moar

tests/tcp/attempt1/tcp-phi1.pml

@@ -0,0 +1,143 @@
+mtype = { SYN, FIN, ACK, ABORT, CLOSE, RST, OPEN }
+
+chan AtoB = [2] of { mtype };
+chan BtoA = [2] of { mtype };
+
+int state[2];
+int pids[2];
+
+#define ClosedState    0
+#define ListenState    1
+#define SynSentState   2
+#define SynRecState    3
+#define EstState       4
+#define FinW1State     5
+#define CloseWaitState 6
+#define FinW2State     7
+#define ClosingState   8
+#define LastAckState   9
+#define TimeWaitState  10
+#define EndState       -1
+
+#define leftConnecting (state[0] == ListenState && state[1] == SynSentState)
+#define leftEstablished (state[0] == EstState)
+#define rightEstablished (state[1] == EstState)
+#define leftClosed (state[0] == ClosedState)
+
+proctype TCP(chan snd, rcv; int i) {
+	pids[i] = _pid;
+CLOSED:
+	state[i] = ClosedState;
+  do
+	/* Passive open */
+	:: goto LISTEN;
+	/* Active open */
+	:: snd ! SYN; goto SYN_SENT;
+	/* Terminate */
+	:: goto end;
+  od
+LISTEN:
+	state[i] = ListenState;
+  do
+	:: rcv ? SYN -> 
+    atomic {
+      snd ! SYN; 
+      snd ! ACK; 
+      goto SYN_RECEIVED;
+    }
+	/* Simultaneous LISTEN */
+  :: rcv ? _ -> skip;
+	:: timeout -> goto CLOSED; 
+  od
+SYN_SENT:
+	state[i] = SynSentState;
+  do
+	:: rcv ? SYN;
+		if
+		/* Standard behavior */
+		:: rcv ? ACK -> snd ! ACK; goto ESTABLISHED;
+		/* Simultaneous open */
+		:: snd ! ACK; goto SYN_RECEIVED;
+		fi
+	:: rcv ? ACK; 
+    do
+    :: rcv ? SYN -> 
+      snd ! ACK; 
+      goto ESTABLISHED;
+    :: rcv ? _ -> skip;
+    od
+  :: rcv ? _ -> skip;
+	:: timeout -> goto CLOSED; /* Timeout */
+  od
+SYN_RECEIVED:
+	state[i] = SynRecState;
+  do
+  :: rcv ? ACK -> goto ESTABLISHED;
+  :: rcv ? _ -> skip;
+  od
+ESTABLISHED:
+	state[i] = EstState;
+  do 
+	/* Close - initiator sequence */
+	:: snd ! FIN; goto FIN_WAIT_1;
+	/* Close - responder sequence */
+	:: rcv ? FIN -> 
+    snd ! ACK; 
+    goto CLOSE_WAIT;
+  :: rcv ? _ -> skip;
+  od
+FIN_WAIT_1:
+	state[i] = FinW1State;
+  do
+	/* Simultaneous close */
+	:: rcv ? FIN -> 
+    snd ! ACK; 
+    goto CLOSING;
+	/* Standard close */
+	:: rcv ? ACK -> goto FIN_WAIT_2;
+  :: rcv ? _ -> skip;
+  od
+CLOSE_WAIT:
+	state[i] = CloseWaitState;
+  do
+	:: snd ! FIN; goto LAST_ACK;
+  :: rcv ? _ -> skip;
+  od
+FIN_WAIT_2:
+	state[i] = FinW2State;
+  do
+  :: rcv ? FIN -> 
+    snd ! ACK; 
+    goto TIME_WAIT;
+  :: rcv ? _ -> skip;
+  od
+CLOSING:
+	state[i] = ClosingState;
+  do 
+	:: rcv ? ACK -> goto TIME_WAIT;
+  :: rcv ? _ -> skip;
+  od
+LAST_ACK:
+	state[i] = LastAckState;
+  do
+	:: rcv ? ACK -> goto CLOSED;
+  :: rcv ? _ -> skip;
+  od 
+TIME_WAIT:
+	state[i] = TimeWaitState;
+	goto CLOSED;
+end:
+	state[i] = EndState;
+}
+
+init {
+	state[0] = ClosedState;
+	state[1] = ClosedState;
+	run TCP(AtoB, BtoA, 0);
+	run TCP(BtoA, AtoB, 1);
+}
+
+/* safety: half-open prevention */ 
+ltl phi1 {
+	always ( leftClosed implies !rightEstablished )
+}

tests/tcp/attempt1/tcp-phi2.pml

@@ -0,0 +1,143 @@
+mtype = { SYN, FIN, ACK, ABORT, CLOSE, RST, OPEN }
+
+chan AtoB = [2] of { mtype };
+chan BtoA = [2] of { mtype };
+
+int state[2];
+int pids[2];
+
+#define ClosedState    0
+#define ListenState    1
+#define SynSentState   2
+#define SynRecState    3
+#define EstState       4
+#define FinW1State     5
+#define CloseWaitState 6
+#define FinW2State     7
+#define ClosingState   8
+#define LastAckState   9
+#define TimeWaitState  10
+#define EndState       -1
+
+#define leftConnecting (state[0] == ListenState && state[1] == SynSentState)
+#define leftEstablished (state[0] == EstState)
+#define rightEstablished (state[1] == EstState)
+#define leftClosed (state[0] == ClosedState)
+
+proctype TCP(chan snd, rcv; int i) {
+	pids[i] = _pid;
+CLOSED:
+	state[i] = ClosedState;
+  do
+	/* Passive open */
+	:: goto LISTEN;
+	/* Active open */
+	:: snd ! SYN; goto SYN_SENT;
+	/* Terminate */
+	:: goto end;
+  od
+LISTEN:
+	state[i] = ListenState;
+  do
+	:: rcv ? SYN -> 
+    atomic {
+      snd ! SYN; 
+      snd ! ACK; 
+      goto SYN_RECEIVED;
+    }
+	/* Simultaneous LISTEN */
+  :: rcv ? _ -> skip;
+	:: timeout -> goto CLOSED; 
+  od
+SYN_SENT:
+	state[i] = SynSentState;
+  do
+	:: rcv ? SYN;
+		if
+		/* Standard behavior */
+		:: rcv ? ACK -> snd ! ACK; goto ESTABLISHED;
+		/* Simultaneous open */
+		:: snd ! ACK; goto SYN_RECEIVED;
+		fi
+	:: rcv ? ACK; 
+    do
+    :: rcv ? SYN -> 
+      snd ! ACK; 
+      goto ESTABLISHED;
+    :: rcv ? _ -> skip;
+    od
+  :: rcv ? _ -> skip;
+	:: timeout -> goto CLOSED; /* Timeout */
+  od
+SYN_RECEIVED:
+	state[i] = SynRecState;
+  do
+  :: rcv ? ACK -> goto ESTABLISHED;
+  :: rcv ? _ -> skip;
+  od
+ESTABLISHED:
+	state[i] = EstState;
+  do 
+	/* Close - initiator sequence */
+	:: snd ! FIN; goto FIN_WAIT_1;
+	/* Close - responder sequence */
+	:: rcv ? FIN -> 
+    snd ! ACK; 
+    goto CLOSE_WAIT;
+  :: rcv ? _ -> skip;
+  od
+FIN_WAIT_1:
+	state[i] = FinW1State;
+  do
+	/* Simultaneous close */
+	:: rcv ? FIN -> 
+    snd ! ACK; 
+    goto CLOSING;
+	/* Standard close */
+	:: rcv ? ACK -> goto FIN_WAIT_2;
+  :: rcv ? _ -> skip;
+  od
+CLOSE_WAIT:
+	state[i] = CloseWaitState;
+  do
+	:: snd ! FIN; goto LAST_ACK;
+  :: rcv ? _ -> skip;
+  od
+FIN_WAIT_2:
+	state[i] = FinW2State;
+  do
+  :: rcv ? FIN -> 
+    snd ! ACK; 
+    goto TIME_WAIT;
+  :: rcv ? _ -> skip;
+  od
+CLOSING:
+	state[i] = ClosingState;
+  do 
+	:: rcv ? ACK -> goto TIME_WAIT;
+  :: rcv ? _ -> skip;
+  od
+LAST_ACK:
+	state[i] = LastAckState;
+  do
+	:: rcv ? ACK -> goto CLOSED;
+  :: rcv ? _ -> skip;
+  od 
+TIME_WAIT:
+	state[i] = TimeWaitState;
+	goto CLOSED;
+end:
+	state[i] = EndState;
+}
+
+init {
+	state[0] = ClosedState;
+	state[1] = ClosedState;
+	run TCP(AtoB, BtoA, 0);
+	run TCP(BtoA, AtoB, 1);
+}
+
+/* liveness: verifying connection establishment */
+ltl phi2 {
+	( (always ( eventually ( state[0] == 1 && state[1] == 2 ) ) ) 
+		implies ( eventually ( state[0] == 4 ) ) )

tests/tcp/attempt1/tcp-phi2.pml.trail

@@ -0,0 +1,43 @@
+-2:2:-2
+-4:-4:-4
+1:0:121
+2:1:114
+3:0:121
+4:1:115
+5:0:121
+6:1:116
+7:0:121
+8:1:117
+9:0:121
+10:3:0
+11:0:121
+12:3:1
+13:0:121
+14:3:2
+15:0:121
+16:3:9
+17:0:121
+18:2:0
+19:0:121
+20:2:1
+21:0:121
+22:2:2
+23:0:121
+24:2:9
+25:0:121
+26:3:17
+27:0:121
+28:3:1
+-1:-1:-1
+29:0:121
+30:3:3
+31:0:121
+32:3:22
+33:0:119
+34:2:15
+35:0:126
+36:2:16
+37:0:119
+38:3:42
+39:0:126
+40:3:1

tests/tcp/attempt1/tcp-phi3.pml

@@ -0,0 +1,161 @@
+mtype = { SYN, FIN, ACK, ABORT, CLOSE, RST, OPEN }
+
+chan AtoB = [2] of { mtype };
+chan BtoA = [2] of { mtype };
+
+int state[2];
+int pids[2];
+
+#define ClosedState    0
+#define ListenState    1
+#define SynSentState   2
+#define SynRecState    3
+#define EstState       4
+#define FinW1State     5
+#define CloseWaitState 6
+#define FinW2State     7
+#define ClosingState   8
+#define LastAckState   9
+#define TimeWaitState  10
+#define EndState       -1
+
+#define leftConnecting (state[0] == ListenState && state[1] == SynSentState)
+#define leftEstablished (state[0] == EstState)
+#define rightEstablished (state[1] == EstState)
+#define leftClosed (state[0] == ClosedState)
+
+proctype TCP(chan snd, rcv; int i) {
+	pids[i] = _pid;
+CLOSED:
+	state[i] = ClosedState;
+  do
+	/* Passive open */
+	:: goto LISTEN;
+	/* Active open */
+	:: snd ! SYN; goto SYN_SENT;
+	/* Terminate */
+	:: goto end;
+  od
+LISTEN:
+	state[i] = ListenState;
+  do
+	:: rcv ? SYN -> 
+    atomic {
+      snd ! SYN; 
+      snd ! ACK; 
+      goto SYN_RECEIVED;
+    }
+	/* Simultaneous LISTEN */
+  :: rcv ? _ -> skip;
+	:: timeout -> goto CLOSED; 
+  od
+SYN_SENT:
+	state[i] = SynSentState;
+  do
+	:: rcv ? SYN;
+		if
+		/* Standard behavior */
+		:: rcv ? ACK -> snd ! ACK; goto ESTABLISHED;
+		/* Simultaneous open */
+		:: snd ! ACK; goto SYN_RECEIVED;
+		fi
+	:: rcv ? ACK; 
+    do
+    :: rcv ? SYN -> 
+      snd ! ACK; 
+      goto ESTABLISHED;
+    :: rcv ? _ -> skip;
+    od
+  :: rcv ? _ -> skip;
+	:: timeout -> goto CLOSED; /* Timeout */
+  od
+SYN_RECEIVED:
+	state[i] = SynRecState;
+  do
+  :: rcv ? ACK -> goto ESTABLISHED;
+  :: rcv ? _ -> skip;
+  od
+ESTABLISHED:
+	state[i] = EstState;
+  do 
+	/* Close - initiator sequence */
+	:: snd ! FIN; goto FIN_WAIT_1;
+	/* Close - responder sequence */
+	:: rcv ? FIN -> 
+    snd ! ACK; 
+    goto CLOSE_WAIT;
+  :: rcv ? _ -> skip;
+  od
+FIN_WAIT_1:
+	state[i] = FinW1State;
+  do
+	/* Simultaneous close */
+	:: rcv ? FIN -> 
+    snd ! ACK; 
+    goto CLOSING;
+	/* Standard close */
+	:: rcv ? ACK -> goto FIN_WAIT_2;
+  :: rcv ? _ -> skip;
+  od
+CLOSE_WAIT:
+	state[i] = CloseWaitState;
+  do
+	:: snd ! FIN; goto LAST_ACK;
+  :: rcv ? _ -> skip;
+  od
+FIN_WAIT_2:
+	state[i] = FinW2State;
+  do
+  :: rcv ? FIN -> 
+    snd ! ACK; 
+    goto TIME_WAIT;
+  :: rcv ? _ -> skip;
+  od
+CLOSING:
+	state[i] = ClosingState;
+  do 
+	:: rcv ? ACK -> goto TIME_WAIT;
+  :: rcv ? _ -> skip;
+  od
+LAST_ACK:
+	state[i] = LastAckState;
+  do
+	:: rcv ? ACK -> goto CLOSED;
+  :: rcv ? _ -> skip;
+  od 
+TIME_WAIT:
+	state[i] = TimeWaitState;
+	goto CLOSED;
+end:
+	state[i] = EndState;
+}
+
+init {
+	state[0] = ClosedState;
+	state[1] = ClosedState;
+	run TCP(AtoB, BtoA, 0);
+	run TCP(BtoA, AtoB, 1);
+}
+
+/* liveness: no infinite stalls/deadlocks */
+ltl phi3 {
+  !(eventually (((always (state[0] == SynSentState))   ||
+                 (always (state[0] == SynRecState))    ||
+                 (always (state[0] == EstState))       ||
+                 (always (state[0] == FinW1State))     ||
+                 (always (state[0] == CloseWaitState)) ||
+                 (always (state[0] == FinW2State))     ||
+                 (always (state[0] == ClosingState))   ||
+                 (always (state[0] == LastAckState))   ||
+                 (always (state[0] == TimeWaitState)))
+                &&
+                ((always (state[1] == SynSentState))   ||
+                 (always (state[1] == SynRecState))    ||
+                 (always (state[1] == EstState))       ||
+                 (always (state[1] == FinW1State))     ||
+                 (always (state[1] == CloseWaitState)) ||
+                 (always (state[1] == FinW2State))     ||
+                 (always (state[1] == ClosingState))   ||
+                 (always (state[1] == LastAckState))   ||
+                 (always (state[1] == TimeWaitState)))))
+}

tests/tcp/attempt1/tcp-phi3.pml.trail

@@ -0,0 +1,62 @@
+-2:3:-2
+-4:-4:-4
+1:0:289
+2:2:122
+3:0:289
+4:2:123
+5:0:289
+6:2:124
+7:0:289
+8:2:125
+9:0:289
+10:4:0
+11:0:289
+12:4:1
+13:0:289
+14:4:2
+15:0:289
+16:4:9
+17:0:289
+18:3:0
+19:0:289
+20:3:1
+21:0:289
+22:3:2
+23:0:289
+24:3:9
+25:0:289
+26:4:17
+27:0:289
+28:4:1
+29:0:289
+30:4:3
+31:0:289
+32:4:22
+33:0:289
+34:1:116
+35:0:289
+36:1:117
+37:0:289
+38:3:10
+39:0:289
+40:3:11
+41:3:12
+42:0:289
+43:3:47
+44:0:249
+45:1:114
+46:0:599
+47:1:115
+48:0:599
+49:4:40
+50:0:599
+51:4:41
+52:0:599
+53:1:114
+54:0:599
+55:1:115
+56:0:599
+57:4:31
+-1:-1:-1
+58:0:599
+59:0:599

tests/tcp/attempt1/tcp-phi4.pml

@@ -0,0 +1,150 @@
+mtype = { SYN, FIN, ACK, ABORT, CLOSE, RST, OPEN }
+
+chan AtoB = [2] of { mtype };
+chan BtoA = [2] of { mtype };
+
+int state[2];
+int pids[2];
+
+#define ClosedState    0
+#define ListenState    1
+#define SynSentState   2
+#define SynRecState    3
+#define EstState       4
+#define FinW1State     5
+#define CloseWaitState 6
+#define FinW2State     7
+#define ClosingState   8
+#define LastAckState   9
+#define TimeWaitState  10
+#define EndState       -1
+
+#define leftConnecting (state[0] == ListenState && state[1] == SynSentState)
+#define leftEstablished (state[0] == EstState)
+#define rightEstablished (state[1] == EstState)
+#define leftClosed (state[0] == ClosedState)
+
+proctype TCP(chan snd, rcv; int i) {
+	pids[i] = _pid;
+CLOSED:
+	state[i] = ClosedState;
+  do
+	/* Passive open */
+	:: goto LISTEN;
+	/* Active open */
+	:: snd ! SYN; goto SYN_SENT;
+	/* Terminate */
+	:: goto end;
+  od
+LISTEN:
+	state[i] = ListenState;
+  do
+	:: rcv ? SYN -> 
+    atomic {
+      snd ! SYN; 
+      snd ! ACK; 
+      goto SYN_RECEIVED;
+    }
+	/* Simultaneous LISTEN */
+  :: rcv ? _ -> skip;
+	:: timeout -> goto CLOSED; 
+  od
+SYN_SENT:
+	state[i] = SynSentState;
+  do
+	:: rcv ? SYN;
+		if
+		/* Standard behavior */
+		:: rcv ? ACK -> snd ! ACK; goto ESTABLISHED;
+		/* Simultaneous open */
+		:: snd ! ACK; goto SYN_RECEIVED;
+		fi
+	:: rcv ? ACK; 
+    do
+    :: rcv ? SYN -> 
+      snd ! ACK; 
+      goto ESTABLISHED;
+    :: rcv ? _ -> skip;
+    od
+  :: rcv ? _ -> skip;
+	:: timeout -> goto CLOSED; /* Timeout */
+  od
+SYN_RECEIVED:
+	state[i] = SynRecState;
+  do
+  :: rcv ? ACK -> goto ESTABLISHED;
+  :: rcv ? _ -> skip;
+  od
+ESTABLISHED:
+	state[i] = EstState;
+  do 
+	/* Close - initiator sequence */
+	:: snd ! FIN; goto FIN_WAIT_1;
+	/* Close - responder sequence */
+	:: rcv ? FIN -> 
+    snd ! ACK; 
+    goto CLOSE_WAIT;
+  :: rcv ? _ -> skip;
+  od
+FIN_WAIT_1:
+	state[i] = FinW1State;
+  do
+	/* Simultaneous close */
+	:: rcv ? FIN -> 
+    snd ! ACK; 
+    goto CLOSING;
+	/* Standard close */
+	:: rcv ? ACK -> goto FIN_WAIT_2;
+  :: rcv ? _ -> skip;
+  od
+CLOSE_WAIT:
+	state[i] = CloseWaitState;
+  do
+	:: snd ! FIN; goto LAST_ACK;
+  :: rcv ? _ -> skip;
+  od
+FIN_WAIT_2:
+	state[i] = FinW2State;
+  do
+  :: rcv ? FIN -> 
+    snd ! ACK; 
+    goto TIME_WAIT;
+  :: rcv ? _ -> skip;
+  od
+CLOSING:
+	state[i] = ClosingState;
+  do 
+	:: rcv ? ACK -> goto TIME_WAIT;
+  :: rcv ? _ -> skip;
+  od
+LAST_ACK:
+	state[i] = LastAckState;
+  do
+	:: rcv ? ACK -> goto CLOSED;
+  :: rcv ? _ -> skip;
+  od 
+TIME_WAIT:
+	state[i] = TimeWaitState;
+	goto CLOSED;
+end:
+	state[i] = EndState;
+}
+
+init {
+	state[0] = ClosedState;
+	state[1] = ClosedState;
+	run TCP(AtoB, BtoA, 0);
+	run TCP(BtoA, AtoB, 1);
+}
+
+/* liveness: simultanous open */ 
+ltl phi4 {
+	always (
+		(state[0] == SynSentState && 
+		 state[1] == SynSentState)
+		
+		implies
+			
+			((eventually state[0] == EstState) &&
+		     (eventually state[1] == EstState)))
+}

tests/tcp/attempt1/tcp-phi4.pml.trail

@@ -0,0 +1,157 @@
+-2:2:-2
+-4:-4:-4
+1:0:122
+2:1:114
+3:0:122
+4:1:115
+5:0:122
+6:1:116
+7:0:122
+8:1:117
+9:0:122
+10:3:0
+11:0:122
+12:3:1
+13:0:122
+14:3:2
+15:0:122
+16:3:9
+17:0:122
+18:2:0
+19:0:122
+20:2:1
+21:0:122
+22:2:2
+23:0:122
+24:2:9
+25:0:122
+26:3:17
+27:0:122
+28:3:1
+29:0:122
+30:3:3
+31:0:122
+32:3:22
+33:0:122
+34:2:10
+35:0:122
+36:2:11
+37:2:12
+38:0:122
+39:3:23
+40:0:122
+41:3:24
+42:0:122
+43:3:25
+44:0:122
+45:3:55
+46:0:122
+47:3:56
+48:0:122
+49:3:66
+50:0:122
+51:2:47
+52:0:122
+53:2:48
+54:0:122
+55:2:55
+56:0:122
+57:2:56
+58:0:122
+59:3:67
+60:0:122
+61:3:68
+62:0:122
+63:3:94
+64:0:122
+65:2:66
+66:0:122
+67:2:67
+68:0:122
+69:2:68
+70:0:122
+71:3:95
+72:0:122
+73:3:110
+74:0:122
+75:3:1
+76:0:122
+77:3:2
+78:0:122
+79:2:94
+80:0:122
+81:2:95
+82:0:122
+83:2:110
+84:0:122
+85:2:1
+86:0:122
+87:2:3
+88:0:122
+89:3:9
+90:0:122
+91:3:10
+92:0:122
+93:3:11
+94:3:12
+95:0:122
+96:3:47
+97:0:122
+98:2:22
+99:0:122
+100:2:23
+101:0:122
+102:2:24
+103:0:122
+104:2:25
+105:0:122
+106:3:48
+107:0:122
+108:3:55
+109:0:122
+110:3:56
+111:0:122
+112:2:55
+113:0:122
+114:2:56
+115:0:122
+116:2:66
+117:0:122
+118:3:66
+119:0:122
+120:3:67
+121:0:122
+122:3:68
+123:0:122
+124:2:67
+125:0:122
+126:2:68
+127:0:122
+128:2:94
+129:0:122
+130:3:94
+131:0:122
+132:3:95
+133:0:122
+134:3:110
+135:0:122
+136:3:1
+137:0:122
+138:3:3
+139:0:122
+140:3:22
+141:0:122
+142:2:95
+143:0:122
+144:2:110
+145:0:122
+146:2:1
+147:0:122
+148:2:3
+149:0:122
+150:3:23
+151:0:122
+152:3:27
+153:0:122
+154:2:22
+155:0:119

tests/tcp/attempt1/tcp-phi5.pml

@@ -0,0 +1,152 @@
+mtype = { SYN, FIN, ACK, ABORT, CLOSE, RST, OPEN }
+
+chan AtoB = [2] of { mtype };
+chan BtoA = [2] of { mtype };
+
+int state[2];
+int pids[2];
+
+#define ClosedState    0
+#define ListenState    1
+#define SynSentState   2
+#define SynRecState    3
+#define EstState       4
+#define FinW1State     5
+#define CloseWaitState 6
+#define FinW2State     7
+#define ClosingState   8
+#define LastAckState   9
+#define TimeWaitState  10
+#define EndState       -1
+
+#define leftConnecting (state[0] == ListenState && state[1] == SynSentState)
+#define leftEstablished (state[0] == EstState)
+#define rightEstablished (state[1] == EstState)
+#define leftClosed (state[0] == ClosedState)
+
+proctype TCP(chan snd, rcv; int i) {
+	pids[i] = _pid;
+CLOSED:
+	state[i] = ClosedState;
+  do
+	/* Passive open */
+	:: goto LISTEN;
+	/* Active open */
+	:: snd ! SYN; goto SYN_SENT;
+	/* Terminate */
+	:: goto end;
+  od
+LISTEN:
+	state[i] = ListenState;
+  do
+	:: rcv ? SYN -> 
+    atomic {
+      snd ! SYN; 
+      snd ! ACK; 
+      goto SYN_RECEIVED;
+    }
+	/* Simultaneous LISTEN */
+  :: rcv ? _ -> skip;
+	:: timeout -> goto CLOSED; 
+  od
+SYN_SENT:
+	state[i] = SynSentState;
+  do
+	:: rcv ? SYN;
+		if
+		/* Standard behavior */
+		:: rcv ? ACK -> snd ! ACK; goto ESTABLISHED;
+		/* Simultaneous open */
+		:: snd ! ACK; goto SYN_RECEIVED;
+		fi
+	:: rcv ? ACK; 
+    do
+    :: rcv ? SYN -> 
+      snd ! ACK; 
+      goto ESTABLISHED;
+    :: rcv ? _ -> skip;
+    od
+  :: rcv ? _ -> skip;
+	:: timeout -> goto CLOSED; /* Timeout */
+  od
+SYN_RECEIVED:
+	state[i] = SynRecState;
+  do
+  :: rcv ? ACK -> goto ESTABLISHED;
+  :: rcv ? _ -> skip;
+  od
+ESTABLISHED:
+	state[i] = EstState;
+  do 
+	/* Close - initiator sequence */
+	:: snd ! FIN; goto FIN_WAIT_1;
+	/* Close - responder sequence */
+	:: rcv ? FIN -> 
+    snd ! ACK; 
+    goto CLOSE_WAIT;
+  :: rcv ? _ -> skip;
+  od
+FIN_WAIT_1:
+	state[i] = FinW1State;
+  do
+	/* Simultaneous close */
+	:: rcv ? FIN -> 
+    snd ! ACK; 
+    goto CLOSING;
+	/* Standard close */
+	:: rcv ? ACK -> goto FIN_WAIT_2;
+  :: rcv ? _ -> skip;
+  od
+CLOSE_WAIT:
+	state[i] = CloseWaitState;
+  do
+	:: snd ! FIN; goto LAST_ACK;
+  :: rcv ? _ -> skip;
+  od
+FIN_WAIT_2:
+	state[i] = FinW2State;
+  do
+  :: rcv ? FIN -> 
+    snd ! ACK; 
+    goto TIME_WAIT;
+  :: rcv ? _ -> skip;
+  od
+CLOSING:
+	state[i] = ClosingState;
+  do 
+	:: rcv ? ACK -> goto TIME_WAIT;
+  :: rcv ? _ -> skip;
+  od
+LAST_ACK:
+	state[i] = LastAckState;
+  do
+	:: rcv ? ACK -> goto CLOSED;
+  :: rcv ? _ -> skip;
+  od 
+TIME_WAIT:
+	state[i] = TimeWaitState;
+	goto CLOSED;
+end:
+	state[i] = EndState;
+}
+
+init {
+	state[0] = ClosedState;
+	state[1] = ClosedState;
+	run TCP(AtoB, BtoA, 0);
+	run TCP(BtoA, AtoB, 1);
+}
+
+/* liveness: SYN_RECEIVED resolution*/ 
+ltl phi5 {
+	always (
+		(state[0] == SynRecState)
+			implies (
+				eventually (
+					(state[0] == EstState   || 
+					 state[0] == FinW1State ||
+					 state[0] == ClosedState)
+				)
+			)
+		)
+}

tests/tcp/attempt1/tcp-phi5.pml.trail

@@ -0,0 +1,64 @@
+-2:2:-2
+-4:-4:-4
+1:0:121
+2:1:114
+3:0:121
+4:1:115
+5:0:121
+6:1:116
+7:0:121
+8:1:117
+9:0:121
+10:3:0
+11:0:121
+12:3:1
+13:0:121
+14:3:2
+15:0:121
+16:3:9
+17:0:121
+18:2:0
+19:0:121
+20:2:1
+21:0:121
+22:2:2
+23:0:121
+24:2:9
+25:0:121
+26:3:17
+27:0:121
+28:3:1
+29:0:121
+30:3:3
+31:0:121
+32:3:22
+33:0:121
+34:2:10
+35:0:121
+36:2:11
+37:2:12
+38:0:121
+39:3:23
+40:0:121
+41:3:24
+42:0:121
+43:3:25
+44:0:121
+45:3:55
+46:0:121
+47:3:56
+48:0:121
+49:3:66
+50:0:121
+51:2:47
+52:0:119
+53:2:50
+54:0:126
+55:2:51
+56:0:126
+57:2:50
+58:0:126
+59:2:51
+-1:-1:-1
+60:0:126
+61:0:126

tests/tcp/attempt1/tcp-phi6.pml

@@ -0,0 +1,148 @@
+mtype = { SYN, FIN, ACK, ABORT, CLOSE, RST, OPEN }
+
+chan AtoB = [2] of { mtype };
+chan BtoA = [2] of { mtype };
+
+int state[2];
+int pids[2];
+
+#define ClosedState    0
+#define ListenState    1
+#define SynSentState   2
+#define SynRecState    3
+#define EstState       4
+#define FinW1State     5
+#define CloseWaitState 6
+#define FinW2State     7
+#define ClosingState   8
+#define LastAckState   9
+#define TimeWaitState  10
+#define EndState       -1
+
+#define leftConnecting (state[0] == ListenState && state[1] == SynSentState)
+#define leftEstablished (state[0] == EstState)
+#define rightEstablished (state[1] == EstState)
+#define leftClosed (state[0] == ClosedState)
+
+proctype TCP(chan snd, rcv; int i) {
+	pids[i] = _pid;
+CLOSED:
+	state[i] = ClosedState;
+  do
+	/* Passive open */
+	:: goto LISTEN;
+	/* Active open */
+	:: snd ! SYN; goto SYN_SENT;
+	/* Terminate */
+	:: goto end;
+  od
+LISTEN:
+	state[i] = ListenState;
+  do
+	:: rcv ? SYN -> 
+    atomic {
+      snd ! SYN; 
+      snd ! ACK; 
+      goto SYN_RECEIVED;
+    }
+	/* Simultaneous LISTEN */
+  :: rcv ? _ -> skip;
+	:: timeout -> goto CLOSED; 
+  od
+SYN_SENT:
+	state[i] = SynSentState;
+  do
+	:: rcv ? SYN;
+		if
+		/* Standard behavior */
+		:: rcv ? ACK -> snd ! ACK; goto ESTABLISHED;
+		/* Simultaneous open */
+		:: snd ! ACK; goto SYN_RECEIVED;
+		fi
+	:: rcv ? ACK; 
+    do
+    :: rcv ? SYN -> 
+      snd ! ACK; 
+      goto ESTABLISHED;
+    :: rcv ? _ -> skip;
+    od
+  :: rcv ? _ -> skip;
+	:: timeout -> goto CLOSED; /* Timeout */
+  od
+SYN_RECEIVED:
+	state[i] = SynRecState;
+  do
+  :: rcv ? ACK -> goto ESTABLISHED;
+  :: rcv ? _ -> skip;
+  od
+ESTABLISHED:
+	state[i] = EstState;
+  do 
+	/* Close - initiator sequence */
+	:: snd ! FIN; goto FIN_WAIT_1;
+	/* Close - responder sequence */
+	:: rcv ? FIN -> 
+    snd ! ACK; 
+    goto CLOSE_WAIT;
+  :: rcv ? _ -> skip;
+  od
+FIN_WAIT_1:
+	state[i] = FinW1State;
+  do
+	/* Simultaneous close */
+	:: rcv ? FIN -> 
+    snd ! ACK; 
+    goto CLOSING;
+	/* Standard close */
+	:: rcv ? ACK -> goto FIN_WAIT_2;
+  :: rcv ? _ -> skip;
+  od
+CLOSE_WAIT:
+	state[i] = CloseWaitState;
+  do
+	:: snd ! FIN; goto LAST_ACK;
+  :: rcv ? _ -> skip;
+  od
+FIN_WAIT_2:
+	state[i] = FinW2State;
+  do
+  :: rcv ? FIN -> 
+    snd ! ACK; 
+    goto TIME_WAIT;
+  :: rcv ? _ -> skip;
+  od
+CLOSING:
+	state[i] = ClosingState;
+  do 
+	:: rcv ? ACK -> goto TIME_WAIT;
+  :: rcv ? _ -> skip;
+  od
+LAST_ACK:
+	state[i] = LastAckState;
+  do
+	:: rcv ? ACK -> goto CLOSED;
+  :: rcv ? _ -> skip;
+  od 
+TIME_WAIT:
+	state[i] = TimeWaitState;
+	goto CLOSED;
+end:
+	state[i] = EndState;
+}
+
+init {
+	state[0] = ClosedState;
+	state[1] = ClosedState;
+	run TCP(AtoB, BtoA, 0);
+	run TCP(BtoA, AtoB, 1);
+}
+
+/* safety: strict closing transitions */
+ltl phi6 {
+	always (
+		(state[0] == ClosingState)
+			implies
+				(next (state[0] == ClosingState ||
+					   state[0] == ClosedState))
+	)
+}

tests/tcp/attempt1/tcp-phi6.pml.trail

@@ -0,0 +1,88 @@
+-2:2:-2
+-4:-4:-4
+1:0:121
+2:1:114
+3:0:121
+4:1:115
+5:0:121
+6:1:116
+7:0:121
+8:1:117
+9:0:121
+10:3:0
+11:0:121
+12:3:1
+13:0:121
+14:3:2
+15:0:121
+16:3:9
+17:0:121
+18:2:0
+19:0:121
+20:2:1
+21:0:121
+22:2:2
+23:0:121
+24:2:9
+25:0:121
+26:3:17
+27:0:121
+28:3:1
+29:0:121
+30:3:3
+31:0:121
+32:3:22
+33:0:121
+34:2:10
+35:0:121
+36:2:11
+37:2:12
+38:0:121
+39:3:23
+40:0:121
+41:3:24
+42:0:121
+43:3:25
+44:0:121
+45:3:55
+46:0:121
+47:3:56
+48:0:121
+49:3:66
+50:0:121
+51:2:47
+52:0:121
+53:2:48
+54:0:121
+55:2:55
+56:0:121
+57:2:56
+58:0:121
+59:3:67
+60:0:121
+61:3:68
+62:0:121
+63:3:94
+64:0:121
+65:2:66
+66:0:121
+67:2:67
+68:0:121
+69:2:68
+70:0:121
+71:3:95
+72:0:121
+73:3:110
+74:0:121
+75:3:1
+76:0:121
+77:3:2
+78:0:121
+79:3:9
+80:0:121
+81:2:94
+82:0:121
+83:2:95
+84:0:119
+85:2:110
+86:0:126

tests/tcp/attempt1/tcp.pml

@@ -0,0 +1,138 @@
+mtype = { SYN, FIN, ACK, ABORT, CLOSE, RST, OPEN }
+
+chan AtoB = [2] of { mtype };
+chan BtoA = [2] of { mtype };
+
+int state[2];
+int pids[2];
+
+#define ClosedState    0
+#define ListenState    1
+#define SynSentState   2
+#define SynRecState    3
+#define EstState       4
+#define FinW1State     5
+#define CloseWaitState 6
+#define FinW2State     7
+#define ClosingState   8
+#define LastAckState   9
+#define TimeWaitState  10
+#define EndState       -1
+
+#define leftConnecting (state[0] == ListenState && state[1] == SynSentState)
+#define leftEstablished (state[0] == EstState)
+#define rightEstablished (state[1] == EstState)
+#define leftClosed (state[0] == ClosedState)
+
+proctype TCP(chan snd, rcv; int i) {
+	pids[i] = _pid;
+CLOSED:
+	state[i] = ClosedState;
+  do
+	/* Passive open */
+	:: goto LISTEN;
+	/* Active open */
+	:: snd ! SYN; goto SYN_SENT;
+	/* Terminate */
+	:: goto end;
+  od
+LISTEN:
+	state[i] = ListenState;
+  do
+	:: rcv ? SYN -> 
+    atomic {
+      snd ! SYN; 
+      snd ! ACK; 
+      goto SYN_RECEIVED;
+    }
+	/* Simultaneous LISTEN */
+  :: rcv ? _ -> skip;
+	:: timeout -> goto CLOSED; 
+  od
+SYN_SENT:
+	state[i] = SynSentState;
+  do
+	:: rcv ? SYN;
+		if
+		/* Standard behavior */
+		:: rcv ? ACK -> snd ! ACK; goto ESTABLISHED;
+		/* Simultaneous open */
+		:: snd ! ACK; goto SYN_RECEIVED;
+		fi
+	:: rcv ? ACK; 
+    do
+    :: rcv ? SYN -> 
+      snd ! ACK; 
+      goto ESTABLISHED;
+    :: rcv ? _ -> skip;
+    od
+  :: rcv ? _ -> skip;
+	:: timeout -> goto CLOSED; /* Timeout */
+  od
+SYN_RECEIVED:
+	state[i] = SynRecState;
+  do
+  :: rcv ? ACK -> goto ESTABLISHED;
+  :: rcv ? _ -> skip;
+  od
+ESTABLISHED:
+	state[i] = EstState;
+  do 
+	/* Close - initiator sequence */
+	:: snd ! FIN; goto FIN_WAIT_1;
+	/* Close - responder sequence */
+	:: rcv ? FIN -> 
+    snd ! ACK; 
+    goto CLOSE_WAIT;
+  :: rcv ? _ -> skip;
+  od
+FIN_WAIT_1:
+	state[i] = FinW1State;
+  do
+	/* Simultaneous close */
+	:: rcv ? FIN -> 
+    snd ! ACK; 
+    goto CLOSING;
+	/* Standard close */
+	:: rcv ? ACK -> goto FIN_WAIT_2;
+  :: rcv ? _ -> skip;
+  od
+CLOSE_WAIT:
+	state[i] = CloseWaitState;
+  do
+	:: snd ! FIN; goto LAST_ACK;
+  :: rcv ? _ -> skip;
+  od
+FIN_WAIT_2:
+	state[i] = FinW2State;
+  do
+  :: rcv ? FIN -> 
+    snd ! ACK; 
+    goto TIME_WAIT;
+  :: rcv ? _ -> skip;
+  od
+CLOSING:
+	state[i] = ClosingState;
+  do 
+	:: rcv ? ACK -> goto TIME_WAIT;
+  :: rcv ? _ -> skip;
+  od
+LAST_ACK:
+	state[i] = LastAckState;
+  do
+	:: rcv ? ACK -> goto CLOSED;
+  :: rcv ? _ -> skip;
+  od 
+TIME_WAIT:
+	state[i] = TimeWaitState;
+	goto CLOSED;
+end:
+	state[i] = EndState;
+}
+
+init {
+	state[0] = ClosedState;
+	state[1] = ClosedState;
+	run TCP(AtoB, BtoA, 0);
+	run TCP(BtoA, AtoB, 1);
+}