this
11519 -- node may get rewritten over the delay period by expansion in the call
11520 -- case (but not in the instantiation case).
11523 -- The parameter E from the call to Check_Internal_Call
11526 -- The parameter Orig_Ent from the call to Check_Internal_Call
11529 -- The current scope of the call. This is restored when we complete the
11530 -- delayed call, so that we do this in the right scope.
11533 -- Save scope of outer level call
11536 -- Save indication of whether this call is from elaboration code
11539 -- Save indication of whether this call is from a task body. Tasks are
11540 -- activated at the "begin", which is after all local procedure bodies,
11541 -- so calls to those procedures can't fail, even if they occur after the
11542 -- task body.
11545 -- Save indication of whether this call is under SPARK_Mode => On
11557 -- Top-level scope of current scope. Compute this only once at the outer
11558 -- level, i.e. for a call to Check_Elab_Call from outside this unit.
11561 -- Save Sloc value for outer level call node for comparisons of source
11562 -- locations. A body is too late if it appears after the *outer* level
11563 -- call, not the particular call that is being analyzed.
11566 -- This flag shows whether the outer level call currently being examined
11567 -- is or is not in elaboration code. We are only interested in calls to
11568 -- routines in other units if this flag is True.
11571 -- This flag indicates whether we are performing elaboration checks on task
11572 -- bodies, at the point of activation. If true, we do not raise
11573 -- Program_Error for calls to local procedures, because all local bodies
11574 -- are known to be elaborated. However, we still need to trace such calls,
11575 -- because a local procedure could call a procedure in another package,
11576 -- so we might need an implicit Elaborate_All.
11579 -- This is set True till the compilation is complete, including the
11580 -- insertion of all instance bodies. Then when Check_Elab_Calls is called,
11581 -- the delay table is used to make the delayed calls and this flag is reset
11582 -- to False, so that the calls are processed.
11584 -----------------------
11585 -- Local Subprograms --
11586 -----------------------
11588 -- Note: Outer_Scope in all following specs represents the scope of
11589 -- interest of the outer level call. If it is set to Standard_Standard,
11590 -- then it means the outer level call was at elaboration level, and that
11591 -- thus all calls are of interest. If it was set to some other scope,
11592 -- then the original call was an inner call, and we are not interested
11593 -- in calls that go outside this scope.
11596 -- Analysis of construct N shows that we should set Elaborate_All_Desirable
11597 -- for the WITH clause for unit U (which will always be present). A special
11598 -- case is when N is a function or procedure instantiation, in which case
11599 -- it is sufficient to set Elaborate_Desirable, since in this case there is
11600 -- no possibility of transitive elaboration issues.
11602 procedure Check_A_Call
11609 -- This is the internal recursive routine that is called to check for
11610 -- possible elaboration error. The argument N is a subprogram call or
11611 -- generic instantiation, or 'Access attribute reference to be checked, and
11612 -- E is the entity of the called subprogram, or instantiated generic unit,
11613 -- or subprogram referenced by 'Access.
11614 --
11615 -- In SPARK mode, N can also be a variable reference, since in SPARK this
11616 -- also triggers a requirement for Elaborate_All, and in this case E is the
11617 -- entity being referenced.
11618 --
11619 -- Outer_Scope is the outer level scope for the original reference.
11620 -- Inter_Unit_Only is set if the call is only to be checked in the
11621 -- case where it is to another unit (and skipped if within a unit).
11622 -- Generate_Warnings is set to False to suppress warning messages about
11623 -- missing pragma Elaborate_All's. These messages are not wanted for
11624 -- inner calls in the dynamic model. Note that an instance of the Access
11625 -- attribute applied to a subprogram also generates a call to this
11626 -- procedure (since the referenced subprogram may be called later
11627 -- indirectly). Flag In_Init_Proc should be set whenever the current
11628 -- context is a type init proc.
11629 --
11630 -- Note: this might better be called Check_A_Reference to recognize the
11631 -- variable case for SPARK, but we prefer to retain the historical name
11632 -- since in practice this is mostly about checking calls for the possible
11633 -- occurrence of an access-before-elaboration exception.
11636 -- N is a node for an instantiation (if called with any other node kind,
11637 -- Check_Bad_Instantiation ignores the call). This subprogram checks for
11638 -- the special case of a generic instantiation of a generic spec in the
11639 -- same declarative part as the instantiation where a body is present and
11640 -- has not yet been seen. This is an obvious error, but needs to be checked
11641 -- specially at the time of the instantiation, since it is a case where we
11642 -- cannot insert the body anywhere. If this case is detected, warnings are
11643 -- generated, and a raise of Program_Error is inserted. In addition any
11644 -- subprograms in the generic spec are stubbed, and the Bad_Instantiation
11645 -- flag is set on the instantiation node. The caller in Sem_Ch12 uses this
11646 -- flag as an indication that no attempt should be made to insert an
11647 -- instance body.
11649 procedure Check_Internal_Call
11654 -- N is a function call or procedure statement call node and E is the
11655 -- entity of the called function, which is within the current compilation
11656 -- unit (where subunits count as part of the parent). This call checks if
11657 -- this call, or any call within any accessed body could cause an ABE, and
11658 -- if so, outputs a warning. Orig_Ent differs from E only in the case of
11659 -- renamings, and points to the original name of the entity. This is used
11660 -- for error messages. Outer_Scope is the outer level scope for the
11661 -- original call.
11663 procedure Check_Internal_Call_Continue
11668 -- The processing for Check_Internal_Call is divided up into two phases,
11669 -- and this represents the second phase. The second phase is delayed if
11670 -- Delaying_Elab_Checks is set to True. In this delayed case, the first
11671 -- phase makes an entry in the Delay_Check table, which is processed when
11672 -- Check_Elab_Calls is called. N, E and Orig_Ent are as for the call to
11673 -- Check_Internal_Call. Outer_Scope is the outer level scope for the
11674 -- original call.
11677 -- N is either a function or procedure call or an access attribute that
11678 -- references a subprogram. This call retrieves the relevant entity. If
11679 -- this is a call to a protected subprogram, the entity is a selected
11680 -- component. The callable entity may be absent, in which case Empty is
11681 -- returned. This happens with non-analyzed calls in nested generics.
11682 --
11683 -- If SPARK_Mode is On, then N can also be a reference to an E_Variable
11684 -- entity, in which case, the value returned is simply this entity.
11687 -- N is a generic package instantiation node, and this routine determines
11688 -- if this package spec does in fact have a generic body. If so, then
11689 -- True is returned, otherwise False. Note that this is not at all the
11690 -- same as checking if the unit requires a body, since it deals with
11691 -- the case of optional bodies accurately (i.e. if a body is optional,
11692 -- then it looks to see if a body is actually present). Note: this
11693 -- function can only do a fully correct job if in generating code mode
11694 -- where all bodies have to be present. If we are operating in semantics
11695 -- check only mode, then in some cases of optional bodies, a result of
11696 -- False may incorrectly be given. In practice this simply means that
11697 -- some cases of warnings for incorrect order of elaboration will only
11698 -- be given when generating code, which is not a big problem (and is
11699 -- inevitable, given the optional body semantics of Ada).
11702 -- Given code for an elaboration check (or unconditional raise if the check
11703 -- is not needed), inserts the code in the appropriate place. N is the call
11704 -- or instantiation node for which the check code is required. C is the
11705 -- test whose failure triggers the raise.
11708 -- Returns True if node N is a call to a generic formal subprogram
11711 -- Determine whether entity Id denotes a [Deep_]Finalize procedure
11713 procedure Output_Calls
11716 -- Outputs chain of calls stored in the Elab_Call table. The caller has
11717 -- already generated the main warning message, so the warnings generated
11718 -- are all continuation messages. The argument is the call node at which
11719 -- the messages are to be placed. When Check_Elab_Flag is set, calls are
11720 -- enumerated only when flag Elab_Warning is set for the dynamic case or
11721 -- when flag Elab_Info_Messages is set for the static case.
11724 -- Given two scopes, determine whether they are the same scope from an
11725 -- elaboration point of view, i.e. packages and blocks are ignored.
11728 -- On entry C_Scope is set to some scope. On return, C_Scope is reset
11729 -- to be the enclosing compilation unit of this scope.
11731 procedure Set_Elaboration_Constraint
11735 -- The current unit U may depend semantically on some unit P that is not
11736 -- in the current context. If there is an elaboration call that reaches P,
11737 -- we need to indicate that P requires an Elaborate_All, but this is not
11738 -- effective in U's ali file, if there is no with_clause for P. In this
11739 -- case we add the Elaborate_All on the unit Q that directly or indirectly
11740 -- makes P available. This can happen in two cases:
11741 --
11742 -- a) Q declares a subtype of a type declared in P, and the call is an
11743 -- initialization call for an object of that subtype.
11744 --
11745 -- b) Q declares an object of some tagged type whose root type is
11746 -- declared in P, and the initialization call uses object notation on
11747 -- that object to reach a primitive operation or a classwide operation
11748 -- declared in P.
11749 --
11750 -- If P appears in the context of U, the current processing is correct.
11751 -- Otherwise we must identify these two cases to retrieve Q and place the
11752 -- Elaborate_All_Desirable on it.
11755 -- Given a compilation unit entity, if it is a spec entity, it is returned
11756 -- unchanged. If it is a body entity, then the spec for the corresponding
11757 -- spec is returned
11760 -- Given two scopes E1 and E2, returns True if E1 is equal to E2, or is one
11761 -- of its contained scopes, False otherwise.
11763 function Within_Elaborate_All
11766 -- Return True if we are within the scope of an Elaborate_All for E, or if
11767 -- we are within the scope of an Elaborate_All for some other unit U, and U
11768 -- with's E. This prevents spurious warnings when the called entity is
11769 -- renamed within U, or in case of generic instances.
11771 --------------------------------------
11772 -- Activate_Elaborate_All_Desirable --
11773 --------------------------------------
11785 -- This procedure is called when the elaborate indication must be
11786 -- applied to a unit not in the context of the referencing unit. The
11787 -- unit gets added to the context as an implicit with.
11790 -- UEs is the spec entity of a unit. If the unit to be marked is
11791 -- in the context item list of this unit spec, then the call returns
11792 -- True and Itm is left set to point to the relevant N_With_Clause node.
11795 -- Sets Elaborate_[All_]Desirable as appropriate on Itm
11797 -----------------------------
11798 -- Add_To_Context_And_Mark --
11799 -----------------------------
11806 begin
11810 -- Set elaborate all desirable on copy and then append the copy to
11811 -- the list of body with's and we are done.
11817 -----------------
11818 -- In_Withs_Of --
11819 -----------------
11826 begin
11830 Ent :=
11844 -------------------
11845 -- Set_Elab_Flag --
11846 -------------------
11849 begin
11852 else
11857 -- Start of processing for Activate_Elaborate_All_Desirable
11859 begin
11860 -- Do not set binder indication if expansion is disabled, as when
11861 -- compiling a generic unit.
11867 -- If an instance of a generic package contains a controlled object (so
11868 -- we're calling Initialize at elaboration time), and the instance is in
11869 -- a package body P that says "with P;", then we need to return without
11870 -- adding "pragma Elaborate_All (P);" to P.
11881 -- If we find it, then mark elaborate all desirable and return
11892 -- If we fall through then the with clause is not present in the
11893 -- current unit. One legitimate possibility is that the with clause
11894 -- is present in the spec when we are a body.
11898 then
11903 -- Similarly, we may be in the spec or body of a child unit, where
11904 -- the unit in question is with'ed by some ancestor of the child unit.
11907 declare
11910 begin
11912 loop
11924 -- Here if we do not find with clause on spec or body. We just ignore
11925 -- this case; it means that the elaboration involves some other unit
11926 -- than the unit being compiled, and will be caught elsewhere.
11929 ------------------
11930 -- Check_A_Call --
11931 ------------------
11933 procedure Check_A_Call
11940 is
11942 -- Indicates if we have Access attribute case
11945 -- True if we're calling an instance of a generic subprogram, or a
11946 -- subprogram in an instance of a generic package, and the call is
11947 -- outside that instance.
11949 procedure Elab_Warning
11953 -- Generate a call to Error_Msg_NE with parameters Msg_D or Msg_S (for
11954 -- dynamic or static elaboration model), N and Ent. Msg_D is a real
11955 -- warning (output if Msg_D is non-null and Elab_Warnings is set),
11956 -- Msg_S is an info message (output if Elab_Info_Messages is set).
11959 -- Find top-level scope for called entity (not following renamings
11960 -- or derivations). This is where the Elaborate_All will go if it is
11961 -- needed. We start with the called entity, except in the case of an
11962 -- initialization procedure outside the current package, where the init
11963 -- proc is in the root package, and we start from the entity of the name
11964 -- in the call.
11966 -----------------------------------
11967 -- Call_To_Instance_From_Outside --
11968 -----------------------------------
11973 begin
11974 loop
11987 ------------------
11988 -- Elab_Warning --
11989 ------------------
11991 procedure Elab_Warning
11995 is
11996 begin
11997 -- Dynamic elaboration checks, real warning
12005 -- In the access case emit first warning message as well,
12006 -- otherwise list of calls will appear as errors.
12012 -- Static elaboration checks, info message
12014 else
12021 ------------------
12022 -- Find_W_Scope --
12023 ------------------
12029 begin
12032 then
12034 else
12038 -- Now loop through scopes to get to the enclosing compilation unit
12047 -- Local variables
12050 -- Indicates if we have instantiation case
12058 -- Indicates if we have variable reference case
12061 -- Top-level scope of directly called entity for subprogram. This
12062 -- differs from E_Scope in the case where renamings or derivations
12063 -- are involved, since it does not follow these links. W_Scope is
12064 -- generally in a visible unit, and it is this scope that may require
12065 -- an Elaborate_All. However, there are some cases (initialization
12066 -- calls and calls involving object notation) where W_Scope might not
12067 -- be in the context of the current unit, and there is an intermediate
12068 -- package that is, in which case the Elaborate_All has to be placed
12069 -- on this intermediate package. These special cases are handled in
12070 -- Set_Elaboration_Constraint.
12082 -- Set to true if call is to body acting as spec (no separate spec)
12085 -- Set to suppress dynamic elaboration checks where one of the
12086 -- enclosing scopes has Elaboration_Checks_Suppressed set, or else
12087 -- if a pragma Elaborate[_All] applies to that scope, in which case
12088 -- warnings on the scope are also suppressed. For the internal case,
12089 -- we ignore this flag.
12092 -- Top-level scope of entity for called subprogram. This value includes
12093 -- following renamings and derivations, so this scope can be in a
12094 -- non-visible unit. This is the scope that is to be investigated to
12095 -- see whether an elaboration check is required.
12098 -- Flag set when the subprogram being invoked is the procedure generated
12099 -- for pragma Default_Initial_Condition.
12102 -- Flag set when an entity is called or a variable is read during SPARK
12103 -- dynamic elaboration.
12105 -- Start of processing for Check_A_Call
12107 begin
12108 -- If the call is known to be within a local Suppress Elaboration
12109 -- pragma, nothing to check. This can happen in task bodies. But
12110 -- we ignore this for a call to a generic formal.
12115 then
12118 -- If this is a rewrite of a Valid_Scalars attribute, then nothing to
12119 -- check, we don't mind in this case if the call occurs before the body
12120 -- since this is all generated code.
12124 then
12127 -- Intrinsics such as instances of Unchecked_Deallocation do not have
12128 -- any body, so elaboration checking is not needed, and would be wrong.
12133 -- Do not consider references to internal variables for SPARK semantics
12139 -- Proceed with check
12143 -- For a variable reference, just set Body_Acts_As_Spec to False
12148 -- Additional checks for all other cases
12150 else
12151 -- Go to parent for derived subprogram, or to original subprogram in
12152 -- the case of a renaming (Alias covers both these cases).
12154 loop
12158 then
12162 -- Nothing to do for imported entities
12178 N_Subprogram_Body_Stub)
12179 or else Inst_Case
12180 then
12183 -- If we have none of an instantiation, subprogram body or subprogram
12184 -- declaration, or in the SPARK case, a variable reference, then
12185 -- it is not a case that we want to check. (One case is a call to a
12186 -- generic formal subprogram, where we do not want the check in the
12187 -- template).
12189 else
12195 loop
12198 then
12202 -- Exit when we get to compilation unit, not counting subunits
12210 -- Move up a scope looking for compilation unit
12215 -- No checks needed for pure or preelaborated compilation units
12221 -- If the generic entity is within a deeper instance than we are, then
12222 -- either the instantiation to which we refer itself caused an ABE, in
12223 -- which case that will be handled separately, or else we know that the
12224 -- body we need appears as needed at the point of the instantiation.
12225 -- However, this assumption is only valid if we are in static mode.
12227 if not Dynamic_Elaboration_Checks
12228 and then
12230 then
12234 -- Do not give a warning for a package with no body
12240 -- Case of entity is in same unit as call or instantiation. In the
12241 -- instantiation case, W_Scope may be different from E_Scope; we want
12242 -- the unit in which the instantiation occurs, since we're analyzing
12243 -- based on the expansion.
12253 -- Case of entity is not in current unit (i.e. with'ed unit case)
12255 -- We are only interested in such calls if the outer call was from
12256 -- elaboration code, or if we are in Dynamic_Elaboration_Checks mode.
12262 -- Nothing to do if some scope said that no checks were required
12268 -- Nothing to do for a generic instance, because a call to an instance
12269 -- cannot fail the elaboration check, because the body of the instance
12270 -- is always elaborated immediately after the spec.
12276 -- Nothing to do if subprogram with no separate spec. However, a call
12277 -- to Deep_Initialize may result in a call to a user-defined Initialize
12278 -- procedure, which imposes a body dependency. This happens only if the
12279 -- type is controlled and the Initialize procedure is not inherited.
12283 declare
12287 begin
12290 else
12295 else
12301 else
12306 -- Check cases of internal units
12310 -- Do not give a warning if the with'ed unit is internal and this is
12311 -- the generic instantiation case (this saves a lot of hassle dealing
12312 -- with the Text_IO special child units)
12320 else
12324 -- Do not give a warning if the with'ed unit is internal and the caller
12325 -- is not internal (since the binder always elaborates internal units
12326 -- first).
12332 -- For now, if debug flag -gnatdE is not set, do no checking for one
12333 -- internal unit withing another. This fixes the problem with the sgi
12334 -- build and storage errors. To be resolved later ???
12337 and not Debug_Flag_EE
12338 then
12346 -- If the call is in an instance, and the called entity is not
12347 -- defined in the same instance, then the elaboration issue focuses
12348 -- around the unit containing the template, it is this unit that
12349 -- requires an Elaborate_All.
12351 -- However, if we are doing dynamic elaboration, we need to chase the
12352 -- call in the usual manner.
12354 -- We also need to chase the call in the usual manner if it is a call
12355 -- to a generic formal parameter, since that case was not handled as
12356 -- part of the processing of the template.
12363 else
12369 else
12375 and then not Dynamic_Elaboration_Checks
12377 then
12380 -- If we don't get a spec entity, just ignore call. Not quite
12381 -- clear why this check is necessary. ???
12387 -- Otherwise step to enclosing compilation unit
12393 -- For the case where N is not an instance, and is not a call within
12394 -- instance to other than a generic formal, we recompute E_Scope
12395 -- for the error message, since we do NOT want to go to the unit
12396 -- that has the ultimate declaration in the case of renaming and
12397 -- derivation and we also want to go to the generic unit in the
12398 -- case of an instance, and no further.
12400 else
12401 -- Loop to carefully follow renamings and derivations one step
12402 -- outside the current unit, but not further.
12406 then
12408 else
12412 loop
12417 -- If E_Scope is the same as C_Scope, it means that there
12418 -- definitely was a local renaming or derivation, and we
12419 -- are not yet out of the current unit.
12425 -- If no alias, there could be a previous error, but not if we've
12426 -- already reached the outermost level (Standard).
12438 -- Determine whether the Default_Initial_Condition procedure of some
12439 -- type is being invoked.
12443 -- Checks related to Default_Initial_Condition fall under the SPARK
12444 -- umbrella because this is a SPARK-specific annotation.
12446 SPARK_Elab_Errors :=
12449 -- Now check if an Elaborate_All (or dynamic check) is needed
12452 and then Generate_Warnings
12457 then
12458 -- Instantiation case
12462 Error_Msg_NE
12464 else
12465 Elab_Warning
12470 -- Indirect call case, info message only in static elaboration
12471 -- case, because the attribute reference itself cannot raise an
12472 -- exception. Note that SPARK does not permit indirect calls.
12477 -- Variable reference in SPARK mode
12481 Error_Msg_NE
12485 -- Subprogram call case
12487 else
12491 then
12492 Elab_Warning
12495 Ent);
12499 -- Emit a specialized error message when the elaboration of an
12500 -- object of a private type evaluates the expression of pragma
12501 -- Default_Initial_Condition. This prevents the internal name
12502 -- of the procedure from appearing in the error message.
12505 Error_Msg_N
12508 else
12509 Error_Msg_NE
12513 else
12514 Elab_Warning
12517 Ent);
12523 -- Case of Elaborate_All not present and required, for SPARK this
12524 -- is an error, so give an error message.
12527 Error_Msg_NE -- CODEFIX
12530 -- Otherwise we generate an implicit pragma. For a subprogram
12531 -- instantiation, Elaborate is good enough, since no transitive
12532 -- call is possible at elaboration time in this case.
12535 Elab_Warning
12538 W_Scope);
12540 -- For all other cases, we need an implicit Elaborate_All
12542 else
12543 Elab_Warning
12546 W_Scope);
12551 -- Take into account the flags related to elaboration warning
12552 -- messages when enumerating the various calls involved. This
12553 -- ensures the proper pairing of the main warning and the
12554 -- clarification messages generated by Output_Calls.
12558 -- Set flag to prevent further warnings for same unit unless in
12559 -- All_Errors_Mode.
12566 -- Check for runtime elaboration check required
12572 and then not Cunit_SC
12573 then
12574 -- Runtime elaboration check required. Generate check of the
12575 -- elaboration Boolean for the unit containing the entity.
12577 -- Note that for this case, we do check the real unit (the one
12578 -- from following renamings, since that is the issue).
12580 -- Could this possibly miss a useless but required PE???
12585 Prefix =>
12588 -- Prevent duplicate elaboration checks on the same call, which
12589 -- can happen if the body enclosing the call appears itself in a
12590 -- call whose elaboration check is delayed.
12597 -- Case of static elaboration model
12599 else
12600 -- Do not do anything if elaboration checks suppressed. Note that
12601 -- we check Ent here, not E, since we want the real entity for the
12602 -- body to see if checks are suppressed for it, not the dummy
12603 -- entry for renamings or derivations.
12608 then
12611 -- Do not generate an Elaborate_All for finalization routines
12612 -- that perform partial clean up as part of initialization.
12617 -- Here we need to generate an implicit elaborate all
12619 else
12620 -- Generate Elaborate_All warning unless suppressed
12626 then
12628 Error_Msg_NE
12633 -- Set indication for binder to generate Elaborate_All
12640 -----------------------------
12641 -- Check_Bad_Instantiation --
12642 -----------------------------
12647 begin
12648 -- Nothing to do if we do not have an instantiation (happens in some
12649 -- error cases, and also in the formal package declaration case)
12654 -- Nothing to do if serious errors detected (avoid cascaded errors)
12659 -- Nothing to do if not in full analysis mode
12664 -- Nothing to do if inside a generic template
12669 -- Nothing to do if a library level instantiation
12674 -- Nothing to do if we are compiling a proper body for semantic
12675 -- purposes only. The generic body may be in another proper body.
12677 elsif
12679 then
12685 -- The case we are interested in is when the generic spec is in the
12686 -- current declarative part
12690 then
12694 -- If the generic entity is within a deeper instance than we are, then
12695 -- either the instantiation to which we refer itself caused an ABE, in
12696 -- which case that will be handled separately. Otherwise, we know that
12697 -- the body we need appears as needed at the point of the instantiation.
12698 -- If they are both at the same level but not within the same instance
12699 -- then the body of the generic will be in the earlier instance.
12701 declare
12705 begin
12712 then
12717 -- Now we can proceed, if the entity being called has a completion,
12718 -- then we are definitely OK, since we have already seen the body.
12724 -- If there is no body, then nothing to do
12730 -- Here we definitely have a bad instantiation
12740 ---------------------
12741 -- Check_Elab_Call --
12742 ---------------------
12744 procedure Check_Elab_Call
12748 is
12752 begin
12755 -- If the reference is not in the main unit, there is nothing to check.
12756 -- Elaboration call from units in the context of the main unit will lead
12757 -- to semantic dependencies when those units are compiled.
12763 -- For an entry call, check relevant restriction
12766 and then not In_Subprogram_Or_Concurrent_Unit
12767 then
12770 -- Nothing to do if this is not an expected type of reference (happens
12771 -- in some error conditions, and in some cases where rewriting occurs).
12779 then
12782 -- Nothing to do if this is a call already rewritten for elab checking.
12783 -- Such calls appear as the targets of If_Expressions.
12785 -- This check MUST be wrong, it catches far too much
12790 -- Nothing to do if inside a generic template
12792 elsif Inside_A_Generic
12794 then
12797 -- Nothing to do if call is being preanalyzed, as when within a
12798 -- pre/postcondition, a predicate, or an invariant.
12804 -- Nothing to do if this is a call to a postcondition, which is always
12805 -- within a subprogram body, even though the current scope may be the
12806 -- enclosing scope of the subprogram.
12811 then
12815 -- Here we have a reference at elaboration time that must be checked
12823 else
12832 else
12838 Write_Eol;
12841 -- Climb up the tree to make sure we are not inside default expression
12842 -- of a parameter specification or a record component, since in both
12843 -- these cases, we will be doing the actual reference later, not now,
12844 -- and it is at the time of the actual reference (statically speaking)
12845 -- that we must do our static check, not at the time of its initial
12846 -- analysis).
12848 -- However, we have to check references within component definitions
12849 -- (e.g. a function call that determines an array component bound),
12850 -- so we terminate the loop in that case.
12855 N_Component_Declaration)
12856 then
12859 -- The reference occurs within the constraint of a component,
12860 -- so it must be checked.
12865 else
12870 -- Stuff that happens only at the outer level
12875 -- Nothing to do if current scope is Standard (this is a bit odd, but
12876 -- it happens in the case of generic instantiations).
12884 -- First case, we are in elaboration code
12890 -- Complain if ref that comes from source in preelaborated unit
12891 -- and we are not inside a subprogram (i.e. we are in elab code).
12894 and then In_Preelaborated_Unit
12895 and then not In_Inlined_Body
12897 then
12898 -- This is a warning in GNAT mode allowing such calls to be
12899 -- used in the predefined library with appropriate care.
12902 Error_Msg_N
12907 -- Second case, we are inside a subprogram or concurrent unit, which
12908 -- means we are not in elaboration code.
12910 else
12911 -- In this case, the issue is whether we are inside the
12912 -- declarative part of the unit in which we live, or inside its
12913 -- statements. In the latter case, there is no issue of ABE calls
12914 -- at this level (a call from outside to the unit in which we live
12915 -- might cause an ABE, but that will be detected when we analyze
12916 -- that outer level call, as it recurses into the called unit).
12918 -- Climb up the tree, doing this test, and also testing for being
12919 -- inside a default expression, which, as discussed above, is not
12920 -- checked at this stage.
12922 declare
12926 begin
12928 loop
12929 -- If we find a parentless subtree, it seems safe to assume
12930 -- that we are not in a declarative part and that no
12931 -- checking is required.
12940 else
12947 -- Filter out case of default expressions, where we do not
12948 -- do the check at this stage.
12951 N_Component_Declaration)
12952 then
12956 -- A protected body has no elaboration code and contains
12957 -- only other bodies.
12963 N_Task_Body,
12964 N_Block_Statement,
12965 N_Entry_Body)
12966 then
12970 -- We are not in elaboration code, but we are doing
12971 -- dynamic elaboration checks, in this case, we still
12972 -- need to do the reference, since the subprogram we are
12973 -- in could be called from another unit, also in dynamic
12974 -- elaboration check mode, at elaboration time.
12978 -- We provide a debug flag to disable this check. That
12979 -- way we have an easy work around for regressions
12980 -- that are caused by this new check. This debug flag
12981 -- can be removed later.
12987 -- Do the check in this case
12993 -- The check is deferred until Check_Task_Activation
12994 -- but we need to capture local suppress pragmas
12995 -- that may inhibit checks on this call.
13005 then
13013 -- Static model, call is not in elaboration code, we
13014 -- never need to worry, because in the static model the
13015 -- top-level caller always takes care of things.
13017 else
13032 -- Determine whether a prior call to the same subprogram was already
13033 -- examined within the same context. If this is the case, then there is
13034 -- no need to proceed with the various warnings and checks because the
13035 -- work was already done for the previous call.
13037 declare
13041 begin
13049 -- See if we need to analyze this reference. We analyze it if either of
13050 -- the following conditions is met:
13052 -- It is an inner level call (since in this case it was triggered
13053 -- by an outer level call from elaboration code), but only if the
13054 -- call is within the scope of the original outer level call.
13056 -- It is an outer level reference from elaboration code, or a call to
13057 -- an entity is in the same elaboration scope.
13059 -- And in these cases, we will check both inter-unit calls and
13060 -- intra-unit (within a single unit) calls.
13064 -- If not outer level reference, then we follow it if it is within the
13065 -- original scope of the outer reference.
13069 then
13070 Set_C_Scope;
13071 Check_A_Call
13078 -- Nothing to do if elaboration checks suppressed for this scope.
13079 -- However, an interesting exception, the fact that elaboration checks
13080 -- are suppressed within an instance (because we can trace the body when
13081 -- we process the template) does not extend to calls to generic formal
13082 -- subprograms.
13086 then
13090 Set_C_Scope;
13094 Set_C_Scope;
13097 -- If none of those cases holds, but Dynamic_Elaboration_Checks mode
13098 -- is set, then we will do the check, but only in the inter-unit case
13099 -- (this is to accommodate unguarded elaboration calls from other units
13100 -- in which this same mode is set). We don't want warnings in this case,
13101 -- it would generate warnings having nothing to do with elaboration.
13104 Set_C_Scope;
13105 Check_A_Call
13107 Ent,
13108 Standard_Standard,
13112 -- Otherwise nothing to do
13114 else
13118 -- A call to an Init_Proc in elaboration code may bring additional
13119 -- dependencies, if some of the record components thereof have
13120 -- initializations that are function calls that come from source. We
13121 -- treat the current node as a call to each of these functions, to check
13122 -- their elaboration impact.
13129 -- Find subprogram calls within body of Init_Proc for Traverse
13130 -- instantiation below.
13133 -- Traversal procedure to find all calls with body of Init_Proc
13135 ---------------------
13136 -- Check_Init_Call --
13137 ---------------------
13142 begin
13145 then
13149 Check_A_Call
13155 else
13160 -- Start of processing for Process_Init_Proc
13162 begin
13170 -----------------------
13171 -- Check_Elab_Assign --
13172 -----------------------
13181 begin
13184 -- For record or array component, check prefix. If it is an access type,
13185 -- then there is nothing to do (we do not know what is being assigned),
13186 -- but otherwise this is an assignment to the prefix.
13189 N_Selected_Component,
13190 N_Slice)
13191 then
13199 -- For type conversion, check expression
13206 -- Nothing to do if this is not an entity reference otherwise get entity
13210 else
13214 -- What we are looking for is a reference in the body of a package that
13215 -- modifies a variable declared in the visible part of the package spec.
13223 then
13225 loop
13230 then
13232 else
13237 -- Here Scop points to the containing library package
13242 -- All OK if the package has an Elaborate_Body pragma
13248 -- OK if entity being modified is not in containing package spec
13254 -- All OK if entity appears in generic package or generic instance.
13255 -- We just get too messed up trying to give proper warnings in the
13256 -- presence of generics. Better no message than a junk one.
13264 then
13271 -- All OK if in task, don't issue warnings there
13277 -- OK if no package body
13283 -- OK if reference is not in package body
13289 -- OK if package body has no handled statement sequence
13291 declare
13294 begin
13300 -- We definitely have a case of a modification of an entity in
13301 -- the package spec from the elaboration code of the package body.
13302 -- We may not give the warning (because there are some additional
13303 -- checks to avoid too many false positives), but it would be a good
13304 -- idea for the binder to try to keep the body elaboration close to
13305 -- the spec elaboration.
13309 -- All OK in gnat mode (we know what we are doing)
13315 -- All OK if all warnings suppressed
13321 -- All OK if elaboration checks suppressed for entity
13325 then
13329 -- OK if the entity is initialized. Note that the No_Initialization
13330 -- flag usually means that the initialization has been rewritten into
13331 -- assignments, but that still counts for us.
13333 declare
13335 begin
13339 then
13344 -- Here is where we give the warning
13346 -- All OK if warnings suppressed on the entity
13351 Error_Msg_NE
13354 Error_Msg_NE
13365 ----------------------
13366 -- Check_Elab_Calls --
13367 ----------------------
13369 -- WARNING: This routine manages SPARK regions
13375 begin
13378 -- If expansion is disabled, do not generate any checks, unless we
13379 -- are in GNATprove mode, so that errors are issued in GNATprove for
13380 -- violations of static elaboration rules in SPARK code. Also skip
13381 -- checks if any subunits are missing because in either case we lack the
13382 -- full information that we need, and no object file will be created in
13383 -- any case.
13387 or else Subunits_Missing
13388 then
13392 -- Skip delayed calls if we had any errors
13406 -- Set appropriate value of SPARK_Mode
13412 Check_Internal_Call_Continue
13419 Pop_Scope;
13422 -- Set Delaying_Elab_Checks back on for next main compilation
13424 Expander_Mode_Restore;
13429 ------------------------------
13430 -- Check_Elab_Instantiation --
13431 ------------------------------
13433 procedure Check_Elab_Instantiation
13436 is
13439 begin
13442 -- Check for and deal with bad instantiation case. There is some
13443 -- duplicated code here, but we will worry about this later ???
13451 -- Nothing to do if we do not have an instantiation (happens in some
13452 -- error cases, and also in the formal package declaration case)
13458 -- Nothing to do if inside a generic template
13464 -- Nothing to do if the instantiation is not in the main unit
13473 -- See if we need to analyze this instantiation. We analyze it if
13474 -- either of the following conditions is met:
13476 -- It is an inner level instantiation (since in this case it was
13477 -- triggered by an outer level call from elaboration code), but
13478 -- only if the instantiation is within the scope of the original
13479 -- outer level call.
13481 -- It is an outer level instantiation from elaboration code, or the
13482 -- instantiated entity is in the same elaboration scope.
13484 -- And in these cases, we will check both the inter-unit case and
13485 -- the intra-unit (within a single unit) case.
13490 Set_C_Scope;
13494 Set_C_Scope;
13498 Set_C_Scope;
13501 -- If none of those cases holds, but Dynamic_Elaboration_Checks mode is
13502 -- set, then we will do the check, but only in the inter-unit case (this
13503 -- is to accommodate unguarded elaboration calls from other units in
13504 -- which this same mode is set). We inhibit warnings in this case, since
13505 -- this instantiation is not occurring in elaboration code.
13508 Set_C_Scope;
13509 Check_A_Call
13511 Ent,
13512 Standard_Standard,
13516 else
13521 -------------------------
13522 -- Check_Internal_Call --
13523 -------------------------
13525 procedure Check_Internal_Call
13530 is
13532 -- Determine whether call Call occurs within pragma Initial_Condition or
13533 -- pragma Check with check_kind set to Initial_Condition.
13535 ------------------------------
13536 -- Within_Initial_Condition --
13537 ------------------------------
13544 begin
13545 -- Traverse the parent chain looking for an enclosing pragma
13552 -- Pragma Initial_Condition appears in its alternative from as
13553 -- Check (Initial_Condition, ...).
13558 -- Pragma Check should have at least two arguments
13562 return
13565 -- Direct match
13570 -- Since pragmas are never nested within other pragmas, stop
13571 -- the traversal.
13573 else
13577 -- Prevent the search from going too far
13585 -- If assertions are not enabled, the check pragma is rewritten
13586 -- as an if_statement in sem_prag, to generate various warnings
13587 -- on boolean expressions. Retrieve the original pragma.
13597 -- Local variables
13601 -- Start of processing for Check_Internal_Call
13603 begin
13604 -- For P'Access, we want to warn if the -gnatw.f switch is set, and the
13605 -- node comes from source.
13610 then
13613 -- If not function or procedure call, instantiation, or 'Access, then
13614 -- ignore call (this happens in some error cases and rewriting cases).
13617 N_Function_Call,
13618 N_Procedure_Call_Statement)
13619 and then not Inst_Case
13620 then
13623 -- Nothing to do if this is a call or instantiation that has already
13624 -- been found to be a sure ABE.
13628 then
13631 -- Nothing to do if errors already detected (avoid cascaded errors)
13636 -- Nothing to do if not in full analysis mode
13641 -- Nothing to do if analyzing in special spec-expression mode, since the
13642 -- call is not actually being made at this time.
13647 -- Nothing to do for call to intrinsic subprogram
13652 -- Nothing to do if call is within a generic unit
13657 -- Nothing to do when the call appears within pragma Initial_Condition.
13658 -- The pragma is part of the elaboration statements of a package body
13659 -- and may only call external subprograms or subprograms whose body is
13660 -- already available.
13666 -- Delay this call if we are still delaying calls
13669 Delay_Check.Append
13680 -- Otherwise, call phase 2 continuation right now
13682 else
13687 ----------------------------------
13688 -- Check_Internal_Call_Continue --
13689 ----------------------------------
13691 procedure Check_Internal_Call_Continue
13696 is
13698 -- Function applied to each node as we traverse the body. Checks for
13699 -- call or entity reference that needs checking, and if so checks it.
13700 -- Always returns OK, so entire tree is traversed, except that as
13701 -- described below subprogram bodies are skipped for now.
13704 -- Traverse procedure using above Find_Elab_Reference function
13706 -------------------------
13707 -- Find_Elab_Reference --
13708 -------------------------
13713 begin
13714 -- If user has specified that there are no entry calls in elaboration
13715 -- code, do not trace past an accept statement, because the rendez-
13716 -- vous will happen after elaboration.
13719 N_Selective_Accept)
13721 then
13724 -- If we have a function call, check it
13730 -- If we have a procedure call, check the call, and also check
13731 -- arguments that are assignments (OUT or IN OUT mode formals).
13747 -- If we have an access attribute for a subprogram, check it.
13748 -- Suppress this behavior under debug flag.
13750 elsif not Debug_Flag_Dot_UU
13753 Name_Unrestricted_Access)
13756 then
13760 -- In SPARK mode, if we have an entity reference to a variable, then
13761 -- check it. For now we consider any reference.
13767 then
13771 -- If we have a generic instantiation, check it
13777 -- Skip subprogram bodies that come from source (wait for call to
13778 -- analyze these). The reason for the come from source test is to
13779 -- avoid catching task bodies.
13781 -- For task bodies, we should really avoid these too, waiting for the
13782 -- task activation, but that's too much trouble to catch for now, so
13783 -- we go in unconditionally. This is not so terrible, it means the
13784 -- error backtrace is not quite complete, and we are too eager to
13785 -- scan bodies of tasks that are unused, but this is hardly very
13786 -- significant.
13790 then
13795 then
13799 else
13810 -- Start of processing for Check_Internal_Call_Continue
13812 begin
13813 -- Save outer level call if at outer level
13819 -- If the call is to a function that renames a literal, no check needed
13825 -- Register the subprogram as examined within this particular context.
13826 -- This ensures that calls to the same subprogram but in different
13827 -- contexts receive warnings and checks of their own since the calls
13828 -- may be reached through different flow paths.
13839 else
13844 -- If the body appears after the outer level call or instantiation then
13845 -- we have an error case handled below.
13848 and then not In_Task_Activation
13849 then
13852 -- If we have the instantiation case we are done, since we now know that
13853 -- the body of the generic appeared earlier.
13858 -- Otherwise we have a call, so we trace through the called body to see
13859 -- if it has any problems.
13861 else
13873 Write_Eol;
13876 -- Now traverse declarations and statements of subprogram body. Note
13877 -- that we cannot simply Traverse (Sbody), since traverse does not
13878 -- normally visit subprogram bodies.
13880 declare
13882 begin
13896 -- Here is the case of calling a subprogram where the body has not yet
13897 -- been encountered. A warning message is needed, except if this is the
13898 -- case of appearing within an aspect specification that results in
13899 -- a check call, we do not really have such a situation, so no warning
13900 -- is needed (e.g. the case of a precondition, where the call appears
13901 -- textually before the body, but in actual fact is moved to the
13902 -- appropriate subprogram body and so does not need a check).
13904 declare
13908 begin
13910 loop
13911 -- Keep looking at parents if we are still in the subexpression
13916 -- Here P is the parent of the expression, check for special case
13918 else
13921 -- Definitely not the special case if orig node is not a pragma
13925 -- Check we have an If statement or a null statement (happens
13926 -- when the If has been expanded to be True).
13930 -- Our special case will be indicated either by the pragma
13931 -- coming from an aspect ...
13936 -- Or, in the case of an initial condition, specifically by a
13937 -- Check pragma specifying an Initial_Condition check.
13940 and then
13941 Chars
13943 Name_Initial_Condition
13944 then
13947 -- For anything else, we have an error
13949 else
13956 -- Not that special case, warning and dynamic check is required
13958 -- If we have nothing in the call stack, then this is at the outer
13959 -- level, and the ABE is bound to occur, unless it's a 'Access, or
13960 -- it's a renaming.
13965 declare
13967 -- This flag is set to True if an elaboration check should be
13968 -- inserted.
13970 begin
13975 Error_Msg_NE
13979 Error_Msg_NE
13985 N_Subprogram_Renaming_Declaration
13986 then
13987 Error_Msg_NE
14000 -- Call is not at outer level
14002 else
14003 -- Do not generate elaboration checks in GNATprove mode because the
14004 -- elaboration counter and the check are both forms of expansion.
14009 -- Generate an elaboration check
14014 -- Create a declaration of the elaboration entity, and insert it
14015 -- prior to the subprogram or the generic unit, within the same
14016 -- scope. Since the subprogram may be overloaded, create a unique
14017 -- entity.
14020 declare
14026 begin
14033 Object_Definition =>
14035 Expression =>
14038 -- Set elaboration flag at the point of the body
14042 -- Kill current value indication. This is necessary because
14043 -- the tests of this flag are inserted out of sequence and
14044 -- must not pick up bogus indications of the wrong constant
14045 -- value. Also, this is never a true constant, since one way
14046 -- or another, it gets reset.
14051 Pop_Scope;
14055 -- Generate:
14056 -- if Enn = 0 then
14057 -- raise Program_Error with "access before elaboration";
14058 -- end if;
14066 -- Generate the warning
14071 -- Suppress this warning if we have a function call that occurred
14072 -- within an assertion expression, since we can get false warnings
14073 -- in this case, due to the out of order handling in this case.
14075 and then
14078 then
14082 Error_Msg_NE
14085 else
14086 -- A rather specific check. For Finalize/Adjust/Initialize, if
14087 -- the type has Warnings_Off set, suppress the warning.
14090 Name_Finalize,
14091 Name_Initialize)
14093 then
14094 declare
14096 begin
14101 then
14108 -- Go ahead and give warning if not this special case
14110 Error_Msg_NE
14116 -- There is no need to query the elaboration warning message flags
14117 -- because the main message is an error, not a warning, therefore
14118 -- all the clarification messages produces by Output_Calls must be
14119 -- emitted unconditionally.
14128 ---------------------------
14129 -- Check_Task_Activation --
14130 ---------------------------
14145 -- Add to Task_Procs the task body procedure(s) of task types in Typ.
14146 -- For record types, this procedure recurses over component types.
14149 -- Collect the types of the tasks that are to be activated in the given
14150 -- list of declarations, in order to perform elaboration checks on the
14151 -- corresponding task procedures that are called implicitly here.
14154 -- find enclosing compilation unit of Entity, ignoring subunits, or
14155 -- else enclosing subprogram. If E is not a package, there is no need
14156 -- for inter-unit elaboration checks.
14158 -------------------
14159 -- Add_Task_Proc --
14160 -------------------
14166 begin
14172 then
14177 then
14185 -- If the task type is another unit, we will perform the usual
14186 -- elaboration check on its enclosing unit. If the type is in the
14187 -- same unit, we can trace the task body as for an internal call,
14188 -- but we only need to examine other external calls, because at
14189 -- the point the task is activated, internal subprogram bodies
14190 -- will have been elaborated already. We keep separate lists for
14191 -- each kind of task.
14193 -- Skip this test if errors have occurred, since in this case
14194 -- we can get false indications.
14204 and then
14207 then
14209 Error_Msg_N
14211 Decl);
14214 elsif Present
14216 then
14220 else
14221 -- No need for multiple entries of the same type
14237 -------------------
14238 -- Collect_Tasks --
14239 -------------------
14242 begin
14248 then
14257 ----------------
14258 -- Outer_Unit --
14259 ----------------
14264 begin
14280 -- Start of processing for Check_Task_Activation
14282 begin
14287 -- Find all tasks declared in the current unit
14300 else
14304 -- We only perform detailed checks in all tasks that are library level
14305 -- entities. If the master is a subprogram or task, activation will
14306 -- depend on the activation of the master itself.
14308 -- Should dynamic checks be added in the more general case???
14314 -- For task types defined in other units, we want the unit containing
14315 -- the task body to be elaborated before the current one.
14327 then
14332 and then not Cunit_SC
14333 and then not Restriction_Active
14335 then
14336 -- Runtime elaboration check required. Generate check of the
14337 -- elaboration counter for the unit containing the entity.
14341 Prefix =>
14346 else
14347 -- Force the binder to elaborate other unit first
14349 if Elab_Info_Messages
14354 then
14356 Error_Msg_NE
14368 -- For tasks declared in the current unit, trace other calls within the
14369 -- task procedure bodies, which are available.
14385 ------------------------
14386 -- Get_Referenced_Ent --
14387 ------------------------
14392 begin
14396 then
14402 else
14412 else
14417 ----------------------
14418 -- Has_Generic_Body --
14419 ----------------------
14427 -- Determine if the list of nodes headed by N and linked by Next
14428 -- contains a package body for the package spec entity E, and if so
14429 -- return the package body. If not, then returns Empty.
14432 -- This procedure is called load the unit whose name is given by Nam.
14433 -- This unit is being loaded to see whether it contains an optional
14434 -- generic body. The returned value is the loaded unit, which is always
14435 -- a package body (only package bodies can contain other entities in the
14436 -- sense in which Has_Generic_Body is interested). We only attempt to
14437 -- load bodies if we are generating code. If we are in semantics check
14438 -- only mode, then it would be wrong to load bodies that are not
14439 -- required from a semantic point of view, so in this case we return
14440 -- Empty. The result is that the caller may incorrectly decide that a
14441 -- generic spec does not have a body when in fact it does, but the only
14442 -- harm in this is that some warnings on elaboration problems may be
14443 -- lost in semantic checks only mode, which is not big loss. We also
14444 -- return Empty if we go for a body and it is not there.
14447 -- PE is the entity for a package spec. This function locates the
14448 -- corresponding package body, returning Empty if none is found. The
14449 -- package body returned is fully parsed but may not yet be analyzed,
14450 -- so only syntactic fields should be referenced.
14452 ------------------
14453 -- Find_Body_In --
14454 ------------------
14459 begin
14463 -- If we found the package body we are looking for, return it
14467 then
14470 -- If we found the stub for the body, go after the subunit,
14471 -- loading it if necessary.
14475 then
14479 else
14483 -- If neither package body nor stub, keep looking on chain
14485 else
14493 -----------------------
14494 -- Load_Package_Body --
14495 -----------------------
14500 begin
14503 else
14504 U :=
14505 Load_Unit
14513 else
14519 -------------------------------
14520 -- Locate_Corresponding_Body --
14521 -------------------------------
14529 begin
14532 -- If package is a library unit that requires a body, we have no
14533 -- choice but to go after that body because it might contain an
14534 -- optional body for the original generic package.
14538 -- Load the body. Note that we are a little careful here to use
14539 -- Spec to get the unit number, rather than PE or Decl, since
14540 -- in the case where the package is itself a library level
14541 -- instantiation, Spec will properly reference the generic
14542 -- template, which is what we really want.
14544 return
14545 Load_Package_Body
14548 -- But if the package is a library unit that does NOT require
14549 -- a body, then no body is permitted, so we are sure that there
14550 -- is no body for the original generic package.
14552 else
14556 -- Otherwise look and see if we are embedded in a further package
14560 -- If so, get the body of the enclosing package, and look in
14561 -- its package body for the package body we are looking for.
14567 else
14571 -- If we are not embedded in a further package, then the body
14572 -- must be in the same declarative part as we are.
14574 else
14579 -- Start of processing for Has_Generic_Body
14581 begin
14588 -- Compilation units cannot have optional bodies
14593 -- Otherwise look at what scope we are in
14595 else
14598 -- Case of entity is in other than a package spec, in this case
14599 -- the body, if present, must be in the same declarative part.
14602 declare
14605 begin
14606 -- Declaration node may get us a spec, so if so, go to
14607 -- the parent declaration.
14617 -- If the entity is in a package spec, then we have to locate
14618 -- the corresponding package body, and look there.
14620 else
14621 declare
14624 begin
14627 else
14628 return
14629 Present
14637 -----------------------
14638 -- Insert_Elab_Check --
14639 -----------------------
14646 -- The check (N_Raise_Program_Error) node to be inserted
14648 begin
14649 -- If expansion is disabled, do not generate any checks. Also
14650 -- skip checks if any subunits are missing because in either
14651 -- case we lack the full information that we need, and no object
14652 -- file will be created in any case.
14658 -- If we have a generic instantiation, where Instance_Spec is set,
14659 -- then this field points to a generic instance spec that has
14660 -- been inserted before the instantiation node itself, so that
14661 -- is where we want to insert a check.
14665 then
14667 else
14671 -- Build check node, possibly with condition
14673 Chk :=
14680 -- If we are inserting at the top level, insert in Aux_Decls
14683 declare
14686 begin
14689 else
14696 -- Otherwise just insert as an action on the node in question
14698 else
14703 -------------------------------
14704 -- Is_Call_Of_Generic_Formal --
14705 -------------------------------
14708 begin
14711 -- Always return False if debug flag -gnatd.G is set
14713 and then not Debug_Flag_Dot_GG
14715 -- For now, we detect this by looking for the strange identifier
14716 -- node, whose Chars reflect the name of the generic formal, but
14717 -- the Chars of the Entity references the generic actual.
14723 -------------------------------
14724 -- Is_Finalization_Procedure --
14725 -------------------------------
14728 begin
14729 -- Check whether Id is a procedure with at least one parameter
14732 declare
14737 begin
14738 -- If the type of the first formal does not require finalization
14739 -- actions, then this is definitely not [Deep_]Finalize.
14745 -- At this point we have the following scenario:
14747 -- procedure Name (Param1 : [in] [out] Ctrl[; Param2 : ...]);
14749 -- Recover the two possible versions of [Deep_]Finalize using the
14750 -- type of the first parameter and compare with the input.
14766 ------------------
14767 -- Output_Calls --
14768 ------------------
14770 procedure Output_Calls
14773 is
14775 -- Determine whether to emit an error message based on the combination
14776 -- of flags Check_Elab_Flag and Flag.
14779 -- An internal function, used to determine if a name, stored in the
14780 -- Name_Buffer, is either a non-internal name, or is an internal name
14781 -- that is printable by the error message circuits (i.e. it has a single
14782 -- upper case letter at the end).
14784 ----------
14785 -- Emit --
14786 ----------
14789 begin
14792 else
14797 -----------------------------
14798 -- Is_Printable_Error_Name --
14799 -----------------------------
14802 begin
14809 else
14815 -- Local variables
14819 -- Start of processing for Output_Calls
14821 begin
14828 -- Dynamic elaboration model, warnings controlled by -gnatwl
14838 else
14843 -- Static elaboration model, info messages controlled by -gnatel
14845 else
14853 else
14861 ----------------------------
14862 -- Same_Elaboration_Scope --
14863 ----------------------------
14869 begin
14870 -- Find elaboration scope for Scop1
14871 -- This is either a subprogram or a compilation unit.
14877 loop
14881 -- Find elaboration scope for Scop2
14887 loop
14894 -----------------
14895 -- Set_C_Scope --
14896 -----------------
14899 begin
14905 --------------------------------
14906 -- Set_Elaboration_Constraint --
14907 --------------------------------
14909 procedure Set_Elaboration_Constraint
14913 is
14916 -- Check whether this is a call to an Initialize subprogram for a
14917 -- controlled type. Note that Call can also be a 'Access attribute
14918 -- reference, which now generates an elaboration check.
14927 begin
14928 -- If the unit is mentioned in a with_clause of the current unit, it is
14929 -- visible, and we can set the elaboration flag.
14933 then
14939 -- If this is not an initialization call or a call using object notation
14940 -- we know that the unit of the called entity is in the context, and we
14941 -- can set the flag as well. The unit need not be visible if the call
14942 -- occurs within an instantiation.
14945 or else Init_Call
14947 then
14950 else
14956 -- If the unit is not in the context, there must be an intermediate unit
14957 -- that is, on which we need to place to elaboration flag. This happens
14958 -- with init proc calls.
14962 -- The initialization call is on an object whose type is not declared
14963 -- in the same scope as the subprogram. The type of the object must
14964 -- be a subtype of the type of operation. This object is the first
14965 -- actual in the call.
14967 declare
14970 begin
14974 loop
14979 -- If original node uses selected component notation, the prefix is
14980 -- visible and determines the scope that must be elaborated. After
14981 -- rewriting, the prefix is the first actual in the call.
14986 -- Not one of special cases above
14988 else
14989 -- Using previously computed scope. If the elaboration check is
14990 -- done after analysis, the scope is not visible any longer, but
14991 -- must still be in the context.
15000 -----------------
15001 -- Spec_Entity --
15002 -----------------
15007 begin
15008 -- Check for case of body entity
15009 -- Why is the check for E_Void needed???
15014 loop
15021 else
15026 ------------
15027 -- Within --
15028 ------------
15032 begin
15034 loop
15039 else
15045 --------------------------
15046 -- Within_Elaborate_All --
15047 --------------------------
15049 function Within_Elaborate_All
15052 is
15057 -- Seen (X) is True after we have seen unit X in the walk. This is used
15058 -- to prevent processing the same unit more than once.
15063 -- This helper procedure does all the work for Within_Elaborate_All. It
15064 -- walks the dependency graph, and sets Result to True if it finds an
15065 -- appropriate Elaborate_All.
15067 ------------
15068 -- Helper --
15069 ------------
15079 begin
15082 else
15086 -- First, check for Elaborate_Alls on this unit
15092 then
15093 -- Return if some previous error on the pragma itself. The
15094 -- pragma may be unanalyzed, because of a previous error, or
15095 -- if it is the context of a subunit, inherited by its parent.
15101 Elab_Id :=
15102 Entity
15117 then
15129 -- Second, recurse on with's. We could do this as part of the above
15130 -- loop, but it's probably more efficient to have two loops, because
15131 -- the relevant Elaborate_All is likely to be on the initial unit. In
15132 -- other words, we're walking the with's breadth-first. This part is
15133 -- only necessary in the dynamic elaboration model.
15140 then
15141 -- Note: the following call to Get_Cunit_Unit_Number does a
15142 -- linear search, which could be slow, but it's OK because
15143 -- we're about to give a warning anyway. Also, there might
15144 -- be hundreds of units, but not millions. If it turns out
15145 -- to be a problem, we could store the Get_Cunit_Unit_Number
15146 -- in each N_Compilation_Unit node, but that would involve
15147 -- rearranging N_Compilation_Unit_Aux to make room.
15161 -- Start of processing for Within_Elaborate_All
15163 begin