ebook img

Formal Methods for Components and Objects: Third International Symposium, FMCO 2004, Leiden, The Netherlands, November 2-5, 2004, Revised Lectures ... / Programming and Software Engineering) PDF

334 Pages·2005·3.81 MB·English
Save to my drive
Quick download
Download
Most books are stored in the elastic cloud where traffic is expensive. For this reason, we have a limit on daily download.

Preview Formal Methods for Components and Objects: Third International Symposium, FMCO 2004, Leiden, The Netherlands, November 2-5, 2004, Revised Lectures ... / Programming and Software Engineering)

Lecture Notes in Computer Science 3657 CommencedPublicationin1973 FoundingandFormerSeriesEditors: GerhardGoos,JurisHartmanis,andJanvanLeeuwen EditorialBoard DavidHutchison LancasterUniversity,UK TakeoKanade CarnegieMellonUniversity,Pittsburgh,PA,USA JosefKittler UniversityofSurrey,Guildford,UK JonM.Kleinberg CornellUniversity,Ithaca,NY,USA FriedemannMattern ETHZurich,Switzerland JohnC.Mitchell StanfordUniversity,CA,USA MoniNaor WeizmannInstituteofScience,Rehovot,Israel OscarNierstrasz UniversityofBern,Switzerland C.PanduRangan IndianInstituteofTechnology,Madras,India BernhardSteffen UniversityofDortmund,Germany MadhuSudan MassachusettsInstituteofTechnology,MA,USA DemetriTerzopoulos NewYorkUniversity,NY,USA DougTygar UniversityofCalifornia,Berkeley,CA,USA MosheY.Vardi RiceUniversity,Houston,TX,USA GerhardWeikum Max-PlanckInstituteofComputerScience,Saarbruecken,Germany This page intentionally left blank Frank S. de Boer Marcello M. Bonsangue Susanne Graf Willem-Paul de Roever (Eds.) Formal Methods for Components and Objects Third International Symposium, FMCO 2004 Leiden, The Netherlands, November 2 – 5, 2004 Revised Lectures 1 3 VolumeEditors FrankS.deBoer CWI,CentreforMathematicsandComputerScience Kruislaan413,1098SJAmsterdam,TheNetherlands E-mail:[email protected] MarcelloM.Bonsangue LeidenUniversity LeidenInstituteofAdvancedComputerScience P.O.Box9512,2300RALeiden,TheNetherlands E-mail:[email protected] SusanneGraf VERIMAG CentreEquitation 2AvenuedeVignate,38610Grenoble-Gières,France E-mail:[email protected] Willem-PauldeRoever Christian-Albrechts-UniversityofKiel InstituteofComputerScienceandAppliedMathematics Hermann-Rodewald-Straße3,24118Kiel,Germany E-mail:[email protected] LibraryofCongressControlNumber:2005932547 CRSubjectClassification(1998):D.2,D.3,F.3,D.4 ISSN 0302-9743 ISBN-10 3-540-29131-8SpringerBerlinHeidelbergNewYork ISBN-13 978-3-540-29131-2SpringerBerlinHeidelbergNewYork Thisworkissubjecttocopyright.Allrightsarereserved,whetherthewholeorpartofthematerialis concerned,specificallytherightsoftranslation,reprinting,re-useofillustrations,recitation,broadcasting, reproductiononmicrofilmsorinanyotherway,andstorageindatabanks.Duplicationofthispublication orpartsthereofispermittedonlyundertheprovisionsoftheGermanCopyrightLawofSeptember9,1965, initscurrentversion,andpermissionforusemustalwaysbeobtainedfromSpringer.Violationsareliable toprosecutionundertheGermanCopyrightLaw. SpringerisapartofSpringerScience+BusinessMedia springeronline.com ©Springer-VerlagBerlinHeidelberg2005 PrintedinGermany Typesetting:Camera-readybyauthor,dataconversionbyScientificPublishingServices,Chennai,India Printedonacid-freepaper SPIN:11561163 06/3142 543210 Preface Large and complex software systems provide the necessary infrastructure in all industriestoday.Inordertoconstructsuchlargesystemsinasystematicmanner, thefocusinthedevelopmentmethodologieshasswitchedinthelasttwodecades from functional issues to structural issues: both data and functions are encap- sulated into software units which are integrated into large systems by means of various techniques supporting reusability and modifiability. This encapsulation principleisessentialtoboththeobject-orientedandthemorerecentcomponent- based software engineering paradigms. Formalmethodshavebeenappliedsuccessfullytotheverificationofmedium- sized programs in protocol and hardware design. However, their application to the developmentof largesystems requiresmoreemphasis onspecification,mod- ellingandvalidationtechniquessupportingtheconceptsofreusabilityandmod- ifiability, and their implementation in new extensions of existing programming languages. In order to stimulate interaction between the different areas of software en- gineering and formal methods, with a special focus on component-based and object-oriented software systems, we organized the 3rd International Sympo- sium on Formal Methods for Components and Objects (FMCO) in Leiden, The Netherlands,fromNovember2ndto5th,2004.Theprogramconsistedoftutorial and technical presentations given by leading experts in the fields of theoretical computer science and software engineering. The symposium was attended by more than 75 people from all over the world. This volume contains the contributions after the symposium of the invited speakers.We believe that the presentedmaterialprovidesaunique combination ofideasonsoftwareengineeringandformalmethodswhichreflecttheexpanding body of knowledge on modern software systems. July 2005 F.S. de Boer M.M. Bonsangue S. Graf W.-P. de Roever Organization The series of FMCO symposia are organized in the context of the bilateral NWO/DFG project Mobi-J and of the European IST project Omega. The Mobi-J Project Mobi-JisaprojectfoundedbyabilateralresearchprogramofTheDutchOrga- nizationforScientific Research(NWO)andthe CentralPublicFunding Organi- zation for Academic Research in Germany (DFG). The partners of the Mobi-J projects are: the Centrum voor Wiskunde en Informatica, the Leiden Institute of Advanced Computer Science, and the Christian-Albrechts-Universita¨tKiel. This project aims at the development of a programming environment which supports component-based design and verification of Java programs annotated with assertions. The overall approach is based on an extension of the Java lan- guage with a notion of component that provides for the encapsulation of its internal processing of data and composition in a network by means of mobile asynchronous channels. The Omega Project The overallaim of the European IST project Omega (2001-33522)is the defini- tionofadevelopmentmethodologyinUMLforembeddedandreal-timesystems based on formal verification techniques. The approach is based on a formal se- mantics of a suitable subset of UML, adapted and extended where needed with a special emphasis on time-related aspects. The Omegaprojectinvolvesthe followingpartners:VERIMAG (France,Co- ordinator), Centrum voor Wiskunde en Informatica (The Netherlands), Christian-Albrechts-Universita¨t (Germany), University of Nijmegen (The Netherlands), Weizmann Institute (Israel), OFFIS (Germany), EADS Launch Vehicles (France), France T´el´ecom R&D (France), Israeli Aircraft Industries (Israel), and National Aerospace Laboratory (The Netherlands). Sponsoring Institutions The Dutch Organizationfor Scientific Research (NWO) The European project IST-2001-33522Omega The Lorentz Center, Leiden, The Netherlands The Royal Netherlands Academy of Arts and Sciences (KNAW) The Dutch Institute for Programming Research and Algorithmics (IPA) TheCentrumvoorWiskundeenInformatica(CWI),Amsterdam,TheNetherlands The LeidenInstitute ofAdvancedComputerScience (LIACS),TheNetherlands Table of Contents A Theory of Predicate-Complete Test Coverageand Generation Thomas Ball .................................................. 1 A Perspective on Component Refinement Lu´ıs S. Barbosa ............................................... 23 A Fully Abstract Semanti cs for UML Components Frank S. de Boer, Marcello M. Bonsangue, Martin Steffen, Erika A´braha´m ................................................ 49 From (Meta) Objects to Aspects: A Java and AspectJ Point of View Pierre Cointe, Herv´e Albin-Amiot, Simon Denier .................. 70 MoMo: A Modal Logic for Reasoning About Mobility Rocco De Nicola, Michele Loreti ................................. 95 Probabilistic Linda-Based Coordination Languages Alessandra Di Pierro, Chris Hankin, Herbert Wiklicky .............. 120 Games with Secure Equilibria Krishnendu Chatterjee, Thomas A. Henzinger, Marcin Jurdzin´ski .... 141 Priced Timed Automata: Algorithms and Applications Gerd Behrmann, Kim G. Larsen, Jacob I. Rasmussen .............. 162 rCOS: Refinement of Component and Object Systems Zhiming Liu, He Jifeng, Xiaoshan Li ............................. 183 ProgramGeneration and Components Davide Ancona, Eugenio Moggi .................................. 222 Assertion-Based Encapsulation, Object Invariants and Simulations David A. Naumann ............................................ 251 A Dynamic Binding Strategy for Multiple Inheritance and Asynchronously Communicating Objects Einar Broch Johnsen, Olaf Owe ................................. 274 VIII Table of Contents Observability, Connectivity, and Replay in a Sequential Calculus of Classes Erika A´brah´am, Marcello M. Bonsangue, Frank S. de Boer, Andreas Gru¨ner, Martin Steffen ................................. 296 Timing Analysis and Timing Predictability Reinhard Wilhelm.............................................. 317 Author Index................................................... 325 A Theory of Predicate-Complete Test Coverage and Generation Thomas Ball Microsoft Research, Redmond,WA,USA [email protected] Abstract. Consider a program with m statements and n predicates, wherethepredicatesarederivedfromtheconditionalstatementsandas- sertionsinaprogram.Anobservable stateisanevaluationofthenpred- icates under some state at a program statement. The goal of predicate- completetesting(PCT)istoevaluateallthepredicatesateveryprogram state.Thatis,wewishtocovereveryreachableobservablestate(atmost m×2n of them) in a program. PCT coverage subsumes many existing control-flow coverage criteria and is incomparable to path coverage. To support the generation of tests to achieve high PCT coverage, we show how to define an upper bound U and lower bound L to the (unknown) set of reachable observable states R. These bounds are constructed au- tomatically usingBoolean (predicate) abstraction overmodal transition systemsandcanbeusedtoguidetestgenerationviasymbolicexecution. Wedefineastaticcoveragemetricas|L|/|U|,whichmeasurestheability of the Boolean abstraction toachieve high PCT coverage. 1 Introduction Control-flow-basedtestgenerationgenerallyhasasitsgoaltocoverallthestate- mentsorbranchesinaprogram.Therearevariouscontrol-flowadequacycriteria that go beyond branch coverage, such as multiple condition coverage, the ulti- mate of which is path coverage. Errors that go undetected in the face of 100% statement or branch coverage may be due to complex correlations between the predicates(thatcontroltheexecutionofstatements)andthestatements(thataf- fect the value of these predicates) of a program.However,paths are notoriously difficult to work with as a coverage metric because there are an unbounded number of them in programs with loops, which characterizes most interesting programs in existence. So, we seek an alternative to path coveragethat has its“exhaustive”quality but induces a finite (rather than infinite) state space. We start with a fixed notationforatomicpredicates(notcontainingBooleanconnectives),takenfrom the relevant programming language. A predicate maps a state to a Boolean value. For example, the predicate (x > 0) observes whether or not variable x hasapositivevalueinagivenstate.Consideraprogramwithmstatementsand n predicates. These predicates can be drawn from the conditional statements and assertionsin a program,as well as from implicit run-time safety checks (for F.S.deBoeretal.(Eds.):FMCO2004,LNCS3657,pp.1–22,2005. (cid:1)c Springer-VerlagBerlinHeidelberg2005

See more

The list of books you might like

Most books are stored in the elastic cloud where traffic is expensive. For this reason, we have a limit on daily download.