From mboxrd@z Thu Jan  1 00:00:00 1970
X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me
X-Spam-Level: 
X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=ham
	autolearn_force=no version=3.4.4
X-Google-Thread: 103376,7b0188e023be40b6
X-Google-Attributes: gid103376,domainid0,public,usenet
X-Google-Language: ENGLISH,ASCII-7-bit
Path: 
 g2news1.google.com!news2.google.com!border1.nntp.dca.giganews.com!border2.nntp.dca.giganews.com!nntp.giganews.com!backlog2.nntp.dca.giganews.com!nntp.posted.plusnet!news.posted.plusnet.POSTED!not-for-mail
NNTP-Posting-Date: Thu, 26 Mar 2009 11:15:43 -0500
Date: Thu, 26 Mar 2009 16:15:29 +0000
From: Tim Rowe <spamtrap@tgrowe.plus.net>
User-Agent: Thunderbird 2.0.0.21 (Windows/20090302)
MIME-Version: 1.0
Newsgroups: comp.lang.ada
Subject: Re: SPARK Examiner -- visibility of Ada.Strings.Unbounded (and
  probably
 lots of other packages)
References: <MrqdnWzwueTeC1bUnZ2dnUVZ8r-WnZ2d@posted.plusnet>
 <8c753bd7-3df6-418a-8cd7-342af6eadeff@g38g2000yqd.googlegroups.com>
In-Reply-To: 
 <8c753bd7-3df6-418a-8cd7-342af6eadeff@g38g2000yqd.googlegroups.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Message-ID: <OPWdnbuqg7uyN1bUnZ2dnUVZ8qOWnZ2d@posted.plusnet>
X-Usenet-Provider: http://www.giganews.com
X-Trace: 
 sv3-3GLtVxJqCDKZGTBvdZ8AHNrlaCLQ2yTfhYTl5KEE52QsnrdRv4qA7aJumKk+Rp3KCxqcDlsoRbPN9Hf!X54vL5hdpkPWF4jJtx5qHHRN7HxBTG9DEj57UgV9+hT4HBCYpzt2cpen8w1Kp59Z457TwzPl3c/w!t7Lp3GmwGfDq
X-Abuse-and-DMCA-Info: Please be sure to forward a copy of ALL headers
X-Abuse-and-DMCA-Info: Otherwise we will be unable to process your complaint
 properly
X-Postfilter: 1.3.39
X-Original-Bytes: 1983
Xref: g2news1.google.com comp.lang.ada:4342
Date: 2009-03-26T16:15:29+00:00
List-Id: <comp.lang.ada>

Ludovic Brenta wrote:

> I don't think Ada.Strings.Unbounded is part of SPARK. SPARK is a
> *subset* of Ada that removes everything not statically provable.

It isn't. But John Barnes, in High Integrity Software: The SPARK 
Approach to Safety and Security, says "where absolutely essential [...] 
any feature of full Ada [...] can be used in parts of a program covered 
by the special hide directive which tells the examiner that part of a 
program is not to be examined". I just can't work out how to hide the 
relevant bit -- I'm only allowed the hide after immediately after 
private, after is and after the begin of a body -- that means that I 
can't get the with inside the hidden part.