Formally specify correctness property of the chain sync mini-protocol with fixed chain #97
Comments
javierdiaz72
added this to the Delivery of the verification of the chain synchronization protocol milestone
|
I think that it we should use either program families and process families or programs and processes. I guess that the latter is enough. To go to process families we could start with program families and apply |
My current code attempt (which follows your former approach) is the following: consts protocol_semantics :: "('p ⇒ 'm or_done program) ⇒ process family" (‹⟦_⟧›)
consts sync_repeated_send :: "'a sync_channel ⇒ 'a ⇒ process family" (infix ‹◃⇧∞⇘s⇙› 52)
definition list_sender :: "'a::embeddable sync_channel ⇒ 'a list ⇒ process family" where
[simp]: "list_sender c xs = foldr (λx p. c ◃⇘s⇙ x; p) xs 𝟬"
context chain_sync
begin
definition spec :: "'i list ⇒ process family" where
[simp]: "spec C = list_sender client_chains [C'. C' ← prefixes C, C' ≠ []]"
definition impl :: "'i list ⇒ process family" where
[simp]: "impl C = ⟦program⟧ ∥ server_chains ◃⇧∞⇘s⇙ C"
theorem fixed_chain_sync_from_genesis_conformance:
assumes "initial_client_chain = [hd C]"
shows "spec C ≈⇩s impl C"
sorry
end
Do you suggest to do something like |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
We shall formally specify the equivalence between sending a whole chain and running the chain synchronization mini-protocol when the client starts from the genesis block and the server is given the aforementioned chain, which then is never updated during the protocol run.
Additionally, since the definition of the semantics of mini-protocol programs (see #96) will likely not be ready when this GitHub issue is addressed, we shall assume the existence of the following semantics function:
The text was updated successfully, but these errors were encountered: