Presentation is loading. Please wait.

Presentation is loading. Please wait.

Contracts for Concurrency - Contracts & Inheritance Aryabrata Basu University of Georgia.

Published byRaymond Casey Modified over 8 years ago

Similar presentations

Presentation on theme: "Contracts for Concurrency - Contracts & Inheritance Aryabrata Basu University of Georgia."— Presentation transcript:

1 Contracts for Concurrency - Contracts & Inheritance Aryabrata Basu University of Georgia

2 Preconditions In sequential context: precondition is correctness condition In concurrent context: feature call and feature application do not usually coincide “A supplier cannot assume that a property satisfied at the call time still holds at the execution time”.

3 Preconditions

4 Preconditions A precondition expresses the necessary requirements for a correct feature application. Precondition viewed as synchronization mechanism: A called feature cannot be executed unless the preconditions holds A violated precondition delays the feature’s execution The guarantee given to the supplier is exactly the same as with the traditional semantics.

5 Post-conditions A post-condition describes the result of a feature’s application. Post-conditions are evaluated asynchronously; wait by necessity does not apply. Post-condition clauses that do not involve calls on objects handled by the same processors are evaluated independently.

6 Post-conditions

7 Invariants Standard Eiffel semantics applies to class invariants in SCOOP because all the calls appearing in invariants must be non-separate. from x := 0 invariant x<= 10 until x= 10 loop x := x+1 end

8 Loop Invariants, Loop Variants and Check Asynchronous semantics is applied to loop variants, loop invariants, and check instruction. Check/Loop Execution Variants Invariants

9 Loop Invariants and Loop Variants

10 Reasoning about Objects: Sequential

11 Reasoning about Objects: Concurrent Hoare-style sequential reasoning Controlled expressions (known statically as part of the type system) are both: - Attached (statically known to be non void) - Handled by processor locked in current context

12 Inheritance Can we use inheritance as in the sequential world? Is multiple inheritance allowed? Does SCOOP suffer from inheritance anomalies?

13 Example: Dining Philosophers

14 Dining Philosophers

15

16 Inheritance Full support for inheritance (including multiple inheritance) Most inheritance anomalies eliminated thanks to the proper use of OO mechanisms What’s about Active objects?

17 Inheritance and Contracts Preconditions may be kept or weakened. - Less waiting Post-conditions may me kept or strengthened. - More guarantees to the client Invariants may be kept or strengthened - More consistency conditions See “Contracts for concurrency” paper.

18 Inheritance: Result re-declaration Covariant result re-declaration causes no problems. The client waits less.

19 Inheritance: formal argument re-declaration Formal argument types may be redefined contra-variant w.r.t processor tag. The client may only use non-separate actual arguments in polymorphic calls, so no additional blocking will happen.

20 Inheritance: formal argument re-declaration Formal argument types may be redefined contra-variant w.r.t detachable tags. The client waits less.

21 Impact on contracts Inherited precondition and post-condition clauses that involve calls on the redefined arguments may become invalid.

22 Impact on Contracts The re-declaring feature cannot rely on the precondition clauses involving the formal argument. Inherited precondition clauses involving calls on detachable formal arguments hold vacuously (trivially true). Post-conditions involving detachable formal arguments cannot be allowed.

23 Feature Re-declaration The redefinition rules for the individual components of a type are now clarified ◦ Class types may be redefined covariant both in result types and argument types but the redefinition of a formal argument forces it to become detachable. For example, assuming that Y conforms to X, an argument x: X may be redefined into x: detachable Y but not x: Y. An attribute may be redefined from my_x: X into my_x: Y. ◦ Detachable tags may be redefined from ? to ! in result types. They may be changed from ! to ? in argument types, provided that no call on the redefined argument occurs in the original post-condition. ◦ Processor tags may be redefined from T to something more specific in result types, and from more specific to T in argument types.

24 Problems with Precursor Calls Use of Precursor is not always possible.

25 Solution for Precursor Calls Need object test (downcast):

26 References - http://se.ethz.ch/teaching/index.html

27 Questions ?!

Download ppt "Contracts for Concurrency - Contracts & Inheritance Aryabrata Basu University of Georgia."

Similar presentations

Chapter 17 Failures and exceptions. This chapter discusses n Failure. n The meaning of system failure. n Causes of failure. n Handling failure. n Exception.

Chapter 17 Failures and exceptions. This chapter discusses n Failure. n The meaning of system failure. n Causes of failure. n Handling failure. n Exception.
Design by Contract.

Design by Contract.
Copyright W. Howden1 Programming by Contract CSE 111 6/4/2014.

Copyright W. Howden1 Programming by Contract CSE 111 6/4/2014.
SCOOP: Simple Concurrent Object-Oriented Programming Extend the pure, strongly typed, object-oriented language Eiffel with a general and powerful concurrency.

SCOOP: Simple Concurrent Object-Oriented Programming Extend the pure, strongly typed, object-oriented language Eiffel with a general and powerful concurrency.
Chair of Software Engineering Concurrent Object-Oriented Programming Prof. Dr. Bertrand Meyer Lecture 10: Advanced Object-Oriented Mechanisms (based on.

Chair of Software Engineering Concurrent Object-Oriented Programming Prof. Dr. Bertrand Meyer Lecture 10: Advanced Object-Oriented Mechanisms (based on.
Chair of Software Engineering Concurrent Object-Oriented Programming Prof. Dr. Bertrand Meyer Exercise Session 1: Eiffel Introduction.

Chair of Software Engineering Concurrent Object-Oriented Programming Prof. Dr. Bertrand Meyer Exercise Session 1: Eiffel Introduction.
2 nd Microsoft Rotor Workshop, Pisa, April 23-25, 2003 1 SCOOPLI for.NET: a library for concurrent object-oriented programming Volkan Arslan, Piotr Nienaltowski.

2 nd Microsoft Rotor Workshop, Pisa, April 23-25, SCOOPLI for.NET: a library for concurrent object-oriented programming Volkan Arslan, Piotr Nienaltowski.
SCOOP on.NET Volkan Arslan Chair of Software Engineering ETH Zurich, Switzerland

SCOOP on.NET Volkan Arslan Chair of Software Engineering ETH Zurich, Switzerland
Design by Contract. Design by contract is the process of developing software based on the notion of contracts between objects, which are expressed as.

Design by Contract. Design by contract is the process of developing software based on the notion of contracts between objects, which are expressed as.
Chair of Software Engineering OOSC - Summer Semester 2004 1 Object-Oriented Software Construction Bertrand Meyer.

Chair of Software Engineering OOSC - Summer Semester Object-Oriented Software Construction Bertrand Meyer.
Chair of Software Engineering Concurrent Object-Oriented Programming Prof. Dr. Bertrand Meyer Lecture 7: SCOOP Type System (based on work with Piotr Nienaltowski)

Chair of Software Engineering Concurrent Object-Oriented Programming Prof. Dr. Bertrand Meyer Lecture 7: SCOOP Type System (based on work with Piotr Nienaltowski)
Chair of Software Engineering PPoPP 2003, 13.06.2003, San Diego SCOOP it up! Piotr Nienaltowski Chair of Software Engineering, ETH Zurich, Switzerland.

Chair of Software Engineering PPoPP 2003, , San Diego SCOOP it up! Piotr Nienaltowski Chair of Software Engineering, ETH Zurich, Switzerland.
Copyright © 2006 Addison-Wesley. All rights reserved.1-1 ICS 410: Programming Languages Chapter 3 : Describing Syntax and Semantics Axiomatic Semantics.

Copyright © 2006 Addison-Wesley. All rights reserved.1-1 ICS 410: Programming Languages Chapter 3 : Describing Syntax and Semantics Axiomatic Semantics.
1 Design by Contract Building Reliable Software. 2 Software Correctness Correctness is a relative notion  A program is correct with respect to its specification.

1 Design by Contract Building Reliable Software. 2 Software Correctness Correctness is a relative notion  A program is correct with respect to its specification.
Chair of Software Engineering OOSC - Summer Semester 2004 1 Object-Oriented Software Construction Bertrand Meyer.

Chair of Software Engineering OOSC - Summer Semester Object-Oriented Software Construction Bertrand Meyer.
Chair of Software Engineering Piotr Nienaltowski, 17.05.2005 1 SCOOP Simple Concurrent Object-Oriented Programming.

Chair of Software Engineering Piotr Nienaltowski, SCOOP Simple Concurrent Object-Oriented Programming.
Design by Contract. Specifications Correctness formula (Hoare triple) {P} A {Q} – A is some operation (for example, a routine body) – P and Q are predicates.

Design by Contract. Specifications Correctness formula (Hoare triple) {P} A {Q} – A is some operation (for example, a routine body) – P and Q are predicates.
Chair of Software Engineering OOSC - Summer Semester 2004 1 Object-Oriented Software Construction Bertrand Meyer.

Chair of Software Engineering OOSC - Summer Semester Object-Oriented Software Construction Bertrand Meyer.
Avoid a void Bertrand Meyer With major contributions by Emmanuel Stapf & Alexander Kogtenkov (Eiffel Software)

Avoid a void Bertrand Meyer With major contributions by Emmanuel Stapf & Alexander Kogtenkov (Eiffel Software)
Chair of Software Engineering Piotr Nienaltowski, 23.05.2006, 30.05.2006 Concurrent Object-Oriented Programming Bertrand Meyer, Piotr Nienaltowski.

Chair of Software Engineering Piotr Nienaltowski, , Concurrent Object-Oriented Programming Bertrand Meyer, Piotr Nienaltowski.

Similar presentations

Ads by Google