A DSL for AADL Subsets Specification

Size: px

Start display at page:

Download "A DSL for AADL Subsets Specification"

Benedict Watson
5 years ago
Views:

1 A DSL for AADL Subsets Specification V. Gaudel, P. Dissaux*, A. Plantec, F. Singhoff, J. Hugues**, J. Legrand* University of Brest/UBO, Lab-Sticc, France *Ellidiss Technologies, France ** Institut Supérieur de l Aéronautique et de l Espace/ISAE, France July, 2013

2 Introduction Introduction (1/3) Global Problematic Rationale for the Subset annex (February 2012 Meeting) 1 AADL is a rich Language. 2 Each verification/code generation may have specific requirements. 3 Tools that are devoted for a given analysis usually support a subset of AADL. Addressed problems 1 Use of AADL may lead to some tool interoperability failures. 2 Probably causes a limited use of some AADL tools. Objectives of the Subset annex (February 2012 Meeting) 1 Increase tool interoperability. 2 Increase confidence of users when they (try to) use tools. 3 Certification toolkits for subset: allow tool designers to check compliance with their products. 4 Allow users to define constraints that are specific to their systems or overall development process. Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

3 Introduction Introduction (2/3) Previous Works Problems we answered (February 2013 Meeting) 1 What is a subset? 2 How to express it? Previous meeting proposition (February 2013 Meeting) 1 Investigate 3 examples of Subsets. 2 Proposition of a superset (AADL Meta-Model) from whom all subsets could be defined. 3 Investigate the different kinds of constraints of those subsets. 4 Proposition of an uniform way to describe constraints. Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

4 Introduction Introduction (3/3) Current Works Problematic from previous meeting feedbacks 1 How to specify AADL Subsets with the use of a DSL. 2 How to use the DSL. 3 How to implement the compliance of a system with a subset s constraints? Proposition 1 Proposition of a DSL for AADL Subsets Specification. 2 The DSL enables to specify cardinality constraints upon the superset entities and their relationships. 3 Implementation of a parser using Platypus. 4 Automatic implementation of DSL constraints in EXPRESS. Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

5 Outline Introduction 1 Approach: Subsets modeled as sets of cardinality constraints Superset: an AADL Meta-Model Subset Model Proposal A DSL for building Subset Models Subset Specification Issues 2 How to use the DSL: overview by examples Global Constraints Local Constraints 3 Prototyping and evaluation using Platypus 4 Conclusion Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

6 Approach: Subsets modeled as sets of cardinality constraints Outline 1 Approach: Subsets modeled as sets of cardinality constraints Superset: an AADL Meta-Model Subset Model Proposal A DSL for building Subset Models Subset Specification Issues 2 How to use the DSL: overview by examples Global Constraints Local Constraints 3 Prototyping and evaluation using Platypus 4 Conclusion Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

7 Approach: Subsets modeled as sets of cardinality constraints Superset: an AADL Meta-Model Rationale for the SuperSet Meta-Model Superset: a meta-model common to all subsets 1 Based on Appendix C for element identifiers 2 And literal descriptions of entities attributes 3 Use of multiple inheritance 4 What is in the superset? Model of the declarative part of AADL. Instance model can be deduced from this model. Property sets and annexes are considered as parts of the superset. Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

8 Approach: Subsets modeled as sets of cardinality constraints Subset Model Proposal What could be a subset? Subset Model Proposal 1 Superset is an EXPRESS Meta-model 2 A subset constraint is modeled by an EXPRESS RULES on the superset 3 Then, each subset is declared as a set of EXPRESS RULES on the superset 4 What we assume: A constraint is a cardinality verification Or a composition of cardinality verifications Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

9 Approach: Subsets modeled as sets of cardinality constraints How to build a subset model? Subset Specification Issues Subset Model Proposal 1 Identification of recurrent patterns in the definition of constraints. 2 Constraint were manually transformed towards EXPRESS. 3 Requires basic knowledge of EXPRESS and the Superset. 4 Might require extra work for user s documentation. The DSL is a layer between natural language specification of subsets and their EXPRESS models. Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

10 Outline How to use the DSL: overview by examples 1 Approach: Subsets modeled as sets of cardinality constraints Superset: an AADL Meta-Model Subset Model Proposal A DSL for building Subset Models Subset Specification Issues 2 How to use the DSL: overview by examples Global Constraints Local Constraints 3 Prototyping and evaluation using Platypus 4 Conclusion Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

11 How to use the DSL: overview by examples Two kinds of cardinality constraints: Global Constraints Restrictions forbidding or requiring the presence of a given AADL element Restrictions forbidding or requiring a particular category for a given AADL element MAR5: There is only one Processor Component. TT2: Features must be Data Ports. Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

12 How to use the DSL: overview by examples Two kinds of cardinality constraints: Local Constraints Restrictions forbidding or requiring a particular value for a given AADL element Restrictions consisting in a constraint over the relationship between two AADL elements MAR2: For all Processors, the property Actual Processor Binding must be specified MAR9: Subprogram calls must take place between two Threads Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

13 Outline How to use the DSL: overview by examples Global Constraints 1 Approach: Subsets modeled as sets of cardinality constraints Superset: an AADL Meta-Model Subset Model Proposal A DSL for building Subset Models Subset Specification Issues 2 How to use the DSL: overview by examples Global Constraints Local Constraints 3 Prototyping and evaluation using Platypus 4 Conclusion Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

14 How to use the DSL: overview by examples Global Constraints Global Constraint Examples (1/2): Restrictions forbidding or requiring the presence of a given AADL element Marzhin1: There is only one Processor. subset SubsetExample ( constraintdef ) Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

15 How to use the DSL: overview by examples Global Constraints Global Constraint Examples (1/2): Restrictions forbidding or requiring the presence of a given AADL element Marzhin1: There is only one Processor. subset SubsetExample ( MAR1 : constraintbody ; ) Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

16 How to use the DSL: overview by examples Global Constraints Global Constraint Examples (1/2): Restrictions forbidding or requiring the presence of a given AADL element Marzhin1: There is only one Processor. subset SubsetExample ( MAR1 : there i s cardinalityexpression setdef; ) Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

17 How to use the DSL: overview by examples Global Constraints Global Constraint Examples (1/2): Restrictions forbidding or requiring the presence of a given AADL element Marzhin1: There is only one Processor. subset SubsetExample ( MAR1 : there i s exactly 1 Processor; ) Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

18 How to use the DSL: overview by examples Global Constraint Examples (2/2): Global Constraints Restrictions forbidding or requiring a particular category for a given AADL element Marzhin2: Features must be Data Ports. subset SubsetExample (... MAR2 : the category o f setdef i s typedef; ) Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

19 How to use the DSL: overview by examples Global Constraint Examples (2/2): Global Constraints Restrictions forbidding or requiring a particular category for a given AADL element Marzhin2: Features must be Data Ports. subset SubsetExample (... MAR2 : the category o f Feature i s Data Port; ) Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

20 Outline How to use the DSL: overview by examples Local Constraints 1 Approach: Subsets modeled as sets of cardinality constraints Superset: an AADL Meta-Model Subset Model Proposal A DSL for building Subset Models Subset Specification Issues 2 How to use the DSL: overview by examples Global Constraints Local Constraints 3 Prototyping and evaluation using Platypus 4 Conclusion Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

21 How to use the DSL: overview by examples Local Constraint Examples (1/3): Local Constraints Restrictions forbidding or requiring a particular value for a given AADL element Marzhin3: The property Actual Processor Binding must be specified. subset SubsetExample (... MAR3 : f o r a l l elementidentifier i n setdef : ( constraintbodyaux ); ) Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

22 How to use the DSL: overview by examples Local Constraint Examples (1/3): Local Constraints Restrictions forbidding or requiring a particular value for a given AADL element Marzhin3: The property Actual Processor Binding must be specified. subset SubsetExample (... MAR3 : f o r a l l p i n Processor : ( constraintbodyaux ); ) Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

23 How to use the DSL: overview by examples Local Constraint Examples (1/3): Local Constraints Restrictions forbidding or requiring a particular value for a given AADL element Marzhin3: The property Actual Processor Binding must be specified. subset SubsetExample (... MAR3 : f o r a l l p i n Processor : ( the value o f elementidentifier i s valueoperator ); ) Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

24 How to use the DSL: overview by examples Local Constraint Examples (1/3): Local Constraints Restrictions forbidding or requiring a particular value for a given AADL element Marzhin3: The property Actual Processor Binding must be specified. subset SubsetExample (... MAR3 : f o r a l l p i n Processor : ( the value o f p. Actual Processor Binding i s specified ); ) Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

25 How to use the DSL: overview by examples Local Constraint Examples (2/3): Local Constraints Restrictions consisting in a constraint over the relationship between two AADL elements Marzhin4: Features Properties must be one of the following : Queue Size, Dequeue Protocol. subset SubsetExample (... MAR4 : f o r a l l f i n Feature : ( f o r a l l p i n f. Properties : ( ( the value o f p. Name i s Queue Size or the value o f p. Name i s Dequeue Protocol) ) ); ) Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

26 How to use the DSL: overview by examples Local Constraint Examples (3/3): Local Constraints Restrictions consisting in a constraint over the relationship between two AADL elements Marzhin5: Dequeue Protocol must have one of the following values : OneItem or AllItems. subset SubsetExample (... MAR5 : f o r a l l elementidentifier i n setdef : ( constraintbodyaux ); ) Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

27 How to use the DSL: overview by examples Local Constraint Examples (3/3): Local Constraints Restrictions consisting in a constraint over the relationship between two AADL elements Marzhin5: Dequeue Protocol must have one of the following values : OneItem or AllItems. subset SubsetExample (... MAR5 : f o r a l l f i n ( Feature f2 such that the value o f f2. Dequeue Protocol i s specified ) : ( constraintbodyaux ); ) Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

28 How to use the DSL: overview by examples Local Constraint Examples (3/3): Local Constraints Restrictions consisting in a constraint over the relationship between two AADL elements Marzhin5: Dequeue Protocol must have one of the following values : OneItem or AllItems. subset SubsetExample (... MAR5 : f o r a l l f i n ( Feature f2 such that the value o f f2. Dequeue Protocol i s specified ) : ( ( the value o f f. Dequeue Protocol i s OneItem or the value o f f. Dequeue Protocol i s AllItem ) ); ) Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

29 Outline Prototyping and evaluation using Platypus 1 Approach: Subsets modeled as sets of cardinality constraints Superset: an AADL Meta-Model Subset Model Proposal A DSL for building Subset Models Subset Specification Issues 2 How to use the DSL: overview by examples Global Constraints Local Constraints 3 Prototyping and evaluation using Platypus 4 Conclusion Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

30 Prototyping and evaluation using Platypus Meta Models and Parser Specification with Platypus Use of Platypus for prototyping Meta-environment based on ISO STEP technology. Enables to design, to verify and to validate meta-models written with EXPRESS. Enables to implement code generators for EXPRESS meta-model. Enables to model and generate parsers from EXPRESS meta-model and BNF specification. Superset Meta-model has been elaborated within Platypus. We choose to stick with EXPRESS generation but other languages could be targeted. Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

31 Prototyping and evaluation using Platypus Abstract Syntax Meta-Model Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

32 BNF of the DSL Prototyping and evaluation using Platypus subsetdef : subset subsetidentifier ( constraintdef ) ; constraintdef : constraintidentifier : constraintbody ; ; constraintbody : there verb cardinalityexpression setdef f o r a l l elementidentifier i n setdef : ( constraintbodyaux ) the category o f setdef i s typedef ; constraintbodyaux : constraintbody the value o f elementidentifier i s valueoperator ( constraintbodyaux and constraintbodyaux ) ( constraintbodyaux or constraintbodyaux ) ;... Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

33 Conclusion Conclusion Problem: How to specify AADL subsets with the use of a DSL? How to use the DSL? How to implement the compliance of a system with a subset s constraints? Approach: Superset: an AADL meta-model to model the examples of subsets. Specification of the subsets as a set of cardinality constraints on superset. Proposition of a DSL for subset specification. Results: For the considered subset examples, we are able to express all their constraints with our DSL. We were also able to transform them as sets of cardinality constraints on the superset. Publication accepted in Rapid System Prototyping Symposium 2013 (RSP 13). Perspectives/roadmap: Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

34 Acknowledgement Conclusion We would like to thank Ellidiss Technologies and Region Bretagne for their support to this project. Gaudel, Dissaux, Plantec, Singhoff, Hugues ( ) A DSL for AADL Subsets Specification July, / 21

AADL Subsets Annex Update

AADL Subsets Annex Update V. Gaudel, P. Dissaux, A. Plantec, F. Singhoff, J. Hugues*, J. Legrand University of Brest/UBO, Lab-Sticc, France Ellidiss Technologies, France *Institut Supérieur de l Aéronautique