From: Joseph Young <ocaml@optimojoe.com>
To: caml-list@inria.fr
Subject: Re: [Caml-list] Conditionals based on phantom types
Date: Wed, 4 Aug 2010 04:41:15 +0200 (CEST) [thread overview]
Message-ID: <Pine.LNX.4.64.1008040434300.7258@myhome> (raw)
In-Reply-To: <AANLkTinkO66Ps6W6q3UDnz3FWQbNhnU7MKG40CMDyK6K@mail.gmail.com>
[-- Attachment #1: Type: TEXT/PLAIN, Size: 2025 bytes --]
On Tue, 3 Aug 2010, bluestorm wrote:
> On Tue, Aug 3, 2010 at 8:15 AM, Joseph Young <ocaml@optimojoe.com> wrote:
>> module Units : sig
>> type t
>> val to_feet : float -> [`Feet]*t
>> val to_meters : float -> [`Meters]*t
>> [..]
>> end
>
> With this type, the value representation of units is not abstract
> anymore (and it is not very useful to have still t abstract). The user
> can analyse the values you give him and access the unit member. This
> is the difference with the ('a t) representation were the relation
> between 'a and values is hidden outside the module.
>
> For example, your user can write something like that, wich could be
> indesirable :
>
> let convert [ `Feet ] * Units.t -> [ `Meters ] * Units.t =
> function (`Feet, t) -> (`Meters, t)
>
You are correct and that could be problematic. Combining the two
ideas from above gives:
type units=[`Feet | `Meters];;
let unit_to_string=function
| `Feet -> "ft"
| `Meters -> "m"
;;
module Units : sig
type 'a t
val to_feet : float -> ([`Feet] as 'a)*'a t
val to_meters : float -> ([`Meters] as 'a)*'a t
val add : (([<units] as 'a)*'a t as 'b) -> 'b -> 'b
val print : ([<units] as 'a)*'a t -> unit
end = struct
type 'a t=float
let to_feet x=`Feet,x;;
let to_meters x=`Meters,x;;
let add (u,x) (_,y) = u,x +. y;;
let print (u,x)=Printf.printf "%f (%s)" x (unit_to_string u);;
end
which hopefully insures that the exposed and hidden unit are required to
be the same in order to use these functions. To be sure, functions such
as:
let convert (u,x:[ `Feet ] * 'a Units.t) : [ `Meters ] * 'a Units.t =
`Meters,x
are possible. However, I believe that the type checker should throw an
error if the above functions are called on converted values. Mostly, I'm
trying to force the type checker to insure there are valid values without
using runtime assertions as you suggested above.
Thanks again for the help.
Joe
next prev parent reply other threads:[~2010-08-04 3:05 UTC|newest]
Thread overview: 9+ messages / expand[flat|nested] mbox.gz Atom feed top
2010-08-02 7:07 Joseph Young
2010-08-02 7:49 ` [Caml-list] " Lukasz Stafiniak
2010-08-02 8:02 ` bluestorm
2010-08-03 2:46 ` Joseph Young
2010-08-03 6:15 ` Joseph Young
2010-08-03 6:57 ` bluestorm
2010-08-04 2:41 ` Joseph Young [this message]
2010-08-03 15:47 ` Goswin von Brederlow
2010-08-03 15:39 ` Goswin von Brederlow
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=Pine.LNX.4.64.1008040434300.7258@myhome \
--to=ocaml@optimojoe.com \
--cc=caml-list@inria.fr \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox