Presentation is loading. Please wait.

Presentation is loading. Please wait.

Class Invariants Class invariants are logical conditions to ensure the correct working of a class. Class invariants must hold true when an object is created,

Published byJesse Greene Modified over 6 years ago

Similar presentations

Presentation on theme: "Class Invariants Class invariants are logical conditions to ensure the correct working of a class. Class invariants must hold true when an object is created,"— Presentation transcript:

1 Class Invariants Class invariants are logical conditions to ensure the correct working of a class. Class invariants must hold true when an object is created, and they must be preserved under all operations of the class Interface invariants are of interest to the class user, because they give a behavioral guarantee for any object of the class Implementation invariants involve the details of a particular implementation

2 Class Invariants They express the fundamental integrity constrains on a class They are independent from the individual routines of the class Characterize the class long-term semantics Class Invariants help in Maintenance Quality assurance Configuration Management Regression testing

3 Invariance Example class Stack { public: void push(double);
double pop(); bool is_empty(); bool is_full(); private: // … };

4 Invariance Example We can formulate several interface invariants
After an element is pushed onto a stack, the stack is no longer empty:

5 Invariance Example If a stack is not full and we push an element on a stack, then calling pop retrieves the same element.

6 Invariance Example One can give a complete algebraic description of a stack in this fashion. Other data types such as queue can be characterized in a similar fashion. Implementation invariant makes an assertion about one particular implementation. Example stack with the following private section: Private: Int _sptr; Array<double> _data;

7 Implementation Invariant Example
We may wish to assert that the stack pointer is always within a certain range:

8 Preconditions A precondition is a statement placed before the segment that must be true prior to entering the segment in order for it to work correctly Example: preconditions for calling the draw(Rectangle * r) r != null R bounds to Rectangle setDate(int day, int month, int year) Operation in the Date class 1 <= day <=31 1<=month<12

9 Pre-Conditions and Post-Conditions
We say that is a precondition of the push operation. Conversely, after pushing an element on the stack, we know that must necessarily hold. An operation is not responsible for doing anything sensible if its precondition fails to hold. Conversely, an operation will guarantee its post-condition whenever it is invoked when the precondition is true.

10 Testing for invariants and conditions
Someone has to verify that pre-condition or invariant is valid before actually invoking method or procedure. Can we trust unknowledgeable class users who do not know anything about class implementation ? No, class users could be malicious. We should perform checks against null pointers or range errors. How much checking is enough? Answer: Depends …

11 Testing for invariants and conditions
What do we do when test for invariant fails? Don’t do anything Don’t do anything, and display warning Throw an exception and handle it Abort the program Crash OS ??? Depending on the nature of invariant, different actions should be taken Sometimes we can put debugging code to help us identify the places where invariance does not hold true. Then we can investigate the reason.

12 Using the assert facility in C++
The assert macro is defined in the assert.h header. If the condition: assert(condition should be true) fails, the program will exit with an error message containing the text of the condition, the name of the source file and the line number in the file Example: assert(den != 0); int x = num / den;

13 Using assert facility in C++
There are already defined macros to facilitate post/pre conditions test ASSERT_PRECOND Void Stack :: push(double x) { ASSERT_PRECOND(!isFull()); // … } ASSERT_POSTCOND Void getName(int pos) { String name; //.. ASSERT_POSTCOND(isValidName(name));

14 Preconditions vs. Defensive Programming
Preconditions are strong contractual statements. The caller of the operation must fulfill it or lose the program. There is no way to guaranty that the caller will fulfill all of the preconditions of the given operation. We simply “trust” the caller Defensive programming allows the invocation of the operation on objects of any state, with any arguments. Operations are going to spend time checking the validity of the object and all arguments. Tradeoff between performance and reliability Different projects have different preferences towards performance and reliability

Download ppt "Class Invariants Class invariants are logical conditions to ensure the correct working of a class. Class invariants must hold true when an object is created,"

Similar presentations

Detecting Bugs Using Assertions Ben Scribner. Defining the Problem  Bugs exist  Unexpected errors happen Hardware failures Loss of data Data may exist.

Detecting Bugs Using Assertions Ben Scribner. Defining the Problem  Bugs exist  Unexpected errors happen Hardware failures Loss of data Data may exist.
Karlstad University Computer Science Design Contracts and Error Management Design Contracts and Errors A Software Development Strategy Eivind J. Nordby.

Karlstad University Computer Science Design Contracts and Error Management Design Contracts and Errors A Software Development Strategy Eivind J. Nordby.
Senem Kumova Metin Spring2009 STACKS AND QUEUES Chapter 10 in A Book on C.

Senem Kumova Metin Spring2009 STACKS AND QUEUES Chapter 10 in A Book on C.
Composition CMSC 202. Code Reuse Effective software development relies on reusing existing code. Code reuse must be more than just copying code and changing.

Composition CMSC 202. Code Reuse Effective software development relies on reusing existing code. Code reuse must be more than just copying code and changing.
Stacks, Queues, and Deques. 2 A stack is a last in, first out (LIFO) data structure Items are removed from a stack in the reverse order from the way they.

Stacks, Queues, and Deques. 2 A stack is a last in, first out (LIFO) data structure Items are removed from a stack in the reverse order from the way they.
 Both System.out and System.err are streams—a sequence of bytes.  System.out (the standard output stream) displays output  System.err (the standard.

 Both System.out and System.err are streams—a sequence of bytes.  System.out (the standard output stream) displays output  System.err (the standard.
1 Design by Contract Building Reliable Software. 2 Software Correctness Correctness is a relative notion  A program is correct with respect to its specification.

1 Design by Contract Building Reliable Software. 2 Software Correctness Correctness is a relative notion  A program is correct with respect to its specification.
1 Specifying Object Interfaces. 2 Major tasks in this stage: --are there any missing attributes or operations? --how can we reduce coupling, make interface.

1 Specifying Object Interfaces. 2 Major tasks in this stage: --are there any missing attributes or operations? --how can we reduce coupling, make interface.
Software Testing and Quality Assurance

Software Testing and Quality Assurance
Improved software quality through semantic descriptions (Skutt) Karlstad University Dept. of Computer Science 2000-05-09 Semla Design Method for use in.

Improved software quality through semantic descriptions (Skutt) Karlstad University Dept. of Computer Science Semla Design Method for use in.
Computer Science 340 Software Design & Testing Design By Contract.

Computer Science 340 Software Design & Testing Design By Contract.
Ranga Rodrigo. Class is central to object oriented programming.

Ranga Rodrigo. Class is central to object oriented programming.
Data Structures: CSCI 362 – Stack Implementation Data Structures: CSCI 362 – Stack Implementation lecture notes adapted from Data Structures with C++ using.

Data Structures: CSCI 362 – Stack Implementation Data Structures: CSCI 362 – Stack Implementation lecture notes adapted from Data Structures with C++ using.
Software Engineering Prof. Dr. Bertrand Meyer March 2007 – June 2007 Chair of Software Engineering Static program checking and verification Slides: Based.

Software Engineering Prof. Dr. Bertrand Meyer March 2007 – June 2007 Chair of Software Engineering Static program checking and verification Slides: Based.
COP3530 Data Structures600 Stack Stack is one the most useful ADTs. Like list, it is a collection of data items. Supports “LIFO” (Last In First Out) discipline.

COP3530 Data Structures600 Stack Stack is one the most useful ADTs. Like list, it is a collection of data items. Supports “LIFO” (Last In First Out) discipline.
SWE 619 © Paul Ammann Procedural Abstraction and Design by Contract Paul Ammann Information & Software Engineering SWE 619 Software Construction cs.gmu.edu/~pammann/

SWE 619 © Paul Ammann Procedural Abstraction and Design by Contract Paul Ammann Information & Software Engineering SWE 619 Software Construction cs.gmu.edu/~pammann/
How to Design Error Steady Code Ivaylo Bratoev Telerik Corporation www.telerik.com.

How to Design Error Steady Code Ivaylo Bratoev Telerik Corporation
111 Protocols CS 4311 Wirfs Brock et al., Designing Object-Oriented Software, Prentice Hall, 1990. (Chapter 8) Meyer, B., Applying design by contract,

111 Protocols CS 4311 Wirfs Brock et al., Designing Object-Oriented Software, Prentice Hall, (Chapter 8) Meyer, B., Applying design by contract,
Low-Level Detailed Design SAD (Soft Arch Design) Mid-level Detailed Design Low-Level Detailed Design Design Finalization Design Document.

Low-Level Detailed Design SAD (Soft Arch Design) Mid-level Detailed Design Low-Level Detailed Design Design Finalization Design Document.
CS 261 – Data Structures Preconditions, Postconditions & Assert.

CS 261 – Data Structures Preconditions, Postconditions & Assert.

Similar presentations

Ads by Google