lingolang

module

v0.0.0-...-03c9e7a Latest Latest Go to latest Published: Dec 19, 2017 License: BSD-2-Clause

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

README ¶

Linear typing for Go

This project aims to implements annotations for linear typing in Go, so that Go programs can be written without worrying about accidentally sharing mutable state between goroutines.

Goal

Provide a set of comment-based annotations to Go programs that restrict the permitted operations on values, without causing an otherwise semantic change to the language (every program with annotations is a valid Go program, and does not perform differently if the annotations are removed).

The idea is to implement a capability-based system, with several common modifiers for linear constants, linear mutable values, pure values, and possibly some read-only type (where others can have a write reference too).

The capability inference and checking runs after the standard Go type checker.

Checking should be incremental of some sort, so existing code can be annotated without breaking it (or causing warnings). Either by making annotations turn on checking of an entire package, or (within a package?) make annotations on one function/variable require annotations on all callees/users.

Problems

The annotation approach means that any capabilities are present only at compile-time and cannot be recovered at run-time - in other words, the capabilities are erased (like type erasure in Java). This means that it is not possible to use type guards or type switches to decide between mutable and non-mutable implementations of an interface, for instance. It seems unlikely that we can even store both of them in the same interface{} value, though, so it does not seem like a huge problem.

If interfaces can have methods that only run on mutable receivers, then it would be helpful to only have to implement the constant methods where only an interface with constant capabilities is requested. As our checker runs after the Go type checker and does not affect the Go code at all, though, that is not possible.

The capabilities model is defined for a reference-based type system. Go uses values and pointers. Maps, Arrays, and Slices can be considered references, though - or: they are basically structs containing pointers. In any case, it seems there is no need to have an "identity" permission, although it might make sense to have some permission for the operation of taking the address of something (the & operator).

Legal

Linear Typing for Go is licensed under the 2 clause BSD license; basically the same license as Go, just with the third clause removed.

Directories ¶

Path	Synopsis
capabilities Package capabilities implements the algorithms for checking capabilities in a lingolang program.	Package capabilities implements the algorithms for checking capabilities in a lingolang program.
lingolint
permission Package permission implements the data structures and algorithms for parsing permission annotations, infering permissions, and checking permissions for correctness.	Package permission implements the data structures and algorithms for parsing permission annotations, infering permissions, and checking permissions for correctness.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL