DOCSLIB.ORG

High-Level Small-Step Operational Semantics for Transactions

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
High-Level Small-Step Operational Semantics for Transactions High-Level Small-Step Operational Semantics for Transactions Katherine F. Moore Dan Grossman University of Washington {kfm, djg}@cs.washington.edu Abstract transaction has exclusive access to the shared-memory heap. A high-level operational semantics for transactions can give That this basic approach is simple is a good thing; it corre- transactions a precise meaning in the context of a program- sponds exactly to why transactions simplify reasoning about ming language without exposing any details about how programs. We do not want language definitions in terms of transactions are implemented. Such semantics give program- transactional-memory implementations. On the other hand, mers a simple model and serve as a correctness criterion for we do not simplify to the point that an entire transaction ex- transactional-memory implementations. This paper presents ecutes as one computational step since doing so abstracts such a semantics for a simple λ-calculus with shared mem- away so much that it is not clear how to add interesting fea- ory, threads, and transactions. tures such an internal parallelism (multiple threads within We use our approach to investigate two important aspects a transaction) or weak atomicity (nontransctional memory of a transactional programming language, namely spawning accesses that conflict with a transaction). As discussed in new threads (in particular, its interaction with transactions) Section 5, this places our approach between prior work that and strong versus weak atomicity. For the former, we present was more suitable for proving implementations of transac- a sound type system that ensures different ways of spawning tions correct at the expense of simplicity [11, 22] and work threads are used correctly. For the latter, we use a different that took the transactions-in-one-step approach that does not type system to prove the widely-held belief that if each extend well to other features [8]. mutable memory location is used outside transactions or After presenting a basic language in the next section, inside transactions (but not both), then strong and weak we investigate two nontrivial extensions and prove appro- atomicity are indistinguishable. priate results. (Full proofs are in a companion technical re- port [14].) First, we consider three possibilities for what it means to spawn a thread during a transaction and formal- 1. Introduction ize all three in one language. A sound type-and-effect sys- tem classifies what code can run only in transactions, only A primary reason to add transactions to programming lan- outside transactions, or anywhere, thereby ensuring that no guages is that doing so makes it easier to reason about the be- form of spawn occurs where it cannot execute successfully. havior of shared-memory multithreaded programs. For such Second, we present a language that lets code outside transac- reasoning to be precise and well-founded, our languages tions access the heap while another thread executes a trans- need rigorous semantic definitions. Oversimplified, informal action. We prove that if all mutable memory is partitioned descriptions such as, “a transaction appears to happen all- such that a location is accessed only outside or only inside at-once to other threads” are insufficient for deciding what transactions, then this weaker semantics is indistinguishable programs mean, what programming idioms are correct, and from the stronger one. While this result is not surprising, it is what implementation strategies are meaning-preserving. Be- reassuring given the subtle pitfalls of nontransactional code cause operational semantics, in which languages are defined bypassing transactional mechanisms [3, 12, 9, 20, 6, 21]. by judgments that reduce programs to simpler programs, is Moreover, we believe the structure of the proof will shed in- an expressive, convenient, rigorous, and well-understood ap- sight into how to prove that more sophisticated (and less ob- proach, we advocate its use for defining transactions, resolv- viously correct) invariants than a simple partition of memory ing semantic subtleties, and proving properties of transac- are also correct. tional languages. This paper presents our first results from pursuing this agenda. Our goals are to formalize the simple “all-at-once” idea 2. Basic Formal Language underlying transactions and prove properties about how this This section presents the syntax and small-step operational concept interacts with other language features. Therefore, semantics for a λ-calculus with threads, shared memory, and our formal languages give a semantic definition to transac- transactions. It is primarily a starting point for the additions tions at a very high level, essentially enforcing that a running and type systems in the subsequent two sections, which 1 TRANSACT 2007 e ::= c | x | λx.e | e1 e2 | seq(e1, e2) A program state has the form a; H; T where a indicates | e1 := e2 | refe |!e if any thread is currently executing a transaction (a = • for | spawntl e | atomic e yes and a = ◦ for no), H is the mutable heap (a mapping | l | inatomic(e) from labels, also known as addresses, to values), and T is a v ::= c | λx.e | l collection of threads. Each thread is just an expression. We H ::= · | H, l 7→ v use T1 k T2 to combine two thread collections into a larger T ::= · | T k e one, and we assume k is commutative, associative, and has · a ::= ◦ | • (the empty collection) as an identity. We write e in place of · k e where convenient. Figure 1. Base Syntax At run-time we need two new expression forms, labels (l) and inatomic(e). The former represents a heap location. The latter represents a partially completed transaction with investigate internal parallelism and weak atomicity. Three remaining computation e. key design decisions characterize our approach: The program-state component a deserves additional dis- • The semantics is high-level. It relies on implicit nondeter- cussion. Our semantics allows at most one thread to exe- minism to find a successful execution sequence. There is cute a transaction at a time. In essence a is like a “global no notion of transactions conflicting or aborting. Rather, a lock” where • indicates the lock is held. This is not to sug- transaction is always isolated from other threads because gest our language is a desirable implementation, but it is the no thread may access shared memory if another thread high-level semantics that enforces atomicity and isolation. is in a transaction. This simple semantics provides a cor- We would like an efficient implementation to be correct if, rectness criterion for more realistic implementations and by definition, it is equivalent to our semantics. (Correctness a simple model for programmers. should also involve some notion of fairness, but we do not consider that in this work.) • The semantics is small-step. In particular, transactions take many computational steps to complete. While this 2.2 Operational Semantics decision is an unnecessary complication for the basic Our small-step operational semantics rewrites one pro- language, it is essential for considering the additional gram state a; H; T to another a0; H0; T 0. Source program thread interleavings that internal parallelism and weak e starts with ◦; ·; e and a terminal configuration has the form atomicity introduce. ◦; H; v1 k ... k vn, i.e., all threads are values (and no trans- • The semantics is strong. Nontransactional code cannot action is active). Although the source program contains only observe or influence partially completed transactions. a single e, the evaluation of e can spawn threads, which can This lets us prove in Section 4 that strong-isolation se- spawn more threads, etc. mantics is equivalent to weak-isolation semantics under The rule PROGRAM chooses a thread nondeterministi- certain conditions. One cannot do such a proof without cally and that thread takes a single step, which can affect defining both semantics. a and H as well as possibly create a new thread. So the judgment form for single-thread evaluation is a; H; e → Our language does not have an explicit abort/retry. It a0; H0; e0; T , where T is · if the step does not spawn a thread is easy to add as in prior work [8] by simply having no and some e00 if it does. evaluation rule for it: A transaction that aborts is simply one For conciseness, we use evaluation contexts (E) to iden- that can never be chosen by the nondeterministic semantics. tify where subexpressions are recursively evaluated and a However, it would complicate stating type-safety since we single rule (CONTEXT) for propagating changes from eval- would have to accommodate an abort making a thread stuck. uating the subexpression.1 As usual, the inductive definition 2.1 Syntax of E describes expressions with exactly one hole [·] and E[e] means the expression resulting from replacing the hole in Figure 1 presents the formal abstract syntax for our small E with e. So, for example, we can use CONTEXT to derive transactional language. Most expression forms are typical 0 0 0 a; H; ref(seq(e1, e2)) → a ; H ; ref(seq(e1, e2)); T if we for a λ-calculus with mutable references, including con- 0 0 0 can derive a; H; e1 → a ; H ; e1; T . stants (c), variables (x), functions (λx.e), function applica- Rules for reducing sequences, memory allocations, and e e seq(e , e ) tions ( 1 2), sequential composition ( 1 2 ), mem- function calls are entirely conventional. In APPLY, e[v/x] ory allocation (refe), assignment (e1:=e2), and derefer- means the capture-avoiding substitution of v for x in e. !e ence ( ). Many omitted constructs, such as records, would The rules for reading and writing labels (SET and GET) re- be straightforward additions. In addition, we have thread- quire a = ◦, meaning no other thread is currently executing creation (spawntl e), where the tl reminds us that threads must be created at top-level (not within a transaction), and 1 We do not treat the body of a transaction as an evaluation context precisely atomic-blocks (atomic e) for executing e as a transaction.
Load more

Recommended publications
  • Operational Semantics Page 1
    Operational Semantics Page 1 Operational Semantics Class notes for a lecture given by Mooly Sagiv Tel Aviv University 24/5/2007 By Roy Ganor and Uri Juhasz Reference Semantics with Applications, H. Nielson and F. Nielson, Chapter 2. http://www.daimi.au.dk/~bra8130/Wiley_book/wiley.html Introduction Semantics is the study of meaning of languages. Formal semantics for programming languages is the study of formalization of the practice of computer programming. A computer language consists of a (formal) syntax – describing the actual structure of programs and the semantics – which describes the meaning of programs. Many tools exist for programming languages (compilers, interpreters, verification tools, … ), the basis on which these tools can cooperate is the formal semantics of the language. Formal Semantics When designing a programming language, formal semantics gives an (hopefully) unambiguous definition of what a program written in the language should do. This definition has several uses: • People learning the language can understand the subtleties of its use • The model over which the semantics is defined (the semantic domain) can indicate what the requirements are for implementing the language (as a compiler/interpreter/…) • Global properties of any program written in the language, and any state occurring in such a program, can be understood from the formal semantics • Implementers of tools for the language (parsers, compilers, interpreters, debuggers etc) have a formal reference for their tool and a formal definition of its correctness/completeness
    [Show full text]
  • Denotational Semantics
    Denotational Semantics CS 6520, Spring 2006 1 Denotations So far in class, we have studied operational semantics in depth. In operational semantics, we define a language by describing the way that it behaves. In a sense, no attempt is made to attach a “meaning” to terms, outside the way that they are evaluated. For example, the symbol ’elephant doesn’t mean anything in particular within the language; it’s up to a programmer to mentally associate meaning to the symbol while defining a program useful for zookeeppers. Similarly, the definition of a sort function has no inherent meaning in the operational view outside of a particular program. Nevertheless, the programmer knows that sort manipulates lists in a useful way: it makes animals in a list easier for a zookeeper to find. In denotational semantics, we define a language by assigning a mathematical meaning to functions; i.e., we say that each expression denotes a particular mathematical object. We might say, for example, that a sort implementation denotes the mathematical sort function, which has certain properties independent of the programming language used to implement it. In other words, operational semantics defines evaluation by sourceExpression1 −→ sourceExpression2 whereas denotational semantics defines evaluation by means means sourceExpression1 → mathematicalEntity1 = mathematicalEntity2 ← sourceExpression2 One advantage of the denotational approach is that we can exploit existing theories by mapping source expressions to mathematical objects in the theory. The denotation of expressions in a language is typically defined using a structurally-recursive definition over expressions. By convention, if e is a source expression, then [[e]] means “the denotation of e”, or “the mathematical object represented by e”.
    [Show full text]
  • Quantum Weakest Preconditions
    Quantum Weakest Preconditions Ellie D’Hondt ∗ Prakash Panangaden †‡ Abstract We develop a notion of predicate transformer and, in particular, the weak- est precondition, appropriate for quantum computation. We show that there is a Stone-type duality between the usual state-transformer semantics and the weakest precondition semantics. Rather than trying to reduce quantum com- putation to probabilistic programming we develop a notion that is directly taken from concepts used in quantum computation. The proof that weak- est preconditions exist for completely positive maps follows from the Kraus representation theorem. As an example we give the semantics of Selinger’s language in terms of our weakest preconditions. 1 Introduction Quantum computation is a field of research that is rapidly acquiring a place as a significant topic in computer science. To be sure, there are still essential tech- nological and conceptual problems to overcome in building functional quantum computers. Nevertheless there are fundamental new insights into quantum com- putability [Deu85, DJ92], quantum algorithms [Gro96, Gro97, Sho94, Sho97] and into the nature of quantum mechanics itself [Per95], particularly with the emer- gence of quantum information theory [NC00]. These developments inspire one to consider the problems of programming full-fledged general purpose quantum computers. Much of the theoretical re- search is aimed at using the new tools available - superposition, entanglement and linearity - for algorithmic efficiency. However, the fact that quantum algorithms are currently done at a very low level only - comparable to classical computing 60 years ago - is a much less explored aspect of the field. The present paper is ∗Centrum Leo Apostel , Vrije Universiteit Brussel, Brussels, Belgium, [email protected].
    [Show full text]
  • Operational Semantics with Hierarchical Abstract Syntax Graphs*
    Operational Semantics with Hierarchical Abstract Syntax Graphs* Dan R. Ghica Huawei Research, Edinburgh University of Birmingham, UK This is a motivating tutorial introduction to a semantic analysis of programming languages using a graphical language as the representation of terms, and graph rewriting as a representation of reduc- tion rules. We show how the graphical language automatically incorporates desirable features, such as a-equivalence and how it can describe pure computation, imperative store, and control features in a uniform framework. The graph semantics combines some of the best features of structural oper- ational semantics and abstract machines, while offering powerful new methods for reasoning about contextual equivalence. All technical details are available in an extended technical report by Muroya and the author [11] and in Muroya’s doctoral dissertation [21]. 1 Hierarchical abstract syntax graphs Before proceeding with the business of analysing and transforming the source code of a program, a com- piler first parses the input text into a sequence of atoms, the lexemes, and then assembles them into a tree, the Abstract Syntax Tree (AST), which corresponds to its grammatical structure. The reason for preferring the AST to raw text or a sequence of lexemes is quite obvious. The structure of the AST incor- porates most of the information needed for the following stage of compilation, in particular identifying operations as nodes in the tree and operands as their branches. This makes the AST algorithmically well suited for its purpose. Conversely, the AST excludes irrelevant lexemes, such as separators (white-space, commas, semicolons) and aggregators (brackets, braces), by making them implicit in the tree-like struc- ture.
    [Show full text]
  • Making Classes Provable Through Contracts, Models and Frames
    View metadata, citation and similar papers at core.ac.uk brought to you by CORE provided by CiteSeerX DISS. ETH NO. 17610 Making classes provable through contracts, models and frames A dissertation submitted to the SWISS FEDERAL INSTITUTE OF TECHNOLOGY ZURICH (ETH Zurich)¨ for the degree of Doctor of Sciences presented by Bernd Schoeller Diplom-Informatiker, TU Berlin born April 5th, 1974 citizen of Federal Republic of Germany accepted on the recommendation of Prof. Dr. Bertrand Meyer, examiner Prof. Dr. Martin Odersky, co-examiner Prof. Dr. Jonathan S. Ostroff, co-examiner 2007 ABSTRACT Software correctness is a relation between code and a specification of the expected behavior of the software component. Without proper specifica- tions, correct software cannot be defined. The Design by Contract methodology is a way to tightly integrate spec- ifications into software development. It has proved to be a light-weight and at the same time powerful description technique that is accepted by software developers. In its more than 20 years of existence, it has demon- strated many uses: documentation, understanding object-oriented inheri- tance, runtime assertion checking, or fully automated testing. This thesis approaches the formal verification of contracted code. It conducts an analysis of Eiffel and how contracts are expressed in the lan- guage as it is now. It formalizes the programming language providing an operational semantics and a formal list of correctness conditions in terms of this operational semantics. It introduces the concept of axiomatic classes and provides a full library of axiomatic classes, called the mathematical model library to overcome prob- lems of contracts on unbounded data structures.
    [Show full text]
  • A Denotational Semantics Approach to Functional and Logic Programming
    A Denotational Semantics Approach to Functional and Logic Programming TR89-030 August, 1989 Frank S.K. Silbermann The University of North Carolina at Chapel Hill Department of Computer Science CB#3175, Sitterson Hall Chapel Hill, NC 27599-3175 UNC is an Equal OpportunityjAfflrmative Action Institution. A Denotational Semantics Approach to Functional and Logic Programming by FrankS. K. Silbermann A dissertation submitted to the faculty of the University of North Carolina at Chapel Hill in par­ tial fulfillment of the requirements for the degree of Doctor of Philosophy in Computer Science. Chapel Hill 1989 @1989 Frank S. K. Silbermann ALL RIGHTS RESERVED 11 FRANK STEVEN KENT SILBERMANN. A Denotational Semantics Approach to Functional and Logic Programming (Under the direction of Bharat Jayaraman.) ABSTRACT This dissertation addresses the problem of incorporating into lazy higher-order functional programming the relational programming capability of Horn logic. The language design is based on set abstraction, a feature whose denotational semantics has until now not been rigorously defined. A novel approach is taken in constructing an operational semantics directly from the denotational description. The main results of this dissertation are: (i) Relative set abstraction can combine lazy higher-order functional program­ ming with not only first-order Horn logic, but also with a useful subset of higher­ order Horn logic. Sets, as well as functions, can be treated as first-class objects. (ii) Angelic powerdomains provide the semantic foundation for relative set ab­ straction. (iii) The computation rule appropriate for this language is a modified parallel­ outermost, rather than the more familiar left-most rule. (iv) Optimizations incorporating ideas from narrowing and resolution greatly improve the efficiency of the interpreter, while maintaining correctness.
    [Show full text]
  • Denotational Semantics
    Denotational Semantics 8–12 lectures for Part II CST 2010/11 Marcelo Fiore Course web page: http://www.cl.cam.ac.uk/teaching/1011/DenotSem/ 1 Lecture 1 Introduction 2 What is this course about? • General area. Formal methods: Mathematical techniques for the specification, development, and verification of software and hardware systems. • Specific area. Formal semantics: Mathematical theories for ascribing meanings to computer languages. 3 Why do we care? • Rigour. specification of programming languages . justification of program transformations • Insight. generalisations of notions computability . higher-order functions ... data structures 4 • Feedback into language design. continuations . monads • Reasoning principles. Scott induction . Logical relations . Co-induction 5 Styles of formal semantics Operational. Meanings for program phrases defined in terms of the steps of computation they can take during program execution. Axiomatic. Meanings for program phrases defined indirectly via the ax- ioms and rules of some logic of program properties. Denotational. Concerned with giving mathematical models of programming languages. Meanings for program phrases defined abstractly as elements of some suitable mathematical structure. 6 Basic idea of denotational semantics [[−]] Syntax −→ Semantics Recursive program → Partial recursive function Boolean circuit → Boolean function P → [[P ]] Concerns: • Abstract models (i.e. implementation/machine independent). Lectures 2, 3 and 4. • Compositionality. Lectures 5 and 6. • Relationship to computation (e.g. operational semantics). Lectures 7 and 8. 7 Characteristic features of a denotational semantics • Each phrase (= part of a program), P , is given a denotation, [[P ]] — a mathematical object representing the contribution of P to the meaning of any complete program in which it occurs. • The denotation of a phrase is determined just by the denotations of its subphrases (one says that the semantics is compositional).
    [Show full text]
  • Probabilistic Predicate Transformers
    Probabilistic Predicate Transformers CARROLL MORGAN, ANNABELLE McIVER, and KAREN SEIDEL Oxford University Probabilistic predicates generalize standard predicates over a state space; with probabilistic pred- icate transformers one thus reasons about imperative programs in terms of probabilistic pre- and postconditions. Probabilistic healthiness conditions generalize the standard ones, characterizing “real” probabilistic programs, and are based on a connection with an underlying relational model for probabilistic execution; in both contexts demonic nondeterminism coexists with probabilis- tic choice. With the healthiness conditions, the associated weakest-precondition calculus seems suitable for exploring the rigorous derivation of small probabilistic programs. Categories and Subject Descriptors: D.2.4 [Program Verification]: Correctness Proofs; D.3.1 [Programming Languages]: Formal Definitions and Theory; F.1.2 [Modes of Computation]: Probabilistic Computation; F.3.1 [Semantics of Programming Languages]: Specifying and Ver- ifying and Reasoning about Programs; G.3 [Probability and Statistics]: Probabilistic Algorithms General Terms: Verification, Theory, Algorithms, Languages Additional Key Words and Phrases: Galois connection, nondeterminism, predicate transformers, probability, program derivation, refinement, weakest preconditions 1. MOTIVATION AND INTRODUCTION The weakest-precondition approach of Dijkstra [1976] has been reasonably success- ful for rigorous derivation of small imperative programs, even (and especially) those involving demonic
    [Show full text]
  • Mechanized Semantics of Simple Imperative Programming Constructs*
    App eared as technical rep ort UIB Universitat Ulm Fakultat fur Informatik Dec Mechanized Semantics of Simple Imp erative Programming Constructs H Pfeifer A Dold F W von Henke H Rue Abt Kunstliche Intelligenz Fakultat fur Informatik Universitat Ulm D Ulm verifixkiinformatikuniulmde Abstract In this pap er a uniform formalization in PVS of various kinds of semantics of imp er ative programming language constructs is presented Based on a comprehensivede velopment of xed p oint theory the denotational semantics of elementary constructs of imp erative programming languages are dened as state transformers These state transformers induce corresp onding predicate transformers providing a means to for mally derivebothaweakest lib eral precondition semantics and an axiomatic semantics in the style of Hoare Moreover algebraic laws as used in renement calculus pro ofs are validated at the level of predicate transformers Simple reformulations of the state transformer semantics yield b oth a continuationstyle semantics and rules similar to those used in Structural Op erational Semantics This formalization provides the foundations on which formal sp ecication of program ming languages and mechanical verication of compilation steps are carried out within the Verix pro ject This research has b een funded in part by the Deutsche Forschungsgemeinschaft DFG under pro ject Verix Contents Intro duction Related Work Overview A brief description of PVS Mechanizing Domain
    [Show full text]
  • Chapter 3 – Describing Syntax and Semantics CS-4337 Organization of Programming Languages
    !" # Chapter 3 – Describing Syntax and Semantics CS-4337 Organization of Programming Languages Dr. Chris Irwin Davis Email: [email protected] Phone: (972) 883-3574 Office: ECSS 4.705 Chapter 3 Topics • Introduction • The General Problem of Describing Syntax • Formal Methods of Describing Syntax • Attribute Grammars • Describing the Meanings of Programs: Dynamic Semantics 1-2 Introduction •Syntax: the form or structure of the expressions, statements, and program units •Semantics: the meaning of the expressions, statements, and program units •Syntax and semantics provide a language’s definition – Users of a language definition •Other language designers •Implementers •Programmers (the users of the language) 1-3 The General Problem of Describing Syntax: Terminology •A sentence is a string of characters over some alphabet •A language is a set of sentences •A lexeme is the lowest level syntactic unit of a language (e.g., *, sum, begin) •A token is a category of lexemes (e.g., identifier) 1-4 Example: Lexemes and Tokens index = 2 * count + 17 Lexemes Tokens index identifier = equal_sign 2 int_literal * mult_op count identifier + plus_op 17 int_literal ; semicolon Formal Definition of Languages • Recognizers – A recognition device reads input strings over the alphabet of the language and decides whether the input strings belong to the language – Example: syntax analysis part of a compiler - Detailed discussion of syntax analysis appears in Chapter 4 • Generators – A device that generates sentences of a language – One can determine if the syntax of a particular sentence is syntactically correct by comparing it to the structure of the generator 1-5 Formal Methods of Describing Syntax •Formal language-generation mechanisms, usually called grammars, are commonly used to describe the syntax of programming languages.
    [Show full text]
  • Small-Step Operational Semantics Lecture 2 Thursday, January 25, 2018
    Harvard School of Engineering and Applied Sciences — CS 152: Programming Languages Small-step Operational Semantics Lecture 2 Thursday, January 25, 2018 1 Small-step operational semantics At this point we have defined the syntax of our simple arithmetic language. We have some informal, intuitive notion of what programs in this language mean. For example, the program 7 + (4 × 2) should equal 15, and the program foo := 6 + 1; 2 × 3 × foo should equal 42. We would like now to define formal semantics for this language. Operational semantics describe how a program would execute on an abstract machine. A small-step opera- tional semantics describe how such an execution in terms of successive reductions of an expression, until we reach a number, which represents the result of the computation. The state of the abstract machine is usually referred to as a configuration, and for our language it must include two pieces of information: • a store (also called an environment or state), which assigns integer values to variables. During program execution, we will refer to the store to determine the values associated with variables, and also update the store to reflect assignment of new values to variables. • the expression left to evaluate. Thus, the domain of stores is functions from Var to Int (written Var ! Int), and the domain of configu- rations is pairs of expressions and stores. Config = Exp × Store Store = Var ! Int We will denote configurations using angle brackets. For instance, h(foo + 2) × (bar + 1); σi, where σ is a store and (foo + 2) × (bar + 1) is an expression that uses two variables, foo and bar.
    [Show full text]
  • Chapter 1 Introduction
    Chapter Intro duction A language is a systematic means of communicating ideas or feelings among people by the use of conventionalized signs In contrast a programming lan guage can be thought of as a syntactic formalism which provides ameans for the communication of computations among p eople and abstract machines Elements of a programming language are often called programs They are formed according to formal rules which dene the relations between the var ious comp onents of the language Examples of programming languages are conventional languages likePascal or C and also the more the oretical languages such as the calculus or CCS A programming language can b e interpreted on the basis of our intuitive con cept of computation However an informal and vague interpretation of a pro gramming language may cause inconsistency and ambiguity As a consequence dierent implementations maybegiven for the same language p ossibly leading to dierent sets of computations for the same program Had the language in terpretation b een dened in a formal way the implementation could b e proved or disproved correct There are dierent reasons why a formal interpretation of a programming language is desirable to give programmers unambiguous and p erhaps informative answers ab out the language in order to write correct programs to give implementers a precise denition of the language and to develop an abstract but intuitive mo del of the language in order to reason ab out programs and to aid program development from sp ecications Mathematics often emphasizes
    [Show full text]