2006 Scheme and Functional Programming Papers, University of

More documents

Recommendations

Info

let id (T:*) (x:T) : T = x; The traditional limitation of both first-class types and unrestricted refinement types is that they are not statically decidable. Sage circumvents this difficulty by replacing static type checking with hybrid type checking [14]. Sage checks correctness properties and detects defects statically, whenever possible. However, it resorts to dynamic checking for particularly complicated specifications. The overall result is that precise specifications can be enforced, with most errors detected at compile time, and violations of some complicated specifications detected at run time. 1.1 Hybrid Type Checking We briefly illustrate the key idea of hybrid type checking by considering the function application (factorial t) Suppose factorial has type Pos → Pos, where Pos = {x : Int | x > 0} is the type of positive integers, and that t has some type T . If the type checker can prove (or refute) that T
• We present a hybrid type checking algorithm for Sage that circumvents the decidability limitations of this expressive type language. This type checker accepts all (arbitrarily complicated) well-typed programs, and enforces all interface specifications, either statically or dynamically. The checker integrates compile-time evaluation, theorem proving, and a database of failed type casts. • We provide experimental results for a prototype implementation of Sage. These results show that Sage verifies the vast majority of specifications in our benchmark programs statically. The following section illustrates the Sage language through a series of examples. Sections 3 and 4 define the syntax, semantics, and type system for Sage. Section 5 presents a hybrid compilation algorithm for the language. Sections 6 and 7 describe our implementation and experimental results. Sections 8 and 9 discuss related work and future plans. 2. Motivating Examples We introduce Sage through several examples illustrating key features of the language, including refinement types, dependent function types, datatypes, and recursive types. We focus primarily on programs with fairly complete specifications to highlight these features. Programs could rely more on the type Dynamic than these, albeit with fewer static guarantees. 2.1 Binary Search Trees We begin with the commonly-studied example of binary search trees, whose Sage implementation is shown in Figure 2. The variable Range is of type Int → Int → *, where * is the type of types. Given two integers lo and hi, the application Range lo hi returns the following refinement type describing integers in the range [lo, hi): {x:Int | lo 22: Node lo hi x (Empty lo x) (Empty x hi) 23: | Node v l r -> 24: if x < v 25: then Node lo hi v (insert lo v l x) r 26: else Node lo hi v l (insert v hi r x); Similarly, if one of the arguments to the constructor Node is incorrect, e.g.: 26: else Node lo hi v r (insert v hi r x); the Sage compiler will report the type error: line 26: r does not have type (BST lo v) Notably, a traditional type system that does not support precise specifications would not detect either of these errors. Using this BST implementation, constructing trees with specific constraints is straightforward (and verifiable). For example, the following code constructs a tree containing only positive numbers: let PosBST : * = BST 1 MAXINT; let nil : PosBST = Empty 1 MAXINT; let add (t:PosBST) (x:Range 1 MAXINT) : PosBST = insert 1 MAXINT t x; let find (t:PosBST) (x:Range 1 MAXINT) : Bool = search 1 MAXINT t x; let t : PosBST = add (add (add nil 1) 3) 5; Note that this fully-typed BST implementation interoperates with dynamically-typed client code: let t : Dynamic = (add nil 1) in find t 5; 2.2 Regular Expressions We now consider a more complicated specification. Figure 3 declares the Regexp data type and the function match, which determines if a string matches a regular expression. The Regexp datatype includes constructors to match any single letter (Alpha) or any single letter or digit (AlphaNum), as well as usual the Kleene closure, concatenation, and choice operators. As an example, the regular expression Scheme and Functional Programming, 2006 95
Page 1:
Scheme and Functional Programming 2
Page 4 and 5:
4 Scheme and Functional Programming
Page 6 and 7:
6 Scheme and Functional Programming
Page 8 and 9:
• A web browser that plays the ro
Page 10 and 11:
and requests. When a client request
Page 12 and 13:
above prevents pages from these dom
Page 14 and 15:
14 Scheme and Functional Programmin
Page 16 and 17:
2. Explaining Macros Macro expansio
Page 18 and 19:
For completeness, here is the macro
Page 20 and 21:
onment is extended in the original
Page 22 and 23:
expand-term(term, env, phase) = emi
Page 24 and 25:
Derivation ::= (make-mrule Syntax S
Page 26 and 27:
True derivation (before macro hidin
Page 28 and 29:
We assume that the reader has basic
Page 30 and 31:
the value of the %eax register by 4
Page 32 and 33:
Code generation for the new forms i
Page 34 and 35:
we introduced in 3.11. The only dif
Page 36 and 37:
the user code from interfering with
Page 38 and 39:
38 Scheme and Functional Programmin
Page 40 and 41:
mization and on creating efficient
Page 42 and 43:
(a) stage (b) fifo (c) split (d) me
Page 44 and 45: This tagging is used later in the c
Page 46 and 47: (let ((clo_25 (%closure (lambda (y)
Page 48 and 49: nb. cycles per element 1400 1200 10
Page 50 and 51: 50 Scheme and Functional Programmin
Page 52 and 53: a ∗ ❅ left right · b ❅ a S
Page 54 and 55: T ([spec], w) = { {w}, if w ∈ L([
Page 56 and 57: A([spec]): ✓✏ (where L([spec])
Page 58 and 59: construction commands. It is possib
Page 60 and 61: ; Regular expression for Scheme num
Page 62 and 63: References [1] A. V. Aho, R. Sethi,
Page 64 and 65: (let ((n (cond ((char? var0) ) ((sy
Page 66 and 67: 3. Survey An incomplete survey of a
Page 68 and 69: case monster 10 literals 100 litera
Page 70 and 71: 70 Scheme and Functional Programmin
Page 72 and 73: modest programming requirements, an
Page 74 and 75: development of incomplete subsystem
Page 76 and 77: the previous request. This method a
Page 78 and 79: could be run indefinitely. This fun
Page 80 and 81: programmers reject Scheme without r
Page 82 and 83: (define interp (λ (env e) (case e
Page 84 and 85: Before describing the run-time sema
Page 86 and 87: Figure 5. Cast Insertion Figure 6.
Page 88 and 89: Figure 7. Evaluation Figure 8. Eval
Page 90 and 91: catching type errors, as we do here
Page 92 and 93: [34] J. C. Reynolds. Types, abstrac
Page 96 and 97: Figure 3: Regular Expressions and N
Page 98 and 99: Figure 5: Evaluation Rules Evaluati
Page 100 and 101: 5. Exact Substitution: E, (x = v :
Page 102 and 103: Figure 9: Subtyping Algorithm Algor
Page 104 and 105: for most type variables, and that m
Page 106 and 107: 2. miniKanren Overview This section
Page 108 and 109: 3. Pseudo-Variadic Relations Just a
Page 110 and 111: Replacing run 10 with run ∗ cause
Page 112 and 113: As might be expected, we could use
Page 114 and 115: Of course there are still infinitel
Page 116 and 117: To ensure that streams produced by
Page 118 and 119: 118 Scheme and Functional Programmi
Page 120 and 121: On the other hand, we can use a hig
Page 122 and 123: (ev* (Q (lambda (x) (+ x 1)))) # >
Page 124 and 125: (term ’lam (lambda (x) (if (equal
Page 126 and 127: a message: there is no guarantee th
Page 128 and 129: (! (self) 3) (?) =⇒ 1 (?? odd?) =
Page 130 and 131: (define new-server (spawn (lambda (
Page 132 and 133: The abstraction shown in this secti
Page 134 and 135: Erlang Termite List length (µs) (
Page 136 and 137: 136 Scheme and Functional Programmi
Page 138 and 139: page of j contains the URL of the p
Page 140 and 141: 4. Solution The failed attempts abo
Page 142 and 143: · ; · ; · :: Store × Frame Stac
Page 144 and 145:
logically creates a sub-session of
Page 146 and 147:
on this work, including Ryan Culpep
Page 148 and 149:
ing application operation. 1 As a r
Page 150 and 151:
such as image glyphs corresponding
Page 152 and 153:
Phone For clarity, this code pr
Page 154 and 155:
A. Porting TinyScheme to Qualcomm B
Page 156 and 157:
156 Scheme and Functional Programmi
Page 158 and 159:
ware installers have to install any
Page 160 and 161:
defines a module named circle-lib i
Page 162 and 163:
Figure 2. Sometimes special cases a
Page 164 and 165:
Considering all of these issues tog
show all

2006 Scheme and Functional Programming Papers, University of

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?