Presentation is loading. Please wait.

Presentation is loading. Please wait.

Tammy Dahlgren with Tom Epperly, Scott Kohn, and Gary Kumfert Center for Applied Scientific Computing Common Component Architecture Working Group October.

Published byBuddy Parker Modified over 8 years ago

Similar presentations

Presentation on theme: "Tammy Dahlgren with Tom Epperly, Scott Kohn, and Gary Kumfert Center for Applied Scientific Computing Common Component Architecture Working Group October."— Presentation transcript:

1 Tammy Dahlgren with Tom Epperly, Scott Kohn, and Gary Kumfert Center for Applied Scientific Computing Common Component Architecture Working Group October 3, 2002 Introducing Design by Contract to SIDL/Babel This work was performed under the auspices of the U.S. Department of Energy by the University of California, Lawrence Livermore National Laboratory under Contract No. W-7405-Eng-48. UCRL-PRES-150101

2 TLD 2 CASC Overview Goals Basic Constructs Impact on SIDL/Babel Benefits for the CCA Future Work

3 TLD 3 CASC Why support assertions at the interface specification level? The interface specification can provide a simple, concise description of the requirements, behavior, and constraints. Generated code will automatically ensure compliance regardless of the underlying implementation language.

4 TLD 4 CASC The SIDL grammar defines packages, interfaces, etc. Packages & Versions Interfaces & Classes Inheritance Model Methods Method Modifiers Intrinsic Data Types Parameter Modes And more… Optional assertion specifications added here

5 TLD 5 CASC There are several types of assertions mentioned in the literature. TypeExpress… Precondition Constraints to enable proper method function Conditions that must be true prior to invocation Postcondition Guarantees of proper method function Conditions that must be true after invocation Class Invariant Global properties of instances that must be true upon instance creation and preserved by all routines before and after every invocation Loop Invariant Instance properties that must be true prior to the first execution of a loop and preserved by every iteration so hold on loop termination Loop Variant An integer value that must be non-negative prior to first execution of a loop and decreased by every iteration to guarantee loop termination

6 TLD 6 CASC Only the first two Design by Contract clauses will be added at this time. ClauseComment Preconditions Specify library’s requirements Obligations on callers Postconditions Specify library’s guarantees Obligations on callee to provided preconditions were satisfied and no exceptions raised Method sequencing will be implemented using a sequence, or state, clause the values of which can be utilized in the pre- and post-conditions to specify method ordering.

7 TLD 7 CASC The new clauses require a number of additions to the SIDL grammar. Eiffel keywords —Preconditionsrequires —Postconditionsensures Simple conditional expression operators —Logical&&, ||, ! —Bitwise Logical&, ^, | —Relational =, > —Shift > —Additive+, - —Multiplicative*, /, % Logical grouping() Literal keywords TRUE, FALSE, NULL, return Terminals

8 TLD 8 CASC The following specification snippet illustrates the use of both clauses in SIDL. interface Vector { Vector axpy (in Vector a, in Vector x) { requires a != NULL; x != NULL; ensures return != NULL; }; double norm () { ensures return >= 0.0; }; Vector.sidl Recall: If method raises an exception then no guarantee the ensures will be met!

9 TLD 9 CASC If method sequencing were incorporated, call ordering state would be added. interface Vector { state { uninitialized, initialized }; void setData (in double data){ requires uninitialized; ensures initialized; }; … VectorWithOrdering.sidl Note: Sequencing constructs subject to change. First item is the initial state. Transition to initialized is automatic if library call is successful and all (other) postcondition entries met.

10 TLD 10 CASC Methods that require the instance to be in a state could annotate it accordingly. interface Vector { … Vector axpy (in Vector a, in Vector x) { requires initialized; a != NULL; x != NULL; ensures return != NULL; }; double norm () { requires initialized; ensures return >= 0.0; }; VectorWithOrdering.sidl Note: Sequencing constructs subject to change.

11 TLD 11 CASC Babel takes a SIDL file and will generate expanded glue code. Application Impls Stubs Skels IORs SIDL interface description Enforcement code added here.

12 TLD 12 CASC The IOR files will be changed to add the generated checks. Vector.sidlfoo.f Vector_IOR.c Vector_IOR.hVector_fSkel.cVector.fifVector_Impl.fVector_fStub.c

13 TLD 13 CASC There will be three execution paths available through the IOR. Call Preconditions Postconditions Return Library method 1 2 3

14 TLD 14 CASC Dynamic switching between paths can be available at up to four levels. Instance —Vector.__create(/* desired setting */); —Vector.__noChecks();// Path #1 —Vector.__checkRequires();// Path #2 —Vector.__checkAsserts();// Path #3 Class-- For all instances of a class Package-- For a subset of packages Global-- Through the SIDL Loader What degree of flexibility is needed? - Dynamic switching at the Class level? Package level? Loader level? - Regular expression support for specifying classes? Packages?

15 TLD 15 CASC Violations of assertions will result in the raising of new SIDL exceptions. getNote(): string setNote(string) getTrace():string add[Line](string) add(string, int, string) BaseException RequiresViolation EnsuresViolation One or more requires conditions failed! One or more ensures conditions failed!

16 TLD 16 CASC Which means several parser-related files must change in the compiler. FileChange(s) dtds/ SIDL.dtd Add elements for the assertion lists and conditions. parsers/sidl/ SIDL.jj Add support for the new grammar productions. parsers/xml/ ParseSymbolXML.java Add parsing for new structures from XML. symbols/ Method.java Add support for assertion lists. symbols/ newclass(es).java New file(s) associated with the assertion list productions to support the lists.

17 TLD 17 CASC The backends must also be modified to support the IOR and stub changes. FilesChange(s) backend/IOR.java backend/IOR/IORHeader.java backend/IOR/IORSource.java Add support for new built-in methods for dynamic switching and the new entry point vectors. backend/language/StubHeader.java* backend/language/StubSource.java* Add support for new built-in methods for dynamic switching. * These or their equivalent are generally present for each supported language.

18 TLD 18 CASC Interface-level assertions will ultimately facilitate wider reuse of CCA Components! For Domain Scientists, components will be: + well-debugged + well-documented + easier to use For Library developers: + requirements explicit + constraints explicit + sequencing explicit + automatic enforcement + enhanced debugging

19 TLD 19 CASC Future work focuses on adding and exploring more features. Add support for specifying and enforcing method sequencing Explore annotations and mechanisms for: —Enabling the use of a method within assertions (e.g., const or immutable) —Checking features of an instance (e.g., comparing sizes of two matrices or vectors) —Integrating and checking relevant domain-specific properties (e.g., standard units, types of matrices) – Automated determination of compatibility – Generation and automated use of translation routines Anything else?

Download ppt "Tammy Dahlgren with Tom Epperly, Scott Kohn, and Gary Kumfert Center for Applied Scientific Computing Common Component Architecture Working Group October."

Similar presentations

Introduction to Java 2 Programming Lecture 3 Writing Java Applications, Java Development Tools.

Introduction to Java 2 Programming Lecture 3 Writing Java Applications, Java Development Tools.
Program Verification Using the Spec# Programming System ETAPS Tutorial K. Rustan M. Leino, Microsoft Research, Redmond Rosemary Monahan, NUIM Maynooth.

Program Verification Using the Spec# Programming System ETAPS Tutorial K. Rustan M. Leino, Microsoft Research, Redmond Rosemary Monahan, NUIM Maynooth.
Automated Theorem Proving Lecture 1. Program verification is undecidable! Given program P and specification S, does P satisfy S?

Automated Theorem Proving Lecture 1. Program verification is undecidable! Given program P and specification S, does P satisfy S?
Building Bug-Free O-O Software: An Introduction to Design By Contract A presentation about Design By Contract and the Eiffel software development tool.

Building Bug-Free O-O Software: An Introduction to Design By Contract A presentation about Design By Contract and the Eiffel software development tool.
Control Structures Ranga Rodrigo. Control Structures in Brief C++ or JavaEiffel if-elseif-elseif-else-end caseinspect for, while, do-whilefrom-until-loop-end.

Control Structures Ranga Rodrigo. Control Structures in Brief C++ or JavaEiffel if-elseif-elseif-else-end caseinspect for, while, do-whilefrom-until-loop-end.
Semantics Static semantics Dynamic semantics attribute grammars

Semantics Static semantics Dynamic semantics attribute grammars
ICE1341 Programming Languages Spring 2005 Lecture #6 Lecture #6 In-Young Ko iko.AT. icu.ac.kr iko.AT. icu.ac.kr Information and Communications University.

ICE1341 Programming Languages Spring 2005 Lecture #6 Lecture #6 In-Young Ko iko.AT. icu.ac.kr iko.AT. icu.ac.kr Information and Communications University.
Programming Languages and Paradigms The C Programming Language.

Programming Languages and Paradigms The C Programming Language.
The Java Modeling Language JML Erik Poll Digital Security Radboud University Nijmegen.

The Java Modeling Language JML Erik Poll Digital Security Radboud University Nijmegen.
1 - 7 - Design by Contract ™. 2 Design by Contract A discipline of analysis, design, implementation, management.

Design by Contract ™. 2 Design by Contract A discipline of analysis, design, implementation, management.
91.3913Feb 2003 R McFadyen1 Contracts (Ch 13) Used to help understand requirements more completely based on assertions; assertions are applicable to any.

Feb 2003 R McFadyen1 Contracts (Ch 13) Used to help understand requirements more completely based on assertions; assertions are applicable to any.
Tammy Dahlgren, Tom Epperly, Scott Kohn, and Gary Kumfert Center for Applied Scientific Computing Common Component Architecture Working Group October 3,

Tammy Dahlgren, Tom Epperly, Scott Kohn, and Gary Kumfert Center for Applied Scientific Computing Common Component Architecture Working Group October 3,
10.6.2008 Formal Methods of Systems Specification Logical Specification of Hard- and Software Prof. Dr. Holger Schlingloff Institut für Informatik der.

Formal Methods of Systems Specification Logical Specification of Hard- and Software Prof. Dr. Holger Schlingloff Institut für Informatik der.
Design by Contract. Specifications Correctness formula (Hoare triple) {P} A {Q} – A is some operation (for example, a routine body) – P and Q are predicates.

Design by Contract. Specifications Correctness formula (Hoare triple) {P} A {Q} – A is some operation (for example, a routine body) – P and Q are predicates.
92.3913Jan 2005 Ron McFadyen1 Contracts Used to help understand requirements more completely (and so may not always be necessary) based on assertions;

Jan 2005 Ron McFadyen1 Contracts Used to help understand requirements more completely (and so may not always be necessary) based on assertions;
Bronis R. de Supinski Center for Applied Scientific Computing Lawrence Livermore National Laboratory June 2, 2005 The Most Needed Feature(s) for OpenMP.

Bronis R. de Supinski Center for Applied Scientific Computing Lawrence Livermore National Laboratory June 2, 2005 The Most Needed Feature(s) for OpenMP.
1 Specifying Object Interfaces. 2 Major tasks in this stage: --are there any missing attributes or operations? --how can we reduce coupling, make interface.

1 Specifying Object Interfaces. 2 Major tasks in this stage: --are there any missing attributes or operations? --how can we reduce coupling, make interface.
1 Chapter 4 Language Fundamentals. 2 Identifiers Program parts such as packages, classes, and class members have names, which are formally known as identifiers.

1 Chapter 4 Language Fundamentals. 2 Identifiers Program parts such as packages, classes, and class members have names, which are formally known as identifiers.
Software Testing and Quality Assurance

Software Testing and Quality Assurance
Static and Dynamic Contract Verifiers For Java Hongming Liu.

Static and Dynamic Contract Verifiers For Java Hongming Liu.

Similar presentations

Ads by Google