sliceandmerge a rodin plug in for refactoring refinement
play

SliceAndMerge: A Rodin Plug-in for Refactoring Refinement Structure - PowerPoint PPT Presentation

Mar 20, 2024 •228 likes •625 views

SliceAndMerge: A Rodin Plug-in for Refactoring Refinement Structure of Event-B Machines Tsutomu Kobayashi (University of Tokyo), Aivar Kripsaar (RWTH Aachen University), Fuyuki Ishikawa (NII, Japan), and Shinichi Honiden (NII, Japan) Rodin

  1. SliceAndMerge: A Rodin Plug-in for Refactoring Refinement Structure of Event-B Machines Tsutomu Kobayashi (University of Tokyo), Aivar Kripsaar (RWTH Aachen University), Fuyuki Ishikawa (NII, Japan), and Shinichi Honiden (NII, Japan) Rodin Workshop 2016 May 23, 2016 Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 1 / 23

  2. Modeling in Event-B Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 2 / 23

  3. Modeling in Event-B Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 2 / 23

  4. Modeling in Event-B Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 2 / 23

  5. Modeling in Event-B Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 2 / 23

  6. Modeling in Event-B Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 2 / 23

  7. Modeling in Event-B Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 2 / 23

  8. Motivation Refinement design and specifications Designing refinement = designing target system’s aspects of interest e.g., Focus on the outside traffic lights on the mainland ↓ Specify/verify properties of them If traffic light is green , # cars outside ≤ capacity Our goal Modify refinement design of existing specification → improve understandability, maintainability, extensibility Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 3 / 23

  9. Example of Motivation Problem Somtimes we make refinements with many additional variables/invariants To specify several aspects in a step Solution Refinement decomposition Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 4 / 23

  10. Refactoring of Refinement – Decomposition refines Abstract Concrete machine machine Abstract Concrete variables variables refines refines Abstract Medium Concrete machine machine machine Abstract Medium Concrete variables variables variables Decomposition of refinement Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 5 / 23

  11. Goal of Refinement Decomposition refines M A M C V A V C V B Input ◮ Proved machines M A and M C ◮ A set of variables V B (subset of V C , slicing criteria) Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 6 / 23

  12. Goal of Refinement Decomposition M A M C refines refines V A V C M B V B Input ◮ Proved machines M A and M C ◮ A set of variables V B (subset of V C , slicing criteria) Output: Intermediate machine M B such that ◮ M C refines M B and M B refines M A ◮ M B is specified in V B Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 6 / 23

  13. Restriction on V B Variables in the machines: V C V A Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 7 / 23

  14. Restriction on V B Variables in the machines: V C V A newly replaced introduced inherited Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 7 / 23

  15. Restriction on V B Variables in the machines: V C V A V B Arbitrary V B : Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 7 / 23

  16. Restriction on V B Variables in the machines: V C V A V B Arbitrary V B : Some variables are in V A and V C but not V B ! Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 7 / 23

  17. Restriction on V B Variables in the machines: V C V A V B => V B should be a superset of V A ∩ V C Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 7 / 23

  18. Approach to Decomposing Refinement 1. Slicing from original machines M C and M A by finding specifications that can be expressed by V B 2. Mending for consistency by providing complementary predicates to fill the gap originated from slicing Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 8 / 23

  19. Slicing Find predicates that can be expressed by V B e.g., M C ( TL Island ∈ V C ) M B ( TL Island �∈ V B ) Invariants Invariants TL Mainland = red ∨ TL Island = red TL Mainland = green ⇒ n → = 0 TL Mainland = green ⇒ n → = 0 slice Event leave _ island − − − → Event leave _ island when when TL Island = green 1 ≤ n Island 1 ≤ n Island then then n ′ Island = n Island − 1 n ′ Island = n Island − 1 n ′ → = n → + 1 n ′ → = n → + 1 end end Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 9 / 23

  20. Intermediate Machine is Not Always Consistent M A M C consistent? consistent? consistent? M B Sometimes we need to guarantee these consistencies Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 10 / 23

  21. Refactoring of Refinement – Composition refines refines Abstract Medium Concrete machine machine machine Abstract Medium Concrete variables variables variables refines Abstract Concrete machine machine’ Abstract Medium Concrete variables variables variables Composition of refinement Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 11 / 23

  22. Refactoring of Refinement – Composition V Conc V Medium V Abst Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 12 / 23

  23. Refactoring of Refinement – Composition V ' Conc V Abst Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 12 / 23

  24. SliceAndMerge : Implementation Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 13 / 23

  25. Intermediate Machine is Not Always Consistent M A M C consistent? consistent? consistent? M B Sometimes we need to guarantee these consistencies Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 14 / 23

  26. Variables and Provability of Proof Obligations Preservation of TL Mainland ’s property by “leaving from island” Invariants TL Mainland = red ∨ TL Island = red Guards TL Island = green Before-after predicates · · · n ′ → = n → + 1 ⊢ ⊢ Invariant after the event TL Mainland = green ⇒ n ′ → = 0 Provability in {concrete, medium} machine Concrete machine Provable. ∵ TL Mainland � = green from hypotheses Because of TL Island -related predicates ◮ either TL Mainland or TL Island is red ◮ TL Island is green Medium machine Not provable Because of lack of TL Island -related predicates Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 15 / 23

  27. Mending by Adding Complementary Predicates Idea Original machines are consistent M B lacks essential predicates for consistencies because of vocabulary limitations ↓ Find essential predicates Express them in vocabulary of V B and mend M B with them Ways of mending include: Heuristics such as extracting a predicate P from P ∧ Q Analyzing the proof (as described in previous slide) 1 Trace the proof of original machine’s consistency 2 Infer the complementary predicates from that Using Craig’s interpolation theorem ? Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 16 / 23

  28. Case Study: Decomposing Refinement Example Model of flight formation of satellites ◮ by an experienced modeler ◮ high-quality, but include large refinement steps ⋆ 72 invariants in one refinement Result Decomposed refinements into multiple steps Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 17 / 23

  29. Results Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 18 / 23

  30. Extracting Parts of Machines for Reuse V Conc V Medium V Abst Reusable part Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 19 / 23

  31. Extracting Parts of Machines for Reuse V ' Conc V Abst Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 19 / 23

  32. Extracting Parts of Machines for Reuse V ' Conc V Abst V ' Medium Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 19 / 23

  33. Case Study: Extracting Authentication Parts of LAC Original model: location access controller Persons move between locations connected with turnstiles Persons are authorized to enter certain locations Persons insert their ID card in card readers on turnstiles Turnstiles communicate with a controller via messages ◮ authentication, movement of a person, indicator light, . . . New model: consoles, servers, and monitors Location have consoles with card readers and monitors. Authorized persons can login server by inserting ID card to the reader Controller try to find an unoccupied monitor in a room Consoles communicate with a controller via messages Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 20 / 23

  34. Concluding Remarks Summary Aiming at modify refinement structure of existing machines Slicing before mending / merging SliceAndMerge v1.0 coming soon? Future work Constructing systematic methods for mending Planning refinement for various use cases Finding other use cases ◮ Planting specifications in other methods (e.g., VDM)? ◮ . . . Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 21 / 23

  35. Interpolation Theorem (Craig interpolation) If a sequent Hyp ⊢ Goal is provable, there exists an interpolant I such that All symbols of I occur in both Hyp and Goal Hyp ⊢ I and I ⊢ Goal are provable Example of interpolant TL Mainland = red ∨ TL Island = red TL Island = green interpolates n ′ → = n → + 1 ← − − − − − − − TL Mainland � = green ⊢ TL Mainland = green ⇒ n ′ → = 0 Tsutomu Kobayashi (UTokyo) SliceAndMerge Rodin Workshop 2016 22 / 23

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Theory Plug-in for Rodin 3.0 T.S. Hoang 1 A. Salehi 1 M. Butler 1 L. Voisin 2 1 ECS, University of

Theory Plug-in for Rodin 3.0 T.S. Hoang 1 A. Salehi 1 M. Butler 1 L. Voisin 2 1 ECS, University of

Theory Plug-in for Rodin 3.0 T.S. Hoang 1 A. Salehi 1 M. Butler 1 L. Voisin 2 1 ECS, University of Southampton, U.K. 2 Systerel, France RODIN Workshop 2016 Linz, Austria 23rd May 2015 From Rodin 2.8 to Rodin 3.0 (1/2) Major (necessary) changes

506 views • 17 slides
Refactoring, Refinement, and Reasoning A Logical Characterization for Hybrid Systems Stefan Mitsch

Refactoring, Refinement, and Reasoning A Logical Characterization for Hybrid Systems Stefan Mitsch

Introduction Refactoring Refactoring Operations Conclusion Refactoring, Refinement, and Reasoning A Logical Characterization for Hybrid Systems Stefan Mitsch 1 , 2 Jan-David Quesel 1 e Platzer 1 Andr 1 Computer Science Department, Carnegie

451 views • 32 slides
The Rodin Roadmap Commi.ee Laurent Voisin 2018-11-10 Development of the Rodin plaDorm

The Rodin Roadmap Commi.ee Laurent Voisin 2018-11-10 Development of the Rodin plaDorm

The Rodin Roadmap Commi.ee Laurent Voisin 2018-11-10 Development of the Rodin plaDorm Development used to take place in European projects: RODIN (2004-2007) DEPLOY (2008-2012) ADVANCE (2012-2014) Then switched to naSonal projects But

492 views • 5 slides
Plugging external provers into the Rodin platform Laurent Voisin (Systerel) Rodin and Event-B

Plugging external provers into the Rodin platform Laurent Voisin (Systerel) Rodin and Event-B

Plugging external provers into the Rodin platform Laurent Voisin (Systerel) Rodin and Event-B An open platform for Event-B modelling and proving Designed to model reactive discrete systems by engineers (no PhD required) Based on the

373 views • 8 slides
Introducing OSGi Eclipse Plug-ins 1 Plug-in State Information Plug-in Structure

Introducing OSGi Eclipse Plug-ins 1 Plug-in State Information Plug-in Structure

Contents Eclipse Plug-ins Introducing OSGi Eclipse Plug-ins 1 Plug-in State Information Plug-in Structure Plug-in Deployment Eclipse Plug-ins Eclipse Plug-ins Eclipse isn't a single monolithic program, The behavior of

334 views • 4 slides
Refactoring Your Code A Key Step to Agility Venkat Subramaniam (svenkat@cs.uh.edu)

Refactoring Your Code A Key Step to Agility Venkat Subramaniam (svenkat@cs.uh.edu)

Refactoring Your Code A Key Step to Agility Venkat Subramaniam (svenkat@cs.uh.edu) Refactoring your code - 1 Refactoring Your Code Why Refactor? Whats Refactoring Before Refactoring Lets Refactor Refactoring

512 views • 15 slides
WALL PLUG PLUG-IN SWITCH & POWER METERING MANY FEATURES IN A SINGLE DEVICE The FIBARO Wall

WALL PLUG PLUG-IN SWITCH & POWER METERING MANY FEATURES IN A SINGLE DEVICE The FIBARO Wall

WALL PLUG PLUG-IN SWITCH & POWER METERING MANY FEATURES IN A SINGLE DEVICE The FIBARO Wall Plug is a remotely controlled plug-in switch with the built-in ability to measure power and energy consumption. FIBARO smart plug makes it possible

673 views • 21 slides
Lecture 4 Based on Fowler Refactoring and UWaterloo slides Dr. Tom Way CSC 4700 1

Lecture 4 Based on Fowler Refactoring and UWaterloo slides Dr. Tom Way CSC 4700 1

Refactoring CSC 4700 Software Engineering Lecture 4 Based on Fowler Refactoring and UWaterloo slides Dr. Tom Way CSC 4700 1 Refactoring Basic metaphor: Start with an existing code base and make it better. Change the

230 views • 10 slides
Refactoring R Programs Tobias Verbeke Business & Decision 2008-08-12 Plan of the

Refactoring R Programs Tobias Verbeke Business & Decision 2008-08-12 Plan of the

Refactoring R Programs Tobias Verbeke Business & Decision 2008-08-12 Plan of the Presentation Introduction Current Results Future Developments Definition of refactoring Refactoring is the object-oriented variant of restructuring:

634 views • 12 slides
Developing and Proving a Complicated System Model with Rodin Alexey Khoroshilov, Ilya

Developing and Proving a Complicated System Model with Rodin Alexey Khoroshilov, Ilya

June 2-3, 2014, Toulouse 5 th Rodin Workshop Developing and Proving a Complicated System Model with Rodin Alexey Khoroshilov, Ilya Shchepetkov {khoroshilov,shchepetkov}@ispras.ru Institute for System Programming of the Russian Academy of

261 views • 15 slides
Refactoring Noun: A change made to the internal structure of Refactoring software to make

Refactoring Noun: A change made to the internal structure of Refactoring software to make

Refactoring Noun: A change made to the internal structure of Refactoring software to make it easier to understand and cheaper to modify without changing its observable behaviour Verb: To restructure software by applying a series

204 views • 4 slides
Plug-In Folly Part 5 by Pat Murphy, Plan Curtail Part 5A: Conclusion Plug-In Vehicles the

Plug-In Folly Part 5 by Pat Murphy, Plan Curtail Part 5A: Conclusion Plug-In Vehicles the

Plug-In Folly Part 5 by Pat Murphy, Plan Curtail Part 5A: Conclusion Plug-In Vehicles the Score C1 A 2012 Congressional Budget Office report on plug-ins says that the lifetime costs to consumers of an electric vehicle are generally

405 views • 9 slides
Design Patterns & Refactoring Introduction to Refactoring Oliver Haase HTWG Konstanz Oliver

Design Patterns & Refactoring Introduction to Refactoring Oliver Haase HTWG Konstanz Oliver

Design Patterns & Refactoring Introduction to Refactoring Oliver Haase HTWG Konstanz Oliver Haase (HTWG Konstanz) Design Patterns & Refactoring 1 / 9 What is Refactoring? Definition (of the noun) A change made to the internal

288 views • 13 slides
How to get away with murder refactoring @qcmaude This is me (and Chewbacca). I work at &

How to get away with murder refactoring @qcmaude This is me (and Chewbacca). I work at &

How to get away with murder refactoring @qcmaude This is me (and Chewbacca). I work at & live in San Francisco. How to Get Away with Refactoring @qcmaude 2 /57 Drummondville, QC How to Get Away with Refactoring

920 views • 57 slides
Distributed Refactoring with Rewrite. Jon Schneider @jon_k_schneider

Distributed Refactoring with Rewrite. Jon Schneider @jon_k_schneider

Distributed Refactoring with Rewrite. Jon Schneider @jon_k_schneider github.com/jkschneider/springone-distributed-monorepo 1 Part 1: Rewrite is a programmatic refactoring tool. 2 Suppose we have a simple class A. 3 Raw source code +

600 views • 36 slides
Refactoring Lecture 7 January 02, 2009 O b j e c t O r i e n t e d S o f t w a r e E n g i

Refactoring Lecture 7 January 02, 2009 O b j e c t O r i e n t e d S o f t w a r e E n g i

366 Refactoring Lecture 7 January 02, 2009 O b j e c t O r i e n t e d S o f t w a r e E n g i n e e r i n g Refactoring: problem statement O b j e c t O r i e n t e d S o f t w a r e E n g i n e e r i n g Add a htmlStatment method

457 views • 41 slides
What We Know We Dont Know Empirical Software Engineering Hillel Wayne hillelwayne.com

What We Know We Dont Know Empirical Software Engineering Hillel Wayne hillelwayne.com

What We Know We Dont Know Empirical Software Engineering Hillel Wayne hillelwayne.com @hillelogram www.hillelwayne.com/talks/what-we-know-we-dont-know @hillelogram hillelwayne.com Effects of Clean Code on Understandability

977 views • 33 slides
Visualization M. Behrisch , M. Blumenschein, N. W. Kim, L. Shao, M. El-Assady, J. Fuchs, D.

Visualization M. Behrisch , M. Blumenschein, N. W. Kim, L. Shao, M. El-Assady, J. Fuchs, D.

Visual Computing Group, Harvard for Information Visualization M. Behrisch , M. Blumenschein, N. W. Kim, L. Shao, M. El-Assady, J. Fuchs, D. Seebacher, A. Diehl, U. Brandes, H. Pfister, T. Schreck, and D. Weiskopf, D. A. Keim Visual Computing

435 views • 31 slides
CS510 Software Engineering Introduction Asst. Prof. Mathias Payer Department of Computer Science

CS510 Software Engineering Introduction Asst. Prof. Mathias Payer Department of Computer Science

CS510 Software Engineering Introduction Asst. Prof. Mathias Payer Department of Computer Science Purdue University TA: Scott A. Carr Slides inspired by Xiangyu Zhang http://nebelwelt.net/teaching/15-CS510-SE Spring 2015 The Nature of

316 views • 19 slides
Viewpoint on high-tech We should think of a computer

Viewpoint on high-tech We should think of a computer

Audit Thoughts Ronald L. Rivest MIT CSAIL Audit Working Mee;ng ASA, Alexandria, VA October 24, 2009 Viewpoint on high-tech We should think

504 views • 17 slides
A Novel Obfusca/on: Class Hierarchy Fla9ening Christophe Foket,

A Novel Obfusca/on: Class Hierarchy Fla9ening Christophe Foket,

A Novel Obfusca/on: Class Hierarchy Fla9ening Christophe Foket, Bjorn De Su9er, Bart Coppens & Koen De Bosschere Computer Systems Lab Ghent

528 views • 29 slides
Summer School on Matching Problems, Markets and Mechanisms David Manlove Nobel prize in

Summer School on Matching Problems, Markets and Mechanisms David Manlove Nobel prize in

Summer School on Matching Problems, Markets and Mechanisms David Manlove Nobel prize in Economic Sciences, 2012 1 Outline 1. The Hospitals / Residents problem and its variants 2. The House Allocation problem 3. Kidney exchange 2 Tutorial 1

1.08k views • 70 slides
In-Kind FAIR David Urner 1 FAIR, Darmstadt 4.11.2015, D. Urner Overview Existing Facility

In-Kind FAIR David Urner 1 FAIR, Darmstadt 4.11.2015, D. Urner Overview Existing Facility

In-Kind FAIR David Urner 1 FAIR, Darmstadt 4.11.2015, D. Urner Overview Existing Facility SIS100 HEBT heavy (Schwer) Ion Syncrotron High Energy Beam Transport CBM/HADES Condensed Baryonic HESR Matter Experiment SFRS High Energy

381 views • 20 slides
Welcome to Kamiak 1/20/2017 Training Session Aurora Clark, CIRC Director Jeff White, Kamiak

Welcome to Kamiak 1/20/2017 Training Session Aurora Clark, CIRC Director Jeff White, Kamiak

Welcome to Kamiak 1/20/2017 Training Session Aurora Clark, CIRC Director Jeff White, Kamiak Linux Admin Shenting Cui, Computational Scientist Kamiak login nodes NetApp (2) Storage Compute Nodes Where did this infrastructure come from?

834 views • 56 slides

More recommend