From: mfeldman@seas.gwu.edu (Michael Feldman)
Subject: Re: Pre-condition vs. Post-condition
Date: 19 Mar 91 19:07:10 GMT [thread overview]
Message-ID: <2891@sparko.gwu.edu> (raw)
In-Reply-To: 311@nic.cerf.net
In article <311@nic.cerf.net> sss@nic.cerf.net (Marlene M. Eckert) writes:
>How about exceptions should be raised only in _EXCEPTIONAL_
>situations? Reaching the end-of-file or trying to POP off an
>empty stack are NOT exceptional conditions.
>
Well, this is getting to be an interesting thread on exception-handling
philosophy. I disagree with you. A client of a stack package which
- due to a logic bug in the client algorithm - tries to pop a stack which
turns out to be empty, is indeed committing an error. IMHO this in indeed
an exceptional situation, and raising Stack_Underflow or whatever is
quite appropriate. The client should use a Stack_Is_Empty boolean
function to test for the empty condition, but s'pose he doesn't?
IMHO _both_ entities should be exported from a stack package.
I agree that a program that tests for the empty condition by trying to
pop and then handling the exception is doing violence to exceptions.
Roughly the same is true for end-file conditions. Text_IO exports a
perfectly good function End_Of_File for this purpose. Nevertheless,
s'pose a client of Text_IO screws up and doesn't test, or tests in
the wrong place? The package should raise End_Error for this unintentional
attempt to read past EOF. As in the stack case, one should NOT write
clients that test for normal EOF by just reading and reading until the
exception is raised. Once again, that's abusive.
Here's a more obvious one:
Given TYPE Days IS (Mon, Tue, Wed, Thu, Fri, Sat, Sun);
we find Tomorrow by writing
IF Today = Days'Last THEN
Tomorrow := Days'First
ELSE
Tomorrow := Days'Succ(Today);
END IF;
NOT
BEGIN
Tomorrow := Days'Succ(Today);
EXCEPTION
WHEN Constraint_Error =>
Tomorrow := Days'First;
END;
Some bit-fiddlers have argued that the latter is slightly more efficient,
but I still think it's abusive. Monday follows Sunday EVERY WEEK. The
only thing surprising about it is that Ada doesn't allow cyclic types!
Mike Feldman
next prev parent reply other threads:[~1991-03-19 19:07 UTC|newest]
Thread overview: 31+ messages / expand[flat|nested] mbox.gz Atom feed top
1991-03-15 3:57 Pre-condition vs. Post-condition Chris M. Little
1991-03-15 19:07 ` Michael Feldman
1991-03-17 12:26 ` George C. Harrison, Norfolk State University
1991-03-18 15:04 ` Joe Hollingsworth
1991-03-18 19:51 ` Marlene M. Eckert
1991-03-19 19:07 ` Michael Feldman [this message]
1991-03-21 3:01 ` Jim Showalter
1991-03-21 16:34 ` Exception usage design issues (was: Pre-condition vs. Post-condition) John Goodenough
1991-03-21 18:40 ` Pre-condition vs. Post-condition Michael Feldman
1991-03-19 20:38 ` Charles H. Sampson
1991-03-21 3:06 ` Jim Showalter
1991-03-19 21:07 ` Jim Showalter
1991-03-19 7:38 ` Jim Showalter
1991-03-19 14:46 ` Joe Hollingsworth
1991-03-21 2:46 ` Jim Showalter
1991-03-21 5:12 ` Explicit vs implicit checks (was Pre-condition vs. Post-condition) Scott Carter
1991-03-22 15:18 ` Pre-condition vs. Post-condition Brad Balfour
1991-03-19 18:17 ` Mike Gilbert
-- strict thread matches above, loose matches on Subject: below --
1991-03-18 15:47 "Norman H. Cohen"
1991-03-24 21:23 stt
1991-03-25 16:00 ` Arthur Evans
1991-03-25 17:05 ` Michael Feldman
1991-03-26 4:31 ` Jim Showalter
1991-03-26 10:21 ` Richard A. O'Keefe
1991-03-26 16:44 ` Michael Feldman
1991-03-26 22:03 ` Richard A. O'Keefe
1991-03-26 23:36 ` Michael Feldman
1991-03-27 21:34 ` Jim Showalter
1991-03-28 2:54 ` Michael Feldman
1991-03-29 3:28 ` Jim Showalter
1991-03-27 3:12 ` Jim Showalter
replies disabled
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox