[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [tlaplus] How do you do functions of structures?

From: Markus Kuppe <tlaplus-google-group@xxxxxxxxxxx>
Date: Mon, 7 Jun 2021 10:31:03 -0700
References: <f71490a1-015b-c6f0-a24f-efe11a7757e4@gmail.com> <CAFteovLeYPyyqzgyBFdZNTBJKRmL2_Am82H7jitLe52yYiKF2w@mail.gmail.com> <E0DB055F-55BF-42C3-96C3-C3E0E0B8A022@gmail.com> <b08e7a94-7557-4980-a90a-65b7f498e37en@googlegroups.com>

On 07.06.21 09:24, Aaron Elligsen wrote:

However true, I did find it unfortunate. The primary purpose of therecord is to group associated data together. You can point out theisomorphism all day but that doesn't change the fact that it is easierto reason about related data when it is in the same place. Neitherobject oriented or functional programming languages really encouragedestructuring data in this way. It goes against the grain of mostprogrammers training for modularity and encapsulation. It also likelymakes the TLA+ specification diverge from the code that it is trying todescribe so verifying equivalent states between a production system andthe tla spec will now need another translation step to eitherdestructure or restructure the data for comparison.

Hi,

specifications are not code. Concepts that organize programs that spandozens or hundreds of files are usually overhead for specs that consistof a handful of files. I certainly don't organize my bookshelf the sameway librarians do to keep thousands of books in order.

Many concepts in TLA+ go against the (my) training of programmers, whichis best summarized by: "we witnessed first hand the brain washing doneby years of [...] programming" [1]. The concepts indeed appear strangeto us, but strangeness doesn't invalidate them. If all the strangeconcepts were replaced in favor of familiar ones, TLA+ would be anotherprogramming language.

The conundrum that makes it challenging to keep specs and code in syncare the abstractions that we want to find with TLA+.

Perhaps PlusCal could provide a key word to handle the conversion automatically. I can see either nested records or set unions creating complications, but maybe this would be good enough for most situations.

There are other proposals to extend or fork PlusCal. If there is agroup of people who write PlusCal specs that are too large, the partiescould team up and propose and implement an extension of PlusCal withadditional modularity concepts (I believe the term "modular pluscal" isalready taken). The recently created RFC [1] repository would be a goodplace to organize and discuss the work.


Cheers,
Markus

[1]https://lamport.azurewebsites.net/tla/industrial-use.html?unhideBut=hide-rtos&unhideDiv=rtos&back-link=high-level-view.html

[2] https://github.com/tlaplus/rfcs

--
You received this message because you are subscribed to the Google Groups "tlaplus" group.
To unsubscribe from this group and stop receiving emails from it, send an email to tlaplus+unsubscribe@xxxxxxxxxxxxxxxx.
To view this discussion on the web visit https://groups.google.com/d/msgid/tlaplus/f142af41-fff5-9cf3-a1c0-75d7eb54d612%40lemmster.de.

References:
- [tlaplus] How do you do functions of structures?
  - From: Hillel Wayne
- Re: [tlaplus] How do you do functions of structures?
  - From: Karolis Petrauskas
- Re: [tlaplus] How do you do functions of structures?
  - From: Stephan Merz
- Re: [tlaplus] How do you do functions of structures?
  - From: Aaron Elligsen

Prev by Date: Re: [tlaplus] How do you do functions of structures?
Next by Date: Re: [tlaplus] Re: How do you do functions of structures?
Previous by thread: Re: [tlaplus] How do you do functions of structures?
Next by thread: [tlaplus] Re: How do you do functions of structures?
Index(es):
- Date
- Thread