Presentation is loading. Please wait.

Presentation is loading. Please wait.

Preconditions and Postconditions

Published byTerence Dickerson Modified over 6 years ago

Similar presentations

Presentation on theme: "Preconditions and Postconditions"— Presentation transcript:

1 Preconditions and Postconditions
An important topic: preconditions and postconditions. They are a method of specifying what a method accomplishes. This is the first of several lectures which accompany the textbook Data Structures and Other Objects Using Java. Each lecture chooses one topic from the book and expands on that topic - adding examples and further material to reinforce the students' understanding. This first lecture covers the topic of Preconditions and Postconditions from Chapter 1. Data Structures and Other Objects Using Java

2 Preconditions and Postconditions
Frequently a programmer must communicate precisely what a method accomplishes, without any indication of how the method does its work. Throughout the book, preconditions and postconditions are used to specify precisely what a method does. However, as we will see, a precondition/postcondition specification does not indicate anything about how a method accomplishes its work. This separation between what a method does and how the method works is extremely important - particularly for large programs which are written by a team of programmers. Can you think of a situation where this would occur ?

3 Example You are the head of a programming team and you want one of your programmers to write a method for part of a project. HERE ARE THE REQUIREMENTS FOR A METHOD THAT I WANT YOU TO WRITE. I DON'T CARE HOW THE METHOD WORKS, AS LONG AS THESE REQUIREMENTS ARE MET. As an example, suppose that you are the head of a programming team. Your team is writing a large piece of software, perhaps with millions of lines of code. Certainly nobody can keep all those lines of code in their head at once (not even me!). So, the large problem is broken into smaller problems. Those smaller problems might be broken into still smaller problems, and so on, until you reach manageable problems. Each of the manageable problems can be solved by a method - but you won't be writing all these methods. The methods are written by members of your team. As each team member is given a method to write, you will specify the requirements of the method by indicating what the method must accomplish. But most of the details about how a method works will be left up to the individual programmers.

4 What are Preconditions and Postconditions?
One way to specify such requirements is with a pair of statements about the method. The precondition statement indicates what must be true before the method is called. The postcondition statement indicates what will be true when the method finishes its work. There are many ways to specify the requirements for a method. In this class, and in the textbook, we will use a pair of statements for each method, called the method's precondition and postcondition. As we will see, the two statements work together: The precondition indicates what must be true before the method is called. The postcondition indicates what will be true when the method finishes its work. An example can clarify the meanings...

5 ... Example // Precondition: x >= 0.
// Postcondition: The square root of x has // been written to the standard output. public void writeSqrt( double x) ... This is an example of a small method which simply writes the square root of a number. The number is given as a parameter to the method, called x. For example, if we call writeSqrt(9), then we would expect the method to print 3 (which is the square root of 9). What needs to be true in order for this method to successfully carry out its work? Since negative numbers don't have a square root, we need to ensure that the argument, x, is not negative. This requirement is expressed in the precondition: Precondition: x >= 0. The postcondition is simply a statement expressing what work has been accomplished by the method. This work might involve reading or writing data, changing the values of variable parameters, or other actions. Notice that the information shown on this slide is enough for you to use the method. You don't need to know what occurs in the method body.

6 ... Example // Precondition: x >= 0.
// Postcondition: The square root of x has // been written to the standard output. public void writeSqrt( double x) ... } The precondition and postcondition appear as comments in your program. They are usually placed before the method’s implementation. The precondition and postcondition are not actually part of the program. It is common to place the precondition/postcondition pair in a comment immediately before the method's implementation. If the comments are written use a format called Javadoc, then Java can automatically create documentation for your work, similar to the documentation shown in the textbook.

7 ... Example // Precondition: x >= 0.
// Postcondition: The square root of x has // been written to the standard output. public void writeSqrt( double x) ... } In this example, the precondition requires that x >= 0 be true whenever the method is called. Here again you see the precondition of the example. The right way to read this is as a warning that says: "Watch Out! This method requires that x is greater than or equal to zero. If you violate this condition, then the results are totally unpredictable."

8 Example Which of these method calls meet the precondition ?
writeSqrt( -10 ); writeSqrt( 0 ); writeSqrt( 5.6 ); So, here are three possible method calls. Two of the calls meet the precondition and have predictable results. In one of the calls, the precondition fails, and the result of the method call is unpredictable. Which method call is the trouble maker?

9 Example Which of these method calls meet the precondition ?
writeSqrt( -10 ); writeSqrt( 0 ); writeSqrt( 5.6 ); The second and third method calls are fine. The second call has an argument of zero, but that's acceptable since the precondition only requires that x is greater than or equal to zero. The second and third calls are fine, since the argument is greater than or equal to zero.

10 Example Which of these method calls meet the precondition ?
writeSqrt( -10 ); writeSqrt( 0 ); writeSqrt( 5.6 ); But the first method call causes trouble. This method call, which violates the precondition, must never be made by a program. In a few minutes you'll see exactly how much trouble can arise from such a violation. For now, just take my word, do not violate preconditions. But the first call violates the precondition, since the argument is less than zero.

11 ... Example // Precondition: x >= 0.
// Postcondition: The square root of x has // been written to the standard output. public void writeSqrt( double x) ... } The postcondition always indicates what work the method has accomplished. In this case, when the method returns the square root of x has been written. Before we continue, take one more quick look at the postcondition: As you know, it states what the method will accomplish between the time the method starts executing and the time the method finishes executing. One more important point which isn't written on the slide: Provided that the precondition is valid, then the method is also required to finish executing. Infinite loops are not permitted, and neither is crashing the computer.

12 ... Another Example // Precondition: letter is an uppercase or
// lowercase letter (in the range 'A' ... 'Z' or 'a' ... 'z') . // Postcondition: The value returned by the // method is true if letter is a vowel; // otherwise the value returned by the method is // false. public boolean isVowel( char letter ) ... Here's one more example, which demonstrates how you can use ordinary English to express the precondition and postcondition. The writing of these expressions should be clear and concise. The goal is to communicate to another programmer two things: 1. What must be true in order for that programmer to use the method; and 2. What work the method will accomplish. In this example, the "work accomplished" is nothing more than computing a value which the method returns. Again, notice that there is enough information for you to use the method without knowing a thing about the implementation details.

13 Another Example What values will be returned by these method calls ?
isVowel( 'A' ); isVowel(' Z' ); isVowel( '?' ); Another quick quiz: What values will these method calls return? If you think this is a "trick question" you are right. . .

14 Another Example What values will be returned by these method calls ?
true isVowel( 'A' ); isVowel(' Z' ); isVowel( '?' ); false The first two method calls are fine, returning true (since 'A' is a vowel) and false since 'Z' is not a vowel. But the third method call might return true, or it might return false, nobody really knows since the precondition has been violated. In fact, the situation is worse than that. Recall that I said to never violate a precondition. The reason is that the result of violating a precondition is totally unpredictable, including the possibility of . . . Nobody knows, because the precondition has been violated.

15 Another Example What values will be returned by these method calls ?
isVowel( '?' ); . . . crashing the computer. Now, if I had written the isVowel method, and the argument was a question mark, I would try to not crash the machine, I would try to not destroy files on the hard drive, I would try my best to not cause power outages across New York. But you never know for sure. Violating the precondition might even crash the program.

16 Always make sure the precondition is valid . . .
The programmer who calls the method is responsible for ensuring that the precondition is valid when the method is called. So, let's look at the use of preconditions and postconditions in a typical situation. The programmer who calls the method is responsible for ensuring that the precondition is valid when the method is called. If she fails in this responsibility, then all bets are off. There is no telling what might occur. AT THIS POINT, MY PROGRAM CALLS YOUR METHOD, AND I MAKE SURE THAT THE PRECONDITION IS VALID.

17 . . . so the postcondition becomes true at the method’s end.
THEN MY METHOD WILL EXECUTE, AND WHEN IT IS DONE, THE POSTCONDITION WILL BE TRUE. I GUARANTEE IT. The programmer who writes the method counts on the precondition being valid, and ensures that the postcondition becomes true at the method’s end. On the other hand, if she keeps her end of the bargain, and calls the method with a valid postcondition, then the method has a responsibility of its own. The method must complete its execution (no infinite loops), and when the method finishes, the postcondition will be true. In some ways, you can think of the precondition/postcondition statements as a contract between two programmers: One programmer (who uses the method) is guaranteeing that she will make sure that the precondition is valid before the method is called. The other programmer (who writes the method) is going to bank on the precondition being true. This other programmer is responsible for making sure that the postcondition becomes true when the method finishes execution.

18 A Quiz Suppose that you call a method, and you neglect to make sure that the precondition is valid Who is responsible if this inadvertently causes a 40-day flood or other disaster? You The programmer who wrote that torrential method Noah Time for another quiz . . .

19 A Quiz Suppose that you call a method, and you neglect to make sure that the precondition is valid Who is responsible if this inadvertently causes a 40-day flood or other disaster? You The programmer who calls a method is responsible for ensuring that the precondition is valid. Somehow I think this quiz was too easy.

20 On the other hand, careful programmers also follow these rules:
When you write a method, you should make every effort to detect when a precondition has been violated. If you detect that a precondition has been violated, then print an error message and halt the program. Well, there's no way of getting around it: The programmer who calls a method is responsible for making sure the precondition is valid. However, when you are writing a method with a precondition, you should make every attempt to try to detect when a precondition is violated. Such detections make things easier on other programmers - easier for them to debug, for example.

21 On the other hand, careful programmers also follow these rules:
When you write a method, you should make every effort to detect when a precondition has been violated. If you detect that a precondition has been violated, then print an error message and halt the program... ...rather than causing a disaster. And such detections can also avoid disasters.

22 ... Example Throwing an exception(described in Section 1.1) is useful.
// Precondition: x >= 0. // Postcondition: The square root of x has // been written to the standard output. public void writeSqrt( double x) { if (x < 0) throw new IllegalArgumentException(“Negative x”); ... Here's an example of how you would write a friendly method which detects when its precondition is violated. There is no need for anything fancy when the precondition fails: just print an informative error message and halt the program. In this example, I have used the Java technique of throwing an IllegalArgumentExpression. If the boolean expression is false, then the statementdoes nothing. But if the expression is true, then we have a violation of the precondition and an IllegalArgumentException is thrown. This usually prints a message and halts the program. You can read about the full details of throwing an exception in Section 1.1 of the text. Throwing an exception(described in Section 1.1) is useful.

23 Advantages of Using Preconditions and Postconditions
Succinctly describes the behavior of a method... ... without cluttering up your thinking with details of how the method works. At a later point, you may reimplement the method in a new way ... ... but programs (which only depend on the precondition/postcondition) will still work with no changes. Here are the primary advantages to using a method such as preconditions/postconditions to specify what a method accomplishes without giving details of how the method works. One of the important advantages has to do with reimplementations. Often a programmer will think of a better method to accomplish some computation. If the computation is part of a method that includes a precondition/postcondition pair, then the method can be rewritten and the new, better method used instead. Any program which uses the method (and which only depends on the precondition/postcondition contract) can use the new improved method with no other changes.

24 Summary Precondition The programmer who calls a method ensures that the precondition is valid. The programmer who writes a method can bank on the precondition being true when the method begins execution. Postcondition The programmer who writes a method ensures that the postcondition is true when the method finishes executing.

25 THE END Presentation copyright 1999, Addison Wesley Longman
For use with Data Structures and Other Objects Using Java by Michael Main. Some artwork in the presentation is used with permission from Presentation Task Force (copyright New Vision Technologies Inc.) and Corel Gallery Clipart Catalog (copyright Corel Corporation, 3G Graphics Inc., Archive Arts, Cartesia Software, Image Club Graphics Inc., One Mile Up Inc., TechPool Studios, Totem Graphics Inc.). Students and instructors who use Data Structures and Other Objects Using Java are welcome to use this presentation however they see fit, so long as this copyright notice remains intact. THE END

Download ppt "Preconditions and Postconditions"

Similar presentations

Chapter 5 introduces the often- used data structure of linked lists. This presentation shows how to implement the most common operations on linked lists.

Chapter 5 introduces the often- used data structure of linked lists. This presentation shows how to implement the most common operations on linked lists.
CSC211 Data Structures Lecture 9 Linked Lists Instructor: Prof. Xiaoyan Li Department of Computer Science Mount Holyoke College.

CSC211 Data Structures Lecture 9 Linked Lists Instructor: Prof. Xiaoyan Li Department of Computer Science Mount Holyoke College.
Chapter 12 discusses several ways of storing information in an array, and later searching for the information. Hash tables are a common approach to the.

Chapter 12 discusses several ways of storing information in an array, and later searching for the information. Hash tables are a common approach to the.
Chapter 8 introduces the technique of recursive programming. As you have seen, recursive programming involves spotting smaller occurrences of a problem.

Chapter 8 introduces the technique of recursive programming. As you have seen, recursive programming involves spotting smaller occurrences of a problem.
Container Classes A container class is a data type that is capable of holding a collection of items. In C++, container classes can be implemented as.

Container Classes A container class is a data type that is capable of holding a collection of items. In C++, container classes can be implemented as.
L l One of the tree applications in Chapter 9 is binary search trees. l l In Chapter 9, binary search trees are used to implement bags and sets. l l This.

L l One of the tree applications in Chapter 9 is binary search trees. l l In Chapter 9, binary search trees are used to implement bags and sets. l l This.
 One of the tree applications in Chapter 10 is binary search trees.  In Chapter 10, binary search trees are used to implement bags and sets.  This presentation.

 One of the tree applications in Chapter 10 is binary search trees.  In Chapter 10, binary search trees are used to implement bags and sets.  This presentation.
CSC212 Data Structure Lecture 14 Binary Search Trees Instructor: Prof. George Wolberg Department of Computer Science City College of New York.

CSC212 Data Structure Lecture 14 Binary Search Trees Instructor: Prof. George Wolberg Department of Computer Science City College of New York.
 Chapter 2 introduces Object Oriented Programming.  OOP is a relatively new approach to programming which supports the creation of new data types and.

 Chapter 2 introduces Object Oriented Programming.  OOP is a relatively new approach to programming which supports the creation of new data types and.
 Chapter 11 has several programming projects, including a project that uses heaps.  This presentation shows you what a heap is, and demonstrates two.

 Chapter 11 has several programming projects, including a project that uses heaps.  This presentation shows you what a heap is, and demonstrates two.
Chapter 1. The Phases of Software Development. Data Structure 2 Chapter outline  Objectives  Use Javadoc to write a method’s complete specification.

Chapter 1. The Phases of Software Development. Data Structure 2 Chapter outline  Objectives  Use Javadoc to write a method’s complete specification.
CSC212 Data Structure - Section AB Lecture 20 Hashing Instructor: Edgardo Molina Department of Computer Science City College of New York.

CSC212 Data Structure - Section AB Lecture 20 Hashing Instructor: Edgardo Molina Department of Computer Science City College of New York.
 Chapter 7 introduces the stack data type.  Several example applications of stacks are given in that chapter.  This presentation shows another use called.

 Chapter 7 introduces the stack data type.  Several example applications of stacks are given in that chapter.  This presentation shows another use called.
P Chapter 6 introduces the stack data type. p Several example applications of stacks are given in that chapter. p This presentation shows another use called.

P Chapter 6 introduces the stack data type. p Several example applications of stacks are given in that chapter. p This presentation shows another use called.
  Chapter 12 presents several common algorithms for sorting an array of integers.   Two slow but simple algorithms are Selectionsort and Insertionsort.

  Chapter 12 presents several common algorithms for sorting an array of integers.   Two slow but simple algorithms are Selectionsort and Insertionsort.
P p Chapter 10 has several programming projects, including a project that uses heaps. p p This presentation shows you what a heap is, and demonstrates.

P p Chapter 10 has several programming projects, including a project that uses heaps. p p This presentation shows you what a heap is, and demonstrates.
 Chapter 10 introduces trees.  This presentation illustrates the simplest kind of trees: Complete Binary Trees. Complete Binary Trees Data Structures.

 Chapter 10 introduces trees.  This presentation illustrates the simplest kind of trees: Complete Binary Trees. Complete Binary Trees Data Structures.
L l Chapter 11 discusses several ways of storing information in an array, and later searching for the information. l l Hash tables are a common approach.

L l Chapter 11 discusses several ways of storing information in an array, and later searching for the information. l l Hash tables are a common approach.
 An important topic: preconditions and postconditions.  They are a method of specifying what a function accomplishes. Preconditions and Postconditions.

 An important topic: preconditions and postconditions.  They are a method of specifying what a function accomplishes. Preconditions and Postconditions.
L l Chapter 4 introduces the often- used linked list data structures l l This presentation shows how to implement the most common operations on linked.

L l Chapter 4 introduces the often- used linked list data structures l l This presentation shows how to implement the most common operations on linked.

Similar presentations

Ads by Google