Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Verify core of Run method #240

Merged
merged 111 commits into from
Jan 26, 2024
Merged

Verify core of Run method #240

merged 111 commits into from
Jan 26, 2024

Conversation

jcp19
Copy link
Contributor

@jcp19 jcp19 commented Jan 11, 2024
edited
Loading

Specifies and verifies the method (*DataPlane).Run(...). This PR shows that the main loop of the router, which starts a thread per interface of the router which receives, processes, and sends packets is memory safe.

In the process, we ironed out our specification style to make Gobra scale to the challenge and to make the specs more readable

TODO:

  • drop the temporary assume false in processPkt
  • drop the temporary assume false in processOHP concluded in 9f324c8)
  • finish the calls to the closures in (*DataPlane).Run(...) (may be done in a separate PR, this one is already quite large)

jcp19 added 30 commits March 20, 2023 13:58
@jcp19
start
63c0bd3
@jcp19
backup change to interface
d93019b
@jcp19
backup change to interface
3531792
@jcp19
Merge branch 'master' into joao-run
4472983
@jcp19
backup
f96ced0
@jcp19
backup
4d6484b
@jcp19
backup of Run
e7e7c51
@jcp19
backup of Run
e4aaeda
@jcp19
fix error in auxiliary package
ed44a18
@jcp19
problematic files
7c82fdf
@jcp19
deal with incompletnesses by abstracting properties in predicates
96d1972
@jcp19
backup
f96f088
@jcp19
drop commented assertions; blocked by Gobra incompletness
975b5d0
@jcp19
Fix specification error in the spec of processPkt
aa1074f
@jcp19
continue Run
67951ad
@jcp19
continue Run
8421951
@jcp19
Fix a few errors
c10de4b
@jcp19
add fuller spec to processPkt
e23e207
@jcp19
before modying Message.Mem()
72b7474
@jcp19
backup
15bafde
@jcp19
backup
b9cf7d8
@jcp19
backup
7080606
@jcp19
backup
ba112e7
@jcp19
backup
f6b4712
@jcp19
backup
8c16e3e
@jcp19
backup
c91cd67
@jcp19
backup
deac5f0
@jcp19
drop unncessary invariant, performance improvements
2bc9813
@jcp19
perform obvious simplification in spec; continue verifying the main l…
c56cc3d 
…oop (almost done)
@jcp19
improves the postconditions of processPkt further
1933f83
@jcp19 jcp19 marked this pull request as draft January 22, 2024 13:30
This was referenced Jan 22, 2024
Closed
Closed
@jcp19 jcp19 requested a review from Dspil January 25, 2024 10:11
@jcp19 jcp19 marked this pull request as ready for review January 25, 2024 10:13
@jcp19 jcp19 linked an issue Jan 25, 2024 that may be closed by this pull request
Method Run #201
Closed
@jcp19 jcp19 changed the title Run method - very experimental branch Verify core of Run method Jan 26, 2024
Dspil
Dspil approved these changes Jan 26, 2024
View reviewed changes
router/dataplane.go
outputCounters := d.forwardingMetrics[result.EgressID]
// @ assert acc(outputCounters.OutputPacketsTotal.Mem(), _)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Are these asserts that just check for a permission amount to a predicate necessary?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

They are not necessary, but I found them useful for debugging whenever I was converging to the specs. With this, I can find immediately whenever some expectation is broken

@jcp19 jcp19 merged commit 32c592e into master Jan 26, 2024
4 checks passed
@jcp19 jcp19 deleted the joao-run-experimental branch January 26, 2024 14:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Dspil Dspil Dspil approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Method Run
2 participants
@jcp19 @Dspil