Implemented well-formedness check as in the 2012 book.

We check that variables occur first in receive events.
This commit is contained in:
Cas Cremers 2012-12-06 09:52:13 +01:00
parent 7a2d354bac
commit 6c7493838c
3 changed files with 59 additions and 111 deletions

View File

@ -2263,62 +2263,74 @@ checkUnusedVariables (const System sys)
}
}
//! Is a complete role well-formed
//! Is a role well-formed?
/**
* In line with the 2012 book, we check only that variables occur first in
* receives. This is needed to guarantee that the instantiated terms are ground
* (and hence, traces contain run terms).
*
* Returns true if the role is well-formed, false otherwise.
*
* The function outputs its own error messages, but does not (sys.)exit. This
* should be done by the calling function, in order to collect a complete error
* report for all roles.
*/
int
WellFormedRole (const System sys, Protocol p, Role r)
{
Knowledge know;
int okay;
Termlist tl;
int allOkay;
allOkay = true;
for (tl = r->variables; tl != NULL; tl = tl->next)
{
if (!inTermlist (p->rolenames, tl->term))
{
Roledef rd;
okay = true;
know = emptyKnowledge ();
// Transfer inverses
know->inverses = sys->know->inverses;
// Add role knowledge
knowledgeAddTermlist (know, r->knows);
// Add role names
//@TODO this is not in the semantics as such, often implicit
knowledgeAddTermlist (know, p->rolenames);
// Add local constants
//@TODO this is not in the semantics as such, often implicit
knowledgeAddTermlist (know, r->declaredconsts);
rd = firstEventWithTerm (r->roledef, tl->term);
if (rd->type != RECV)
{
// Not well-formed
globalError++;
error_pre ();
eprintf ("Protocol ");
termPrint (p->nameterm);
eprintf (", role ");
termPrint (r->nameterm);
eprintf (" is not well-formed: the variable '");
termPrint (tl->term);
eprintf ("' should occur first in a receive event.\n");
globalError--;
// Test
rd = r->roledef;
while (rd != NULL)
{
Knowledge knowres;
knowres = WellFormedEvent (r->nameterm, know, rd);
if (knowres == NULL)
{
okay = false;
break;
}
else
{
know = knowres;
rd = rd->next;
// Store
allOkay = false;
}
}
// clean up
knowledgeDelete (know);
return okay;
}
return allOkay;
}
//! Well-formedness check
void
checkWellFormed (const System sys)
{
int allOkay;
allOkay = true;
int thisRole (Protocol p, Role r)
{
WellFormedRole (sys, p, r);
allOkay = allOkay && WellFormedRole (sys, p, r);
return true;
}
iterateRoles (sys, thisRole);
if (allOkay == false)
{
error
("The protocol specification does not meet the well-formedness condition.");
}
}
//! Check matching role defs
@ -2542,10 +2554,5 @@ preprocess (const System sys)
/*
* Check well-formedness
*/
/* TODO Temporarily disabled wellformedness check (well-formedness) after Simon bug reporting.
if (sys->knowledgedefined)
{
checkWellFormed (sys);
}
*/
}

View File

@ -459,76 +459,17 @@ wfeError (Knowledge know, Roledef rd, char *errorstring, Term was,
}
//! Is an event well-formed
/**
* Returns the new knowledge or NULL if it was not well-formed.
*/
Knowledge
WellFormedEvent (Term role, Knowledge know, Roledef rd)
//! Return the first event (or NULL) in which a term occurs
Roledef
firstEventWithTerm (Roledef rd, Term t)
{
if (rd == NULL)
while (rd != NULL)
{
return know;
if (termSubTerm (rd->message, t))
{
return rd;
}
rd = rd->next;
}
if (rd->type == RECV)
{
// Read
if (!isTermEqual (role, rd->to))
{
wfeError (know, rd, "Receiving role incorrect.", rd->to, role);
return NULL;
}
if (!inKnowledge (know, rd->from))
{
wfeError (know, rd, "Unknown sender role.", rd->from, NULL);
return NULL;
}
if (!Readable (know, rd->message))
{
wfeError (know, rd, "Cannot read message pattern.", rd->message,
NULL);
return NULL;
}
knowledgeAddTerm (know, rd->message);
return know;
}
if (rd->type == SEND)
{
// Send
if (!isTermEqual (role, rd->from))
{
wfeError (know, rd, "Sending role incorrect.", rd->from, role);
return NULL;
}
if (!inKnowledge (know, rd->to))
{
wfeError (know, rd, "Unknown receiving role.", rd->to, NULL);
return NULL;
}
if (!inKnowledge (know, rd->message))
{
wfeError (know, rd, "Unable to construct message.", rd->message,
NULL);
return NULL;
}
return know;
}
if (rd->type == CLAIM)
{
// Claim
if (!isTermEqual (role, rd->from))
{
wfeError (know, rd, "Claiming role incorrect.", rd->from, role);
return NULL;
}
return know;
}
// Unknown, false
globalError++;
roledefPrint (rd);
globalError--;
error ("I don't know this event");
return NULL;
}

View File

@ -188,6 +188,6 @@ int roledef_iterate_events (Roledef rd, int (*func) ());
int roledef_length (const Roledef rd);
Roledef roledef_shift (Roledef rd, int i);
int roledefSubTerm (Roledef rd, Term tsub);
Knowledge WellFormedEvent (Term role, Knowledge know, Roledef rd);
Roledef firstEventWithTerm (Roledef rd, Term t);
#endif