Contents   Index   Search   Previous   Next


B.3.1 The Package Interfaces.C.Strings

1
   The package Interfaces.C.Strings declares types and subprograms allowing an Ada program to allocate, reference, update, and free C-style strings. In particular, the private type chars_ptr corresponds to a common use of ``char *'' in C programs, and an object of this type can be passed to a subprogram to which pragma Import(C,...) has been applied, and for which ``char *'' is the type of the argument of the C function.

Static Semantics

2
   The library package Interfaces.C.Strings has the following declaration:
3
package Interfaces.C.Strings is
   pragma Preelaborate(Strings);
4
   type char_array_access is access all char_array;
5
   type chars_ptr is private;
6
   type chars_ptr_array is array (size_t range <>) of chars_ptr;
7
   Null_Ptr : constant chars_ptr;
8
   function To_Chars_Ptr (Item      : in char_array_access;
                          Nul_Check : in Boolean := False)
      return chars_ptr;
9
   function New_Char_Array (Chars   : in char_array) return chars_ptr;
10
   function New_String (Str : in String) return chars_ptr;
11
   procedure Free (Item : in out chars_ptr);
12
   Dereference_Error : exception;
13
   function Value (Item : in chars_ptr) return char_array;
14
   function Value (Item : in chars_ptr; Length : in size_t)
      return char_array;
15
   function Value (Item : in chars_ptr) return String;
16
   function Value (Item : in chars_ptr; Length : in size_t)
      return String;
17
   function Strlen (Item : in chars_ptr) return size_t;
18
   procedure Update (Item   : in chars_ptr;
                     Offset : in size_t;
                     Chars  : in char_array;
                     Check  : in Boolean := True);
19
   procedure Update (Item   : in chars_ptr;
                     Offset : in size_t;
                     Str    : in String;
                     Check  : in Boolean := True);
20
   Update_Error : exception;
21
private
   ... -- not specified by the language
end Interfaces.C.Strings;
21.a
Discussion: The string manipulation types and subprograms appear in a child of Interfaces.C versus being there directly, since it is useful to have Interfaces.C specified as pragma Pure.
21.b
Differently named functions New_String and New_Char_Array are declared, since if there were a single overloaded function a call with a string literal as actual parameter would be ambiguous.
22
    The type chars_ptr is C-compatible and corresponds to the use of C's ``char *'' for a pointer to the first char in a char array terminated by nul. When an object of type chars_ptr is declared, its value is by default set to Null_Ptr, unless the object is imported (see B.1).
22.a
Discussion: The type char_array_access is not necessarily C-compatible, since an object of this type may carry ``dope'' information. The programmer should convert from char_array_access to chars_ptr for objects imported from, exported to, or passed to C.
23
function To_Chars_Ptr (Item      : in char_array_access;
                       Nul_Check : in Boolean := False)
   return chars_ptr;
24/1
{8652/0061} If Item is null, then To_Chars_Ptr returns Null_Ptr. If Item is not null, Otherwise, if Nul_Check is True, and Item.all does not contain nul, then the function propagates Terminator_Error; otherwise if Nul_Check is True and Item.all does contain nul, To_Chars_Ptr performs a pointer conversion with no allocation of memory.
25
function New_Char_Array (Chars   : in char_array) return chars_ptr;
26
This function returns a pointer to an allocated object initialized to Chars(Chars'First .. Index) & nul, where
27
28
28.1
Storage_Error is propagated if the allocation fails.
29
function New_String (Str : in String) return chars_ptr;
30
This function is equivalent to New_Char_Array(To_C(Str)).
31
procedure Free (Item : in out chars_ptr);
32
If Item is Null_Ptr, then Free has no effect. Otherwise, Free releases the storage occupied by Value(Item), and resets Item to Null_Ptr.
33
function Value (Item : in chars_ptr) return char_array;
34
If Item = Null_Ptr then Value propagates Dereference_Error. Otherwise Value returns the prefix of the array of chars pointed to by Item, up to and including the first nul. The lower bound of the result is 0. If Item does not point to a nul-terminated string, then execution of Value is erroneous.
35
function Value (Item : in chars_ptr; Length : in size_t)
   return char_array;
36/1
{8652/0062} If Item = Null_Ptr then Value(Item) propagates Dereference_Error. Otherwise Value returns the shorter of two arrays, either : the first Length chars pointed to by Item, or and Value(Item). The lower bound of the result is 0. If Length is 0, then Value propagates Constraint_Error.
36.a
Ramification: Value(New_Char_Array(Chars)) = Chars if Chars does not contain nul; else Value(New_Char_Array( Chars)) is the prefix of Chars up to and including the first nul.
37
function Value (Item : in chars_ptr) return String;
38
Equivalent to To_Ada(Value(Item), Trim_Nul=>True).
39
function Value (Item : in chars_ptr; Length : in size_t)
   return String;
40/1
{8652/0063} Equivalent to To_Ada(Value(Item, Length) & nul , Trim_Nul=>True).
41
function Strlen (Item : in chars_ptr) return size_t;
42
Returns Val'Length-1 where Val = Value(Item); propagates Dereference_Error if Item = Null_Ptr.
42.a
Ramification: Strlen returns the number of chars in the array pointed to by Item, up to and including the char immediately before the first nul.
42.b
Strlen has the same possibility for erroneous execution as Value, in cases where the string has not been nul-terminated.
42.c
Strlen has the effect of C's strlen function.
43
procedure Update (Item   : in chars_ptr;
                  Offset : in size_t;
                  Chars  : in char_array;
                  Check  : Boolean := True);
44/1
{8652/0064} If Item = Null_Ptr, then Update propagates Dereference_Error. Otherwise, t This procedure updates the value pointed to by Item, starting at position Offset, using Chars as the data to be copied into the array. Overwriting the nul terminator, and skipping with the Offset past the nul terminator, are both prevented if Check is True, as follows:
45
46
47
48
48.a
Ramification: If Chars contains nul, Update's effect may be to ``shorten'' the pointed-to char array.
49
procedure Update (Item   : in chars_ptr;
                  Offset : in size_t;
                  Str    : in String;
                  Check  : in Boolean := True);
50
Equivalent to Update(Item, Offset, To_C(Str), Check).

Erroneous Execution

51
    {erroneous execution (cause) [partial]} Execution of any of the following is erroneous if the Item parameter is not null_ptr and Item does not point to a nul-terminated array of chars.
52
53
54
55
    {erroneous execution (cause) [partial]} Execution of Free(X) is also erroneous if the chars_ptr X was not returned by New_Char_Array or New_String.
56
    {erroneous execution (cause) [partial]} Reading or updating a freed char_array is erroneous.
57
    {erroneous execution (cause) [partial]} Execution of Update is erroneous if Check is False and a call with Check equal to True would have propagated Update_Error.
NOTES
58
13  New_Char_Array and New_String might be implemented either through the allocation function from the C environment (``malloc'') or through Ada dynamic memory allocation (``new''). The key points are
59
60

Contents   Index   Search   Previous   Next   Legal