Mohammad Nurullah Patwary,Ana Jovanovic,Allison Sullivan

2024-06-14

Abstract:Alloy is well known a declarative modeling language. A key strength of Alloy is its scenario finding toolset, the Analyzer, which allows users to explore all valid scenarios that adhere to the model's constraints up to a user-provided scope. Despite the Analyzer, Alloy is still difficult for novice users to learn and use. A recent empirical study of over 93,000 new user models reveals that users have trouble from the very start: nearly a third of the models novices write fail to compile. We believe that the issue is that Alloy's grammar and type information is passively relayed to the user despite this information outlining a narrow path for how to compose valid formulas. In this paper, we outline a proof-of-concept for a structure editor for Alloy in which user's build their models using block based inputs, rather than free typing, which by design prevents compilation errors.

Software Engineering

Aboubakr Achraf El Ghazi,Mana Taghdiri

DOI: https://doi.org/10.48550/arXiv.1505.00672

2015-05-04

Abstract:This paper describes how Yices, a modern SAT Modulo theories solver, can be used to analyze the address-book problem expressed in Alloy, a first-order relational logic with transitive closure. Current analysis of Alloy models - as performed by the Alloy Analyzer - is based on SAT solving and thus, is done only with respect to finitized types. Our analysis generalizes this approach by taking advantage of the background theories available in Yices, and avoiding type finitization when possible. Consequently, it is potentially capable of proving that an assertion is a tautology - a capability completely missing from the Alloy Analyzer. This paper also reports on our experimental results that compare the performance of our analysis to that of the Alloy Analyzer for various versions of the address book problem.

Logic in Computer Science

Guanxuan Wu,Allison Sullivan

2024-05-05

Abstract:Writing declarative models has numerous benefits, ranging from automated reasoning and correction of design-level properties before systems are built to automated testing and debugging of their implementations after they are built. Unfortunately, the model itself needs to be correct to gain these benefits. Alloy is a commonly used modeling language that has several existing efforts to repair faulty models automatically. Currently, these efforts are search-based methods that use an Abstract Syntax Tree (AST) representation of the model and do not scale. One issue is that ASTs themselves suffer from exponential growth in their data size due to the limitation that ASTs will often have identical nodes separately listed in the tree. To address this issue, we introduce a novel code representation schema, Complex Structurally Balanced Abstract Semantic Graph (CSBASG), which represents code as a complex-weighted directed graph that lists a semantic element as a node in the graph and ensures its structural balance for almost finitely enumerable code segments. We evaluate the efficiency of our CSBASG representation for Alloy models in terms of it's compactness compared to ASTs, and we explore if a CSBASG can ease the process of comparing two Alloy predicates. Moreover, with this representation in place, we identify several future applications of CSBASG, including Alloy code generation and automated repair.

Software Engineering,Programming Languages

Ana Jovanovic,Allison Sullivan

2024-03-23

Abstract:Writing declarative models has numerous benefits, ranging from automated reasoning and correction of design-level properties before systems are built, to automated testing and debugging of their implementations after they are built. Alloy is a declarative modeling language that is well-suited for verifying system designs. A key strength of Alloy is its scenario-finding toolset, the Analyzer, which allows users to explore all valid scenarios that adhere to the model's constraints up to a user-provided scope. However, even with visualized scenarios, it is difficult to write correct Alloy models. To address this, a growing body of work explores different techniques for debugging Alloy models. In order to develop and evaluate these techniques in an effective manor, this paper presents an empirical study of over 97,000 models written by novice users trying to learn Alloy. We investigate how users write both correct and incorrect models in order to produce a comprehensive benchmark for future use as well as a series of observations to guide debugging and educational efforts for Alloy model development.

Computer Science

Lili He,Guisheng Fang,Fansheng Kong

DOI: https://doi.org/10.3321/j.issn:1003-9775.2007.06.010

2007-01-01

Abstract:A feature-based modeling method by interactively sketching the profile sections and trajectory paths of features is presented. A prototype system, named Sketch3D, provides a calligraphic interface that emulates the traditional sketching behaviors using papers and pencils. Intention capture mechanism is used to conjecture of users' design intention, and the feature-based modeling method is applied to construct the 3D solid models. The system supports four functions, which are stroke recognition and beautification, creation of basic features, sketching on 3D models and gesture-based model editing. The strokes can be sketched on the surfaces of the solid models, and the more complicated solid models can be constructed with the addition and deletion of features. Experiments show that the sketching feature-based modeling method is simple and efficient, and is suitable for rapidly expressing imprecise conceptual shapes.

Long Zeng,Yong-Jin Liu,Jin Wang,Dong-Liang Zhang,Matthew Ming-Fai Yuen

DOI: https://doi.org/10.1016/j.cag.2013.10.017

2014-01-01

Abstract:AbstractSketch-based modeling has attracted considerable attention in recent years. In this paper, we propose a semantic feature modeling system for sketch-based jewelry design, called blue Sketch2Jewelry. The newly devised semantic feature class encodes specific domain knowledge (jewelry design knowledge in this paper) and supplies prolific semantic information. The advantage of using semantic features is to narrow down the searching space in sketch-based feature retrieval and benefits the parameter selection from input sketches for feature instantiation and feature placement. Thus, the inaccuracy and ambiguity problems of freehand sketch inputs are alleviated within Sketch2Jewelry, compared to previous commercial feature-based modeling tools, e.g. SolidWorks, which are limited to fake sketches (i.e. not real freehand inputs). Since semantic features are high-level building blocks, together with sketch inputs, the proposed Sketch2Jewelry system can significantly improve the jewelry design efficiency. In addition, Sketch2Jewelry allows non-experts to sketch a complex jewelry model naturally and efficiently with design-by-feature. Examples are provided to demonstrate its usefulness.

Ryan Dancy,Nancy A. Day,Owen Zila,Khadija Tariq,Joseph Poremba

2024-11-25

Abstract:Alloy is a well-known, formal, declarative language for modelling systems early in the software development process. Currently, it uses the Kodkod library as a back-end for finite model finding. Kodkod translates the model to a SAT problem; however, this method can often handle only problems of fairly low-size sets and is inherently finite. We present Portus, a method for translating Alloy into an equivalent many-sorted first-order logic problem (MSFOL). Once in MSFOL, the problem can be evaluated by an SMT-based finite model finding method implemented in the Fortress library, creating an alternative back-end for the Alloy Analyzer. Fortress converts the MSFOL finite model finding problem into the logic of uninterpreted functions with equality (EUF), a decidable fragment of first-order logic that is well-supported in many SMT solvers. We compare the performance of Portus with Kodkod on a corpus of 49 expert Alloy models. Our method is fully integrated into the Alloy Analyzer.

Software Engineering,Logic in Computer Science

Rui Couto,José C. Campos,Nuno Macedo,Alcino Cunha

DOI: https://doi.org/10.4204/EPTCS.284.4

2018-11-27

Abstract:Alloy is a lightweight formal specification language, supported by an IDE, which has proven well-suited for reasoning about software design in early development stages. The IDE provides a visualizer that produces graphical representations of analysis results, which is essential for the proper validation of the model. Alloy is a rich language but inherently static, so behavior needs to be explicitly encoded and reasoned about. Even though this is a common scenario, the visualizer presents limitations when dealing with such models. The main contribution of this paper is a principled approach to generate instance visualizations, which improves the current Alloy Visualizer, focusing on the representation of behavior.

Human-Computer Interaction,Programming Languages,Software Engineering

Lei Li,Zhe Huang,Changqing Zou,Chiew-Lan Tai,Rynson W. H. Lau,Hao Zhang,Ping Tan,Hongbo Fu

DOI: https://doi.org/10.1145/3005358.3005372

2016-01-01

Abstract:We propose an interactive system that aims at lifting a 2D sketch into a 3D sketch with the help of existing models in shape collections. The key idea is to exploit part structure for shape retrieval and sketch reconstruction. We adopt sketch-based shape retrieval and develop a novel matching algorithm which considers structure in addition to traditional shape features. From a list of retrieved models, users select one to serve as a 3D proxy, providing abstract 3D information. Then our reconstruction method transforms the sketch into 3D geometry by back-projection, followed by an optimization procedure based on the Laplacian mesh deformation framework. Preliminary evaluations show that our retrieval algorithm is more effective than a state-of-the-art method and users can create interesting 3D forms of sketches without precise drawing skills.

Nuno Macedo,Alcino Cunha

DOI: https://doi.org/10.48550/arXiv.1209.5773

2012-09-26

Abstract:Alloy is an increasingly popular lightweight specification language based on relational logic. Alloy models can be automatically verified within a bounded scope using off-the-shelf SAT solvers. Since false assertions can usually be disproved using small counter-examples, this approach suffices for most applications. Unfortunately, it can sometimes lead to a false sense of security, and in critical applications a more traditional unbounded proof may be required. The automatic theorem prover Prover9 has been shown to be particularly effective for proving theorems of relation algebras [7], a quantifier-free (or point-free) axiomatization of a fragment of relational logic. In this paper we propose a translation from Alloy specifications to fork algebras (an extension of relation algebras with the same expressive power as relational logic) which enables their unbounded verification in Prover9. This translation covers not only logic assertions, but also the structural aspects (namely type declarations), and was successfully implemented and applied to several examples.

Formal Languages and Automata Theory

Loïc Gammaitoni,Pierre Kelsen

DOI: https://doi.org/10.1007/978-3-662-43652-3_33

2014-01-01

Abstract:Alloy is a modelling language based on first order logic and relational calculus combining the precision of formal specifications with powerful automatic analysis features [4]. The automatic analysis is done by the Alloy Analyzer, a tool capable of finding instances for given Alloy models in a finite domain space using SAT solving.

Bastani Osbert,Zhang Xin,Solar-Lezama Armando

2021-01-01

Abstract: We propose a novel approach to program synthesis, focusing on synthesizing database queries. At a high level, our proposed algorithm takes as input a sketch with soft constraints encoding user intent, and then iteratively interacts with the user to refine the sketch. At each step, our algorithm proposes a candidate refinement of the sketch, which the user can either accept or reject. By leveraging this rich form of user feedback, our algorithm is able to both resolve ambiguity in user intent and improve scalability. In particular, assuming the user provides accurate inputs and responses, then our algorithm is guaranteed to converge to the true program (i.e., one that the user approves) in polynomial time. We perform a qualitative evaluation of our algorithm, showing how it can be used to synthesize a variety of queries on a database of academic publications.

Melinos Averkiou,Vladimir G. Kim,Youyi Zheng,Niloy J. Mitra

DOI: https://doi.org/10.1111/cgf.12310

IF: 2.5

2014-01-01

Computer Graphics Forum

Abstract:AbstractRecent advances in modeling tools enable non‐expert users to synthesize novel shapes by assembling parts extracted from model databases. A major challenge for these tools is to provide users with relevant parts, which is especially difficult for large repositories with significant geometric variations. In this paper we analyze unorganized collections of 3D models to facilitate explorative shape synthesis by providing high‐level feedback of possible synthesizable shapes. By jointly analyzing arrangements and shapes of parts across models, we hierarchically embed the models into low‐dimensional spaces. The user can then use the parameterization to explore the existing models by clicking in different areas or by selecting groups to zoom on specific shape clusters. More importantly, any point in the embedded space can be lifted to an arrangement of parts to provide an abstracted view of possible shape variations. The abstraction can further be realized by appropriately deforming parts from neighboring models to produce synthesized geometry. Our experiments show that users can rapidly generate plausible and diverse shapes using our system, which also performs favorably with respect to previous modeling tools.

Ana Jovanovic,Allison Sullivan

DOI: https://doi.org/10.1007/s10270-024-01220-x

2024-10-29

Software & Systems Modeling

Abstract:Writing declarative models has numerous benefits, ranging from automated reasoning and correction of design-level properties before systems are built, to automated testing and debugging of their implementations after they are built. Alloy is a declarative modeling language that is well-suited for verifying system designs. A key strength of Alloy is its scenario-finding toolset, the Analyzer, which allows users to explore all valid scenarios that adhere to the model's constraints up to a user-provided scope. Despite the Analyzer, writing correct Alloy models remains a difficult task, partly due to Alloy's expressive operators, which allow for succinct formulations of complex properties but can be difficult to reason over manually. To further add to the complexity, Alloy's grammar was recently expanded to support linear temporal logic, increasing both the expressibility of Alloy and the burden for accurately expressing properties. To address this, this paper presents Alloy , an extension to Alloy's mutation testing framework that accounts for the newly introduced temporal logic, including updating Alloy 's test generation capability to produce temporal test cases. Experimental results reveal Alloy is efficient at generating and checking mutations and Alloy 's automatically generated tests are effective at detecting faulty temporal models.

computer science, software engineering

Anjali Sree-Kumar,Elena Planas,Robert Clarisó

DOI: https://doi.org/10.48550/arXiv.1604.00349

2016-04-01

Software Engineering

Abstract:Feature Models (FMs) are a mechanism to model variability among a family of closely related software products, i.e. a software product line (SPL). Analysis of FMs using formal methods can reveal defects in the specification such as inconsistencies that cause the product line to have no valid products. A popular framework used in research for FM analysis is Alloy, a light-weight formal modeling notation equipped with an efficient model finder. Several works in the literature have proposed different strategies to encode and analyze FMs using Alloy. However, there is little discussion on the relative merits of each proposal, making it difficult to select the most suitable encoding for a specific analysis need. In this paper, we describe and compare those strategies according to various criteria such as the expressivity of the FM notation or the efficiency of the analysis. This survey is the first comparative study of research targeted towards using Alloy for FM analysis. This review aims to identify all the best practices on the use of Alloy, as a part of a framework for the automated extraction and analysis of rich FMs from natural language requirement specifications.

William Heaven,Alessandra Russo

DOI: https://doi.org/10.48550/arXiv.cs/0508109

2005-08-24

Abstract:Formal techniques have been shown to be useful in the development of correct software. But the level of expertise required of practitioners of these techniques prohibits their widespread adoption. Formal techniques need to be tailored to the commercial software developer. Alloy is a lightweight specification language supported by the Alloy Analyzer (AA), a tool based on off-the-shelf SAT technology. The tool allows a user to check interactively whether given properties are consistent or valid with respect to a high-level specification, providing an environment in which the correctness of such a specification may be established. However, Alloy is not particularly suited to expressing program specifications and the feedback provided by AA can be misleading where the specification under analysis or the property being checked contains inconsistencies. In this paper, we address these two shortcomings. Firstly, we present a lightweight language called "Loy", tailored to the specification of object-oriented programs. An encoding of Loy into Alloy is provided so that AA can be used for automated analysis of Loy program specifications. Secondly, we present some "patterns of analysis" that guide a developer through the analysis of a Loy specification in order to establish its correctness before implementation.

Software Engineering,Logic in Computer Science

Nuno Macedo,Alcino Cunha

DOI: https://doi.org/10.48550/arXiv.1603.03599

2016-03-11

Software Engineering

Abstract:Alloy and TLA+ are two formal specification languages that are increasingly popular due to their simplicity and flexibility, as well as the effectiveness of their companion model checkers, the Alloy Analyzer and TLC, respectively. Nonetheless, while TLA+ focuses on temporal properties, Alloy is better suited to handle structural properties, requiring ad hoc mechanisms to reason about temporal properties. Thus, both have limitations in the specification and analysis of systems rich in both static and dynamic properties. This paper explores the pros and cons of these two frameworks when handling this class of systems through the step-by-step modeling, specification and verification of an example.

Sebastian Krings,Joshua Schmidt,Carola Brings,Marc Frappier,Michael Leuschel

DOI: https://doi.org/10.1007/978-3-319-91271-4_6

2018-01-01

Abstract:In this paper, we introduce a translation of the specification language Alloy to classical B. Our translation closely follows the Alloy grammar, each construct is translated into a semantically equivalent component of the B language. In addition to basic Alloy constructs, our approach supports integers and orderings. The translation is fully automated by the tool “Alloy2B”. We evaluate the usefulness by applying AtelierB and ProB to the translated models, and show benefits for proof and solving with integers and higher-order quantification.

Ali Abbassi,Nancy A. Day,Derek Rayside

DOI: https://doi.org/10.48550/arXiv.1906.05881

2019-06-14

Abstract:We present a variety of translation options for converting Alloy to SMT-LIB via Alloy's Kodkod interface. Our translations, which are implemented in a library that we call Astra, are based on converting the set and relational operations of Alloy into their equivalent in typed first-order logic (TFOL). We investigate and compare the performance of an SMT solver for many translation options. We compare using only one universal type to recovering Alloy type information from the Kodkod representation and using multiple types in TFOL. We compare a direct translation of the relations to predicates in TFOL to one where we recover functions from their relational form in Kodkod and represent these as functions in TFOL. We compare representations in TFOL with unbounded scopes to ones with bounded scopes, either pre or post quantifier expansion. Our results across all these dimensions provide directions for portfolio solvers, modelling improvements, and optimizing SMT solvers.

Software Engineering

Jinru Hua,Yushan Zhang,Yuqun Zhang,Sarfraz Khurshid

DOI: https://doi.org/10.1007/s10009-019-00512-8

2019-03-16

International Journal on Software Tools for Technology Transfer

Abstract:<p>Sketching is a synthesis approach that allows users to provide high-level insights into a synthesis problem and let synthesis tools complete low-level details. Users write <em>sketches</em>—partial programs that have "holes" and provide test assertions as the correctness criteria. The sketching techniques fill the holes with code fragments such that the complete program satisfies all test assertions. Traditional techniques translate the sketching problem to propositional satisfiability formulas and leverage SAT solvers to generate programs with the desired functionality. While effective for a range of small well-defined domains, such translation-based approaches have a key limitation when applying to real applications: They require either translating all relevant libraries that are invoked directly or indirectly by the given sketch or creating models of those libraries, which requires much manual effort. This paper introduces <em>execution-driven sketching</em>, a novel approach for synthesizing Java programs with <em>on-demand</em> candidate generation. The key novelty of our work is to leverage runtime behavior to prune a large amount of search space. <span>EdSketch</span> explores the actual program behaviors <em>in the presence</em> of libraries and sketches small parts of real-world applications, which may use complex constructs of modern languages, such as reflection, native calls and File I/O. We further leverage a set of pruning strategies based on Java syntax to expedite the synthesis process. <span>EdSketch</span> embodies our approach in two forms: a stateful search based on the Java PathFinder model checker; and a stateless search based on re-execution inspired by the <span>VeriSoft</span> model checker. Experimental results show that <span>EdSketch</span> can complete some sketches that contain complex constructs in the presence of libraries, recursive procedures and advanced features like reflection. Without translating to SAT, <span>EdSketch</span> 's performance compares well with the SAT-based <span>Sketch</span> system for a range of small but complex data structure subjects.</p>

computer science, software engineering