Spectre

Spectre is a simple programming language meant for safe and contract based low-level systems programming.

It allows for function-level invariants, preconditions and postconditions, and it enables safety through use of immutability by default.

This documentation aims to act as a user guide for the Spectre programming language.

---

Why?

There is a notable lack of contract based programming languages that enforce correctness at a low level.

The idea behind Spectre is that it enables correctness, sane data flow, and immutability by default, such that low level programming is safer, but not to the point of annoyance.

Memory can be managed manually, or a garbage collector can be linked. Either way the language compiles from high-level code to the QBE target.

---

What this guide isn’t

This is not an idiomatic guide on how to write Spectre code, and given how niche the language is, there is unlikely to ever be a “standard” developed for it. Regardless, this aims to showcase the languages features and display how tasks can be achieved via the Spectre programming language.

---

Getting started

The simple hello world can be achieved via the following:

val std = use("std")

pub fn main() i32 = {
    trust std.io.put_any("Hello, world: {d}.", {10})
    return 0
}

You will notice the trust keyword here. Any operation (such as IO) that has an underlying unsafe mechanism (such as the printf builtin that std.io.put_any uses), must be explicitly trusted, as it is inherently impure.

This is of course unless you use the safe wrappers around those functions, that use preconds, invariants, etc…, or if you use simpler functions altogether. There is no need, for example, to “trust” a simple print, since, unless there’s a severe OOM error, it won’t fail. Thus, we mark it as safe in the standard library.

If we don’t want the trust keyword to appear everywhere in our code, and if you’re hell-bent on writing unsafe, non-contract based code, you can do so, but you must mark the function return type (which is compulsory) with !

For example:

pub fn some_function() void! = {
    val x: usize = some_unsafe_function()
    std.io.put_any("Wow, now I can omit the trust keyword. {d}", {x})
}

Further information on the language’s spec can be found in the links below.

Contents:

• Core Concepts
  • Immutability
  • Contract System
  • Trust Model
  • Option Types
  • Functions and Return Types
  • Summary
• Syntax Guide
  • Variable Bindings
  • Function Definitions
  • Struct Definitions
  • Module Imports
  • Expressions
  • Control Flow
  • Test Blocks
  • Constants
  • Comments
  • Complete Example
  • Syntax Summary
• Contract System
  • Overview
  • Pre-conditions
  • Post-conditions
  • Contract Enforcement
  • Trust System
  • Trust Propagation
  • Best Practices
  • Common Patterns
  • Error Handling with Contracts
  • Summary
• Type System
  • Overview
  • Primitive Types
  • Option Types
  • Struct Types
  • Buffer Types
  • Type Annotations
  • Type Inference
  • Type Compatibility
  • Generic Types
  • Examples
  • Summary
• Modules and Packages
  • Module Imports
  • Visibility Modifiers
  • Module Structure
  • Standard Library
  • Cross-Module Calls
  • Trust and Modules
  • Examples
  • Best Practices
  • File Organization
  • Summary
• Testing
  • Overview
  • Test Blocks
  • Assertions
  • Testing Functions with Contracts
  • Testing Option Types
  • Testing Trusted Functions
  • Testing Structs
  • Complete Test Example
  • Test Organization
  • Best Practices
  • Running Tests
  • Test Output
  • Integration with Contracts
  • Summary
• Error Handling
  • Overview
  • Option Types
  • Contract Violations
  • Compile-Time Errors
  • Runtime Errors
  • Trust Markers and Errors
  • Error Handling Patterns
  • Best Practices
  • Debugging Errors
  • Summary
• Language Reference
  • Keywords
  • Syntax Reference
  • Type Reference
  • Expression Reference
  • Statement Reference
  • Complete Grammar Summary
  • Standard Library Reference
  • Error Reference
  • Quick Reference Card
  • Version Information