type based object immutability with flexible
play

Type-based Object Immutability with Flexible Initialization - PowerPoint PPT Presentation

Aug 17, 2023 •636 likes •990 views

Type-based Object Immutability with Flexible Initialization Christian Haack 1 , 2 Erik Poll 1 1 Radboud University, Nijmegen, The Netherlands 2 aicas GmbH, Karlsruhe, Germany ECOOP 2009 in Genoa, July 510 http://mobius.inria.fr What is this

  1. Type-based Object Immutability with Flexible Initialization Christian Haack 1 , 2 Erik Poll 1 1 Radboud University, Nijmegen, The Netherlands 2 aicas GmbH, Karlsruhe, Germany ECOOP 2009 in Genoa, July 5–10 http://mobius.inria.fr

  2. What is this Talk About? A pluggable type system ... ... for statically checking various immutability properties ... ... in Java-like languages. Christian Haack, Erik Poll Type-based Object Immutability 2

  3. Kinds of Immutability Object immutability. An object is immutable if its state cannot be modified. Class immutability. An immutable class is a class whose instances cannot be modified. Closed world: assumes that clients of immutable classes follow the rules of the pluggable type system. Open world: assumes that clients only follow Java’s standard typing rules. Read-only references. A reference is read-only if the state of the object it refers to cannot be modified through this reference. Christian Haack, Erik Poll Type-based Object Immutability 3

  4. Object Immutability and Object Initialization Immutable objects mutate during their initialization phase! Tying object initialization to object constructors ... ... is neither sufficient ... E.g., immutable arrays, immutable collections implemented in terms of mutable collection APIs, immutable cyclic structures. ... nor does it simplify the type analysis. Java imposes no restrictions on constructor bodies. Christian Haack, Erik Poll Type-based Object Immutability 4

  5. Design Goals support the various kinds of immutability support object initialization outside constructors self-containedness (we do not want to build on top of other more general systems) compatibility with JSR 308 annotations a version with explicit ghost commands that indicate the end of object initialization phases an inference algorithm that infers the end of object initialization phases Christian Haack, Erik Poll Type-based Object Immutability 5

  6. Type Qualifiers: RdWr and Rd Type Qualifiers. q ::= read-write access (default) (aka. @Mutable ) RdWr Rd read-only access (aka. @Immutable ) Christian Haack, Erik Poll Type-based Object Immutability 6

  7. Type Qualifiers: RdWr and Rd Type Qualifiers. q ::= read-write access (default) (aka. @Mutable ) RdWr Rd read-only access (aka. @Immutable ) Types. T ::= q C If an object has type Rd C then its fields may only be read. Christian Haack, Erik Poll Type-based Object Immutability 6

  8. Type Qualifiers: RdWr and Rd Type Qualifiers. q ::= read-write access (default) (aka. @Mutable ) RdWr Rd read-only access (aka. @Immutable ) Types. T ::= q C If an object has type Rd C then its fields may only be read. class C { int f; } static void m(Rd C x) { x.f = 42; // TYPE ERROR } static void k(RdWr C x) { x.f = 42; // OK } Christian Haack, Erik Poll Type-based Object Immutability 6

  9. Type Qualifiers: RdWr and Rd Type Qualifiers. q ::= read-write access (default) (aka. @Mutable ) RdWr Rd read-only access (aka. @Immutable ) Types. T ::= q C If an object has type Rd C then its fields may only be read. class C { int f; } static void m(Rd C x) { Soundness. x.f = 42; // TYPE ERROR } Well-typed programs never write to Rd -objects. static void k(RdWr C x) { x.f = 42; // OK } Christian Haack, Erik Poll Type-based Object Immutability 6

  10. Type Qualifiers: Any (aka @ Readonly-Reference) Type Qualifiers. ::= q · · · Any “the referred object is either Rd or RdWr ” Subqualifying. Rd < : Any RdWr < : Any Subtyping. p < : q C < : D p C < : q D Writes through Any -references are prohibited. interface Util { static void m(Util util) { void foo(int Any [] x); int[] a = new int RdWr [] {42,43,44}; } util.foo(a); assert a[0] == 42; } Christian Haack, Erik Poll Type-based Object Immutability 7

  11. The Access Right is a Class Parameter Classes have a special class parameter MyAccess . MyAccess refers to the access qualifier for this . class Point { int x; int y; } class Square { MyAccess Point upperleft; MyAccess Point lowerright; } static void m(Rd Square s) { s.upperleft = new Point(); // TYPE ERROR s.upperleft.x = 42; // TYPE ERROR } Christian Haack, Erik Poll Type-based Object Immutability 8

  12. The Initialization Discipline Initialization Token. n Token token for initializing a set of related objects ∈ Ghost command (has no effect at runtime). newtoken n create a new initialization token Christian Haack, Erik Poll Type-based Object Immutability 9

  13. The Initialization Discipline Initialization Token. n Token token for initializing a set of related objects ∈ Ghost command (has no effect at runtime). newtoken n create a new initialization token Type Qualifier. Fresh( n ) fresh object under initialization Typical use: newtoken n; new Fresh(n) C (); new Fresh(n) D (); . . . Fresh objects are writeable (even if they later turn immutable). Christian Haack, Erik Poll Type-based Object Immutability 9

  14. The Initialization Discipline Initialization Token. n Token token for initializing a set of related objects ∈ Ghost command (has no effect at runtime). newtoken n create a new initialization token Type Qualifier. Fresh( n ) fresh object under initialization Typical use: newtoken n; new Fresh(n) C (); new Fresh(n) D (); . . . Fresh objects are writeable (even if they later turn immutable). Ghost command (has no effect at runtime). globally convert Fresh( n ) to q commit Fresh( n ) as q Christian Haack, Erik Poll Type-based Object Immutability 9

  15. The Initialization Discipline Initialization Token. n Token token for initializing a set of related objects ∈ Ghost command (has no effect at runtime). newtoken n create a new initialization token Type Qualifier. Fresh( n ) fresh object under initialization Typical use: newtoken n; new Fresh(n) C (); new Fresh(n) D (); . . . Fresh objects are writeable (even if they later turn immutable). Ghost command (has no effect at runtime). globally convert Fresh( n ) to q commit Fresh( n ) as q static char Rd [] copy (char RdWr [] w) { newtoken n; char[] r = new char Fresh(n) [w.length]; for (int i=0; i++; i < w.length) r[i] = w[i]; commit Fresh(n) as Rd; return r; } Christian Haack, Erik Poll Type-based Object Immutability 9

  16. Soundness of Commit (Scoping of Init-Tokens) Fields cannot have Fresh(n) -qualifiers. class C { Fresh(n) D x; // TYPE ERROR: n out of scope } Christian Haack, Erik Poll Type-based Object Immutability 10

  17. Soundness of Commit (The Heap Invariant) RdWr -object Fresh(blue) Rd -object Initialized Fresh(red) Heap Invariant. There are no ingoing references into Fresh -regions. N.B.: references inside Fresh regions are possible, by MyAccess qualifier on fields. Christian Haack, Erik Poll Type-based Object Immutability 11

  18. Soundness of Commit (Meth. Confinement of Init-Tokens) Each initialization token is to confined to a single method. Rd C commit(Fresh(n) C x) { // TYPE ERROR: n out of scope commit Fresh(n) as Rd; return x; } So, only the method that generates an initialization token has the right to commit the associated fresh region. Christian Haack, Erik Poll Type-based Object Immutability 12

  19. Soundness of Commit (The Big Picture) RdWr -object Fresh(blue) Rd -object Initialized Fresh(red) top rest Stack Christian Haack, Erik Poll Type-based Object Immutability 13

  20. Soundness of Commit (The Big Picture) RdWr -object Fresh(blue) Rd -object Initialized Fresh(red) top commit Fresh(red) as Rd rest Stack Christian Haack, Erik Poll Type-based Object Immutability 13

  21. Soundness of Commit (The Big Picture) RdWr -object Fresh(blue) Rd -object Initialized Fresh(red) top commit Fresh(red) as Rd rest Stack Christian Haack, Erik Poll Type-based Object Immutability 13

  22. Soundness of Commit (The Big Picture) RdWr -object Fresh(blue) Rd -object Initialized top commit Fresh(red) as Rd red region turns black rest Stack Christian Haack, Erik Poll Type-based Object Immutability 13

  23. Soundness of Commit (The Big Picture) RdWr -object Fresh(blue) Rd -object Initialized top commit Fresh(red) as Rd red region turns black rest colors of references on stack Stack must be adjusted Christian Haack, Erik Poll Type-based Object Immutability 13

  24. Qualifier Polymorphism for Methods static void copy(Point src, Point dst) { dst.x = src.x; dst.y = src.y; } It should be allowed to pass actual dst -parameters of types RdWr Point and Fresh( n ) Point . This method is similar to arraycopy() . arraycopy() is called in constructors of immutable String s. Christian Haack, Erik Poll Type-based Object Immutability 14

  25. Qualifier Polymorphism for Methods (cont.) Any Rd RdWr Fresh( n ) Fresh( m ) · · · Christian Haack, Erik Poll Type-based Object Immutability 15

  26. Qualifier Polymorphism for Methods (cont.) Any Writeable Rd RdWr Fresh( n ) Fresh( m ) · · · Writeable can only be used as a bound, not as a type qualifier. Christian Haack, Erik Poll Type-based Object Immutability 15

  27. Qualifier Polymorphism for Methods (cont.) Any Writeable Rd RdWr Fresh( n ) Fresh( m ) · · · Writeable can only be used as a bound, not as a type qualifier. Typing rule for field sets (incomplete sketch). x : q C q extends Writeable x . f = v : ok static <a, b extends Writeable> void copy(a Point src, b Point dst) { dst.x = src.x; dst.y = src.y; } Christian Haack, Erik Poll Type-based Object Immutability 15

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Type-based Object Immutability with Flexible Initialization Christian Haack 1 , 2 and Erik

Type-based Object Immutability with Flexible Initialization Christian Haack 1 , 2 and Erik

Type-based Object Immutability with Flexible Initialization Christian Haack 1 , 2 and Erik Poll 1 1 Radboud University, Nijmegen 2 aicas GmbH, Karlsruhe Abstract. We present a type system for checking object immutability, read-only

390 views • 25 slides
Selective Ownership: Combining Object and Type Hierarchies for Flexible Sharing Stephanie

Selective Ownership: Combining Object and Type Hierarchies for Flexible Sharing Stephanie

Selective Ownership: Combining Object and Type Hierarchies for Flexible Sharing Stephanie Balzer, Thomas R. Gross, and Peter Mller School of Computer Science, Carnegie Mellon University Department of Computer Science, ETH Zurich FOOL 2012

1.53k views • 130 slides
CSE 331 Mutation and immutability slides created by Marty Stepp based on materials by M. Ernst,

CSE 331 Mutation and immutability slides created by Marty Stepp based on materials by M. Ernst,

CSE 331 Mutation and immutability slides created by Marty Stepp based on materials by M. Ernst, S. Reges, D. Notkin, R. Mercer, Wikipedia http://www.cs.washington.edu/331/ 1 Mutation mutation : A modification to the state of an object.

571 views • 29 slides
Object and Reference Immutability using Java Generics Yoav Zibin, Alex Potanin(*), Mahmood Ali,

Object and Reference Immutability using Java Generics Yoav Zibin, Alex Potanin(*), Mahmood Ali,

Object and Reference Immutability using Java Generics Yoav Zibin, Alex Potanin(*), Mahmood Ali, Shay Artzi, Adam Kiezun, and Michael D. Ernst MIT Computer Science and Artificial Intelligence Lab, USA * Victoria University of Wellington, New

336 views • 22 slides
Javarifier: inference of reference immutability Jaime Quinonez Matthew S. Tschantz Michael D.

Javarifier: inference of reference immutability Jaime Quinonez Matthew S. Tschantz Michael D.

print(Object x) { print( @Readonly Object x) { } } Javarifier: inference of reference immutability Jaime Quinonez Matthew S. Tschantz Michael D. Ernst MIT Security code in JDK 1.1 class Class { private Object[] signers;

601 views • 49 slides
VHDL VHDL - Flaxer Eli Ch 4 - 1 Object &amp; Type Outline Keyword Identifiers &amp;

VHDL VHDL - Flaxer Eli Ch 4 - 1 Object &amp; Type Outline Keyword Identifiers &amp;

Chapter 4 Data Object and Type VHDL VHDL - Flaxer Eli Ch 4 - 1 Object &amp; Type Outline Keyword Identifiers &amp; Comment Data Object Data Type Scalar Type Composite Type Pointer Type Incomplete Types File

413 views • 14 slides
Object-Based Audio In Programme Making Chris Pike BBC R&amp;D flexible,and responsive to user,

Object-Based Audio In Programme Making Chris Pike BBC R&amp;D flexible,and responsive to user,

flexible,and responsive to user, environmental and platform specific factors. Object-Based Audio In Programme Making Chris Pike BBC R&amp;D flexible,and responsive to user, environmental and platform specific factors. What is Object-Based

541 views • 40 slides
Generalized Type-Based Disambiguation of Meta Programs with Concrete Object Syntax GPCE 2005

Generalized Type-Based Disambiguation of Meta Programs with Concrete Object Syntax GPCE 2005

Generalized Type-Based Disambiguation of Meta Programs with Concrete Object Syntax GPCE 2005 Martin Bravenboer, Rob Vermaas, Jurgen Vinju and Eelco Visser Department of Information &amp; Computing Sciences Universiteit Utrecht, The Netherlands

1.05k views • 56 slides
Review A Review of our Toolkit The Object class Pro: A variable of type Object can hold

Review A Review of our Toolkit The Object class Pro: A variable of type Object can hold

Review A Review of our Toolkit The Object class Pro: A variable of type Object can hold a value of any other type Con: Processing does not know what in the Object variable Type Casting float f = 12.0; int i = (int)f; Object o

519 views • 20 slides
In a world where bindings and values Immutability: obstacle or tool? are

In a world where bindings and values Immutability: obstacle or tool? are

9/22/15 In a world where bindings and values Immutability: obstacle or tool? are immutable Discuss based on: Have you noticed? Programming experience in 251 and previously Readings

328 views • 3 slides
Object-Based Audio The future of broadcast ? Chris Baume BBC Research and Development

Object-Based Audio The future of broadcast ? Chris Baume BBC Research and Development

flexible,and responsive to user, environmental and platform specific factors. Object-Based Audio The future of broadcast ? Chris Baume BBC Research and Development flexible,and responsive to user, environmental and platform specific factors.

569 views • 56 slides
Data Structures in Processing The Object Class

Data Structures in Processing The Object Class

Data Structures in Processing The Object Class &quot;Object&quot; is the most general class Variables of type Object can hold any other type Object

309 views • 17 slides
Taxonomy of Flexible Flexible Linguistic Commitments Dr. Vadim Zaytsev aka @grammarware

Taxonomy of Flexible Flexible Linguistic Commitments Dr. Vadim Zaytsev aka @grammarware

Taxonomy of Flexible Flexible Linguistic Commitments Dr. Vadim Zaytsev aka @grammarware FlexMDE 2015 What if you miss? Type a quote here. Johnny Appleseed

650 views • 49 slides
15-112 Fundamentals of Programming Week 4 - Lecture 3: Intro to Object Oriented Programming (OOP)

15-112 Fundamentals of Programming Week 4 - Lecture 3: Intro to Object Oriented Programming (OOP)

15-112 Fundamentals of Programming Week 4 - Lecture 3: Intro to Object Oriented Programming (OOP) June 10, 2016 Important terminology data type (type) data object class instance Create an object/instance of type/class set. s = set() s is

714 views • 59 slides
Ownership and Immutability in Generic Java (OIGJ) Yoav Zibin + , Alex Potanin * Paley Li * ,

Ownership and Immutability in Generic Java (OIGJ) Yoav Zibin + , Alex Potanin * Paley Li * ,

Ownership and Immutability in Generic Java (OIGJ) Yoav Zibin + , Alex Potanin * Paley Li * , Mahmood Ali ^ , and Michael Ernst $ Presenter: Yossi Gil + + IBM * Victoria,NZ ^ MIT $ Washington Ownership + Immutability Our previous work OGJ:

517 views • 22 slides
Requirements &amp; Promises of Functions Advertised Requirements (Pre-Condition)

Requirements &amp; Promises of Functions Advertised Requirements (Pre-Condition)

11. Inheritance: Proper Inheritance, Multiple Inheritance Public Inheritance should model is-a B publicly inherits ( is-a ) from A This means: every object of type B is also an object A of type A anything that is true of

237 views • 9 slides
COMP30112: Concurrency Topics 4.2: Modelling and Analyzing Interference in FSP Howard Barringer

COMP30112: Concurrency Topics 4.2: Modelling and Analyzing Interference in FSP Howard Barringer

Topic 4.2: Modelling and Analyzing Interference in FSP COMP30112: Concurrency Topics 4.2: Modelling and Analyzing Interference in FSP Howard Barringer Room KB2.20: email: Howard.Barringer@manchester.ac.uk February 2008 Topic 4.2: Modelling and

474 views • 29 slides
Functional In-place Update with Layered Datatype Sharing Michal Kone cn y LFCS, University

Functional In-place Update with Layered Datatype Sharing Michal Kone cn y LFCS, University

Functional In-place Update with Layered Datatype Sharing Michal Kone cn y LFCS, University of Edinburgh part of a wider collaboration with David Aspinall, Martin Hofmann, Robert Atkey M. Kone cn y, LFCS Edinburgh Theory seminar,

479 views • 47 slides
CSE 291E / EE260C Spring 2002 Outline Embedded Memories How memory fits into the

CSE 291E / EE260C Spring 2002 Outline Embedded Memories How memory fits into the

E mbedded Memories CSE 291E / EE260C Spring 2002 Outline Embedded Memories How memory fits into the roadmap Memory Technology SRAM, DRAM, ROM, Flash DRAM Memory Architectures Page Mode, SDRAM, Rambus Tim Sherwood

771 views • 34 slides
MAIN MEMORY SYSTEM Mahdi Nazm Bojnordi Assistant Professor School of Computing University of

MAIN MEMORY SYSTEM Mahdi Nazm Bojnordi Assistant Professor School of Computing University of

MAIN MEMORY SYSTEM Mahdi Nazm Bojnordi Assistant Professor School of Computing University of Utah CS/ECE 6810: Computer Architecture Overview Announcement Tonight: Homework 4 submission deadline This and the following lectures

630 views • 28 slides
Static Analysis of Accessed Regions in Recursive Data Structures Stephen Chong Radu Rugina

Static Analysis of Accessed Regions in Recursive Data Structures Stephen Chong Radu Rugina

Static Analysis of Accessed Regions in Recursive Data Structures Stephen Chong Radu Rugina Cornell University What This Talk is About Problem: Precise characterization of regions accessed by statements and procedures For recursive

1.09k views • 93 slides
Chapter 7 Clocking Dynamic Latches Registers Sequential Logic q g - C 2 MOS - NORA - TSPC

Chapter 7 Clocking Dynamic Latches Registers Sequential Logic q g - C 2 MOS - NORA - TSPC

Digital IC Design Overview Static Latches Registers Static Latches Registers Chapter 7 Clocking Dynamic Latches Registers Sequential Logic q g - C 2 MOS - NORA - TSPC Sequential Logic Problem 7 Registers V DD Y Z B Combinational

212 views • 4 slides
Assignment 7 - Solution Problem 1 Consider a system that uses persistent queues for requests and

Assignment 7 - Solution Problem 1 Consider a system that uses persistent queues for requests and

Assignment 7 - Solution Problem 1 Consider a system that uses persistent queues for requests and replies, but where the queues do not support transactions . Each queue simply supports the atomic operations: Enqueue(r) Dequeue(r)

183 views • 14 slides
Internal Memory Patrick Happ Raul Queiroz Feitosa Objective To present a survey of

Internal Memory Patrick Happ Raul Queiroz Feitosa Objective To present a survey of

Internal Memory Patrick Happ Raul Queiroz Feitosa Objective To present a survey of semiconductor main memory technology. 2 Internal Memory Outline Semiconductor Main Memory Flash Memory Random Access Memories RAMs

545 views • 37 slides

More recommend