- Rollback of commit r674, because stuff was pretty broken. Work at that
in phases.
This commit is contained in:
parent
570933612f
commit
ca975ed970
@ -195,7 +195,7 @@ executeStep (const System sys, const int run)
|
|||||||
/**
|
/**
|
||||||
* Determine for a roledef that is instantiated, the uninteresting ends bits.
|
* Determine for a roledef that is instantiated, the uninteresting ends bits.
|
||||||
*
|
*
|
||||||
*@todo "What is interesting" relies on the fact that there are only secrecy, synchr and agreement properties.
|
*@todo "What is interesting" relies on the fact that there are only secrecy, sychnr and agreement properties.
|
||||||
*/
|
*/
|
||||||
Roledef removeIrrelevant (const System sys, const int run, Roledef rd)
|
Roledef removeIrrelevant (const System sys, const int run, Roledef rd)
|
||||||
{
|
{
|
||||||
@ -237,25 +237,21 @@ Roledef removeIrrelevant (const System sys, const int run, Roledef rd)
|
|||||||
//! Explores the system state given by the next step of a run.
|
//! Explores the system state given by the next step of a run.
|
||||||
/**
|
/**
|
||||||
* grandiose naming scheme (c) sjors dubya.
|
* grandiose naming scheme (c) sjors dubya.
|
||||||
*
|
|
||||||
* Fairly complex as it also handles pruning of traces according to symmetry reductions and such.
|
|
||||||
*/
|
*/
|
||||||
|
|
||||||
int
|
int
|
||||||
explorify (const System sys, const int myRid)
|
explorify (const System sys, const int run)
|
||||||
{
|
{
|
||||||
Roledef myRp;
|
Roledef rd;
|
||||||
int flag;
|
int flag;
|
||||||
int myStep;
|
int myStep;
|
||||||
Run runs;
|
|
||||||
Roledef roleCap, roleCapPart;
|
Roledef roleCap, roleCapPart;
|
||||||
|
|
||||||
runs = sys->runs;
|
rd = runPointerGet (sys, run);
|
||||||
myRp = runs[myRid].index;
|
myStep = sys->runs[run].step;
|
||||||
myStep = runs[myRid].step;
|
|
||||||
roleCap = NULL;
|
roleCap = NULL;
|
||||||
|
|
||||||
if (myRp == NULL)
|
if (rd == NULL)
|
||||||
{
|
{
|
||||||
fprintf (stderr, "ERROR: trying to progress completed run!\n");
|
fprintf (stderr, "ERROR: trying to progress completed run!\n");
|
||||||
exit (1);
|
exit (1);
|
||||||
@ -266,40 +262,36 @@ explorify (const System sys, const int myRid)
|
|||||||
/*
|
/*
|
||||||
* Special checks after (implicit) choose events; always first in run reads.
|
* Special checks after (implicit) choose events; always first in run reads.
|
||||||
*/
|
*/
|
||||||
if (myStep == 0 && myRp->type == READ)
|
if (myStep == 0 && rd->type == READ)
|
||||||
{
|
{
|
||||||
/*---------------------------------------------------------------------------*/
|
int rid;
|
||||||
/* special check 0: after choosing, terminate any runs by the intruder */
|
|
||||||
/*---------------------------------------------------------------------------*/
|
if (inTermlist (sys->untrusted, agentOfRun (sys, run)))
|
||||||
if (inTermlist (sys->untrusted, agentOfRun (sys, myRid)))
|
|
||||||
{
|
{
|
||||||
/* this run is executed by an untrusted agent, do not explore */
|
/* this run is executed by an untrusted agent, do not explore */
|
||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
/* executed by trusted agent */
|
/* executed by trusted agent */
|
||||||
|
|
||||||
/*---------------------------------------------------------------------------*/
|
|
||||||
/* Special check 1: if agents have been instantiated in such a way that no more claims in any run
|
/* Special check 1: if agents have been instantiated in such a way that no more claims in any run
|
||||||
* need to be evaluated, then we can skip
|
* need to be evaluated, then we can skip
|
||||||
* further traversal.
|
* further traversal.
|
||||||
*/
|
*/
|
||||||
//!@todo This implementation relies on the fact that there are only secrecy, sychnr and agreement properties.
|
//!@todo This implementation relies on the fact that there are only secrecy, sychnr and agreement properties.
|
||||||
/*---------------------------------------------------------------------------*/
|
|
||||||
if (sys->secrets == NULL)
|
if (sys->secrets == NULL)
|
||||||
{ /* there are no remaining secrecy claims to be checked */
|
{ /* there are no remaining secrecy claims to be checked */
|
||||||
Roledef rdscan;
|
Roledef rdscan;
|
||||||
int validclaim;
|
int validclaim;
|
||||||
int ridscan;
|
|
||||||
|
|
||||||
ridscan = 0;
|
rid = 0;
|
||||||
validclaim = 0;
|
validclaim = 0;
|
||||||
/* check for each run */
|
/* check for each run */
|
||||||
while (ridscan < sys->maxruns)
|
while (rid < sys->maxruns)
|
||||||
{
|
{
|
||||||
/* are claims in this run evaluated anyway? */
|
/* are claims in this run evaluated anyway? */
|
||||||
if (trustedClaims (sys, ridscan))
|
if (!untrustedAgent (sys, sys->runs[rid].agents))
|
||||||
{ /* possibly claims to be checked in this run */
|
{ /* possibly claims to be checked in this run */
|
||||||
rdscan = runPointerGet(sys, ridscan);
|
rdscan = runPointerGet(sys, rid);
|
||||||
while (rdscan != NULL)
|
while (rdscan != NULL)
|
||||||
{
|
{
|
||||||
if (rdscan->type == CLAIM)
|
if (rdscan->type == CLAIM)
|
||||||
@ -307,7 +299,7 @@ explorify (const System sys, const int myRid)
|
|||||||
/* force abort of loop */
|
/* force abort of loop */
|
||||||
validclaim = 1;
|
validclaim = 1;
|
||||||
rdscan = NULL;
|
rdscan = NULL;
|
||||||
ridscan = sys->maxruns;
|
rid = sys->maxruns;
|
||||||
}
|
}
|
||||||
else
|
else
|
||||||
{
|
{
|
||||||
@ -315,39 +307,36 @@ explorify (const System sys, const int myRid)
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
ridscan++;
|
rid++;
|
||||||
}
|
}
|
||||||
if (!validclaim)
|
if (validclaim == 0)
|
||||||
{ /* no valid claims, abort */
|
{ /* no valid claims, abort */
|
||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
/*---------------------------------------------------------------------------*/
|
/* Special check 2: Symmetry reduction.
|
||||||
/* Special check 2: Symmetry reduction on agent instances
|
|
||||||
* If the run we depend upon has already been activated (otherwise warn!) check for instance ordering
|
* If the run we depend upon has already been activated (otherwise warn!) check for instance ordering
|
||||||
*/
|
*/
|
||||||
/*---------------------------------------------------------------------------*/
|
|
||||||
|
|
||||||
if (runs[myRid].prevSymmRun != -1)
|
if (sys->runs[run].prevSymmRun != -1)
|
||||||
{
|
{
|
||||||
/* there is such a run on which we depend */
|
/* there is such a run on which we depend */
|
||||||
int ridSymm;
|
int ridSymm;
|
||||||
|
|
||||||
ridSymm = runs[myRid].prevSymmRun;
|
ridSymm = sys->runs[run].prevSymmRun;
|
||||||
if (runs[ridSymm].step == 0)
|
if (sys->runs[ridSymm].step == 0)
|
||||||
{
|
{
|
||||||
/*
|
/*
|
||||||
* Dependency run was not chosen yet, so we can't do anything now.
|
* dependency run was not chosen yet, so we can't do anything now
|
||||||
* This is typically caused by any possibly delayed first reads with other stuff in it than agents.
|
|
||||||
*/
|
*/
|
||||||
return 0;
|
// warning ("Symmetrical run dependency #%i (for run #%i) has not chosen yet!", ridSymm, run);
|
||||||
}
|
}
|
||||||
else
|
else
|
||||||
{
|
{
|
||||||
/* dependent run has chosen, so we can compare */
|
/* dependent run has chosen, so we can compare */
|
||||||
if (termlistOrder (runs[myRid].agents,
|
if (termlistOrder (sys->runs[run].agents,
|
||||||
runs[ridSymm].agents) < 0)
|
sys->runs[ridSymm].agents) < 0)
|
||||||
{
|
{
|
||||||
/* we only explore the other half */
|
/* we only explore the other half */
|
||||||
return 0;
|
return 0;
|
||||||
@ -355,19 +344,15 @@ explorify (const System sys, const int myRid)
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
/*---------------------------------------------------------------------------*/
|
|
||||||
/* Special check 3: if after choosing, this run ends on (read|skippedclaim)*, we can remove that part already.
|
/* Special check 3: if after choosing, this run ends on (read|skippedclaim)*, we can remove that part already.
|
||||||
*/
|
*/
|
||||||
/*---------------------------------------------------------------------------*/
|
|
||||||
|
|
||||||
roleCap = removeIrrelevant (sys, myRid, myRp);
|
roleCap = removeIrrelevant (sys, run, rd);
|
||||||
|
|
||||||
|
|
||||||
/*---------------------------------------------------------------------------*/
|
|
||||||
/* Special check x: if all agents in each run send only encrypted stuff, and all agents are trusted,
|
/* Special check x: if all agents in each run send only encrypted stuff, and all agents are trusted,
|
||||||
* there is no way for the intruder to learn anything else than encrypted terms, so secrecy claims will not
|
* there is no way for the intruder to learn anything else than encrypted terms, so secrecy claims will not
|
||||||
* be violated anymore if they contain no terms that are encrypted with such keys */
|
* be violated anymore if they contain no terms that are encrypted with such keys */
|
||||||
/*---------------------------------------------------------------------------*/
|
|
||||||
|
|
||||||
//!@todo For now, there is no check that the runs only send publicly encrypted stuff! Just an assumption to be made true using static analysis.
|
//!@todo For now, there is no check that the runs only send publicly encrypted stuff! Just an assumption to be made true using static analysis.
|
||||||
|
|
||||||
@ -375,7 +360,7 @@ explorify (const System sys, const int myRid)
|
|||||||
rid = 0;
|
rid = 0;
|
||||||
while (rid < sys->maxruns)
|
while (rid < sys->maxruns)
|
||||||
{
|
{
|
||||||
if (!untrustedAgent (sys, runs[rid].agents))
|
if (!untrustedAgent (sys, sys->runs[rid].agents))
|
||||||
{
|
{
|
||||||
}
|
}
|
||||||
rid++;
|
rid++;
|
||||||
@ -383,40 +368,36 @@ explorify (const System sys, const int myRid)
|
|||||||
*/
|
*/
|
||||||
}
|
}
|
||||||
|
|
||||||
/*---------------------------------------------------------------------------*/
|
|
||||||
/*
|
/*
|
||||||
* Special check b1: symmetry reduction part II on similar read events for equal roles.
|
* Special check b1: symmetry reduction part II on similar read events for equal roles.
|
||||||
*
|
|
||||||
* This assumes a left-right traversal of these first real events.
|
|
||||||
*/
|
*/
|
||||||
/*---------------------------------------------------------------------------*/
|
|
||||||
|
|
||||||
if (sys->switchReadSymm)
|
if (sys->switchReadSymm)
|
||||||
{
|
{
|
||||||
if (runs[myRid].firstNonAgentRead == myStep)
|
if (sys->runs[run].firstNonAgentRead == myStep)
|
||||||
{
|
{
|
||||||
/* Apparently, we have a possible ordering with our symmetrical friend.
|
/* Apparently, we have a possible ordering with our symmetrical friend.
|
||||||
* Check if it has progressed enough, and has the same agents.
|
* Check if it has progressed enough, and has the same agents.
|
||||||
*/
|
*/
|
||||||
int ridSymm;
|
int ridSymm;
|
||||||
|
|
||||||
if (myRp->type != READ)
|
if (rd->type != READ)
|
||||||
{
|
{
|
||||||
error ("firstNonAgentRead is not a read?!");
|
error ("firstNonAgentRead is not a read?!");
|
||||||
}
|
}
|
||||||
ridSymm = runs[myRid].prevSymmRun;
|
ridSymm = sys->runs[run].prevSymmRun;
|
||||||
if (isTermlistEqual (runs[myRid].agents, runs[ridSymm].agents))
|
if (isTermlistEqual (sys->runs[run].agents, sys->runs[ridSymm].agents))
|
||||||
{
|
{
|
||||||
/* same agents, so relevant */
|
/* same agents, so relevant */
|
||||||
if (myStep > 0 && runs[ridSymm].step < myStep)
|
if (myStep > 0 && sys->runs[ridSymm].step < myStep)
|
||||||
{
|
{
|
||||||
// warning ("Symmetrical firstread dependency #%i (for run #%i) has not chosen yet!", ridSymm, myRid);
|
// warning ("Symmetrical firstread dependency #%i (for run #%i) has not chosen yet!", ridSymm, run);
|
||||||
}
|
}
|
||||||
else
|
else
|
||||||
{
|
{
|
||||||
if (runs[ridSymm].step <= myStep)
|
if (sys->runs[ridSymm].step <= myStep)
|
||||||
{
|
{
|
||||||
// warning ("Symmetrical firstread dependency #%i (for run #%i) has not read it's firstNonAgentRead %i yet, as it is only at %i!", ridSymm, myRid, myStep, runs[ridSymm].step);
|
// warning ("Symmetrical firstread dependency #%i (for run #%i) has not read it's firstNonAgentRead %i yet, as it is only at %i!", ridSymm, run, myStep, sys->runs[ridSymm].step);
|
||||||
}
|
}
|
||||||
else
|
else
|
||||||
{
|
{
|
||||||
@ -424,7 +405,7 @@ explorify (const System sys, const int myRid)
|
|||||||
int i;
|
int i;
|
||||||
Roledef rdSymm;
|
Roledef rdSymm;
|
||||||
|
|
||||||
rdSymm = runs[ridSymm].start;
|
rdSymm = sys->runs[ridSymm].start;
|
||||||
i = myStep;
|
i = myStep;
|
||||||
while (i > 0)
|
while (i > 0)
|
||||||
{
|
{
|
||||||
@ -432,7 +413,7 @@ explorify (const System sys, const int myRid)
|
|||||||
i--;
|
i--;
|
||||||
}
|
}
|
||||||
/* rdSymm now points to the instance of the symmetrical read */
|
/* rdSymm now points to the instance of the symmetrical read */
|
||||||
i = termOrder (rdSymm->message, myRp->message);
|
i = termOrder (rdSymm->message, rd->message);
|
||||||
if (i < 0)
|
if (i < 0)
|
||||||
{
|
{
|
||||||
/* only explore symmetrical variant */
|
/* only explore symmetrical variant */
|
||||||
@ -444,29 +425,27 @@ explorify (const System sys, const int myRid)
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
/*---------------------------------------------------------------------------*/
|
|
||||||
/* Special check b2: symmetry order reduction.
|
/* Special check b2: symmetry order reduction.
|
||||||
*
|
*
|
||||||
* Concept: when there are two identical runs w.r.t. agents, we can make sure one goes before the other.
|
* Concept: when there are two identical runs w.r.t. agents, we can make sure one goes before the other.
|
||||||
* Depends on prevSymm, skipping chooses even.
|
* Depends on prevSymm, skipping chooses even.
|
||||||
*
|
|
||||||
* This assumes a left-right traversal of these first real events. Therefore, some --pp values will cause problems, e.g. -1
|
|
||||||
*/
|
*/
|
||||||
/*---------------------------------------------------------------------------*/
|
|
||||||
|
|
||||||
if (sys->switchSymmOrder && myStep == runs[myRid].firstReal && runs[myRid].prevSymmRun != -1)
|
if (sys->switchSymmOrder && myStep == sys->runs[run].firstReal)
|
||||||
|
{
|
||||||
|
if (sys->runs[run].prevSymmRun != -1)
|
||||||
{
|
{
|
||||||
/* there is such a run on which we depend */
|
/* there is such a run on which we depend */
|
||||||
int ridSymm;
|
int ridSymm;
|
||||||
|
|
||||||
ridSymm = runs[myRid].prevSymmRun;
|
ridSymm = sys->runs[run].prevSymmRun;
|
||||||
/* equal runs? */
|
/* equal runs? */
|
||||||
|
|
||||||
if (isTermlistEqual (runs[myRid].agents, runs[ridSymm].agents))
|
if (isTermlistEqual (sys->runs[run].agents, sys->runs[ridSymm].agents))
|
||||||
{
|
{
|
||||||
/* so, we have an identical partner */
|
/* so, we have an identical partner */
|
||||||
/* is our partner there already? */
|
/* is our partner there already? */
|
||||||
if (runs[ridSymm].step <= myStep)
|
if (sys->runs[ridSymm].step <= myStep)
|
||||||
{
|
{
|
||||||
/* not yet there, this is not a valid exploration */
|
/* not yet there, this is not a valid exploration */
|
||||||
/* verify !! */
|
/* verify !! */
|
||||||
@ -474,6 +453,7 @@ explorify (const System sys, const int myRid)
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
}
|
||||||
|
|
||||||
/* Apparently, all is well, and we can explore further */
|
/* Apparently, all is well, and we can explore further */
|
||||||
flag = 0;
|
flag = 0;
|
||||||
@ -482,29 +462,15 @@ explorify (const System sys, const int myRid)
|
|||||||
roleCapPart = roleCap->next;
|
roleCapPart = roleCap->next;
|
||||||
roleCap->next = NULL;
|
roleCap->next = NULL;
|
||||||
}
|
}
|
||||||
if (executeStep (sys, myRid))
|
if (executeStep (sys, run))
|
||||||
{
|
{
|
||||||
/* traverse the system after the step */
|
/* traverse the system after the step */
|
||||||
flag = traverse (sys);
|
flag = traverse (sys);
|
||||||
}
|
runPointerSet (sys, run, rd); // reset rd pointer
|
||||||
runPointerSet (sys, myRid, myRp); // reset myRp pointer
|
sys->runs[run].step = myStep; // reset local index
|
||||||
runs[myRid].step = myStep; // reset local index
|
|
||||||
sys->step--;
|
sys->step--;
|
||||||
|
|
||||||
/* reset state */
|
|
||||||
/* first restore executeStep damage */
|
|
||||||
#ifdef DEBUG
|
|
||||||
if (sys->step < 0)
|
|
||||||
{
|
|
||||||
error ("Global step counter has fallen below 0.");
|
|
||||||
}
|
|
||||||
if (runs[myRid].step < 0)
|
|
||||||
{
|
|
||||||
error ("Local step counter has fallen below 0.");
|
|
||||||
}
|
|
||||||
#endif
|
|
||||||
indentSet (sys->step);
|
indentSet (sys->step);
|
||||||
/* restore roleCap damage */
|
}
|
||||||
if (roleCap != NULL)
|
if (roleCap != NULL)
|
||||||
{
|
{
|
||||||
roleCap->next = roleCapPart;
|
roleCap->next = roleCapPart;
|
||||||
@ -512,12 +478,6 @@ explorify (const System sys, const int myRid)
|
|||||||
return flag;
|
return flag;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
//! The simplest form of traversal.
|
|
||||||
/**
|
|
||||||
* All options are explored, and no partial order reduction is applied.
|
|
||||||
*/
|
|
||||||
|
|
||||||
int
|
int
|
||||||
traverseSimple (const System sys)
|
traverseSimple (const System sys)
|
||||||
{
|
{
|
||||||
@ -1086,8 +1046,7 @@ traversePOR4 (const System sys)
|
|||||||
|
|
||||||
/* Try all events (implicitly we only handle enabled ones) starting with our
|
/* Try all events (implicitly we only handle enabled ones) starting with our
|
||||||
* first choice. If one was chosen, flag is set, and the loop aborts. */
|
* first choice. If one was chosen, flag is set, and the loop aborts. */
|
||||||
i = 0;
|
for (i = 0; i < sys->maxruns && !flag; i++)
|
||||||
while (i < sys->maxruns && !flag)
|
|
||||||
{
|
{
|
||||||
run = (i + offset) % sys->maxruns;
|
run = (i + offset) % sys->maxruns;
|
||||||
rd = runPointerGet (sys, run);
|
rd = runPointerGet (sys, run);
|
||||||
@ -1099,7 +1058,8 @@ traversePOR4 (const System sys)
|
|||||||
case CLAIM:
|
case CLAIM:
|
||||||
case SEND:
|
case SEND:
|
||||||
executeTry (sys, run);
|
executeTry (sys, run);
|
||||||
return 1;
|
flag = 1;
|
||||||
|
break;
|
||||||
|
|
||||||
case READ:
|
case READ:
|
||||||
/* the sendsdone check only prevent
|
/* the sendsdone check only prevent
|
||||||
@ -1139,7 +1099,6 @@ traversePOR4 (const System sys)
|
|||||||
exit (1);
|
exit (1);
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
i++;
|
|
||||||
}
|
}
|
||||||
return flag;
|
return flag;
|
||||||
}
|
}
|
||||||
@ -1173,47 +1132,48 @@ traversePOR5 (const System sys)
|
|||||||
* and where lastrun is the runid of the previous event
|
* and where lastrun is the runid of the previous event
|
||||||
* in the trace, or 0 if there was none.
|
* in the trace, or 0 if there was none.
|
||||||
*/
|
*/
|
||||||
|
|
||||||
/* First pick out any choose events */
|
|
||||||
run = 0;
|
|
||||||
while (run < sys->maxruns && !flag)
|
|
||||||
{
|
|
||||||
rd = runPointerGet (sys, run);
|
|
||||||
|
|
||||||
if (rd != NULL && rd->type == READ && rd->internal)
|
|
||||||
{
|
|
||||||
if (executeTry (sys, run))
|
|
||||||
{
|
|
||||||
return 1;
|
|
||||||
}
|
|
||||||
}
|
|
||||||
run++;
|
|
||||||
}
|
|
||||||
|
|
||||||
if (sys->step == 0)
|
if (sys->step == 0)
|
||||||
{
|
{
|
||||||
/* first step, start at 0 */
|
/* first step, start at 0 */
|
||||||
offset = 0;
|
offset = 0;
|
||||||
}
|
}
|
||||||
else
|
|
||||||
{
|
|
||||||
if (sys->traceEvent[sys->step-1]->internal &&
|
|
||||||
sys->traceEvent[sys->step-1]->type == READ)
|
|
||||||
{
|
|
||||||
/* we just finished off the previous round of chooses */
|
|
||||||
offset = 0;
|
|
||||||
}
|
|
||||||
else
|
else
|
||||||
{
|
{
|
||||||
/* there was a previous action, start scan from there */
|
/* there was a previous action, start scan from there */
|
||||||
offset = sys->traceRun[sys->step - 1] + sys->porparam;
|
offset = sys->traceRun[sys->step - 1] + sys->porparam;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/* First pick out any choose events */
|
||||||
|
for (i = 0; i < sys->maxruns && !flag; i++)
|
||||||
|
{
|
||||||
|
run = (i + offset) % sys->maxruns;
|
||||||
|
rd = runPointerGet (sys, run);
|
||||||
|
|
||||||
|
if (rd != NULL)
|
||||||
|
{
|
||||||
|
switch (rd->type)
|
||||||
|
{
|
||||||
|
case CLAIM:
|
||||||
|
case SEND:
|
||||||
|
break;
|
||||||
|
|
||||||
|
case READ:
|
||||||
|
if (rd->internal)
|
||||||
|
{
|
||||||
|
flag = executeTry (sys, run);
|
||||||
|
}
|
||||||
|
break;
|
||||||
|
|
||||||
|
default:
|
||||||
|
fprintf (stderr, "Encountered unknown event type %i.\n", rd->type);
|
||||||
|
exit (1);
|
||||||
|
}
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
/* Try all events (implicitly we only handle enabled ones) starting with our
|
/* Try all events (implicitly we only handle enabled ones) starting with our
|
||||||
* first choice. If one was chosen, flag is set, and the loop aborts. */
|
* first choice. If one was chosen, flag is set, and the loop aborts. */
|
||||||
i = 0;
|
for (i = 0; i < sys->maxruns && !flag; i++)
|
||||||
while (i < sys->maxruns && !flag)
|
|
||||||
{
|
{
|
||||||
run = (i + offset) % sys->maxruns;
|
run = (i + offset) % sys->maxruns;
|
||||||
rd = runPointerGet (sys, run);
|
rd = runPointerGet (sys, run);
|
||||||
@ -1233,7 +1193,7 @@ traversePOR5 (const System sys)
|
|||||||
* some unneccessary inKnowledge tests,
|
* some unneccessary inKnowledge tests,
|
||||||
* and branch tests, still improves
|
* and branch tests, still improves
|
||||||
* about 15% */
|
* about 15% */
|
||||||
if (!rd->internal && sys->knowPhase > rd->knowPhase)
|
if (sys->knowPhase > rd->knowPhase)
|
||||||
{
|
{
|
||||||
/* apparently there has been a new knowledge item since the
|
/* apparently there has been a new knowledge item since the
|
||||||
* previous check */
|
* previous check */
|
||||||
@ -1266,7 +1226,6 @@ traversePOR5 (const System sys)
|
|||||||
exit (1);
|
exit (1);
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
i++;
|
|
||||||
}
|
}
|
||||||
return flag;
|
return flag;
|
||||||
}
|
}
|
||||||
|
@ -562,15 +562,14 @@ void graphNode (const System sys)
|
|||||||
printf ("\tn%li -> n%li ", parentNode, thisNode);
|
printf ("\tn%li -> n%li ", parentNode, thisNode);
|
||||||
/* add label */
|
/* add label */
|
||||||
printf ("[label=\"");
|
printf ("[label=\"");
|
||||||
printf ("%i:%i ", sys->traceRun[index], sys->runs[sys->traceRun[index]].step-1);
|
|
||||||
if (rd->type == CLAIM && untrustedAgent (sys, sys->runs[sys->traceRun[index]].agents))
|
if (rd->type == CLAIM && untrustedAgent (sys, sys->runs[sys->traceRun[index]].agents))
|
||||||
{
|
{
|
||||||
printf ("Skip claim\"", sys->traceRun[index]);
|
printf ("Skip claim in #%i\"", sys->traceRun[index]);
|
||||||
}
|
}
|
||||||
else
|
else
|
||||||
{
|
{
|
||||||
roledefPrint (rd);
|
roledefPrint (rd);
|
||||||
printf ("\"");
|
printf ("#%i\"", sys->traceRun[index]);
|
||||||
if (rd->type == CLAIM)
|
if (rd->type == CLAIM)
|
||||||
{
|
{
|
||||||
printf (",shape=house,color=green");
|
printf (",shape=house,color=green");
|
||||||
|
15
src/runs.c
15
src/runs.c
@ -515,9 +515,7 @@ int staticRunSymmetry (const System sys,const int rid)
|
|||||||
if (al == NULL && isEqual)
|
if (al == NULL && isEqual)
|
||||||
{
|
{
|
||||||
/* this candidate is allright */
|
/* this candidate is allright */
|
||||||
#ifdef DEBUG
|
|
||||||
warning ("Symmetry detection. #%i can depend on #%i.",rid,ridSymm);
|
warning ("Symmetry detection. #%i can depend on #%i.",rid,ridSymm);
|
||||||
#endif
|
|
||||||
return ridSymm;
|
return ridSymm;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
@ -549,9 +547,7 @@ int firstNonAgentRead (const System sys, int rid)
|
|||||||
}
|
}
|
||||||
if (rd != NULL && !rd->internal && rd->type == READ) // assumes lazy LR eval
|
if (rd != NULL && !rd->internal && rd->type == READ) // assumes lazy LR eval
|
||||||
{
|
{
|
||||||
#ifdef DEBUG
|
|
||||||
warning ("First read %i with dependency on symmetrical found in run %i.", step, rid);
|
warning ("First read %i with dependency on symmetrical found in run %i.", step, rid);
|
||||||
#endif
|
|
||||||
return step;
|
return step;
|
||||||
}
|
}
|
||||||
/* no such read */
|
/* no such read */
|
||||||
@ -950,7 +946,7 @@ rolesPrint (Role r)
|
|||||||
*@return True iff any agent in the list is untrusted.
|
*@return True iff any agent in the list is untrusted.
|
||||||
*/
|
*/
|
||||||
int
|
int
|
||||||
untrustedAgent (const System sys, Termlist agents)
|
untrustedAgent (System sys, Termlist agents)
|
||||||
{
|
{
|
||||||
while (agents != NULL)
|
while (agents != NULL)
|
||||||
{
|
{
|
||||||
@ -978,15 +974,6 @@ untrustedAgent (const System sys, Termlist agents)
|
|||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
|
|
||||||
//! Determine for a run whether the claims are trusted
|
|
||||||
/**
|
|
||||||
* Nice inline candidate.
|
|
||||||
*/
|
|
||||||
int trustedClaims (const System sys, const int run)
|
|
||||||
{
|
|
||||||
return (!untrustedAgent (sys, sys->runs[run].agents));
|
|
||||||
}
|
|
||||||
|
|
||||||
//! Yield the maximum length of a trace by analysing the runs in the system.
|
//! Yield the maximum length of a trace by analysing the runs in the system.
|
||||||
int
|
int
|
||||||
getMaxTraceLength (const System sys)
|
getMaxTraceLength (const System sys)
|
||||||
|
@ -296,8 +296,7 @@ void protocolPrint (Protocol p);
|
|||||||
void protocolsPrint (Protocol p);
|
void protocolsPrint (Protocol p);
|
||||||
void rolePrint (Role r);
|
void rolePrint (Role r);
|
||||||
void rolesPrint (Role r);
|
void rolesPrint (Role r);
|
||||||
int untrustedAgent (const System sys, Termlist agents);
|
int untrustedAgent (System sys, Termlist agents);
|
||||||
int trustedClaims (const System sys, const int run);
|
|
||||||
int getMaxTraceLength (const System sys);
|
int getMaxTraceLength (const System sys);
|
||||||
void agentsOfRunPrint (const System sys, const int run);
|
void agentsOfRunPrint (const System sys, const int run);
|
||||||
void violatedClaimPrint (const System sys, int i);
|
void violatedClaimPrint (const System sys, int i);
|
||||||
|
Loading…
Reference in New Issue
Block a user