BST Invariants
In lecture, we've been talking about the idea of a binary search tree, a binary tree structure that obeys certain invariants and supports a kind of efficient search similar to the binary search that we saw in the second week of class. The key invariant of binary search trees is that for every node, all the nodes in its left subtree are smaller, and all of the nodes in its right subtree are larger. We think of binary search trees as supporting search, insert, and delete operations similar to those supported by hash tables, so we think of the comparisons as taking place between keys, and we require comparisons to be strict so that the tree contains no duplicate keys.
Here is an example of a binary search tree:
Note that the element labelled -3 in the tree must be both greater than -1 and less than -5 -- it's not enough just to be greater than -1. In the first lecture on binary search trees, we wrote an is_bst specification function that checked this weaker, local property, and would accept certain binary trees that do not globally satisfy the right invariants.
We can use the idea that each node's key has to be within a certain range to write a stronger specification function. If we annotate the tree above with the required range of each node, it's easy to see that the tree satisfies the invariant we have in mind.
Moreover, if we violated the global invariant, the ranges would highlight that fact, even if we preserved the local invariant. Suppose we replaced -3 with 27: as we mentioned above this would be invalid, because although 27 is greater than -1, it's not less than 5 -- the global invariant is violated.
There are at least three ways we could imagine turning the "range" idea into a formal specification function:
- Pass a minimum and maximum as arguments to the function, and check that each node is in the appropriate range,
- Return a minimum and a maximum from the function, and check that each node is in an appropriate relationship with its subtrees, or
- Pass one of the minimum and maximum as an argument, and return the other, checking the invariant in an in-order fashion.
The main obstacle to approach of passing a range is that we need to have some sort of representation of negative and positive infinity -- values strictly smaller or strictly greater than every other value. We can't just pick the leftmost and rightmost values from the tree, since our comparisons are strict, and the specification function would fail when it got to, e.g., the leftmost leaf. For similar reasons we don't want a domain-specific solution like computing min_int and max_int, if our keys are ints -- we may want to store elements with those keys in the tree, and using them as bounds would exclude the possibility.
Recall that in order to complete the binary tree implementation, we said that the client had to provide an elem type and a comparison function bool compare(elem x, elem y). Leveraging the fact that the elem type is always required to be a pointer, we can solve the problem at hand by letting NULL represent the initial boundary points. How can the same thing represent both positive and negative infinity? Well, we make it the case when we interpret NULL in two different contexts: when comparing it to something that should be greater and when comparing it to something that should be smaller.
We produced code analogous to the following to check the strengthened global binary search tree ordering invariant.
bool is_ordered(tree T, elem min, elem max) {
if (T == NULL)
return true; // empty tree is trivially ordered
else if (T->data == NULL)
return false; // all tree nodes must have data
else {
// get the current node's key
//@assert T->data != NULL;
key k = elem_key(T->data);
return
// check that the current node is in range
(min == NULL || compare(elem_key(min), k) < 0)
&& (max == NULL || compare(k, elem_key(max)) < 0)
// check that the subtrees are also ordered
&& is_ordered(T->left, min, T->data)
&& is_ordered(T->right, T->data, max);
}
}
bool is_bst(bst B) {
return B != NULL && is_ordered(B->root, NULL, NULL);
}
A couple of points to note about the code:
- The function elem_key has as a pre-condition that its argument is non-NULL, so we have to take care to check that T->data != NULL before getting its key.
- The lines with the short-circuits (min == NULL || ...) and (max == NULL || ...) are exactly the places where we "decide" that NULL should be interpreted as negative or positive infinity, respectively.
- We make the code a little easier to read by writing both calls to compare with the arguments in the left-to-right order we would expect them to appear in the tree.
- When we recursively check the left and right subtrees, we modify the range appropriately.
- In the definition of is_bst, when we make the initial call to is_ordered we pass NULL as both of the initial bounds.
Tree Rotations
Tree rotations can be used to change the balance of a tree. There are two kinds of single rotations: a left rotation and a right rotation. There are also double rotations, but we did not discuss them in this recitation.
As an example, if we applied a single left rotation to the example tree above, we would obtain the following:
