Difference between revisions of "Java Team2 Benchmark1"
From CRV
| Line 15: | Line 15: | ||
We have defined the following pointcuts to capture the relevant events for this benchmark (see the next section for their use): | We have defined the following pointcuts to capture the relevant events for this benchmark (see the next section for their use): | ||
| − | pointcut | + | pointcut userDepositFromExternal(Integer uid, Integer sid, String to_account_number, double amount) : |
| − | call(public | + | call(public boolean USER_depositFromExternal(Integer, Integer, String, double) && args(uid, sid, to_account_number, amount)); |
| − | pointcut | + | pointcut userPayToExternal(Integer uid, Integer sid, String from_account_number, double amount) : |
| − | call(public | + | call(public boolean USER_payToExternal(Integer, Integer, String, double) && args(uid, sid, from_account_number, amount)); |
| − | + | ||
| − | pointcut | + | pointcut userTransferOwnAccounts(Integer uid, Integer sid, String from_account_number, String to_account_number, double amount) : |
| − | call(public | + | call(public boolean USER_transferOwnAccounts(Integer, Integer, String, String, double) && args(uid, sid, from_account_number, to_account_number, amount)); |
| + | |||
| + | pointcut reconcile() : | ||
| + | call(public void ADMIN_reconcile()); | ||
| + | |||
== Trace Statistics == | == Trace Statistics == | ||
| Line 32: | Line 36: | ||
! Occurrences | ! Occurrences | ||
|- | |- | ||
| − | | | + | | userDepositFromExternal |
| | | | ||
|- | |- | ||
| − | | | + | | userPayToExternal |
| | | | ||
|- | |- | ||
| − | | | + | | userTransferOwnAccounts |
| | | | ||
| + | |- | ||
| + | | reconcile | ||
|} | |} | ||
| Line 46: | Line 52: | ||
==== Informal Description ==== | ==== Informal Description ==== | ||
| − | + | The administrator must reconcile accounts after every 1000 attempted external money transfers or after an aggregate total of one million dollars in attempted external transfers (attempted transfers include transfers requested which never took place due to lack of funds). | |
| − | + | ||
| − | + | ||
==== Demonstration Traces ==== | ==== Demonstration Traces ==== | ||
| + | |||
| + | The property is specified formally in a Guarded Command Language, units in which consist of an event, guarded by a condition, upon which a specified action is performed. For more information see [https://drive.google.com/file/d/0B-0CQ8SP0TYjWmF5THdmbDNQeHM/view?usp=sharing]. | ||
| + | |||
''Satisfying Traces'' | ''Satisfying Traces'' | ||
| Line 70: | Line 77: | ||
==== Formal Specification ==== | ==== Formal Specification ==== | ||
| − | + | The property is specified formally in a Guarded Command Language, units in which consist of an event, guarded by a condition, upon which a specified action is performed. For more information see [https://drive.google.com/file/d/0B-0CQ8SP0TYjWmF5THdmbDNQeHM/view?usp=sharing]. | |
| − | + | ||
| − | + | ||
| − | + | ||
| − | + | ||
| − | + | ||
| − | + | ||
| − | + | ||
| − | + | ||
| − | + | userDepositFromExternal | -> { | |
| + | Verification.countExternalTransferAttempts++; Verification.totalExternalTransferAttempts+=amount; | ||
| + | if (Verification.countExternalTransferAttempts>1000 || Verification.totalExternalTransferAttempts>1000000) { | ||
| + | Verification.fail("P8 violated"); | ||
| + | } | ||
| + | } | ||
| + | userPayToExternal | -> { | ||
| + | Verification.countExternalTransferAttempts++; Verification.totalExternalTransferAttempts+=amount; | ||
| + | if (Verification.countExternalTransferAttempts>1000 || Verification.totalExternalTransferAttempts>1000000) { | ||
| + | Verification.fail("P8 violated"); | ||
| + | } | ||
| + | } | ||
| + | reconcile | -> { | ||
| + | Verification.countExternalTransferAttempts=0; Verification.totalExternalTransferAttempts=0; | ||
| + | } | ||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
==== A FO-LTL Specification ==== | ==== A FO-LTL Specification ==== | ||
Revision as of 18:23, 2 June 2016
FiTS (A Financial Transaction System) is a bare-bones system mocking the behaviour of a financial transaction system. It emulates a virtual banking system in which users may open accounts from which they may perform money transfers. For more information read the manual at [1]
Categories: Financial
Contents
Benchmark Data
The Trace Part
The relevant files can be found on the server at: filepath
The script will run a scenario that violates/satisfies the property defined in the rest of this page.
Instrumentation Information
We have defined the following pointcuts to capture the relevant events for this benchmark (see the next section for their use):
pointcut userDepositFromExternal(Integer uid, Integer sid, String to_account_number, double amount) :
call(public boolean USER_depositFromExternal(Integer, Integer, String, double) && args(uid, sid, to_account_number, amount));
pointcut userPayToExternal(Integer uid, Integer sid, String from_account_number, double amount) :
call(public boolean USER_payToExternal(Integer, Integer, String, double) && args(uid, sid, from_account_number, amount));
pointcut userTransferOwnAccounts(Integer uid, Integer sid, String from_account_number, String to_account_number, double amount) :
call(public boolean USER_transferOwnAccounts(Integer, Integer, String, String, double) && args(uid, sid, from_account_number, to_account_number, amount));
pointcut reconcile() :
call(public void ADMIN_reconcile());
Trace Statistics
| Event | Occurrences |
|---|---|
| userDepositFromExternal | |
| userPayToExternal | |
| userTransferOwnAccounts | |
| reconcile |
The Property Part
Informal Description
The administrator must reconcile accounts after every 1000 attempted external money transfers or after an aggregate total of one million dollars in attempted external transfers (attempted transfers include transfers requested which never took place due to lack of funds).
Demonstration Traces
The property is specified formally in a Guarded Command Language, units in which consist of an event, guarded by a condition, upon which a specified action is performed. For more information see [2].
Satisfying Traces
- greylist(u); depositTo(u); depositTo(u); depositTo(u); whitelist(u);
- greylist(u'); depositTo(u); depositTo(u);
- depositTo(u); depositTo(u); greylist(u)
Violating Traces
- greylist(u); depositTo(u'); depositTo(u'); depositTo(u'); whitelist(u)
- depositTo(u); depositTo(u); depositTo(u); greylist(u'); whitelist(u)
- depositTo(u); depositTo(u); greylist(u); depositTo(u); depositTo(u); whitelist(u)
Formal Specification
The property is specified formally in a Guarded Command Language, units in which consist of an event, guarded by a condition, upon which a specified action is performed. For more information see [3].
userDepositFromExternal | -> {
Verification.countExternalTransferAttempts++; Verification.totalExternalTransferAttempts+=amount;
if (Verification.countExternalTransferAttempts>1000 || Verification.totalExternalTransferAttempts>1000000) {
Verification.fail("P8 violated");
}
}
userPayToExternal | -> {
Verification.countExternalTransferAttempts++; Verification.totalExternalTransferAttempts+=amount;
if (Verification.countExternalTransferAttempts>1000 || Verification.totalExternalTransferAttempts>1000000) {
Verification.fail("P8 violated");
}
}
reconcile | -> {
Verification.countExternalTransferAttempts=0; Verification.totalExternalTransferAttempts=0;
}
A FO-LTL Specification
Clarification Requests
This is a space where other teams can ask for clarifications and the submitting team can answer. When a team requests a clarification, the team should be mentioned in the request and the request timestamped. The team submitting the benchmark should ensure they watch this page so that they get notifications of questions.
