Rodin Index Design

From Event-B
Revision as of 12:17, 18 September 2008 by imported>Mathieu (Category:Work in progress)
Jump to navigationJump to search

Purpose

The purpose of the Rodin index manager is to store in a uniform way the entities that are declared in the database together with their occurrences. This central repository of declarations and occurrences will allow for fast implementations of various refactoring mechanisms (such as renaming) and support for searching models or browsing them.

Specification

The name table

Firstly, the index manager needs to store declarations. We make the assumption that a declaration corresponds to one and only one element in the database.

For event-B, this assumption is true. For instance, a variable declaration is an IVariable element, an event declaration is an IEvent, etc.

However, the element handle doesn't carry directly the user-defined name for the element. This name is stored in an attribute of the element. Thus, one needs to access to the element in the database to retrieve this name. We therefore want to cache this name in the index to prevent frequent accesses to the database that would hinder performance.

the user-defined name of a variable is stored in its identifier attribute, the name of an event in its label attribute.

So, the first table that the index manager needs to maintain is specified as

\mathit{name}\in\mathit{ELEMENT}\pfun\mathit{STRING} ,

where \mathit{ELEMENT} is the set of all element handles and \mathit{STRING} is the set of all character strings.


The occurrences table

Secondly, the index manager needs to maintain the relation between declarations and occurrences. This relation is specified as

\mathit{occurrences}\in\dom(\mathit{name})\rel\mathit{LOCATION} ,

where \mathit{LOCATION} is the set of all locations in the database, a location being either an element, or an attribute of an element, or a substring of an attribute of an element. We also have the following function which relates a location to the element that contains the location

\mathit{element}\in\mathit{LOCATION}\tsur\mathit{ELEMENT} .

However, note that this relation is not maintained by the index manager, it is inherent to the definition of locations.

Populating the Index

Following the general principles of the Rodin core, the Rodin index manager is notation agnostic. Therefore, it cannot populate the index by itself, but delegates this to plug-ins through an extension point. These contributions are called indexers.

Then, the question arises to define the granularity at which these indexers will be declared and work. Having an indexer declared and working on a whole project would be too coarse grain. Conversely, having an indexer declared and working at the granularity of internal elements would be too fine grain. So, it has been decided that indexers are declared for file elements, based on their type. In hindsight, we are taking here the same design decision we took for the event-B tools when defining the granularity of static checking and proof obligation generation.

Moreover, we want to keep the index at least as open as the Rodin database. So, we need to be prepared to accommodate several indexers working on the same file, as the elements contained in a file can be contributed by several plug-ins. In this case, the side question is in which order should these indexers be run. The solution chosen is that any indexer can declare that it should be run after another indexer. In other words, plug-ins can define a partial order among the indexers that will be enforced by the index manager.

Putting everything together, we obtain an extension point for contributing indexers with the following components

  • id: unique identifier of the indexer
  • name: human-readable name of the indexer
  • class: implementation of the indexer
  • type: list of the file element types handled by the indexer
  • after: list of the ids of the indexers that must be run before the indexer


Index Maintenance

Of course, the database will change when users edit their models. We therefore must define a policy for updating the index when the database is modified. Detecting database changes is easy, thanks to the deltas that are generated by the database manager upon modification.

The difficulty here is that there is no restriction on the occurrences of an element: an element can occur in the file where it is declared, but it can also occur in a completely different file.

For instance, in event-B, a constant can occur in the context where it is declared, but also in any context that extends (directly or indirectly) its declaring context.

So, in principle, each time a file changes, we have to re-index all files. This is clearly not acceptable from a performance point of view. In order to keep index updating efficient, we need to better organize the way file changes are propagated in the index. For this, we first need to gather additional information from indexers (like dependencies between files), then we have to enforce some restrictions on the indexes contributed by indexers, so that we can compute the consequences of a file change.

Dependencies

Firstly, we ask the indexers to provide the index manager with the list of files that a given file depends on. This is stored in the table with the following specification

\mathit{dependsOn}\in\mathit{FILE}\rel\mathit{FILE} ,

where \mathit{FILE} is the set of all files.

TODO: What happens if \mathit{dependsOn} contains a cycle?

But having these dependencies is not precise enough, and can still lead to a lot of unnecessary indexing.

For instance, in event-B, if the user adds a theorem to a context on which all files of a project depend (e.g., the context seen by the top-level machine of this project), then we would have to re-index all the files of the project, although it will be useless, as the theorem is not visible to the other files.

Therefore, we also ask that the indexer reports the declarations that are exported (i.e., made visible) by a file to the files that depend on it. This information is stored in the table specified as

\mathit{exports}\in\mathit{FILE}\rel\mathit{ELEMENT} .


Restrictions

Then, to minimize re-indexing, we ask that indexers behave as good citizens and enforce some restrictions on the elements and locations that an indexer can contribute to the index.

To express these constraints, we need a new constant relation that gives the file in which an element is declared

\mathit{file}\in\mathit{ELEMENT}\rel\mathit{FILE} .

This relation is a constant and is inherent to the database structure, it is not maintained by the index manager, only used by it.

Firstly, we ask that an indexer running on file f contributes names only for elements belonging to this file, i.e., these elements must belong to set


  \mathit{file}^{-1}[\{f\}]
 .

Secondly, the indexer must contribute only occurrences in file f, that is the occurrences provided by an indexer must belong to the set


  (\mathit{element}\fcomp\mathit{file})^{-1}[\{f\}]
 .

Thirdly, an indexer only contributes occurrences for elements declared in the file on which it is run or exported by a file on which this file depends directly, i.e., the elements for which an indexer contributes an occurrence must belong to the set


  \mathit{file}^{-1}[\{f\}]\bunion
  (\mathit{dependsOn}\fcomp\mathit{exports})[\{f\}]
 .

Finally, an indexer can only export elements for which it can contribute occurrences, as detailed in the previous point.


Updating algorithm

Given these restrictions, we need to update the index for a file only if

  • either the file has changed,
  • or the elements visible in the file have changed

since the last time it was indexed.

Formally, the last property means that the following set has changed


  (\mathit{dependsOn}\fcomp\mathit{exports})[\{f\}]\domres\mathit{name}
 .

Concurrency

TODO: Describe concurrency issues: concurrent access and modifications

Persistence

TODO: How is the indexed made persistent across sessions?