fitting the pieces together
play

Fitting the Pieces Together: A Machine-Checked Model of Safe - PowerPoint PPT Presentation

Feb 08, 2024 •152 likes •535 views

Fitting the Pieces Together: A Machine-Checked Model of Safe Composition Benjamin Delaware William Cook Don Batory University of Texas at Austin Safe Composition Features Word Processor has formatting, printing, spell check,

  1. Fitting the Pieces Together: A Machine-Checked Model of Safe Composition Benjamin Delaware William Cook Don Batory University of Texas at Austin

  2. Safe Composition • Features • Word Processor has formatting, printing, spell check, tables.. • Cut across traditional modularity boundaries • Reify functionality into distinct feature modules • Software Product Line (SPL) • Multiple products from one code base • Product = subset of features • Safe Composition • Type check all products • Products are exponential in number of features • Goal • Sound type system • Foundation for efficient implementation

  3. A Feature Example

  4. A Feature Example • Features are sets of class definitions and refinements

  5. A Feature Example • Features are sets of class definitions and refinements feature Account { class Account extends Object { int balance = 0; void update(int x) { int newBal = balance + x; balance = newBal; Account } }}

  6. A Feature Example • Features are sets of class definitions and refinements feature Account { class Account extends Object { int balance = 0; void update(int x) { int newBal = balance + x; balance = newBal; Account } }} feature InvestAccount { feature RetireAccount { refines class Account extends WaMu { refines class Account extends Lehman { int 401kbalance = 0; int 401kbalance = 10000; refines void update (int x) { int update (int x) { x = x/2; 401kbalance += x; Super (); }} RetireAccount } 401kbalance += x; InvestAccount } }}

  7. Composing Features • Features are sets of class definitions and refinements feature Account { class Account extends Object { int balance = 0; void update(int x) { int newBal = balance + x; balance = newBal; Account } }} feature InvestAccount { feature RetireAccount { refines class Account extends WaMu { refines class Account extends Lehman { int 401kbalance = 0; int 401kbalance = 10000; refines void update (int x) { int update (int x) { x = x/2; 401kbalance += x; Super (); }} RetireAccount } 401kbalance += x; InvestAccount } }}

  8. Composing Features Account InvestAccount RetireAccount

  9. InvestAccount • Investor Account InvestAccount RetireAccount

  10. InvestAccount • Investor InvestAccount RetireAccount = feature Account { Account class Account extends Object { int balance = 0; void update(int x) { int newBal = balance + x; balance = newBal; Account } }}

  11. InvestAccount • Investor RetireAccount = feature Account { Account InvestAccount class Account extends Object { int balance = 0; void update(int x) { feature InvestAccount { int newBal = balance + x; refines class Account extends WaMu { balance = newBal; Account int 401kbalance = 0; } refines void update (int x) { }} x = x/2; Super (); 401kbalance += x; InvestAccount } }}

  12. InvestAccount • Investor RetireAccount feature Account { WaMu class Account extends Object { + = Account feature InvestAccount { InvestAccount int balance = 0; refines class Account extends WaMu { int 401kbalance = 0; int 401kbalance = 0; InvestAccount void update(int x) { refines void update (int x) { x = x/2; x = x/2; int newBal = balance + x; Super (); balance = newBal; 401kbalance += x; 401kbalance += x; } Account }} } }}

  13. RetireAccount • Investor Account InvestAccount RetireAccount

  14. RetireAccount • Investor InvestAccount RetireAccount = feature Account { Account class Account extends Object { int balance = 0; void update(int x) { int newBal = balance + x; balance = newBal; Account } }}

  15. RetireAccount • Investor InvestAccount RetireAccount = feature Account { Account class Account extends Object { int balance = 0; void update(int x) { int newBal = balance + x; balance = newBal; Account feature RetireAccount { } refines class Account extends Lehman { }} int 401kbalance = 10000; int update (int x) { 401kbalance += x; }} RetireAccount }

  16. RetireAccount • Investor InvestAccount feature Account { Lehman class Account extends Object { RetireAccount = + Account feature RetireAccount { int balance = 0; refines class Account extends Lehman { int 401kbalance = 10000; int 401kbalance = 10000; void update(int x) { int update (int x) { void update (int x) { int newBal = balance + x; 401kbalance += x; 401kbalance += x; RetireAccount balance = newBal; } } } }} }} Account

  17. Feature Models • A SPL has a set of available features: {Account, RetireAccount, InvestAccount} • Typically feature combinations are constrained • A feature model represents these constraints • Propositional formula is compact representation [Batory05] RetireAccount ∨ InvestAccount • Product corresponds to truth assignment • FMs should enforce implementation constraints • Safe Composition (RetireAccount ∨ InvestAccount) ∧ (RetireAccount ⇒ Account) ∧ (InvestAccount ⇒ Account)

  18. Checking Safe Composition • Could synthesize entire product line • Computationally expensive:

  19. Checking Safe Composition • Could synthesize entire product line • Computationally expensive: Account InvestAccount RetireAccount Bailout Employer NYSE

  20. Checking Safe Composition • Could synthesize entire product line • Computationally expensive: Account InvestAccount RetireAccount Bailout Employer NYSE Account Account InvestAccount Account RetireAccount Account Bailout Account Account Employer NYSE Account InvestAccount Bailout Account Account InvestAccount Employer InvestAccount NYSE Account RetireAccount Bailout Account RetireAccount Account RetireAccount Employer NYSE Account Bailout Employer Account Bailout Employer NYSE Account InvestAccount Employer Bailout Account InvestAccount Employer Bailout NYSE ... Account RetireAccount Bailout Employer Account RetireAccount Bailout Employer NYSE

  21. Difficulties • Combinatorial nature of SPLs problematic: feature Payroll { • Bailout feature needs Account class Employer extends Object { • Account needs 401kbalance Account Employee1; ... • Multiple ways to satisfy Employee1.401kbalance += 10000; • Introduction Bailout ... • }} Inheritance • Features are static • Surrounding program is not • Dependencies are resolved by a combination of features • These features have their own set of dependencies

  22. Lightweight Feature Java • Lightweight Java [ Strnisa07 ] • Minimal imperative subset of Java formalized in Coq • Lightweight Feature Java • Lightweight Java extended with features Feature Table FT ::= {FD} Product specification PS ::= F Feature declaration FD ::= feature F {cld; rcld} Class refinement rcld ::= refines class dcl extending cl {fd; md; rmd} Method Refinement rmd ::= refines method ms {s; Super (); s; return y} • Formalized in the Coq Proof Assistant

  23. Composition in LFJ • Programs built from product specifications LFJ composition LJ Product Program Specification • compose • Refine existing classes • Apply method refinement • Introduce fields, methods • Introduce new classes • Recursively apply compose to specification

  24. LJ Type System k ) distinct ( var k k type ( cl k ) = τ k type ( cl ) = τ ′ k ][ this �→ τ ] Γ =[ var k �→ τ k ( WF-Method ) Γ ( y ) = τ ′′ k k | C ℓ ⊢ P, Γ ⊢ s ℓ | C | C ℓ | { τ ′′ ≺ τ ′ , P ⊢ k } P ⊢ ′ , defined cl k �→ �→ ℓ return y ; } k ) { s ℓ P ⊢ τ cl meth ( cl k var k • Program not available until composition

  25. LJ Type System k ) distinct ( var k k type ( cl k ) = τ k Internal Checks type ( cl ) = τ ′ k ][ this �→ τ ] Γ =[ var k �→ τ k ( WF-Method ) Γ ( y ) = τ ′′ ℓ P, Γ ⊢ s ℓ τ ′′ ≺ τ ′ P ⊢ k P ⊢ defined cl k �→ �→ ℓ return y ; } k ) { s ℓ P ⊢ τ cl meth ( cl k var k • Program not available until composition

  26. LJ Type System k ) distinct ( var k k type ( cl k ) = τ k type ( cl ) = τ ′ k ][ this �→ τ ] Γ =[ var k �→ τ k ( WF-Method ) Γ ( y ) = τ ′′ k k | C ℓ ⊢ P, Γ ⊢ s ℓ | C | C ℓ | { τ ′′ ≺ τ ′ , P ⊢ External Checks k } P ⊢ ′ , defined cl k �→ �→ ℓ return y ; } k ) { s ℓ P ⊢ τ cl meth ( cl k var k • Program not available until composition

  27. Constraint-Based Typing • External premises become constraints k ) distinct ( var k k type ( cl k ) = τ k ( WF-Method ) type ( cl ) = τ ′ k ][ this �→ τ ] Γ =[ var k �→ τ k k k ℓ Γ ⊢ s ℓ | C ℓ Γ ( y ) = τ ′′ | C �→ �→ ⊢ ℓ return y ; } | { τ ′′ ≺ τ ′ , defined cl k k ) { s ℓ k } ∪ S ⊢ τ cl meth ( cl k var k ℓ C ℓ • Compositional Constraints • Uniqueness Constraints • Structural Constraints

  28. Constraint-Based Typing • Two typing phases • Typing Feature Tables k ⊢ FD k | WF k k ⊢ {FD k } | ⋃ k { In FDk ⇒ WF k } • Well-typed product specification PS ⊨ ⋃ k { In FDk ⇒ WF k } • Feature Constraint • Compositional Constraints • Uniqueness Constraints • Structural Constraints

  29. Soundness of LFJ Type System Theorem: ⊢ {FD k } | ⋃ k { In FDk ⇒ WF k } PS ⊨ ⋃ k { In FDk ⇒ WF k } ⊢ FJ compose (PS) • Space of products Account InvestAccount RetireAccount Bailout Employer NYSE • First premise describes subset of type-safe products • Second ensures product in this space

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Week 2 Video 5 Cross-Validation and Over-Fitting Over-Fitting Ive mentioned over-fitting a

Week 2 Video 5 Cross-Validation and Over-Fitting Over-Fitting Ive mentioned over-fitting a

Week 2 Video 5 Cross-Validation and Over-Fitting Over-Fitting Ive mentioned over-fitting a few times during the last few weeks Fitting to the noise as well as the signal Over-Fitting 25 25 20 20 15 15 10 10 5 5 0 0 0 5 10

796 views • 25 slides
Lecture 11 Fitting ARIMA Models 10/10/2018 1 Model Fitting Fitting ARIMA For an

Lecture 11 Fitting ARIMA Models 10/10/2018 1 Model Fitting Fitting ARIMA For an

Lecture 11 Fitting ARIMA Models 10/10/2018 1 Model Fitting Fitting ARIMA For an (, , ) model Requires that the data be stationary after differencing Handling is straight forward, just difference the

682 views • 46 slides
Track fitting, vertex fitting and Track fitting, vertex fitting and Track fitting, vertex fitting

Track fitting, vertex fitting and Track fitting, vertex fitting and Track fitting, vertex fitting

Track fitting, vertex fitting and Track fitting, vertex fitting and Track fitting, vertex fitting and Track fitting, vertex fitting and Detector alignment Detector alignment Detector alignment Detector alignment Salvador Mart-Garca

978 views • 65 slides
Model Fitting "

Model Fitting "

Model Fitting " ... Fitting: Motivation 9300 Harris Corners Pkwy, Charlotte, NC Weve learned how to detect edges,

1.19k views • 92 slides
Unit 1: Data Fitting Motivation Data fitting: Construct a continuous function that represents

Unit 1: Data Fitting Motivation Data fitting: Construct a continuous function that represents

Unit 1: Data Fitting Motivation Data fitting: Construct a continuous function that represents discrete data, fundamental topic in Scientific Computing We will study two types of data fitting interpolation: Fit the data points exactly

1.33k views • 109 slides
Fitting high resolution structures into low resolution EM maps Michael Rossmann Purdue

Fitting high resolution structures into low resolution EM maps Michael Rossmann Purdue

Fitting high resolution structures into low resolution EM maps Michael Rossmann Purdue University Fitting Processes Fitting Processes 1. Map scaling 2 Symmetry constraints 3. Fitting criteria a. fit of atoms into density b. avoiding

759 views • 34 slides
Over fitting distribution functions over Bayesian Regression / " ' i diggllloise dist

Over fitting distribution functions over Bayesian Regression / " ' i diggllloise dist

Over fitting Under fitting and - Under fitting Over fitting distribution functions over Bayesian Regression / " ' i diggllloise dist ' f. fnpc f) fcxn ) - ,N En n=1 + En~ PIE yn = ... , of Basis Function

724 views • 30 slides
Fitting a Line, Residuals, and Correlation August 27, 2019 August 27, 2019 1 / 54 Fitting a

Fitting a Line, Residuals, and Correlation August 27, 2019 August 27, 2019 1 / 54 Fitting a

Fitting a Line, Residuals, and Correlation August 27, 2019 August 27, 2019 1 / 54 Fitting a Line to Data In this section, we will talk about fitting a line to data. Our hypothesis testing framework allowed us to examine one variable at a

567 views • 54 slides
Announcements Midterm review: next Wed Oct 4, 12-1 pm, ENS 31NQ Lecture 9: Fitting, Contours

Announcements Midterm review: next Wed Oct 4, 12-1 pm, ENS 31NQ Lecture 9: Fitting, Contours

Announcements Midterm review: next Wed Oct 4, 12-1 pm, ENS 31NQ Lecture 9: Fitting, Contours Thursday, Sept 27 Last time Today Fitting shape patterns with the Hough Fitting lines (brief) transform and generalized Hough

562 views • 16 slides
Fitting: Deformable contours Goal: move from array of pixel values (or Monday, Feb 21 filter

Fitting: Deformable contours Goal: move from array of pixel values (or Monday, Feb 21 filter

2/21/2011 Recap so far: Grouping and Fitting Fitting: Deformable contours Goal: move from array of pixel values (or Monday, Feb 21 filter outputs) to a collection of regions, Prof. Kristen Grauman objects, and shapes. UT-Austin Fitting:

386 views • 9 slides
Lecture 3 bis Fitting and the Hough transform Fitting: Motivation 9300 Harris Corners Pkwy,

Lecture 3 bis Fitting and the Hough transform Fitting: Motivation 9300 Harris Corners Pkwy,

Lecture 3 bis Fitting and the Hough transform Fitting: Motivation 9300 Harris Corners Pkwy, Charlotte, NC Weve learned how to detect edges, corners, blobs. Now what? We would like to form a higher- level, more compact

534 views • 50 slides
Fitting a Line, Residuals, and Correlation October 28, 2019 October 28, 2019 1 / 36 Fitting a

Fitting a Line, Residuals, and Correlation October 28, 2019 October 28, 2019 1 / 36 Fitting a

Fitting a Line, Residuals, and Correlation October 28, 2019 October 28, 2019 1 / 36 Fitting a Line to Data In this section, we will talk about fitting a line to data. Linear regression will allow us to look at relationships between two (or

909 views • 36 slides
Lecture 9: Fitting, Contours Thursday, Sept 27 Announcements Midterm review: next Wed Oct

Lecture 9: Fitting, Contours Thursday, Sept 27 Announcements Midterm review: next Wed Oct

Lecture 9: Fitting, Contours Thursday, Sept 27 Announcements Midterm review: next Wed Oct 4, 12-1 pm, ENS 31NQ Last time Fitting shape patterns with the Hough transform and generalized Hough transform Today Fitting lines

1.13k views • 94 slides
Look for pieces with the most character. When you draw you popcorn This will NOT do

Look for pieces with the most character. When you draw you popcorn This will NOT do

Look for pieces with the most character. When you draw you popcorn This will NOT do it!..its all two values. Study the lights and darks! Just a review of WHAT TO DO. SELECT AT LEAST TWO PIECES OF POPCORN THAT ARE INTERESTING..

342 views • 17 slides
Improving Chronic Disease Management with Pieces Miguel A. Vazquez, MD George (Holt) Oliver MD

Improving Chronic Disease Management with Pieces Miguel A. Vazquez, MD George (Holt) Oliver MD

Improving Chronic Disease Management with Pieces Miguel A. Vazquez, MD George (Holt) Oliver MD (for ICD-Pieces Team) Friday, September 23, 2016 ICD -Pieces: Pragmatic Clinical Trial in Patients with CKD, Diabetes and Hypertension ICD-

524 views • 40 slides
Lecture 19 Fitting CAR and SAR Models Colin Rundel 03/29/2017 1 Fitting areal models 2 CAR

Lecture 19 Fitting CAR and SAR Models Colin Rundel 03/29/2017 1 Fitting areal models 2 CAR

Lecture 19 Fitting CAR and SAR Models Colin Rundel 03/29/2017 1 Fitting areal models 2 CAR vs SAR Conditional Autoregressive (CAR) n Simultaneous Autogressve (SAR) 3 n y ( s i ) = W ij y ( s j ) + j = 1 y N ( 0 ,

453 views • 30 slides
No Longer Too Big to Fail EXTREMELY PRELIMINARY RESULTS Antje Berndt Darrell Duffie Yichao Zhu

No Longer Too Big to Fail EXTREMELY PRELIMINARY RESULTS Antje Berndt Darrell Duffie Yichao Zhu

No Longer Too Big to Fail EXTREMELY PRELIMINARY RESULTS Antje Berndt Darrell Duffie Yichao Zhu ANU Stanford ANU Systemic Risk and Financial Regulation: 10 Years After Lehman Les institutions financi` eres face l` a r egulation Palais

419 views • 29 slides
Art cases: Trust or bailment Luke Harris 11 September 2020 www.5sblaw.com 11 September 2020

Art cases: Trust or bailment Luke Harris 11 September 2020 www.5sblaw.com 11 September 2020

Art cases: Trust or bailment Luke Harris 11 September 2020 www.5sblaw.com 11 September 2020 Art cases: Trust or bailment Creation of trusts of artwork Trusts of artwork and other chattels generally created in the usual ways Express

480 views • 17 slides
ST Hildas Primary School Immersion and Cultural Exchange to Chiang Mai, Thailand 2 Nov 5

ST Hildas Primary School Immersion and Cultural Exchange to Chiang Mai, Thailand 2 Nov 5

23/10/2016 JUYING SECONDARY SCHOOL 4D3N Immersion Program Chiang Mai | 25-28 May 2016 ST Hildas Primary School Immersion and Cultural Exchange to Chiang Mai, Thailand 2 Nov 5 Nov 2016 ATTIRE Reporting day at the airport: Attire:

282 views • 26 slides
SOCIO SOCIO-ECONOMIC ECONOMIC RES RESEAR EARCH CH CENT CENTRE RE

SOCIO SOCIO-ECONOMIC ECONOMIC RES RESEAR EARCH CH CENT CENTRE RE

SOCIO SOCIO-ECONOMIC ECONOMIC RES RESEAR EARCH CH CENT CENTRE RE Quar Quarter terly Eco Econo nomy my Trac acker er (J (Jan an-Mar Mar 2017 2017) Hows the economy doing? 4 Apr pril il 2017 2017

517 views • 34 slides
THE INFLUENCE OF ACADEMIC RESEARCH ON INDUSTRY R&D Steve Keckler, Vice President of

THE INFLUENCE OF ACADEMIC RESEARCH ON INDUSTRY R&D Steve Keckler, Vice President of

THE INFLUENCE OF ACADEMIC RESEARCH ON INDUSTRY R&D Steve Keckler, Vice President of Architecture Research June 19, 2016 Academic/Industry Partnership AGENDA Architecture 2030 2 @NVIDIA 2016 My Background/Experience 14 years as

279 views • 26 slides
STABILITY Robert Engle Volatility Institute at NYU Stern Franco Modiglianis Legacy in the

STABILITY Robert Engle Volatility Institute at NYU Stern Franco Modiglianis Legacy in the

PROSPECTS FOR GLOBAL FINANCIAL STABILITY Robert Engle Volatility Institute at NYU Stern Franco Modiglianis Legacy in the World Economy: Conference, University of Brescia 6/23/2018 VOLATILITY INSTITUTE, NYU STERN 2 VOLATILITY INSTITUTE,

664 views • 52 slides
Too Big to Fail OR Whats Still Terribly Wrong with Banking Anat Admati, Stanford

Too Big to Fail OR Whats Still Terribly Wrong with Banking Anat Admati, Stanford

Too Big to Fail OR Whats Still Terribly Wrong with Banking Anat Admati, Stanford University August 9, 2013 Our Banking System is too fragile, inefficient and dangerous exposes the public to unnecessary risks distorts the

479 views • 16 slides
Discussion of A Pyrrhic Victory? Bank Bailouts and Sovereign Credit Risk Viral Acharya,

Discussion of A Pyrrhic Victory? Bank Bailouts and Sovereign Credit Risk Viral Acharya,

Discussion of A Pyrrhic Victory? Bank Bailouts and Sovereign Credit Risk Viral Acharya, Itamar Drechsler, and Philipp Schnabl Ralph S.J. Koijen University of Chicago and NBER BFI Conference on Macroeconomic Fragility, 2012 Ralph S.J.

463 views • 12 slides

More recommend