zc/inf-mcs-notes
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

6/6 pages completed

Browse source
This commit is contained in:
Zhengyi Chen 2024-05-06 02:50:52 +01:00
parent 0813fec4f1
commit f886c947ef
2 changed files with 22 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

25
09-concurrency.tex
View file

@ -83,12 +83,12 @@ Whether safety/liveness properties hold in a system depends often on whether we
We hence define the following completeness criteria in increasing strength (or reverse implication chain):
\begin{definition}[Progress]
In a \textbf{closed system} (i.e., without external influence of transition decisions), the \textbf{progress} assumption assumes that we will not stay forever in a state with an outgoing transition -- i.e., a finite path is complete iff it ends in a state without outgoing transitions.
To show this is weaker than weak fairness, simply show that task $T$ cannot occur whatsoever in last state of a non-progress path (because it is enabled, but trivially not occurred -- because of non-progression past that state).
\end{definition}
\begin{definition}[Justness]
\end{definition}
There is also \textbf{justness} but this was not covered in lecture.
\begin{definition}[Weak Fairness]
Define a \textbf{task} to be a set of transitions in a Kripke structure (you can think of it as a subprocedure in a program). Append the Kripke structure $(S, \rightarrowtriangle, I)$ with a novel structure $\tau$:
@ -103,9 +103,14 @@ We hence define the following completeness criteria in increasing strength (or r
A path $\pi$ is hence \textbf{weakly fair} if it satisfies the following LTL formula:
\begin{alignat*}{2}
\mathsf{WF}(T)
&\coloneqq &&\ G(\ G(\mathsf{enabled}(T)) \implies F(\mathsf{occurs(T)})\ ) \\
&\coloneqq &&\ G[G(\mathsf{enabled}(T)) \implies F(\mathsf{occurs(T)})] \\
&\Leftrightarrow &&\ F(G(\mathsf{enabled}(T))) \implies G(F(\mathsf{occurs}(T)))
\end{alignat*}
\begin{quote}
Read it in this way: if, after some $s \in \pi$, part of T can always happen for $s^{'} \in \pi^{'}$ (i.e., perpetually enabled), then at least some part of T \underline{will} happen in $\pi^{'}$.
\end{quote}
where predicates $\mathsf{enabled}$, $\mathsf{occurs}$ follow above definition -- a state $s$ is marked with $\mathsf{enabled}(T)$ iff $T$ is enabled at state $s$ i.e. exists outgoing transition from $s$ that is also in $T$.
Hence, define $\models^{WF}$ as:
@ -115,7 +120,19 @@ We hence define the following completeness criteria in increasing strength (or r
\end{definition}
\begin{definition}[Strong Fairness]
A task $T$ is \textbf{relentlessly enabled} on $\pi$ if for every suffix of $\pi$ there exists a state $s^{'}$ where $T$ is enabled (note the difference between perpetually enabled).
A path $\pi$ is hence \textbf{strongly fair} if it satisfies the following LTL formula:
\begin{alignat*}{2}
\mathsf{SF}(T) &\coloneqq\ && G[GF(\mathsf{enabled}(T)) \implies F(\mathsf{occurs}(T))] \\
&\Leftrightarrow\ && GF(\mathsf{enabled}(T)) \implies GF(\mathsf{occurs}(T))
\end{alignat*}
\begin{quote}
In other words: if, after some $s \in \pi$, part of T will always be available occasionally for some $s^{'} \in \pi^{'}$ (i.e., relentlessly enabled), then some part of T \underline{will} happen in $\pi^{'}$.
\end{quote}
Likewise, define $\models^{SF}$ in mirror case of $\models^{WF}$.
\end{definition}
\end{document}

BIN
99-notes-packed.pdf
View file

Binary file not shown.