Review: what are \(\vdash\), \(O\), and \(\leq\)?
\[ \frac{ \begin{array}{l} O(id) = T_0\\ O \vdash e_1 : T_1\\ T_1 \leq T_0 \end{array}} {O \vdash id \; \texttt{<-} \; e_1 : T_1}\text{[Assign]} \]
Let \(O_c(x) = T\) for all attributes \(x : T\) in class \(C\)
Attribute initialization is similar to let, except for the scope of names
\[ \frac{ \begin{array}{l} O_c(id) = T_0\\ O_c \vdash e_1 : T_1\\ T_1 \leq T_0 \end{array}} {O_c \vdash id \; \texttt{<-} \; e_1 : T_1}\text{[Attr-Init]} \]
There is a problem with type checking method calls:
\[ \frac{ \begin{array}{l} O \vdash e_0 : T_0\\ O \vdash e_1 : T_1\\ ...\\ O \vdash e_n : T_n\\ \end{array}} {O \vdash e_0.f(e_1, \ldots, e_n) : \; ?}\text{[Dispatch]} \]
We need information about the formal parameters and return type of \(f\)
In Cool, method and object identifiers live in different name spaces
foo and an object foo can coexist in the same scopeIn the type rules, this is reflected by a separate mapping \(M\) for method signatures:
\[M(C, f) = (T_1, \ldots, T_n, T_{ret})\]
which means in class \(C\) there is a method \(f\) where
\[f(x_1 : T_1, \ldots, x_n : T_n) : T_{ret}\]
Now we have two environments: \(O\) and \(M\)
The form of the typing judgment is
\[O, M \vdash e : T\]
which can be read as: “with the assumption that the object identifiers have types as given by \(O\) and the method identifiers have signatures as given by \(M\), the expression \(e\) has type \(T\)”
The method enviroment must be added to all rules
In most cases, \(M\) is passed down but not actually used
Only the dispatch rule uses \(M\)
Steps: check reciever object, check actual arguments, then look up the formal argument types \(T_i'\)
\[ \frac{ \begin{array}{l} O, M \vdash e_0 : T_0\\ O, M \vdash e_1 : T_1\\ ...\\ O, M \vdash e_n : T_n\\ M(T_0, f) = (T_1', \ldots, T_n', T_{n+1}')\\ T_i \leq T_i' \; \text{for} \; 1 \leq i \leq n \end{array}} {O, M \vdash e_0.f(e_1, \ldots, e_n) : \; T_{n+1}'}\text{[Dispatch]} \]
Static dispatch is a variation of normal dispatch
The method is found in the class explicitly named by the programmer (not via \(e_0\))
The inferred type of the dispatch expression must conform to the specified type
\[ \frac{ \begin{array}{l} O, M \vdash e_0 : T_0\\ O, M \vdash e_1 : T_1\\ ...\\ O, M \vdash e_n : T_n\\ T_0 \leq T\\ M(T, f) = (T_1', \ldots, T_n', T_{n+1}')\\ T_i \leq T_i' \; \text{for} \; 1 \leq i \leq n \end{array}} {O, M \vdash e_0@T.f(e_1, \ldots, e_n) : \; T_{n+1}'}\text{[Static Dispatch]} \]
Recall that type systems have two conflicting goals:
An active line of research is in the area of inventing more flexibile type systems while preserving soundness
The dynamic type of an object is the class C that is used in the new C expression that created it
The static type of an expression is a notion that captures all possible dynamic types the expression could take
Soundness theorem for the Cool type system: \[\forall E. dynamic\_type(E) \leq static\_type(E)\]
Why is this correct?
Class Count incorporates a counter; the inc method works for any subclass
class Count {
i : Int <- 0;
inc () : Count {
{
i <- i + 1;
self;
}
};
};But, there is disaster lurking in the type system
Consider a subclass Stock of Count
class Stock inherits Count {
name() : String {...}; -- name of item
};And the following use of Stock
class Main {
a : Stock <- (new Stock).inc(); -- Type checking error
... a.name() ...
};(new Stock).inc() has dynamic type StockSo it is legitimate to write
a : Stock <- (new Stock).inc()But (new Stock).inc() has static type Count
The type checker “loses” type information
This makes inheriting inc useless
inc for each of the subclasses, with a specialized return typeSELF_TYPE to the RescueWe will extend the type system
Insight:
inc returns selfselfCount or any subtype of Count(new Stock).inc() the type is StockWe introduce the keyword SELF_TYPE to use for the return value of such functions
SELF_TYPESELF_TYPE to the Rescue (Continued)SELF_TYPE allows the return type of inc to change when inc is inherited
Modify the declaration of inc to read
inc() : SELF_TYPE { ... }The type checker can now prove:
(new Count).inc() : Count(new Stock).inc() : StockThe program from before is now well typed
SELF_TYPE as a ToolSELF_TYPE is not a dynamic typeSELF_TYPE is a static typeSELF_TYPE increases the expressive power of the type systemSELF_TYPE and Dynamic TypesWhat can the dynamic type of the object returned by inc be?
Answer: whatever the type of self could be
Example: the dynamic type could be Count or any subtype of Count
class A inherits Count { };
class B inherits Count { };
class C inherits Count { };SELF_TYPE and Dynamic Types (Continued)In general, if SELF_TYPE appears textually in the class \(C\) as the declared type of \(E\) then it denotes the dynamic type of the self expression:
\[dynamic\_type(E) = dynamic\_type(\texttt{self}) \leq C\]
Note: the meaning of SELF_TYPE depends on where it appears
SELF_TYPE in the body of \(C\)This suggests a typing rule:
\[\texttt{SELF_TYPE}_C \leq C\]
This rule has an important consequence:
This suggests one way to handle SELF_TYPE: replace all \(\texttt{SELF_TYPE}_C\) with with \(C\)
This would be correct but it is like not having SELF_TYPE at all (whoops!)
SELF_TYPERecall the operations on types:
We must extend these operations to handle SELF_TYPE
Let \(T\) and \(T'\) be any types except SELF_TYPE. There are four cases in the definition of \(\leq\)
\(\texttt{SELF_TYPE}_C \leq T\) if \(C \leq T\)
\(\texttt{SELF_TYPE}_C \leq \texttt{SELF_TYPE}_C\)
self expressionSELF_TYPEs comming from different classes\(T \leq \texttt{SELF_TYPE}_C\) is always false
\(T \leq T'\) (according to the rules from before
Based on these rules, we can extend \(lub\)
Let \(T\) and \(T'\) be any types except SELF_TYPE. Again, there are four cases:
SELF_TYPE Appear in Cool?The parser checks that SELF_TYPE appears only where a type is expected
But SELF_TYPE is not allowed everywhere a type can appear:
class \(T\) inherits \(T'\) {...}
SELF_TYPE because SELF_TYPE is never a dynamic typex : \(T\)
SELF_TYPESELF_TYPE Appear in Cool?let x : \(T\) in \(E\)
SELF_TYPEx has type \(\texttt{SELF_TYPE}_C\)new \(T\)
SELF_TYPEselfm@ \(T(E_1, \ldots, E_n)\)
SELF_TYPESELF_TYPESince occurrences of SELF_TYPE depend on the enclosing class we need to carry more context during type checking
New form of the typing judgment:
\[O, M, C \vdash e : T\]
(an expression \(e\) occurring in the body of \(C\) has static type \(T\) given a variable type environment \(O\) and method signatures \(M\))
The next step is to design type rules using SELF_TYPE for each language construct
Most of the rules remain the same except that \(\leq\) and \(lub\) are the new ones
Example:
\[ \frac{ \begin{array}{l} O(id) = T_0\\ O,M,C \vdash e_1 : T_1\\ T_1 \leq T_0 \end{array}} {O,M,C \vdash id \; \texttt{<-} \; e_1 : T_1}\text{[Assign]} \]
Compare this to the old rule for dispatch
\[ \frac{ \begin{array}{l} O, M,C \vdash e_0 : T_0\\ O, M,C \vdash e_1 : T_1\\ ...\\ O, M,C \vdash e_n : T_n\\ M(T_0, f) = (T_1', \ldots, T_n', T_{n+1}')\\ T_{n+1}' \neq \texttt{SELF_TYPE}\\ T_i \leq T_i' \; \text{for} \; 1 \leq i \leq n \end{array}} {O, M \vdash e_0.f(e_1, \ldots, e_n) : \; T_{n+1}'} \]
SELF_TYPEIf the return type of the method is SELF_TYPE, then the type of the dispatch is the type of the dispatch expressions:
\[ \frac{ \begin{array}{l} O, M,C \vdash e_0 : T_0\\ O, M,C \vdash e_1 : T_1\\ ...\\ O, M,C \vdash e_n : T_n\\ M(T_0, f) = (T_1', \ldots, T_n', \texttt{SELF_TYPE})\\ T_i \leq T_i' \; \text{for} \; 1 \leq i \leq n \end{array}} {O, M \vdash e_0.f(e_1, \ldots, e_n) : \; T_0} \]
Stock exampleSELF_TYPEActual arguments can be SELF_TYPE
The type \(T_0\) of the dispatch expression could be SELF_TYPE
Compare this to the old rule for static dispatch
\[ \frac{ \begin{array}{l} O, M \vdash e_0 : T_0\\ O, M \vdash e_1 : T_1\\ ...\\ O, M \vdash e_n : T_n\\ T_0 \leq T\\ M(T, f) = (T_1', \ldots, T_n', T_{n+1}')\\ T_{n+1}' \neq \texttt{SELF_TYPE}\\ T_i \leq T_i' \; \text{for} \; 1 \leq i \leq n \end{array}} {O, M \vdash e_0@T.f(e_1, \ldots, e_n) : \; T_{n+1}'} \]
If the return type of the method is SELF_TYPE, then we have:
\[ \frac{ \begin{array}{l} O, M \vdash e_0 : T_0\\ O, M \vdash e_1 : T_1\\ ...\\ O, M \vdash e_n : T_n\\ T_0 \leq T\\ M(T, f) = (T_1', \ldots, T_n', \texttt{SELF_TYPE})\\ T_i \leq T_i' \; \text{for} \; 1 \leq i \leq n \end{array}} {O, M \vdash e_0@T.f(e_1, \ldots, e_n) : \; T_0} \]
Why is this rule correct?
If we dispatch a method returning SELF_TYPE in class \(T\), don’t we get back a \(T\)?
Answer: No. SELF_TYPE is the type of the self parameter, which may be a subtype of the class in which the method body appears (not the class in which the call appears)
The static dispatch class cannot be SELF_TYPE
There are two new rules using SELF_TYPE
\[\frac{}{O,M,C \vdash \texttt{self} : \texttt{SELF_TYPE}_C}\]
\[\frac{}{O,M,C \vdash \texttt{new SELF_TYPE} : \texttt{SELF_TYPE}_C}\]
There are a number of other places where SELF_TYPE is used
SELF_TYPE Illegal in Cool?In m(x : \(T\) ) : \(T'\), only \(T'\) can be SELF_TYPE
Example: what could go wrong if \(T\) were SELF_TYPE?
class A { comp(x : SELF_TYPE) : Bool {...}; };
class B inherits A {
b(): Int {...};
comp(y: SELF_TYPE) : Bool {... y.b() ...}; };
};
...
let x : A <- new B in ... x.comp(new A); ...SELF_TYPEThe extended \(\leq\) and \(lub\) operations can do a lot of the work; implement them to handle SELF_TYPE
SELF_TYPE can be used only in a few places; be sure it is not used anywhere else
A use of SELF_TYPE always refers to any subtype in the current class
SELF_TYPE as the return type in a invoked method might have nothing to do with the current classSELF_TYPE?SELF_TYPE is a research idea; it adds more expressiveness to the type system without allowing any “bad” programs
SELF_TYPE itself is not so important (except for the course project)
In practice, there should be a balance between the complexity of the type system and its expressiveness
The rules in this lecture were Cool-specific
General Themes
Types are a play between flexibility and safety