[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [wsbpel] Issue 27 - Proposal to vote - Setting link status incase of transitioncondition
Maciej Szefler wrote: >Sattish, Assaf, > >This transition evaluation issue has me a bit uneasy; evaluating the >transition condition in the scope enclosing the activity seems a bit >arbitrary. For example consider this flow: > ><flow name="F1"> > <link name="a"> > <sequence name="S1"> > <invoke name="I1"...> > <source link="a" transitionCondition="doSomethingBad()" /> > <invoke name="I2" .../> > </sequence> > <invoke name="I3"...> > <target link ="a"/> > </invoke> ></flow> > > It's a valid question that is not easy to see from this example. Since this example has no fault handlers, whether the fault occurs in I1 or in I3 makes not difference, either case the flow would be interrupted and I2 would not be executed. However, let's imagine that we can freely add fault handlers to each scope such that they can handle the fault locally (I1, I2 and I3 are all scopes by definition). If the fault occurs in the enclosing scope of I1 (as currently proposed) then I2 would not be executed. However, if the link status can be either true, false or fault, then the fault is relegated to and handled by I3. I2 could continue to execute as if nothing happened, while I3 can start executed by immediately attending to the fault generated by the transition condition (much as it would if a fault occurred in the join condition). Let's further change the example to make S1 a scope instead of just a sequence (by moving the sequence inside), and again we can add fault handlers to S1 to deal with any potential fault: <flow name="F1"> <link name="a"> <scope name="S1"> <sequence name="seq"> <invoke name="I1"...> <source link="a" transitionCondition="doSomethingBad()" /> <invoke name="I2" .../> </sequence> </scope> <invoke name="I3"...> <target link ="a"/> </invoke> </flow> The question is valid for the following reasons. Let's assume for example that the transition condition depends on some complex evaluation that has the potential of generating a fault (maybe a divide by zero, or some XPath expression gone bad, type mismatch, etc). The evaluation can be done entirely inside I1 using an <assign> and the value assigned could be referenced inside the transition condition, such that any fault would be generated and caught inside I1, and no fault would ever be generated by the transition condition. In this particular case I1 catches the fault and handles it (it's part of the work done by I1), I3 is not executed since the transition condition is false, and I2 may or may not execute, depending on whether I1 handles the fault or propagates it. I1 is in control. We agreed that the transition condition evaluation is done after I1 completes, so the fault cannot be handled by I1. It's not part of the work done by I1, but part of the work in an enclosing scope of I1 (in my modification, S1). The question now becomes, should S1 fault or should I3 fault, after all the link status is irrelevant in S1 but relevant in I3. So I do consider this question to be valid. My personal opinion - if all the information required to evaluate the transition condition is available within some scope that enclosed <flow> then the condition can be evaluated in either I1 or I3. I1 could have a simple transition condition (e.g. true) and I3 could then use a <switch> to make its own decision with direct control over the evaluation of the expression. If all the information required to evaluate the transition condition is available within S1 but not within I3 (e.g. variables local to S1), then there's a dependency between evaluating the transition condition and S1. I3, for lack of having access or understanding of these variables could not even anticipate the fault let alone understand what went wrong. So in my personal opinion, the fault should occur in S1 and not in I3. arkin >In this case evaluation of the transition condition "doSomethingBad()" in >the enclosing scope, means evaluating it in the scope of the sequence >activity S1, which will result in S1 faulting, preventing the evaluation of >I2. In my view S1 has nothing to do with the control relationships between >I1 and I3 (which belong to F1), why should S1 have to deal with a fault >relating to this control relationship? Would it not make more sense to place >the evaluation of the transition condition in the scope of "F1" (which is >active at this point and perfectly capable of performing this task), where >an evaluation fault would not disrupt the progress of S1? Alternatively, if >as Assaf points out "Conditions are not evaluated by a construct" then >really why are they allowed to generate faults at all? Isn't a transition >condition generating an exception indicative of a faulty process definition? >Is it realistic for process designers to handle such exceptions? > >-maciej > > > >----- Original Message ----- >From: "Assaf Arkin" <arkin@intalio.com> >To: "Satish Thatte" <satisht@microsoft.com> >Cc: "Ron Ten-Hove" <Ronald.Ten-Hove@Sun.COM>; <wsbpel@lists.oasis-open.org> >Sent: Monday, October 20, 2003 7:22 PM >Subject: Re: [wsbpel] Issue 27 - Proposal to vote - Setting link status in >case of transitioncondition > > > > >>Satish Thatte wrote: >> >> >> >>>Assaf, >>> >>>As Ron points out, the setting of link status is meaningful only after >>>the evaluation of the transition condition is completed. When a fault >>>occurs in the scope within which the condition is to be evaluated, >>>before the evaluation of the condition is complete, the link status is >>>always set to false. This is quite independent of the nature and source >>>of the fault, and there is nothing special about the faults that may >>>occur within transition conditions as far as this rule is concerned. >>>Again, this matters only when the corresponding link is leaving the >>>scope that faulted. >>> >>> >>> >>> >>I understand the intent, but I'm not sure if the text makes that point >>clear. The way the spec is written that would be true for all the >>activities that have not completed, but we're at a point where the >>activity has completed but the transition condition is being evaluated, >>and I don't think the text clarifies that point. Hopefully it does after >>we introduce the change discussed by this issue. But it's hard for me to >>see, since I understand the intent, I may be reading too much into it. >> >>The current text as far as I read it does not explicitly state that if >>two transitions conditions exist for the same activity and one generates >>a fault, both would set the link status to false. The intent may be >>there, but if another interpretation is possible, we need to clarify that. >> >> >> >>>I would not exactly say that "the transition condition is always >>>evaluated by the enclosing construct" although the idea is correct. >>>Conditions are not evaluated by a construct. I think the most >>>meaningful thing to say is that "transition conditions are evaluated in >>>the scope immediately enclosing the source activity of a link". >>> >>> >>> >>> >>Consider the case where a <flow> nested within another <flow> enclosed >>in a scope, and both flows declare a link with the same name. Currently >>this behavior is not prohibited. Now the question becomes how the scope >>evaluates these two links with the same name? Obviously the intent could >>be that those are two different links inspite of having the same name, >>but there could be other interpretations of the spec. I think it's safe >>to conclude at this point that some readers would get horribly confused >>by this without further clarification. >> >>arkin >> >> >> >>>Satish >>> >>>-----Original Message----- >>>From: Assaf Arkin [mailto:arkin@intalio.com] >>>Sent: Saturday, October 18, 2003 6:43 PM >>>To: Satish Thatte >>>Cc: Ron Ten-Hove; wsbpel@lists.oasis-open.org >>>Subject: Re: [wsbpel] Issue 27 - Proposal to vote - Setting link status >>>in case of transitioncondition >>> >>>Would it be fair to say that the transition condition is always >>>evaluated by the enclosing construct? >>> >>>In other words, if activity X is a source activity and has a transition >>>condition, and is encapsulated by activity Y, then activity Y is in fact >>> >>>responsible to evaluate the transation condition using the variables >>>accessible in its scope and throw a fault if the transition condition >>>fails? An enclosing construct may also refuse to evaluate any transition >>> >>>conditions (e.g. a while activity or an event handler). >>> >>>Another point that I don't think was answered so far is what happens >>>when there are two transition conditions and a fault occurs when >>>evaluating one of them? Are both of them set to false, or only the one >>>that generated a fault? I believe for consistency both of the links >>>should have their status set to false. >>> >>>arkin >>> >>>Satish Thatte wrote: >>> >>> >>> >>> >>> >>>>You are right, my sentence is misleading. The link status is false >>>>because of the fault not because the transition condition is not yet >>>>evaluated. Thanks for the correction. Incidentally, the link status >>>>matters only if the link target is outside the scope that faulted. >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>------------------------------------------------------------------------ >>> >>> >>> >>> >>>>*From:* Ron Ten-Hove [mailto:Ronald.Ten-Hove@Sun.COM] >>>>*Sent:* Friday, October 17, 2003 1:22 PM >>>>*To:* Satish Thatte >>>>*Cc:* wsbpel@lists.oasis-open.org >>>>*Subject:* Re: [wsbpel] Issue 27 - Proposal to vote - Setting link >>>>status in case of transitioncondition >>>> >>>> >>>> >>>>Satish Thatte wrote: >>>> >>>>The link status issue is really more general than this as Goran >>>>pointed out during the call. A scope can always fault in an unrelated >>>> >>>> >>>> >>>> >>> >>> >>> >>>>place while one or more transition conditions within it are being >>>>evaluated, in this case, transition conditions on other links sourced >>>>at the same source scope. It is impossible to specify the exact >>>>behavior in such races in the presence of true (multi-processor) >>>>concurrency. If the evaluation of the conditions is not complete >>>>(i.e., the link has not actually set its status) then the link status >>>>is False. In the case of the fault occurring in the evaluation of the >>>> >>>> >>>> >>>> >>> >>> >>> >>>>transition condition itself the evaluation of the condition is not >>>>complete and therefore the link status is False. >>>> >>>>My understanding is that links are tri-state: empty, true, or false. >>>>Until the transition condition is evaluated, the link remains marked >>>>as empty, not false as you suggested. Faulting the scope should case >>>>the link given in this case to marked as false, as part of dead-path >>>>elimination. >>>> >>>>-Ron >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>------------------------------------------------------------------------ >>> >>> >>> >>> >>>>*From:* Prasad Yendluri [mailto:pyendluri@webmethods.com] >>>>*Sent:* Thursday, October 16, 2003 3:48 PM >>>>*To:* Ashwini Surpur; Assaf Arkin >>>>*Cc:* wsbpel@lists.oasis-open.org <mailto:wsbpel@lists.oasis-open.org> >>>>*Subject:* Re: [wsbpel] Issue 27 - Proposal to vote - Setting link >>>>status in case of transitioncondition >>>> >>>> >>>> >>>>True. This aspect was clarified in the discussions related to this >>>>issue but did not make into the >>>>proposed resolution (we voted on!). >>>> >>>>I also see the need to address what the status of the link ends up >>>>being in this scenario. The >>>>obvious answer seems to that "a transition condition evaluation error >>>>would be same as the >>>>transition condition having evaluated to 'not ture'/false'." But, I >>>>somehow feel some will not >>>>see it this way. In any case we need to make a definitive statement >>>>here and not leave a >>>>loose end dangling. >>>> >>>>Regards, Prasad >>>> >>>>-------- Original Message -------- >>>> >>>>*Subject: * >>>> >>>> >>>> >>>>Re: [wsbpel] Issue 27 - Proposal to vote - Setting link status in case >>>> >>>> >>>> >>>> >>> >>> >>> >>>>of transitioncondition >>>> >>>>*Date: * >>>> >>>> >>>> >>>>Thu, 16 Oct 2003 13:18:25 -0700 >>>> >>>>*From: * >>>> >>>> >>>> >>>>Ashwini Surpur <ashwini.surpur@oracle.com> >>>><mailto:ashwini.surpur@oracle.com> >>>> >>>>*Organization: * >>>> >>>> >>>> >>>>Oracle Corporation >>>> >>>>*To: * >>>> >>>> >>>> >>>>Assaf Arkin <arkin@intalio.com> <mailto:arkin@intalio.com> >>>> >>>>*CC: * >>>> >>>> >>>> >>>>wsbpel@lists.oasis-open.org <mailto:wsbpel@lists.oasis-open.org> >>>> >>>> >>>> >>>>Also from the discussion on issue 27 I get that the local variables of >>>> >>>> >>>> >>>> >>>the scope >>> >>> >>> >>> >>>>cannot be used to evaluate the transition condition of the links and >>>> >>>> >>>> >>>> >>>only the >>> >>> >>> >>> >>>>variables of the parent scope should be used. This needs to be >>>> >>>> >>>> >>>> >>>documented >>> >>> >>> >>> >>>>explicitly as well. >>>> >>>> >>>> >>>>-Ashwini >>>> >>>> >>>> >>>>Assaf Arkin wrote: >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>>>>Proposal to resolve issue 27 by adding the following paragraph to the >>>>> >>>>> >>>>>specification in the description of how links are handled (pages >>>>> >>>>> >>>>> >>>>> >>>64/65): >>> >>> >>> >>> >>>>>Note that the transition condition is evaluated after the activity >>>>> >>>>> >>>>> >>>>> >>>has >>> >>> >>> >>> >>>>>completed. If an error occurs while evaluating the transition >>>>> >>>>> >>>>> >>>>> >>>condition, >>> >>> >>> >>> >>>>>that error does not affect the completion status of the activity and >>>>> >>>>> >>>>> >>>>> >>>is >>> >>> >>> >>> >>>>>handled by the activity's enclosing scope. In the case of >>>>> >>>>> >>>>>scopes, completion does not necessarily imply successful completion. >>>>> >>>>> >>>>> >>>>> >>>A >>> >>> >>> >>> >>>>>scope may suffer an internal fault and yet complete (unsuccessfully) >>>>> >>>>> >>>>> >>>>> >>>if >>> >>> >>> >>> >>>>>there is a corresponding fault handler associated with the scope and >>>>> >>>>> >>>>>that fault handler completes without throwing a fault. >>>>> >>>>> >>>>>arkin >>>>> >>>>> >>>>>(This is the same proposal sent on Sep 30, resent for your >>>>> >>>>> >>>>> >>>>> >>>convenience) >>> >>> >>> >>> >>>> >>>> >>>> >>>> >>>>----------------------------------------------------------------------- >>>> >>>> >>>> >>>> >>>- >>> >>> >>> >>> >>>>To unsubscribe from this mailing list (and be removed from the roster >>>> >>>> >>>> >>>> >>>of the OASIS TC), go to >>>http://www.oasis-open.org/apps/org/workgroup/wsbpel/members/leave_workgr >>>oup.php. >>> >>> >>> >>> >>>>----------------------------------------------------------------------- >>>> >>>> >>>> >>>> >>>- >>> >>> >>> >>> >>>>To unsubscribe from this mailing list (and be removed from the roster >>>> >>>> >>>> >>>> >>>of the OASIS TC), go to >>>http://www.oasis-open.org/apps/org/workgroup/wsbpel/members/leave_workgr >>>oup.php. >>> >>> >>> >>> >>> >>> >>> >>> >>>To unsubscribe from this mailing list (and be removed from the roster of >>> >>> >the OASIS TC), go to >http://www.oasis-open.org/apps/org/workgroup/wsbpel/members/leave_workgroup.php. > > >>> >>> >> >>To unsubscribe from this mailing list (and be removed from the roster of >> >> >the OASIS TC), go to >http://www.oasis-open.org/apps/org/workgroup/wsbpel/members/leave_workgroup.php. > > >> >> > > > -- "Those who can, do; those who can't, make screenshots" ---------------------------------------------------------------------- Assaf Arkin arkin@intalio.com Intalio Inc. www.intalio.com The Business Process Management Company (650) 577 4700 This message is intended only for the use of the Addressee and may contain information that is PRIVILEGED and CONFIDENTIAL. If you are not the intended recipient, dissemination of this communication is prohibited. If you have received this communication in error, please erase all copies of the message and its attachments and notify us immediately.
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]