Peter Hallam's WebLog

Peterhal - Last day at Microsoft

I've been promising myself an extended vacation for a long time now, but working at Microsoft has been so much fun I've kept postponing it. Well, this is it - my last day at Microsoft.

 

Feel free to email me at 'hotweird' at hotmail.

What Makes a Good Programmer?

I just read two salon articles about Scott Rosenberg's new book Dreaming in Code. His thesis is that "programing is hard" and uses the experiences of the development of the Chandler project to frame the discussion. Scott identifies a common problem in large software development - inconsistent terminology use across the software development team. At the same time he complements the members of the development team as being talented programmers. These two ideas struck me as incongruous. How can a bunch of "ace programmers" end up with such a basic problem? Should programmers encountering this problem really be deserving of the accolade "ace"? And what skills would I expect from an "ace" programmer anyhow?

Before I go any further, I want to make it clear that I don't want to talk down Scottt or the Chandler team. Scott makes a number of great points that reflect my own experiences. Virtually every large software project I've seen has had problems akin to those Scott describes. Especially every large project I've worked on. I'm certainly as guilty of these difficulties as any programmer. But the examples that Scott describes are good grist for discussion about software development.

When people talk about talented programmers they are usually refering to their ability to write correct code, whch solves problems quickly and elegantly. I suspect that that is what Scott was implying by describing the Chandler team as ace programmers. Raw coding skills vary widely across individuals. When it comes down to it some programmers are just more talented than others at writing code. Large team projects - projects with more than 3 programers with schedules of more than a few months - require a whole set of skills beyond raw coding. On large teams, excellent coding skills are a prerequisite. Alone, they qualify you as a beginner, not an ace.

From Beginner to Good

For me, the mark of a good team programmer is someone who does not suggest rewriting everything from scratch. Scott makes the very valid point that programmers like to program - and that they don't like to understand code written by others. Truer words were never spoken. Time and time again I've seen smart novice programmers suggest rewriting code produced by other programmers. I've noticed an inverse relationship betwen the esteem I hold for a programmer and the number of times I've heard them suggest a rewrite of a large software project.

Good team programers are capable and willing to work with a codebase that is too large for a single person to rewrite within the project's schedule. They recognize that the existing codebase has shortcomings and they have the maturity and discipline to know that attempting to 'fix' everyone of those shortcomings will almost certainly kill the project. Instead they identify those areas which must be improved on to deliver the project, and they have the skills to make significant changes to a large and ugly (because every large piece of software is ugly - but that's another story) codebase without causing the whole thing to destabilize.

And From Good To Great

If the mark of a good team programmer is the ability to work (usually grudgingly) with the code of others, then the mark of a great team programer is the ability to produce code that other programmers on the team will gladly use. Programmers are the most fickle sort, and if you can produce code that other, less skilled, coders will use without suggesting a rewrite - then you've elevated yourself to the top of the programing heap. Great programmers produce code that is so good that it will prevent the cross programer problems that plague most large software projects.

 

Code Review: Double Checked Locking Code

New F# Release.

Don Syme and the F# team have just released a new version of F#. Check it out here: http://blogs.msdn.com/dsyme/archive/2006/11/30/f-1-1-13-now-available.aspx

 

Peter

What Do Programmers Really Do Anyway? The data is in!

The smart folks over in the MSR-Human Interactions in Programming team have done some interesting research into the question of "What Do Programmers Really Do Anyway?". I'm more than a little pleased to see that the data is consistent with the assertions I made in my previous blog posts.

Some of their results are here:

http://research.microsoft.com/research/pubs/view.aspx?type=Technical%20Report&id=994

http://research.microsoft.com/hip/papers/Ko2007BugFixing.pdf

Their team's web site is:

http://research.microsoft.com/hip/

I'm looking forward to more great work from these folks,

Peter

C# Automatically Implemented Properties - My Video Debut

Hey Folks,

Charlie Calvert video taped our discussion on some of the new C# 3.0 features. Find it here: http://wm.microsoft.com/ms/msdn/visualcsharp/peter_hallam_2006_11/PeterHallam01.wmv.

Cheers,

Peter

What Do Programmers Really Do Anyway? (aka Part 2 of the Yardstick saga)

What do professional programmers really do with their time anyway?

Design Code

Write New Code

Understand Existing Code

Modify Existing Code

Verify Existing Code Still Works

New Code:                         2%

Modifying Existing Code:     20%

Understanding Code:         78%

New Code:                         5%

Modifying Existing Code:     25%

Understanding Code:         70%

C# Stumper: Why does this code not compile?

Hey folks,

First off, I want to appologize for not having any activity on my blog for a while. I just got back from a wonderful 3 week vacation in Spain. Now that I'm back, rested and limber, here's a twisted peice of C# code which is gauranteed to turn your brain inside out.

Why does the compiler (correctly) give an error message on the override in the following code?

abstract class A<T>
{
    public abstract T getT();

    class B : A<B>
    {
        public override B getT()
        {
            throw new System.Exception("The method or operation is not implemented.");
        }
    }
}

I got this code from a coworker, and I must confess that the first time I saw it I was convinced that the behaviour was a compiler bug. It turns out that the compiler correctly diagnoses the problem, though even after seeing the error message it took me a while to figure out what's going on. I'll post a discussion in a couple of days.

Any Takers?

Peter
C# Guy

Many C# Questions: Switching on non-constant values.

I finally decided to play with the style settings on my blog. As you may have guessed, I'm a bit of a newbie when it comes to websites and blogging. Let me know what you think of the new look. Last weeks posting generated some great comments. Tzagotta asks:

 

Why are constant expressions required in case labels? I see a switch statement conceptually the same as a series of chained ifs/else ifs.

 

This is an interesting question. It seems reasonable that you should be able to switch on an expression of any type, and have case labels which can take any value – even values which are not compile time constants. A simple example would look something like this:

 

class Program {

    static void Main() {

        object myFirstObject = ...;

        object mySecondObject = ...;

 

        object obj = ...;

        switch (obj) {

        case myFirstObject:  ...; break;

        case mySecondObject: ...; break;

        default:             ...; break;

        }

    }

}

 

which would be equivalent to this code:

 

class Program {

    static void Main() {

        object myFirstObject = ...;

        object mySecondObject = ...;

 

        object obj = ...;

        if  (obj == myFirstObject) {

           ...

        } else if (obj == mySecondObject) {

           ...

        } else {

           ...

        }

    }

}

 

At first glance this seems like a great idea – the switch is slightly more compact and readable than the chained ifs, both desirable characteristics of a programing language. If the construct could easily be limited to this simple example it might be a reasonable language extension to consider. Unfortunately, things are not as simple as they appear at first glance…

 

Firstly, what happens when myFirstObject is equal to mySecondObject? Well that depends on which case label came first in your switch. The order of the case labels becomes significant in determining which block of code gets executed. Because the case label expressions are not constant the compiler cannot verify that the values of the case labels are distinct, so this is a possibility which must be catered to. This runs counter to most programmers’ intuition about the switch statement in a couple of ways. Most programmers would be surprised to learn that changing the order of their case blocks changed the meaning of their program. To turn it around, it would be surprising if the expression being switched on was equal to an expression in a case label, but control didn’t go to that label.

 

Secondly, allowing non-constant expressions as case labels lets in some significantly less desirable code as well. For example, this code would also be legal:

 

        switch (obj) {

        case myFirstObject:  ...; break;

        case mySecondObject: ...; break;

        case EraseMyHardDrive(): ...; break;

        default:             ...; break;

        }

In C#, any non-constant expression can yield side effects. There is currently no notion of a non-constant expression which does not have side effects in C#. Seeing code like this will leave the reader scratching their head wondering when their hard drive will get erased.

 

And lastly, programmers coming from a C/C++ background will expect that the execution of a switch statement will be fast and that it will take about the same time to reach any particular case label. When the case labels are constant integral values (or strings), the compiler can do some great optimizations to make the execution speed of the construct match the coder’s expectation. With non-constant case labels, getting to the 100^th case label would take significantly more time than getting to the 10^th case label. Again, this would be surprising to the programmer.

 

Peter

C# Guy

Many Questions: Switch On Enum

Just a quick one this week: 

 

Why is it that you cannot use enum constants in a switch statement's cases without first casting them to type int?

 

Often you will want to use Enum constants as case labels in switch statements. Sometimes, the compiler will complain and require a cast to int on each case label. This will look something like this:

 

    enum Color { Red, Green, Blue };

 

    int i = ...;

    switch (i)

    {

    // cast required! Aarg!

    case (int)Color.Red:    break;

    case (int)Color.Green:  break;

    case (int)Color.Blue:   break;

    }

 

The confusion stems from a subtle difference between C++ and C#. In C++, values of enum type are implicitly convertible to int. In C#, conversions between an enum type and its underlying type are explicit and require a cast. To maintain consistency, the requirement for the cast carries over into the use of enums in switch statements.

 

However, you can use expressions of enum type as case labels without a cast, but only in a type safe way. The rule is that the type of the expression being switched on, the ‘governing type’ of the switch statement in C# language spec terminology, must match the type of the expressions in the case labels.

 

For example:

 

    enum Color { Red, Green, Blue };

 

    Color c = ...;

    switch (c) // Governing type is ‘Color’ not ‘int’ so ...

    {

    // ... no cast required

    case Color.Red:    break;

    case Color.Green:  break;

    case Color.Blue:   break;

    }

 

 

One of the design goals for enums in C# was to treat them as first class types that were truly distinct from their underlying type. This is one of the subtle ways that this decision manifests itself in the language.

 

Peter

C# Guy

Many Questions: Generics Variance

One of the main benefits of the addition of generics to C# is the ability to easily create strongly typed collections using types in the System.Collections.Generics namespace. For example, you can create a variable of type List<int>, and the compiler will check all accesses to the variable – ensuring that only ints are added to the collection. This is a big usability improvement over the untyped collections available in version 1 of C#.

 

Unfortunately, strongly typed collections have drawbacks of their own. For example, suppose you have a strongly typed List<object> and you want to append all the elements from a List<int> to your List<object>. You would like to be able to write code like this:

 

            List<int> ints = new List<int>();

            ints.Add(1);

            ints.Add(10);

            ints.Add(42);

            List<object> objects = new List<object>();

 

            // doesn’t compile ‘ints’ is not a IEnumerable<object>

            objects.AddRange(ints);

 

In this case, you would like to treat a List<int> which is also an IEnumerable<int>, as an IEnumerable<object>. This seems like a reasonable thing to do – as int is convertible to object. It is very similar to being able to treat a string[] as an object[] as you can do today. If you find yourself in this situation, the feature you are looking for is called generics variance – treating an instantiation of a generic type (in this case IEnumerable<int>) as a different instantiation of that same type(in this case IEnumerable<object>).

 

C# doesn’t support variance for generic types, so when encountering cases like this you will need to find a workaround in your code. If you do encounter this kind of problem, there are a couple of techniques you can use to workaround the problem. For the simplest cases, like the case of a single method like AddRange in the example above, you can declare a simple helper method to do the conversion for you. For example, you could write this method:

 

    // Simple workaround for single method

    // Variance in one direction only

    public static void Add<S, D>(List<S> source, List<D> destination)

        where S : D

    {

        foreach (S sourceElement in source)

            destination.Add(sourceElement);

    }

 

    ...

    // does compile

    Add<int, object>(ints, objects);

 

This example shows the some characteristics of a simple variance workaround. The helper method takes 2 type parameters, for the source and destination, and the source type parameter S has a constraint which is the destination type parameter D. This means that the List<> being read from must contain elements which are convertible to the element type of the List<> being inserted into. This allows the compiler to enforce that int is convertible to object. Constraining a type parameter to derive from another type parameter is called a ‘naked type parameter constraint’.

 

Defining a single method to workaround variance problems is not too bad. Unfortunately variance issues can become quite complex quite quickly. The next level of complexity is when you want to treat an interface of one instantiation as an interface of another instantiation. For example, you have an IEnumerable<int>, and you want to pass it to a method which only takes an IEnumerable<object>. Again, this makes some sense because you can think of an IEnumerable<object> as a sequence of objects, and an IEnumerable<int> is a sequence of ints. Since ints are objects, a sequence of ints should be treatable as a sequence of objects. For example:

 

        static void PrintObjects(IEnumerable<object> objects)

        {

            foreach (object o in objects)

                Console.WriteLine(o);

        }

 

        ...

        List<int> ints = new List<int>();

        // would like to do this, but can’t ...

        // ... ints is not an IEnumerable<object>

        PrintObjects(ints);

 

The workaround for the interface case, is to create a wrapper object which does the conversions for each member of the interface. This would look something like this:

 

    // Workaround for interface

    // Variance in one direction only so type expressinos are natural

    public static IEnumerable<D> Convert<S, D>(IEnumerable<S> source)

        where S : D

    {

        return new EnumerableWrapper<S, D>(source);

    }

 

    private class EnumerableWrapper<S, D> : IEnumerable<D>

        where S : D

    {

        ...

    }

 

    ...

    List<int> ints = new List<int>();

    // would like to do this, but can’t ...

    // ... ints is not an IEnumerable<object>

    PrintObjects(Convert<int, object>(ints));

 

Again, notice the ‘naked type parameter constraint’ on the wrapper class and helper method. This machinery is getting pretty complicated, but the code in the wrapper class is pretty straightforward – it just delegates to the members of the wrapped interface doing nothing more than straightforward type conversions along the way. Why not have the compiler allow the conversion from IEnumerable<int> to IEnumerable<object> directly?

 

Although variance is type safe in the case where you are looking at read only views of your collections, variance is not type safe in the case where both read and write operations are involved. For example, the IList<> interface could not be dealt with in this automatic way. You can still write a helper which will wrap all read operations on an IList<> in a type safe manner, but wrapping of write operations cannot be done so simply.

 

Here’s part of a wrapper for dealing with variance on the IList<T> interface which shows the problems that arise with variance in both the read and write directions:

 

    private class ListWrapper<S, D> : CollectionWrapper<S, D>, IList<D>

        where S : D

    {

        public ListWrapper(IList<S> source) : base(source)

        {

            this.source = source;

        }

 

        public void Insert(int index, D item)

        {

            if (item is S)

                this.source.Insert(index, (S)item);

            else

                throw new Exception("Invalid type exception");

        }

       

        public int IndexOf(D item)

        {

            if (item is S)

                return this.source.IndexOf((S) item);

            else

                return -1;

        }

 

The Insert method on the wrapper has a problem – it takes as an argument a D, but it must insert it into an IList<S>. Since D is a base type of S, not all D’s are S’s, so the Insert operation may fail. This example has an analogue with variance with arrays. When inserting an object into an object[], a dynamic type check is performed because the object[] may in fact be a string[] at runtime. For example:

 

            object[] objects = new string[10];

            // no problem, adding a string to a string[]

            objects[0] = "hello";

            // runtime exception, adding an object to a string[]

            objects[1] = new object();

 

Back to our IList<> example, the wrapper for the Insert method can simply throw when the actual type doesn’t match the desired type at runtime. So again, you could imagine that the compiler would automatically generate the wrapper for the programmer. There are cases where this policy isn’t the right thing to do however. The IndexOf method searches the collection for the item provided, and returns the index in the collection if the item is found. However, if the item is not found, the IndexOf method simply returns -1, it doesn’t throw. This kind of wrapping cannot be provided by an automatically generated wrapper.

 

So far we’ve seen the two simplest workarounds for generic variance issues. However, variance issues can get arbitrarily complex – for example treating a List<IEnumerable<int>> as a List<IEnumerable<object>>, or treating a List<IEnumerable<IEnumerable<int>>> as a List<IEnumerable<IEnumerable<object>>>.

 

Generating these wrappers to work around variance problems in your code can introduce a significant overhead in your code. Also, it can introduce referential identity issues, as each wrapper does not have the same identity as the original collection which can lead to subtle bugs. When using generics, you should choose your type instantiation to reduce mismatches between components which are tightly coupled. This may require some compromises in the design of your code. As always, design involves tradeoffs between conflicting requirements, and the constraints of the types system in the language should be considered in your design process.

 

There are type systems which include generic variance as a first class part of the language. Eiffel is the prime example of this. However, including generics variance as a first class part of the type system would dramatically increase the complexity of the type system of C#, even in relatively straightforward scenarios which don’t involve variance. As a result, the C# designers felt that not including variance was the right choice for C#.

 

Here’s the full source code for the examples discussed above.

 

 

using System;

using System.Collections.Generic;

using System.Text;

using System.Collections;

 

static class VarianceWorkaround

{

    // Simple workaround for single method

    // Variance in one direction only

    public static void Add<S, D>(List<S> source, List<D> destination)

        where S : D

    {

        foreach (S sourceElement in source)

            destination.Add(sourceElement);

    }

 

    // Workaround for interface

    // Variance in one direction only so type expressinos are natural

    public static IEnumerable<D> Convert<S, D>(IEnumerable<S> source)

        where S : D

    {

        return new EnumerableWrapper<S, D>(source);

    }

 

    private class EnumerableWrapper<S, D> : IEnumerable<D>

        where S : D

    {

        public EnumerableWrapper(IEnumerable<S> source)

        {

            this.source = source;

        }

 

        public IEnumerator<D> GetEnumerator()

        {

            return new EnumeratorWrapper(this.source.GetEnumerator());

        }

 

        IEnumerator System.Collections.IEnumerable.GetEnumerator()

        {

            return this.GetEnumerator();

        }

 

        private class EnumeratorWrapper : IEnumerator<D>

        {

            public EnumeratorWrapper(IEnumerator<S> source)

            {

                this.source = source;

            }

 

            private IEnumerator<S> source;

 

            public D Current

            {

                get { return this.source.Current; }

            }

 

            public void Dispose()

            {

                this.source.Dispose();

            }

 

            object IEnumerator.Current

            {

                get { return this.source.Current; }

            }

 

            public bool MoveNext()

            {

                return this.source.MoveNext();

            }

 

            public void Reset()

            {

                this.source.Reset();

            }

        }

 

        private IEnumerable<S> source;

    }

 

    // Workaround for interface

    // Variance in both directions, causes issues

    // similar to existing array variance

    public static ICollection<D> Convert<S, D>(ICollection<S> source)

        where S : D

    {

        return new CollectionWrapper<S, D>(source);

    }

 

 

    private class CollectionWrapper<S, D>

        : EnumerableWrapper<S, D>, ICollection<D>

        where S : D

    {

        public CollectionWrapper(ICollection<S> source)

            : base(source)

        {

        }

 

        // variance going the wrong way ...

        // ... can yield exceptions at runtime

        public void Add(D item)

        {

            if (item is S)

                this.source.Add((S)item);

            else

                throw new Exception(@"Type mismatch exception, due to type hole introduced by variance.");

        }

 

        public void Clear()

        {

            this.source.Clear();

        }

 

        // variance going the wrong way ...

        // ... but the semantics of the method yields reasonable

        // semantics

        public bool Contains(D item)

        {

            if (item is S)

                return this.source.Contains((S)item);

            else

                return false;

        }

 

        // variance going the right way ...

        public void CopyTo(D[] array, int arrayIndex)

        {

            foreach (S src in this.source)

                array[arrayIndex++] = src;

        }

 

        public int Count

        {

            get { return this.source.Count; }

        }

 

        public bool IsReadOnly

        {

            get { return this.source.IsReadOnly; }

        }

 

        // variance going the wrong way ...

        // ... but the semantics of the method yields reasonable

        // semantics

        public bool Remove(D item)

        {

            if (item is S)

                return this.source.Remove((S)item);

            else

                return false;

        }

       

        private ICollection<S> source;

    }

 

    // Workaround for interface

    // Variance in both directions, causes issues

    // similar to existing array variance

    public static IList<D> Convert<S, D>(IList<S> source)

        where S : D

    {

        return new ListWrapper<S, D>(source);

    }

 

    private class ListWrapper<S, D> : CollectionWrapper<S, D>, IList<D>

        where S : D

    {

        public ListWrapper(IList<S> source) : base(source)

        {

            this.source = source;

        }

       

        public int IndexOf(D item)

        {

            if (item is S)

                return this.source.IndexOf((S) item);

            else

                return -1;

        }

 

        // variance the wrong way ...

        // ... can throw exceptions at runtime

        public void Insert(int index, D item)

        {

            if (item is S)

                this.source.Insert(index, (S)item);

            else

                throw new Exception("Invalid type exception");

        }

 

        public void RemoveAt(int index)

        {

            this.source.RemoveAt(index);

        }

 

        public D this[int index]

        {

            get

            {

                return this.source[index];

            }

            set

            {

                if (value is S)

                    this.source[index] = (S)value;

                else

                    throw new Exception("Invalid type exception.");

            }

        }

       

        private IList<S> source;

    }

}

 

namespace GenericVariance

{

    class Program

    {

        static void PrintObjects(IEnumerable<object> objects)

        {

            foreach (object o in objects)

                Console.WriteLine(o);

        }

       

        static void AddToObjects(IList<object> objects)

        {

            // this will fail if the collection provided is a

            // wrapped collection

            objects.Add(new object());

        }

        static void Main(string[] args)

        {

            List<int> ints = new List<int>();

            ints.Add(1);

            ints.Add(10);

            ints.Add(42);

            List<object> objects = new List<object>();

            VarianceWorkaround.Add<int, object>(ints, objects);

            PrintObjects(VarianceWorkaround

                .Convert<int, object>(ints));

            AddToObjects(objects); // this works fine

            AddToObjects(VarianceWorkaround

                .Convert<int, object>(ints));

        }

        static void ArrayExample()

        {

            object[] objects = new string[10];

            // no problem, adding a string to a string[]

            objects[0] = "hello";

            // runtime exception, adding an object to a string[]

            objects[1] = new object();

        }

    }

}

 

Many Questions: general catch clause

I’m back from my course on Software Design. Now that we are starting to think about the version of C# after VS 2005 we are shining a bright light on all the ways the current compiler codebase could be better. This is the fun part of the product cycle where you get to really dig in and reorganize your code. Fun stuff!

 

I hope everyone had a good weekend. I spent the weekend out in the San Juan Islands. A bunch of us went out to celebrate Tim’s bachelor party. I’m mostly recovered from the hangover – so I hope I can keep it together for this week’s question:

 

In C# only objects derived from System.Exception can be thrown, so why allow general catch clauses? Isn’t that just the same as catch (System.Exception)?

 

C# allows specifying two kinds of catch clauses – specific catch clauses, and general catch clauses. Specific catch clauses specify the type of exception to be caught. Exceptions which are not of the specified type are ignored by the specific catch clause.

 

        try

        {

            using (StreamReader reader = new StreamReader(fileName))

            {

                char[] text = reader.ReadToEnd().ToCharArray();

                ...

            }

        }

        catch (IOException e)

        {

            Console.WriteLine("Error reading from file '{0}' : '{1}'",

                              fileName, e.Message);

        }

 

This example demonstrates a good guideline when catching exceptions – only catch exceptions that you expect, and in general catch the most specific set of exceptions possible. In this case the System.IO.IOException is an expected result of attempting to read a file, so catching it is reasonable.

 

In contrast, general catch clauses don’t name a type. They catch all thrown objects. The general catch clause is useful in the (hopefully rare) occasions when you need to catch everything. However, a specific catch clause which catches System.Exception is guaranteed to catch everything that can be thrown by C# code. So why add the general form of the catch clause?

 

The subtle difference is that although catch System.Exception will catch everything that C# code can throw, it doesn’t catch everything that the CLR can throw. In the CLR, any object can be thrown – even objects not derived from System.Exception. That’s right, in IL or C++ you can throw the string “hello”, or the integer 5 just as easily as you can throw a new System.Exception()!

 

The general catch clause was added to C# so that code which interoperates with non-C# code can catch anything that can be thrown in the CLR. One of the benefits of C# running on the CLR is that it allows C# code to interoperate easily with other CLR languages, however this example shows that this feature has some drawbacks as well. Needless to say, the fact that a string can be thrown is a subtlety that most C# programmers are not aware of, and it’s exactly those kinds of subtleties that can lead to unexpected bugs.

 

Well, this was all a warm up to talk about a new feature that was added to the CLR and C# in VS2005 to help address the mismatch. Unfortunately its getting late and I need to grab some dinner. I’ll have to save that for my next post …

 

Peter

C# Guy

 

 

 

Out this week ...

I've been out this week taking a great course on designand architecture. For those interesed in the evolution of C#, check this out  http://msdn.microsoft.com/events/pdc/ 

Many Questions: switch on type

I hope everyone had a good fourth of July weekend. I certainly did. I spent the weekend hiking around the Olympic peninsula with my girlfriend and capped it off watching the fireworks here in Seattle. On to our question of the week:

We get a lot of requests for addditions to the C# language and today I'm going to talk about one of the more common ones - switch on type. Switch on type looks like a pretty useful and straightforward feature: Add a switch-like construct which switches on the type of the expression, rather than the value. This might look something like this:

switch typeof(e) {
case int:    ... break;
case string: ... break;
case double: ... break;
default:     ... break;
}

This kind of statement would be extremely useful for adding virtual method like dispatch over a disjoint type hierarchy, or over a type hierarchy containing types that you don't own. Seeing an example like this, you could easily conclude that the feature would be straightforward and useful. It might even get you thinking "Why don't those #*&%$ lazy C# language designers just make my life easier and add this simple,  timesaving language feature?"

Unfortunately, like many 'simple' language features, type switch is not as simple as it first appears. The troubles start when you look at a more significant, and no less important, example like this:

class C {}
interface I {}
class D : C, I {}

switch typeof(e) {
case C: ... break;
case I: ... break;
default: ... break;
}

Here the set of cases overlap. When ‘e’ is of type ‘D' both 'case I' and 'case C' are applicable. Now what? As language designers, we need to precisely specify what happens in cases like these. The choices to deal with this kind of situation are:

• process the case tests in textual order
• make definition of potentially overlapping cases a compile time error

Processing the cases in textual order would make the above switch semantically different from this:

switch typeof(e) {
case I: ... break;
case C: ... break;
default: ... break;
}

This runs completely counter to people’s intuition about switch. Programmers would be extremely surprised to learn that reordering the case labels had an affect on which case was chosen.

Better yet, what about this:

switch typeof(e) {
default: ... break;
case I: ... break;
case C: ... break;
}

Would the default case always be chosen? Ouch!

Alternatively, making definition of potentially overlapping cases a compile error would not yield a useful feature. It would make switching on interfaces an error for virtually every useful case, and would also make switching on an extensible type hierarchy - like System.Windows.Forms.Control -  also difficult if not impossible.

So the conclusion is that we thought pretty deeply about this feature, but couldn't find a way to add switch on type in a way which is both intuitive and broadly useful. This situation is not uncommon in language design. The C# language design team has discarded many potential features for similar reasons.

This example ilustrates what is the most important lesson I've learned from Anders Hejlsberg while I've been on the C# language design team. Often the result of good design is to cut the feature.

Peter
C# Guy

Many Questions: Protected Constructors

Well here it is, one week into my many questions series and I'm already late for the second issue. I have a good reason though, as I took a long weekend to rock climb out at Stone Hill near Eureka Montana. If you are into climbing, I highly recommend it - Stone Hill has a ton of quality routes. I should warn you that some of the ratings are a little stout. My first climb of the weekend was a 5.8 that nearly knocked me on my butt.

OK, onto today's question which comes from the MSDN product feedback center (http://lab.msdn.microsoft.com/ProductFeedback/viewFeedback.aspx?feedbackid=5876d3d0-a4ba-483e-846f-3bb092776b12):

Q: In Version 1 of C#, derived classes could call protected constructors declared in their base classes in any context. In VS 2005, derived classes can only call protected constructors from their base class from their own constructors. For example:

public class Base {
   protected Base() {}
}

public class Derived : Base {
   Derived() : base() // call protected constructor from derived constructor ...
                      // ... still allowed in VS 2005
   {}
   void Main() {
      Base b = new Base(); // call protected constructor to instantiate new object ...
                           // ... allowed in VS 2003, but error in VS 2005
   }
}

Why restrict access of protected constructors to only derived constructors?

A: To gain some context on this issue, let's quickly review protected access in C#. Members declared with protected accessability can be referenced from the declaring class, and classes derived from the declaring class. However, C# has very different rules for accessing protected static members from derived classes vs. accessing protected instance members from derived classes.

Protected static members can be accessed without restriction from derived classes. No surprises here. Access to protected instance members from derived classes has an additional restriction. When a protected instance member is accessed outside the program text of the class in which it is declared the access is required to take place through an instance of the derived class type in which the access occurs.

Here's an example, showing the various combinations:

public class Base {
   protected Base() {}
   protected static StaticMethod() {}
   protected void InstanceMethod() {}
}

public class Derived : Base {
   Derived() : base() // OK: call protected constructor from derived constructor
                      // still allowed in VS 2005
   {}
   void Main() {
      Base b = new Base(); // call protected constructor to instantiate new object
                           // allowed in VS 2003, but error in VS 2005
      Base.StaticMethod(); // OK: call protected static method
      b.InstanceMethod();  // Error: can't call a protected instance method on a Base ...
      Derived d = new Derived();
      d.InstanceMethod();  // ... but can call an inherited protected instance method on a Derived
   }
}

Essentially, access to protected constructors were (mistakenly) covered by the static members rule in VS 2003, but changed to the instance members rule in VS 2005. So why this change? Better yet, why have the extra instance member rule at all?

The reasoning behind the special instance member rule is that without it, protected access would not actually provide any data encapsulation at all. Protected members would be accessible to anyone that could access public members. Protected access could be circumvented using code similar to this example:

public class Malicious : Base {
   public static void ByPassProtectedAccess(Base b) {
      b.InstanceMethod();
   }
}

With the 'protected access for instance members' rule, bypassing protected access is not possible for our Malicious class. Programmers use the protected access modifier to control access to the state of their objects to trusted sources. Allowing a way to circumvent access to protected members could result in security vulnerabilities in your code. We've caught security issues very similar to this in the .Net framework code.

Restricting access to inherited protected instance constructors to the 'base' call in derived constructors makes instance contructors fall under the same rule as other instance members, and makes the protected modifier actually provide some access restriction over public access. Unfortunately this change will break some existing C# code. In general, we don't make changes which could break existing C# code unless there's a very good reason - even if it fixes a bug to get the compiler to conform better to the language specification. However, the additional security benefits from plugging the potential unauthorized access of protected instance constructors made this the right decision.

Astute readers will notice that this still leaves protected static members as accessible as public static members. So with that in mind, I recommend never declaring static members to be protected. Always decide if they should be public, private, or internal so that there's no confusion.

Peter
C# Guy