| blob | 54f1886d297b235e9469c86dc89a724bece756e5 |
1 ------------------------------------------------------------------------------
2 -- --
3 -- GNAT LIBRARY COMPONENTS --
4 -- --
5 -- ADA.CONTAINERS.FORMAL_DOUBLY_LINKED_LISTS --
6 -- --
7 -- S p e c --
8 -- --
9 -- Copyright (C) 2004-2013, Free Software Foundation, Inc. --
10 -- --
11 -- This specification is derived from the Ada Reference Manual for use with --
12 -- GNAT. The copyright notice above, and the license provisions that follow --
13 -- apply solely to the contents of the part following the private keyword. --
14 -- --
15 -- GNAT is free software; you can redistribute it and/or modify it under --
16 -- terms of the GNU General Public License as published by the Free Soft- --
17 -- ware Foundation; either version 3, or (at your option) any later ver- --
18 -- sion. GNAT is distributed in the hope that it will be useful, but WITH- --
19 -- OUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY --
20 -- or FITNESS FOR A PARTICULAR PURPOSE. --
21 -- --
22 -- As a special exception under Section 7 of GPL version 3, you are granted --
23 -- additional permissions described in the GCC Runtime Library Exception, --
24 -- version 3.1, as published by the Free Software Foundation. --
25 -- --
26 -- You should have received a copy of the GNU General Public License and --
27 -- a copy of the GCC Runtime Library Exception along with this program; --
28 -- see the files COPYING3 and COPYING.RUNTIME respectively. If not, see --
29 -- <http://www.gnu.org/licenses/>. --
30 ------------------------------------------------------------------------------
32 -- This spec is derived from Ada.Containers.Bounded_Doubly_Linked_Lists in the
33 -- Ada 2012 RM. The modifications are meant to facilitate formal proofs by
34 -- making it easier to express properties, and by making the specification of
35 -- this unit compatible with SPARK 2014. Note that the API of this unit may be
36 -- subject to incompatible changes as SPARK 2014 evolves.
38 -- The modifications are:
40 -- A parameter for the container is added to every function reading the
41 -- contents of a container: Next, Previous, Query_Element, Has_Element,
42 -- Iterate, Reverse_Iterate, Element. This change is motivated by the need
43 -- to have cursors which are valid on different containers (typically a
44 -- container C and its previous version C'Old) for expressing properties,
45 -- which is not possible if cursors encapsulate an access to the underlying
46 -- container.
48 -- There are three new functions:
50 -- function Strict_Equal (Left, Right : List) return Boolean;
51 -- function Left (Container : List; Position : Cursor) return List;
52 -- function Right (Container : List; Position : Cursor) return List;
54 -- See subprogram specifications that follow for details
56 generic
90 function Element
93 with
96 procedure Replace_Element
100 with
106 procedure Insert
111 with
116 procedure Insert
122 with
127 procedure Insert
132 with
137 procedure Prepend
141 with
144 procedure Append
148 with
151 procedure Delete
155 with
158 procedure Delete_First
162 procedure Delete_Last
168 procedure Swap
171 with
174 procedure Swap_Links
177 with
180 procedure Splice
184 with
189 procedure Splice
194 with
200 procedure Splice
204 with
232 function Find
236 with
239 function Reverse_Find
243 with
246 function Contains
252 generic
265 -- Strict_Equal returns True if the containers are physically equal, i.e.
266 -- they are structurally equal (function "=" returns True) and that they
267 -- have the same set of cursors.
273 -- Left returns a container containing all elements preceding Position
274 -- (excluded) in Container. Right returns a container containing all
275 -- elements following Position (included) in Container. These two new
276 -- functions can be used to express invariant properties in loops which
277 -- iterate over containers. Left returns the part of the container already
278 -- scanned and Right the part not scanned yet.
280 private