Contracts for first-class modules

Dynamic Languages Symposium Pub Date : 2009-10-26 DOI:10.1145/1640134.1640140

T. Strickland, M. Felleisen

{"title":"Contracts for first-class modules","authors":"T. Strickland, M. Felleisen","doi":"10.1145/1640134.1640140","DOIUrl":null,"url":null,"abstract":"Behavioral software contracts express properties concerning the flow of values across component (modules, classes, etc) interfaces. These properties are often beyond the reach of theorem provers and are therefore monitored at run-time. When the monitor discovers a contract violation, it raises an exception that simultaneously pinpoints the contract violator and explains the nature of the violation.\n Currently contract monitoring assumes static module interfaces. Specifically, the contract compiler partitions a contract into disjoint obligations for the static modules that communicate to an interface. At run-time, the information is used for catching and explaining contract violations. While static modules suffice for many situations, first-class modules - such as the units provided by PLT Scheme - support the dynamic and multiple linking that is often required in open software systems. The problem is, of course, that in such a world, it becomes impossible to tell from the source program alone which components have agreed to which contracts.\n In this paper, we develop the semantic framework of monitoring contracts for dynamic modules. We establish the internal consistency of the semantics, and we sketch an implementation based on our experience of equipping PLT Scheme with such contracts.","PeriodicalId":344101,"journal":{"name":"Dynamic Languages Symposium","volume":"86 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2009-10-26","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"11","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Dynamic Languages Symposium","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/1640134.1640140","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 11

Abstract

Behavioral software contracts express properties concerning the flow of values across component (modules, classes, etc) interfaces. These properties are often beyond the reach of theorem provers and are therefore monitored at run-time. When the monitor discovers a contract violation, it raises an exception that simultaneously pinpoints the contract violator and explains the nature of the violation. Currently contract monitoring assumes static module interfaces. Specifically, the contract compiler partitions a contract into disjoint obligations for the static modules that communicate to an interface. At run-time, the information is used for catching and explaining contract violations. While static modules suffice for many situations, first-class modules - such as the units provided by PLT Scheme - support the dynamic and multiple linking that is often required in open software systems. The problem is, of course, that in such a world, it becomes impossible to tell from the source program alone which components have agreed to which contracts. In this paper, we develop the semantic framework of monitoring contracts for dynamic modules. We establish the internal consistency of the semantics, and we sketch an implementation based on our experience of equipping PLT Scheme with such contracts.

查看原文本刊更多论文

一级模块的契约

行为软件契约表达了与跨组件(模块、类等)接口的值流有关的属性。这些属性通常超出定理证明者的范围，因此在运行时进行监视。当监视器发现违反合同时，它会引发一个异常，该异常同时指出违反合同的人并解释违反合同的性质。目前契约监控采用静态模块接口。具体来说，契约编译器将契约划分为与接口通信的静态模块的不相交义务。在运行时，这些信息用于捕获和解释契约违反。虽然静态模块足以满足许多情况，但一流模块(例如PLT Scheme提供的单元)支持开放软件系统中经常需要的动态和多重链接。当然，问题是，在这样一个世界中，不可能仅从源程序中判断哪些组件同意了哪些合同。本文开发了动态模块监控契约的语义框架。我们建立了语义的内部一致性，并根据我们为PLT方案配备这种契约的经验，绘制了一个实现草图。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Dynamic Languages Symposium

自引率

0.00%

发文量