A number of readers made some good comments on my article on JScript typing that deserve to be called out in more detail.
First, I was being a little sloppy in my terminology — I casually conflated static typing with strong typing, and dynamic typing with weak typing. Thanks for calling me on that. Under the definitions proposed by the reader, JScript would be a dynamically typed language (because every variable can take a value of any type) and a strongly typed language (because every object knows what type it is.) By contrast, C++ is a statically typed language (because every variable must have a type, which the compiler enforces) but also a weakly typed language (because the reinterpret cast allows one to turn pointers into integers, and so on.)
Second, a reader notes that one of the shortcomings of JScript is that though it is a strongly typed language (in our new sense) that it is a royal pain to actually determine the runtime type an object. The typeof operator has a number of problems:
* null is listed as being of the object type, though technically it is a member of the Null type.
* primitives (strings, numbers, Booleans) wrapped in objects are listed as being of the object type rather than their underlying type.
* JScript, unlike VBScript, does not interrogate COM objects to determine the class name.
* If JScript is passed a variant from the outside world that it cannot make sense of then typeof returns “unknown”.
Perhaps there is some other way. Prototype inheritance affords a kind of type checking, for example.
Prototype inheritance works like this. Every JScript object has an object (or possibly null) called its prototype object. So suppose an object foo has prototype object bar, and bar has prototype object baz, and baz has prototype object null. If you call a method on foo then JScript will search foo, bar and baz for that method, and call the first one it finds. The idea is that one object is a prototypical object, and then other objects specialize it. This allows for code re-use without losing the ability to dynamically customize behaviour of individual objects.
Prototypes are usually done something like this:
var Animal = new Object();
// omitted: set up Animal object
function Giraffe(){
// omitted: initialize giraffe object.
}
Giraffe.prototype = Animal;
var Jerry = new Giraffe();
Now Jerry has all the properties and methods of an individual Giraffe object AND all the properties and methods of Animal. You can use IsPrototypeOf to see if a given object has Animal on its prototype chain. Since prototype chains are immutable once created, this gives you a pretty reliable sort of type checking.
Note that Giraffe is not a prototype of Jerry. Note also that Animal is not the prototype of Giraffe! The object which is assigned to the prototype property of the constructor is the prototype of the instance.
Now, you guys are not the first people to point out to me that determining types is tricky. A few years ago someone asked me what the differences are amongst
if (func.prototype.IsPrototypeOf(instance))
and
if (instance.constructor == func)
and
if (instance instanceof func)
The obvious difference is that the first one looks at the whole prototype chain, whereas the second two look at the constructor, right? Or is that true? Is there a semantic difference between the last two? Actually, there is. Let’s look at some examples, starting with one that seems to show that there is no difference:
function Car(){}
var honda = new Car();
print(honda instanceof Car); // true
print(honda.constructor == Car); // true
It appears that instance instanceof func and instance.constructor == func have the same semantics. They do not. Here’s a more complicated example that demonstrates the difference:
var Animal = new Object();
function Reptile(){ }
Reptile.prototype = Animal;
var lizard = new Reptile();
print(lizard instanceof Reptile); // true
print(lizard.constructor == Reptile); // false
In fact lizard.constructor is equal to Object, not Reptile.
Let me repeat what I said above, because no one understands this the first time — I didn’t, and I’ve found plenty of Javascript books that get it wrong. When we say
Reptile.prototype = Animal;
this does NOT mean “the prototype of Reptile is Animal”. It cannot mean that because (obviously!) the prototype of Reptile, a function object, is Function.prototype. No, this means “the prototype of any instance of Reptile is Animal”. There is no way to directly manipulate or read the prototype chain of an existing object.
Now that we’ve got that out of the way, the simple one first:
instance instanceof func means “is the prototype property of func equal to any object on instance’s prototype chain?” So in our second example, the prototype property of Reptile is Animal and Animal is on lizard’s prototype chain.
But what about our first example where there was no explicit assignment to the Car prototype?
The compiler creates a function object called “Car”. It also creates a default prototype object and assigns it to Car.prototype. So again, when we way
print(honda instanceof Car);
the instanceof operator gets the prototype property (Car.prototype) and compares it to the prototype chain of honda. Since honda was constructed by Car it gets Car.prototype on its prototype chain.
To sum up the story so far,
Comments (16)
Cancel reply
You must be logged in to post a comment.
- Erik Arvidsson says:Just a side note. The prototype object is usually called __proto__ ( [[Protoype]] in the spec) and almost all ECMAScript engines (except the Microsoft ones) allows read write of this private property.
- Log in to Reply
- November 6, 2003 at 2:40 pm
- Jay Hugard says:Can you explain the logic behind the following madness (in JScript Classic), which appears to mean that a string is not always a String but a regexp is always a RegExp?slit instanceof String => false
sobj instanceof String => true
slit instanceof Object => false
sobj instanceof Object => true
typeof( slit ) => string
typeof( sobj ) => object
typeof( slit ) == typeof( sobj ) => falseAs generated by:function evalprintln( s )
{
if( !s ) { println(“”); return }
var out = s + ” => “;
try{ out += eval(s) } catch( e ) { out += “Error: ” + e.description }
println(out);
}var tests = [
“slit instanceof String”,
“sobj instanceof String”,
“slit instanceof Object”,
“sobj instanceof Object”,
“typeof( slit )”,
“typeof( sobj )”,
“typeof( slit ) == typeof( sobj )”,
null,
“relit instanceof RegExp”,
“reobj instanceof RegExp”,
“relit instanceof Object”,
“reobj instanceof Object”,
“typeof( relit )”,
“typeof( reobj )”,
“typeof( relit ) == typeof( reobj )”
];Log in to Reply - for( var ix in tests ) { evalprintln( tests[ix] ) }
- var slit = “Literal String”;
var sobj = new String( “String object” );
var relit = /literal regexp/i
var reobj = new RegExp( “RegExp object” ); - function println(s) { WScript.echo(s) /*System.Console.Out.WriteLine(s)*/ }
- relit instanceof RegExp => true
reobj instanceof RegExp => true
relit instanceof Object => true
reobj instanceof Object => true
typeof( relit ) => object
typeof( reobj ) => object
typeof( relit ) == typeof( reobj ) => true - Conversly, what is the recommended way of determining if a value is a string?
- November 6, 2003 at 6:01 pm
- Peter Torr says:Erik — IIRC, Netscape removed the support for __proto__ from their engine some years ago because it was a bad idea to let people mess with the prototype chain this way. The ECMA standard does not require the property to be exposed, and it is dangerous to do so.
- Log in to Reply
- November 6, 2003 at 6:32 pm
- Peter Torr says:Jay, if you read the ECMA spec you will see that there are string primitives and string objects, just as there are number/boolean primitives and number/boolean objects. Basically you should never use “new String(…)” because it is a waste of time and energy.print(nlit instanceof Number)
print(nlit instanceof Object)
print(nobj instanceof Number)
print(nobj instanceof Object) - Log in to Reply
- var nlit = 42
var nobj = new Number(42) - November 6, 2003 at 6:40 pm
- IUnknown says:>JScript, unlike VBScript, does not interrogate COM objects to determine >the class name.Log in to Reply
- This gets the award for the most unrelated error message:
TypeName(myObject)
throws, when the type information is unavailable:
Out Of string space: ‘TypeName’ - November 7, 2003 at 2:02 am
- Eric Lippert says:Can I see a repro for that? If the type name is unavailable, it should return “Unknown” or, if it is an IDispatch, “Object”.Log in to Reply
- TypeName does return “Out of string space”, but only when the attempt to allocate the string for the type name fails.
- November 7, 2003 at 12:54 pm
- Erik Arvidsson says:Peter: I know both the Mozilla engines (C and Java) and the Macromedia engine has support for this. I was pretty sure that Opera supported this as well but I just verifed that they do not.fucntion SubClass( args )
{
SuperClass.call( args );
}
SubClass.prototype.__proto__ = SuperClass.prototype;Log in to Reply - Well, well… now that we have ECMAScript v4 around the corner there is no real need for this.
- I can understand why it is considered dangerous but usage of __proto__ can be very useful. For example it allows you to skip creating an instance that is used as the prototype.
- November 7, 2003 at 3:14 pm
- Eric Lippert says:> Well, well… now that we have ECMAScript v4 around the corner there is no real need for this.Log in to Reply
- That’s news to me. Could you more precisely define “around the corner”?
- November 7, 2003 at 5:02 pm
- Isaac says:> conflated static typing with strong typing
“static typing” unhelpfully confuses when checks are made with the kind of checks that are made.Simpler to understand that JScript is a dynamically-checked untyped (safe?) language.Log in to Reply - I think you demonstrated that it’s pretty hard to figure out what the type of a value is in JScript – so why insist on calling it a typed language?
- Simpler to understand that C++ is a statically-checked weakly-typed language (and also that some things are dynamically checked in C++).
- November 7, 2003 at 5:26 pm
- Anonymous says:[quote]Can I see a repro for that? If the type name is unavailable, it should return “Unknown” or, if it is an IDispatch, “Object”. [/quote]Also see this:
http://groups.google.com/groups?q=typeName+%22Out+of+string+space%22 - Log in to Reply
- I got this when trying it on a COM object that uses run-time generated type info (ie. CreateDispTypeInfo). This only provides a minimal implementation of ITypeInfo. This is not common(or recommended) so I wouldn’t worry too much. If it helps the COM object is out of process.
- November 8, 2003 at 6:05 am
- Eric Lippert says:OK, then I have a guess as to what is happening. This is a TERRIBLE way to wait for an out-of-proc object (OOPO) to shut down. I’ll bet that there is a race condition here where the stub is returning a pointer to memory that becomes bad when the OOPO shuts down. So the TypeName method essentially gets passed a pointer to bad memory.So what we’ve got here is a memory corruption bug that is not crashing, but returning a bogus error instead.
- Log in to Reply
- Now suppose that the bad memory happens to be in a readable committed page, but contains garbage. We assume that the thing is a BSTR, so we look at the value stashed preceding the string body to determine the length. That could be any old number; the odds that the number happens to be larger than the largest remaining heap block are actually very good.
- November 8, 2003 at 10:57 am
- Anonymous says:The link I posted was just something I found while searching on the error. My situation relates to using run time type info. Have you tested TypeName with run time type info? It is obsolete and I only use it for testing so this discussion is essentially accademic.I think my object was based on the code found here, so if you want to copy and paste:
http://docs.rinet.ru:8083/VidimyyC/vcu28fi.htm#I25 - Log in to Reply
- My guess is that something similar is happening, ITypeInfo must be returning bogus data. Assuming that you check all error results this could even be a bug in the implementation of ITypeInfo for CreateDispTypeInfo. As mentioned, this is obsolete and probably hasn’t been looked at for a long time.
- November 9, 2003 at 4:13 am
- Erik Arvidsson says:”That’s news to me. Could you more precisely define “around the corner”?”Known implemantions of ECMAScript v4:One possible reason for JS2 taking so long might be that ECMA moved all their resources to C# instead?
- Log in to Reply
- ActionScript
QTScript
JScript 7
- I guess I was wrong 😥 This has been in the works for way too long…
- May 2, 2004 at 7:07 am
- Eric Lippert says:A more likely reason is that Waldemar Horwat, who was the primary driving force behind the E4 spec, no longer works for AOL-Time-Warner-Netscape and hence is no longer being paid to drive the spec process forward. (Rumour has it that he’s at google now.)Log in to Reply
- Microsoft is still involved in the E4 process, but it is slow going.
- May 2, 2004 at 8:23 am
- Fabulous Adventures In Coding says:Log in to Reply
- October 7, 2004 at 1:32 pm
- Intercept instanceof | keyongtech says:PingBack from http://www.keyongtech.com/4947719-intercept-instanceof
- Log in to Reply
- January 18, 2009 at 12:41 pm
One thing that really bugs me about JavaScript, a.k.a. JScript Classic, is the myriad yet incompatible methods to determine object type. The main problem being the various ways to define what constitutes a unique JavaScript type. For example, one could argue that the definition you have presented is to weak in that the Object group is not sufficiently specific.
The obvious way to determine object type is the typeof operator. This operator returns a different set of values than the one you enumerated: “number,” “string,” “boolean,” “object,” “function,” and “undefined.” That is, null is identified as an object, yet JScript functions are magically identified as being something more than just any old object.
Also, a few may know that JScript’s typeof can also return “unknown” in certain weird cases.
Add to this confusion that typeof(3) is “number” but typeof(new Number(3)) is “object”. I can understand why this is, but is can be confusing. For example, what would be the output from the following code:
Number.prototype.showType = function() { alert(typeof(this)); }
(3).showType();
Automatic boxing, I know.
Another way to determine types is using the constructor property. This allows you to determine if an object is an Array for example:
if ( x.constructor === Array ) …
or you can use the instanceof operator.
You might also care about the subclass of a particular type, as determined by it’s prototype. In this case you would use the isPrototypeOf method.
Finally, since JavaScript uses duck-typing, what might actually be relevant is not an object’s exact type, but which properties it implements. In this case you would use the in operator, or maybe even propertyIsEnumerable.
The situation is even worse when you involve objects that are external to JScript. For example, DOM methods are not identified as functions and DOM collections may look a bit like arrays but aren’t.
I’ve seen slightly different uses of the vocabulary that your article uses. Type systems can usefully be classified along two axes, namely static / dynamic and strong / weak.
Static typing means variables have associated (compile-time) type information and can only be bound to values of some type. By your examples, JScript classic is dynamically typed, since a variable can be bound to values of different types during its lifetime. This would not be possible in a statically typed language, such as C.
Strong typing essentially means that there’s a typeof operator – i.e., a value (not the variable, but the thing it is bouund to) holds information about its type. C is weakly typed: a value is just a bit pattern in memory without any explicit type information, and there’s nothing forbidding anyone from reinterpreting a `long’ value as a pointer to a structure. This would not be possible in a strongly typed language.
I’ll second Rudi on this. The definitions that he mentions are becoming more pervasive. If Strong/Weak and Static/Dynamic aren’t seen as orthogonal then you have the situation where Smalltalk and early C are considered to have the same kind of type system, and that’s nearly a criminal misrepresentation. It equates having well defined errors detected at runtime with silent memory corruption that crashes a system if you are lucky, or just makes things randomly and silently wrong over the life of a system, if you aren’t.
“implies that JScript supports no types at all”
Much of the confusion and ambiguity in the terms we use seems to stem from fear of negative connotations.
It’s unclear to me why we cannot work with the terms defined by Luca Cardelli (in Handbook of Computer Science and Engineering, Chapter 103. CRC Press, 1997; http://citeseer.nj.nec.com/cardelli97type.html
) .
typed (untyped)
“A program variable can assume a range of values during the execution of a program. An upper bound of such a range is called a type of the variable. Languages that do not restrict the range of variables are called untyped languages.”
safe (unsafe)
“A program fragment is safe if it does not cause untrapped errors to occur. Languages where all program fragments are safe are called safe languages.”
So, Smalltalk is untyped and safe (no untrapped errors), and C is typed and unsafe.
(Of course, he also defines explicit/implicit types, static checking/dynamic checking, strongly checked/weakly checked…)
You describe a subtype in terms of a subset of the possible values of a super type. But in practice (in most all exaples I have seen , in textbooks and so forth) the opposite is true… This convention is also enforced by some language rules (which I will get to).
For example the class java.util.zip.JarFile extends java.util.zip.ZipFile, but it represents both a zip file AND a jar file, so clearly it’s set of possible values is larger. But it is also a subtype of ZipFile…. how can this be? does it violate the rules of subtypeing? and if it did, why does the compiler not reject it?
Because most all languges have subtypes inheret attributes of the supertpe, it is easy for developers to make these kinds of mistakes.
>It’s unclear to me why we cannot work with the terms defined by Luca >Cardelli (in Handbook of Computer Science and Engineering, Chapter 103. >CRC Press, 1997; http://citeseer.nj.nec.com/cardelli97type.html
>typed (untyped)
>”A program variable can assume a range of values during the execution of a >program. An upper bound of such a range is called a type of the variable. >Languages that do not restrict the range of variables are called untyped >languages.”
It sounds like he is talking about variables, and that’s fine, but in some OO languages you don’t have data variables, you have references to objects. Calling languages like these untyped doesn’t make much sense because the objects themselves obviously have types. In other words, the languages features are at a level of abstraction where that definition isn’t very relevant.
Another example. In some languages you don’t have to be particularly concerned if you attempt to increment an integer beyond its range. The object adjusts its range dynamically. Now which is the variable? The object or the reference that holds it? If you say it is the reference, then all references have the same type, but if you say it is the object, well, what is its type really? And, do you ever assign an object to another? In many OO languages you can’t you can only assign references.
>It’s unclear to me why we cannot work with the terms defined by Luca >Cardelli (in Handbook of Computer Science and Engineering, Chapter 103. >CRC Press, 1997; http://citeseer.nj.nec.com/cardelli97type.html
>typed (untyped)
>”A program variable can assume a range of values during the execution of a >program. An upper bound of such a range is called a type of the variable. >Languages that do not restrict the range of variables are called untyped >languages.”
It sounds like he is talking about variables, and that’s fine, but in some OO languages you don’t have data variables, you have references to objects. Calling languages like these untyped doesn’t make much sense because the objects themselves obviously have types. In other words, the languages features are at a level of abstraction where that definition isn’t very relevant.
Another example. In some languages you don’t have to be particularly concerned if you attempt to increment an integer beyond its range. The object adjusts its range dynamically. Now which is the variable? The object or the reference that holds it? If you say it is the reference, then all references have the same type, but if you say it is the object, well, what is its type really? And, do you ever assign an object to another? In many OO languages you can’t you can only assign references.
> You describe a subtype in terms of a subset of the possible values of a super type. But in practice (in most all exaples I have seen , in textbooks and so forth) the opposite is true
> For example the class java.util.zip.JarFile extends java.util.zip.ZipFile, but it represents both a zip file AND a jar file, so clearly it’s set of possible values is larger.
If JarFile is a subtype of ZipFile then every instance of JarFile is also an instance of ZipFile. But that’s the definition of “subset” — if every member of X is a member of Y then X is a subset of Y.
Therefore, I’m not following your train of thought here. The set of all objects that are ZipFiles contains all JarFiles plus all the non-JarFile instances of ZipFiles, so how could JarFiles be a larger set?
You seem to have confused the “set of possible values.” With type systems here we’re concerned about the number of possible values a variable can hold. A variable of type ZipFile can reference any ZipFile object, and any JarFile object. But a variable of type JarFile can reference only JarFile objects, not ZipFile objects that are not JarFile objects. Thus, a JarFile variable holds a subset of the values that can be held in a ZipFile variable.
Eric Lippert Writes:
“I’m not following your train of thought here…if every member of X is a member of Y then X is a subset of Y. ”
Thank you for clearing me up. My confusion was in thinking that increasing the functionality in the subclass increases the values it can represent… like a TitledBorder with a Border superclass.
I just assumed that the Border type does not include a border with a title, because it does not properly handle the title, ( has no operators for title) it shold not include values with titles…. only the TitledBorder type should include that valeu. But a TitledBorder also can handle a border with not title, as it is also a border. So I just assumed that TitledBorder will represnt a superset..
But as you note, the Border type should include borders that have titles. Even if it can not represent thoese titles properly. It just seemed silly that a border without a title is not a valid TitledBorder (or a zipfile without a manifes is a valid jar file).. but the reverse is ture, even though i have no way of representing/manipulating the title/manifest.
But i see my fault.
> It sounds like he is talking about variables, and that’s fine
Yes, the definition is in terms of the range of values that can be assigned to a variable.
> but in some OO languages you don’t have data variables,
> you have references to objects
The distinction between value types and reference types is unimportant to this definition. In a typed language we may restrict a variable to hold references to a particular type – such as POINTER TO ZipFile. In an untyped language we don’t do that.
> Now which is the variable? The object or the reference that holds it?
> If you say it is the reference, then all references have the same type
I’m unsure what you mean. Let’s be more concrete (Smalltalk):
| myVariable |
myVariable := OrderedCollection new.
Now myVariable holds a reference to an instance of OrderedCollection.
myVariable := Dictionary new.
Now myVariable holds a reference to an instance of Dictionary.
myVariable is “the variable”. Any value can be assigned to myVariable. The language is untyped.
In some other language
ArrayList myVariable = new ArrayList();
Now myVariable holds a reference to an instance of ArrayList.
myVariable = new HashMap();
***Fails – the range of values that myVariable may hold is restricted to references to ArrayList instances. The language is typed.
This kind of definition has been called misleading because languages without typed variables do have values of different types.
OTOH being *untyped* is the easy explanation for why we have ad-hoc polymorphism and loose-coupling in these languages. They got rid of type restrictions – proud to be untyped and safe.
In that universe, “JScript Classic” would be untyped, and “JScript .NET” would be typed (presumably “untyped” variables are “restricted” to some universal type).
>This kind of definition has been called misleading because languages >without typed variables do have values of different types.
>OTOH being *untyped* is the easy explanation for why we have ad-hoc >polymorphism and loose-coupling in these languages. They got rid of type >restrictions – proud to be untyped and safe.
Except they didn’t.
myVariable := Dictionary new.
myVariable floggle.
Sending floogle to myVariable is a type error, it is just one detected at run-time.
Can we find a better forum for this discussion?
>> They got rid of type restrictions
> Except they didn’t.
Wasn’t it clear from the context that “type restrictions” refered to type restrictions on variables? Ain’t none of those in Smalltalk
I’m a bit surprised that there’s anything controversial about this – back in 1990, Justin Graver & Ralph Johnson were quite clear that “Smalltalk is untyped”, see “A Type System for Smalltalk”.
http://citeseer.nj.nec.com/graver90type.html
> Sending floogle to myVariable is a type error
It might be if Dictionary was a type, but it isn’t – it’s a class. Implementation is inherited, specification is ignored (notably in Dictionary being a subclass of Set – see the paper).
So “Sending floogle to myVariable” is just messageNotUnderstood
PingBack from http://www.hilpers.fr/526142-hs-total-objet-ou-pas/2