cometbft · lasarojc · Jun 16, 2023 · Jun 21, 2023 · Oct 24, 2023 · Oct 24, 2023
diff --git a/genericMulticast/gmcast0.qnt b/genericMulticast/gmcast0.qnt
@@ -0,0 +1,269 @@
+module gmcast0 {
+    import spell.* from "./spell"
+
+    type ProcId = int
+    pure val ProcIds = Set(1,2,3,4,5)
+    pure val Groups = Set(
+        Set(1,2),
+        Set(3,4),
+        Set(5)
+    )
+
+    //XXX Quint: Ideally these should be consts, but because it would have to be instantiated on every import, there would be duplication.
+    //All processes in the system
+
+    pure val MsgType = Set("S0", "S1", "S2")
+    type Message = {
+        tag: str, //Shoud be in MsgType
+        timestamp: int, // -1 means no timestamp
+        // groups of processes this message goes to
+        dst: Set[Set[ProcId]],
+        id: int
+    }
+
+    type Channel = (ProcId, ProcId)
+
+    //Nodes keep the following state
+    type NodeState = {
+        k: int,
+        pending: Set[(Message,int)],
+        delivering: Set[(Message,int)],
+        delivered: Set[(Message,int)],
+        previous: Set[Message]
+    }
+
+    type Network = 
+       Channel -> Set[Message]
+
+
+    var nodeState: ProcId -> NodeState
+    var networkState: Network
+
+    pure def conflicts(lhs: int, rhs: int): bool = true
+
+    action init: bool = all {
+        nodeState' =  ProcIds.mapBy(
+            p => {
+                k: 0,
+                pending: Set(),
+                delivering: Set(),
+                delivered: Set(),
+                previous: Set()
+            }),
+        // create channels between all processes
+        networkState' = 
+            ProcIds.crossproduct(ProcIds).mapBy(
+                (p1, p2) => Set()
+            )
+    }
+
+    action unchanged_all: bool = all {
+        networkState' = networkState,
+        nodeState' = nodeState
+    }
+
+    action GMSend(sender: ProcId, id: int, groups: Set[Set[ProcId]]): bool = {
+        all {
+            // the groups are a valid destination for the multicast
+            groups.forall(group => Groups.contains(group)),
+            // construct the message
+            val message = {
+                    tag: "S0",
+                    timestamp: -1, // not used for S0 messages
+                    dst: groups,
+                    id: id
+                }
+            val receivers = groups.flatten()
+            val newMsgsSent = 
+                ProcIds.crossproduct(ProcIds).mapBy(
+                    (p1, p2) => Set()
+                )
+            networkState' = 
+                networkState.keys().mapBy(
+                    channel => 
+                        if (channel._1 == sender and receivers.contains(channel._2)) {
+                            networkState.get(channel).union(Set(message))
+                        } else {
+                            networkState.get(channel)
+                        }
+                ),
+            nodeState' = nodeState
+        }
+    }
+
+    pure def AssignTimestampHelper(
+                sender: ProcId, 
+                receiver: ProcId, 
+                m: Message, 
+                netState: Network, 
+                noState: NodeState
+            ): (Network, NodeState) = {
+
+        val newK =  
+            if (noState.previous.exists(om => om.id.conflicts(m.id))) 
+                noState.k + 1 
+            else 
+                noState.k
+
+        val newPrevious =
+            if (noState.previous.exists(om => om.id.conflicts(m.id)))
+                Set(m) 
+            else 
+                noState.previous.union(Set(m))
+
+        val newPending = noState.pending.union(Set((m,newK)))
+
+        val newNodeState = {
+                                k: newK,
+                                pending: newPending,
+                                previous: newPrevious,
+                                ...noState
+                            }
+
+        val newMsg = {tag: "S1", timestamp: newK, ...m}
+
+        val newIncomingChannel = netState.get((sender,receiver)).exclude(Set(m))
+        val newOutgoingChannel =    if (sender == receiver) 
+                                        newIncomingChannel.union(Set(newMsg))
+                                    else
+                                        netState.get((receiver,sender)).union(Set(newMsg))
+        val newNetworkState = 
+            netState.put((sender,receiver), newIncomingChannel)
+                    .put((receiver, sender), newOutgoingChannel)
+
+        (newNetworkState, newNodeState)
+    }
+
+    action AssignTimestamp(sender: ProcId, receiver: ProcId, s0msg: Message): bool = all {
+        all {
+            val receiverState = nodeState.get(receiver)
+            val newState = AssignTimestampHelper(sender, receiver, s0msg, networkState, receiverState)
+            val newNetworkState = newState._1
+            val newReceiverState = newState._2
+            all {
+                networkState' = newNetworkState,
+                nodeState' = nodeState.put(receiver, newReceiverState)
+            }
+        }
+    }
+
+    action ComputeSeqNumber(p: ProcId, id: int, dst: Set[Set[ProcId]]): bool = {
+        all {
+            // for all processes in dst, we have received an S1
+            dst.flatten().forall(
+                receiver => 
+                    // there must be a message tagged with S1 sent by receiver to p relating to m
+                    networkState.get((p, receiver)).exists(
+                        msg => msg.id == id and
+                            msg.tag == "S1"
+                    )
+
+            ),
+            // get messages tagged with S1 received by p relating to the message id
+            val receivedMessages = dst.flatten().fold(
+                Set(), (acc, receiver) =>
+                    val msgsFromReceiver = networkState.get((receiver, p)).filter(
+                        msg => msg.id == id and
+                            msg.tag == "S1")
+                    acc.union(msgsFromReceiver)
+            )
+
+            // find the maximal timestamp among the S1 messages
+            val timestamp_final = receivedMessages.fold(
+                -1,
+                (acc, msg) => 
+                    if (msg.timestamp > acc) {
+                        msg.timestamp
+                    } else {
+                        acc
+                    }
+            )
+            // tag the message with S2 and the timestamp
+            val message_final = {
+                tag: "S2",
+                timestamp: timestamp_final,
+                dst: dst,
+                id: id
+            }
+            // send it to all destination processes
+            networkState' = 
+                networkState.keys().mapBy(
+                    channel => 
+                        if (dst.flatten().contains(channel._2)) {
+                            networkState.get(channel).union(Set(message_final))
+                        } else {
+                            networkState.get(channel)
+                        }
+                ),
+            nodeState' = nodeState
+        }
+    }
+
+
+    def AssignSeqNumberState(msg: Message, state: NodeState): NodeState =
+        val newState = { ...state, 
+            pending: state.pending.exclude(Set((msg, msg.timestamp))),
+            delivering: state.delivering.union(Set((msg, msg.timestamp)))
+        }
+        if (msg.timestamp > state.k) {
+            if (state.previous.exists(m => m == msg)) 
+                { ...newState, k: msg.timestamp + 1, previous: Set() }
+            else
+                { ...newState, k: msg.timestamp }
+        } else newState
+
+    action AssignSeqNumberFor(sender: ProcId, receiver: ProcId, msg: Message): bool = all {
+        nodeState' = nodeState.mapPut(receiver, state => AssignSeqNumberState(msg, state)),
+        networkState' = networkState.mapPut((sender, receiver), msgs => msgs.exclude(Set(msg)))
+    }
+
+    action AssignSeqNumber(sender: ProcId, receiver: ProcId): bool =
+        val msgs = networkState.get((sender, receiver)).filter(m => m.tag == "S2")
+        all {
+            require(msgs.nonEmpty()),
+            nondet msg = oneOf(msgs)
+            AssignSeqNumberFor(sender, receiver, msg)
+        }
+
+    pure def DoDeliverHelper(
+                p: ProcId,
+                ti: (Message, int),
+                noState: NodeState
+        ): NodeState = {
+            val mi = ti._1
+            val tsi = ti._2
+            val G = noState.delivering.filter(tj => 
+                val mj = tj._1
+                val tsj = tj._2
+                noState.delivering
+                        .union(noState.pending)
+                        .exclude(Set(tj))
+                        .forall(tk => 
+                                    val mk = tk._1
+                                    val tsk = tk._2  
+                                    not(mj.id.conflicts(mk.id))
+                        )
+            )
+            val D = Set(ti).union(G)
+            val newNoState = {
+                delivering: noState.delivering.exclude(D),
+                delivered: noState.delivered.union(D),
+                ...noState
+            }
+
+            /* The following lines is in the algorithm but has not been specified.
+            val msgsToDeliver = D.map(e => e._1)
+            msgsToDeliver.forall(m, GMDeliver(m))
+            */
+            newNoState
+    }
+
+    action DoDeliver(p: ProcId): bool = {
+        val mi = ({tag: "S1", timestamp: -1, dst: Groups, id:1}, 3)
+        val newNodeState = DoDeliverHelper(p, mi, nodeState.get(p))
+        all {
+            nodeState' = nodeState.set(p, newNodeState),
+            networkState' = networkState
+        }
+    }
+}
diff --git a/genericMulticast/spell.qnt b/genericMulticast/spell.qnt
@@ -0,0 +1,51 @@
+module spell {
+    pure def crossproduct(__s1: Set[a], __s2: Set[b]): Set[(a, b)] =
+        __s1.fold(
+            Set(),
+            (acc1, a) => acc1.union(__s2.fold(
+                Set(),
+                (acc2, b) => acc2.union(Set((a, b)))
+            ))
+        )
+
+    run crossproductTest = {
+        all { 
+            crossproduct(Set(1, 2), Set("a", "b")) == Set((1, "a"), (1, "b"), (2, "a"), (2, "b")),
+            crossproduct(Set(1, 2), Set()) == Set(),
+            crossproduct(Set(), Set()) == Set(),
+        }
+    }
+
+    //--------------------------------------------------------------------------
+    /// An annotation for writing preconditions.
+    pure def require(__cond: bool): bool = __cond
+
+    /// Remove a set element.
+    pure def setRemove(__set: Set[a], __elem: a): Set[a] = {
+        __set.exclude(Set(__elem))
+    }
+
+    /// Remove a map entry.
+    pure def mapRemove(__map: a -> b, __key: a): a -> b = {
+        __map.keys().setRemove(__key).mapBy(__k => __map.get(__k))
+    }
+
+    //--------------------------------------------------------------------------
+    pure def isEmpty(__set: Set[a]): bool =
+        __set == Set()
+
+    pure def nonEmpty(__set: Set[a]): bool =
+        __set != Set()
+
+    //--------------------------------------------------------------------------
+    /// Update a map entry using the previous value.
+    ///
+    /// @param __map the map to update
+    /// @param __key the key to search for
+    /// @param __f a function that returns the new value for __key 
+    ///   when applied to __key's old value
+    /// @returns a new map equal to __map except that __key maps
+    ///   to __f applied to __key's old value
+    pure def mapPut(__map: a -> b, __key: a, __f: b => b): (a -> b) = 
+        __map.put(__key, __f(__map.get(__key)))
+}