[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

*From*: Karolis Petrauskas <k.petr...@xxxxxxxxx>*Date*: Tue, 15 Jan 2019 22:10:57 +0200*References*: <f151f981-6c66-491d-9cac-ba2f94ecc9e4@googlegroups.com> <198F903A-F3D3-4C65-834A-4A81C244A7B0@gmail.com> <7a70160e-ca4c-4dcf-90d8-7f2fea6538f4@googlegroups.com>

I think it should be:

("a" \in Objects) ~> ("b" \in Objects).

Karolis

On Tue, Jan 15, 2019 at 8:46 PM <dominik...@xxxxxxxxx> wrote:

Hello Stephan,

Thanks for your prompt and helpful response. Also, you are correct, Bar_2 was meant to remove "b" if "a" is no longer present, sorry for the copy paste error.

Bar_2 ==

/\ ~ "a" \in Objects

/\ Objects' = Objects \ {"b"}

In your opinion is the Invariant helpful in describing the system? I want to communicate the informal property or intuition that "if there is an "a" long enough there will eventually be a "b"" but I'm not certain that formula captures that property. Is there an alternative that I am not thinking of?

Thanks again, Dominik

On Tuesday, January 15, 2019 at 9:39:14 AM UTC-8, Stephan Merz wrote:

> Hello Dominik,

>

> your temporal formula corresponds to your informal explanation (modulo the fact that the fairness part of the explanation is part of the specification, not the property). It is quite easy to see that the property is true of your specification:

>

> 1. You assume "a" \in Objects to be persistently true in an execution.

> 2. This condition enables action <<Bar_1>>_Objects as long as "b" is not in Objects (this is actually a somewhat subtle point: Bar_1 is a stuttering action if both "a" and "b" are contained in Objects).

> 3. Using weak fairness for that action, we know that it must eventually execute and therefore establish "b" \in Objects.

> 4. No action ever removes "b" from Objects, and therefore it remains there persistently.

>

> However, I suspect that item (4) actually does not correspond to your intuition and that you meant Bar_2 to remove "b" from set Objects rather than being a copy of Bar_1. Your property will not hold of the modified specification.

>

> Regards,

> Stephan

>

>

> > On 15 Jan 2019, at 18:17, dominik...@xxxxxxxxx wrote:

> >

> >

> > Hello,

> >

> > I have a question regarding a temporal formula. Let's assume I have the following Spec:

> >

> > VARIABLE Objects

> >

> > Foo_1 ==

> > Objects' = Objects \cup {"a"}

> >

> > Foo_2 ==

> > Objects' = Objects \ {"a"}

> >

> > Bar_1 ==

> > /\ "a" \in Objects

> > /\ Objects' = Objects \cup {"b"}

> >

> > Bar_2 ==

> > /\ "a" \in Objects

> > /\ Objects' = Objects \cup {"b"}

> >

> > Init ==

> > Objects = {}

> >

> > Next ==

> > \/ Foo_1

> > \/ Foo_2

> > \/ Bar_1

> > \/ Bar_2

> > \/ UNCHANGED Objects

> >

> > Spec == /\ Init /\ [][Next]_<< Objects >> /\ WF_<< Objects >>(Bar_1)

> >

> > - Foo_1 adds "a" to Objects

> > - Foo_2 removes "a" from Objects

> > - Bar_1 adds "b" to Objects if "a" is in Objects

> > - Bar_2 removes "b" from Objects if "a" is not in Objects

> >

> > For each behavior Objects could be {}, {"a"}, {"a", "b"}, {"b"}

> >

> > I would like to use a temporal formula to document the behavior:

> >

> > <>[]("a" \in Objects) => <>[]("b" \in Objects)

> >

> > In words:

> >

> > "Given that Bar_1 is weakly fair, If eventually "a" is continuously in Objects then eventually "b" is continuously in Objects"

> >

> > My Questions:

> >

> > - Is this temporal formula actually expressing what I put in words

> > - Does that make sense at all? Or is it more of a tautology (in logic and rhetoric)?

> >

> > Thanks, Dominik

> >

> > --

> > You received this message because you are subscribed to the Google Groups "tlaplus" group.

> > To unsubscribe from this group and stop receiving emails from it, send an email to tlaplus+u...@xxxxxxxxxxxxxxxx.

> > To post to this group, send email to tla...@xxxxxxxxxxxxxxxx.

> > Visit this group at https://groups.google.com/group/tlaplus.

> > For more options, visit https://groups.google.com/d/optout.

--

You received this message because you are subscribed to the Google Groups "tlaplus" group.

To unsubscribe from this group and stop receiving emails from it, send an email to tlaplus+u...@xxxxxxxxxxxxxxxx.

To post to this group, send email to tla...@xxxxxxxxxxxxxxxx.

Visit this group at https://groups.google.com/group/tlaplus.

For more options, visit https://groups.google.com/d/optout.

**Follow-Ups**:**Re: [tlaplus] "As long as, eventually"***From:*dominik . . .

**References**:**"As long as, eventually"***From:*dominik . . .

**Re: [tlaplus] "As long as, eventually"***From:*Stephan Merz

**Re: [tlaplus] "As long as, eventually"***From:*dominik . . .

- Prev by Date:
**Re: [tlaplus] "As long as, eventually"** - Next by Date:
**Re: [tlaplus] "As long as, eventually"** - Previous by thread:
**Re: [tlaplus] "As long as, eventually"** - Next by thread:
**Re: [tlaplus] "As long as, eventually"** - Index(es):