Changeset 16158

Timestamp:

12/05/08 10:27:49 (4 years ago)

Author:

hritcu

Message:

Fixed the remaining old examples.

Files:

• processes/old/daa-join.spi (modified) (3 diffs)
• processes/old/daa.spi (modified) (4 diffs)
• processes/old/proxy.spi (modified) (2 diffs)
• processes/old/sign.spi (modified) (3 diffs)
• src/typechecker/parser.mly (modified) (1 diff)

processes/old/daa-join.spi

@@ -1 +1 @@
 (** Direct Anonymous Attestation (DAA) - Join Protocol *)
 
-statement sjoin(*2,4*) = landh( eqh(blind(alpha(*1*), alpha(*2*)), beta(*2*)), eqh(hash(pair(beta(*4*), alpha(*1*))), beta(*3*)) ) (*: Stm(Pair(yid : Un, Pair(yu : Blind(Private), Pair(yn : Un, Pair(yxi : Un, Ok [*# exists([x1,x2], and( equal(yu,blind(x1,x2)), equal(yn,hash(pair(yxi,x1))) ))*]))))) *).
+statement sjoin(*2,4*) = landh( eqh(blind(alpha(*1*), alpha(*2*)), beta(*2*)), eqh(hash(pair(beta(*4*), alpha(*1*))), beta(*3*)) )
+        (*: Stm(yid : Un, yu : Blind(Private), yn : Un, yxi : Un; [*# exists([x1,x2], and( equal(yu,blind(x1,x2)), equal(yn,hash(pair(yxi,x1))) ))*]) *).
 
 predicate ValidTPM(*1*).
@@ -18 +19 @@
         new r (*: Blinder(Private) *);
         (assume(*#Join(tid, blind(f,r))*) |
-        out(c1,zk(*2,4,sjoin*)(f,r,tid,blind(f,r),hash(pair(hash(pair(n1(*=d6*), bsni(*: Untainted *)))(*=y*),f(*: Private*))),hash(pair(n1(*=d7*), bsni(*: Untainted *)))));
-        out(c2,pair(tid(*=xid*),pair(blind(f,r)(*=xu*),ok(*:Ok [*# Join(xid, xu) *]*)) (*:Pair(yu : Blind(Private), Ok [*#Join(xid, yu)*])*) ));
+        out(c1,zk(*2,4,sjoin*)(f,r,tid,blind(f,r),hash(pair(hash(pair(n1, bsni(*: Un *))),f(*: Private*))),hash(pair(n1, bsni(*: Un *)))));
+        out(c2,pair((*=xid*)tid,pair((*=xu*)blind(f,r),ok(*:Ok [*# Join(xid, xu) *]*)) (*:Pair(yu : Blind(Private), Ok [*#Join(xid, yu)*])*) ));
         in(c3, x);
         let cert = unblind(*:Pair(yu : Blind(Private), Ok [*# exists([xid],Certified(xid,yu)) *])*)(x, r, bvk(ki)) in
         let tt = bcheck(*:Pair(yu : Blind(Private), Ok [*# exists([xid],Certified(xid,yu)) *])*)(cert, bvk(ki)) in
-        let xu = fst(tt) in
+        let (xu, o) = tt in
         let d1 = eq(xu, f) in
-        let o = snd(tt) in
-        let d2 = exercise(o) in
         assert(*#Joined(tid,f,blind(f,r))*)
         ).
@@ -34 +33 @@
         !in(c1,xzk);
         in(c2,ttt);
-        let yid = fst(ttt) in
-        let tt = snd(ttt) in
-        let yu = fst(tt) in
-        let o1 = snd(tt) in
-        let d1 = exercise(o1) in
-        let o2 = ver(*2,4,4,sjoin*)(xzk, yid, yu, hash(pair(hash(pair(n1(*=d2*), bsni(*: Untainted *)))(*=d*),f(*:Private*))), pair(n1(*=d8*), bsni(*: Untainted *))) in
-        let d2 = exercise(o2) in
+        let (yid, tt) = ttt in
+        let (yu, o1) = tt in
+        let o2 = ver(*2,4,4,sjoin*)(xzk, yid, yu, hash(pair(hash(pair(n1, bsni(*: Un *))),f(*:Private*))), pair(n1, bsni(*: Un *))) in
         (assert(*#Certified(yid,yu)*) |
-        out(c3, bsign(*:Pair(yu : Blind(Private), Ok [*# exists([xid],Certified(xid,yu)) *])*)(pair(yu(*=x*),ok(*: Ok [*# exists([xid],Certified(xid,yu)) *]*)), ki))
+        out(c3, bsign(*:Pair(yu : Blind(Private), Ok [*# exists([xid],Certified(xid,yu)) *])*)(pair((*=x*)yu,ok(*: Ok [*# exists([xid],Certified(xid,yu)) *]*)), ki))
         ).
 
 process
-        new c2 (*: Ch Pair(yid : Un, Pair(yu : Blind(Private), Ok [*#Join(yid, yu)*] ))*);
-        new bsni (*: Untainted *);
+        new c2 (*: Ch(Pair(yid : Un, Pair(yu : Blind(Private), Ok [*#Join(yid, yu)*] )))*);
+        new bsni (*: Un *);
         new daaseed (*: Private *);
         new f (*: Private *); (** cutting corners for now *)

processes/old/daa.spi

@@ -1 +1 @@
 (** Direct Anonymous Attestation (DAA) *)
 
-statement sjoin(*2,4*) = landh( eqh(blind(alpha(*1*), alpha(*2*)), beta(*2*)), eqh(hash(pair(beta(*4*), alpha(*1*))), beta(*3*)) ) (*: Stm(Pair(yid : Un, Pair(yu : Blind(Private), Pair(yn : Un, Pair(yxi : Un, Ok [*# exists([x1,x2], and( equal(yu,blind(x1,x2)), equal(yn,hash(pair(yxi,x1))) ))*]))))) *).
+statement sjoin(*2,4*) = landh( eqh(blind(alpha(*1*), alpha(*2*)), beta(*2*)), eqh(hash(pair(beta(*4*), alpha(*1*))), beta(*3*)) )
+        (*: Stm(yid : Un, yu : Blind(Private), yn : Un, yxi : Un; [*# exists([x1,x2], and( equal(yu,blind(x1,x2)), equal(yn,hash(pair(yxi,x1))) ))*]) *).
 
 statement ssign(*2,4*) =
         landh(eqh(bcheckh(alpha(*2*), beta(*1*)), alpha(*1*)),
                 eqh(hash(pair(beta(*3*),alpha(*1*))), beta(*2*)))
-        (*: Stm(Pair(
-                yvk : BlindVerKey(Pair(yu : Blind(Private), Ok [*#exists([xid],Certified(xid,yu))*])), Pair(
-                yn : Un, Pair(
-                yxi : Un, Pair(
-                ym : Un,
-                Ok [*#exists([xf,xcert,xv,xbs,xid], and(and(equal(yn,hash(pair(yxi,xf))), Certified(xid,blind(xf,xv))),DSigned(xf,ym)))*])))))
+        (*: Stm(
+                yvk : BlindVerKey(Pair(yu : Blind(Private), Ok [*#exists([xid],Certified(xid,yu))*])),
+                yn : Un,
+                yxi : Un,
+                ym : Un;
+                [*#exists([xf,xcert,xv,xbs,xid], and(and(equal(yn,hash(pair(yxi,xf))), Certified(xid,blind(xf,xv))),DSigned(xf,ym)))*])
         *).
 
@@ -35 +36 @@
         new r (*: Blinder(Private) *);
         (assume(*#Join(tid, blind(f,r))*) |
-        out(c1,zk(*2,4,sjoin*)(f,r,tid,blind(f,r),hash(pair(hash(pair(n1(*=d6*), bsni(*: Untainted *)))(*=y*),f(*: Private*))),hash(pair(n1(*=d7*), bsni(*: Untainted *)))));
-        out(c2,pair(tid(*=xid*),pair(blind(f,r)(*=xu*),ok(*:Ok [*# Join(xid, xu) *]*)) (*:Pair(yu : Blind(Private), Ok [*#Join(xid, yu)*])*) ));
+        out(c1,zk(*2,4,sjoin*)(f,r,tid,blind(f,r),hash(pair(hash(pair(n1, bsni(*: Un *))),f(*: Private*))),hash(pair(n1, bsni(*: Un *)))));
+        out(c2,pair((*=xid*)tid,pair((*=xu*)blind(f,r),ok(*:Ok [*# Join(xid, xu) *]*)) (*:Pair(yu : Blind(Private), Ok [*#Join(xid, yu)*])*) ));
         in(c3, xbs);
         let cert = unblind(*:Pair(yu : Blind(Private), Ok [*# exists([xid],Certified(xid,yu)) *])*)(xbs, r, bvk(ki)) in
         let tt = bcheck(*:Pair(yu : Blind(Private), Ok [*# exists([xid],Certified(xid,yu)) *])*)(cert, bvk(ki)) in
-        let xu = fst(tt) in
+        let (xu, o) = tt in
         let d1 = eq(xu, f) in
-        let o = snd(tt) in
-        let d2 = exercise(o) in
         (assert(*#Joined(tid,f,blind(f,r))*) |
         
         (** Sign *)
-        new m (*: Untainted *);
+        new m (*: Un *);
         new xi (*: Un *);
         (assume(*#DSigned(f,m)*) |
-        out(c4, zk(*2,4,ssign*)(f, cert, bvk(ki), hash(pair(xi(*=d2*),f(*: Private *))), xi, m))
+        out(c4, zk(*2,4,ssign*)(f, cert, bvk(ki), hash(pair(xi,f(*: Private *))), xi, m))
         ))).
 
@@ -57 +56 @@
         !in(c1,xzk);
         in(c2,ttt);
-        let yid = fst(ttt) in
-        let tt = snd(ttt) in
-        let yu = fst(tt) in
-        let o1 = snd(tt) in
-        let d1 = exercise(o1) in
-        let o2 = ver(*2,4,4,sjoin*)(xzk, yid, yu, hash(pair(hash(pair(n1(*=d2*), bsni(*: Untainted *)))(*=d*),f(*:Private*))), pair(n1(*=d8*), bsni(*: Untainted *))) in
-        let d2 = exercise(o2) in
+        let (yid, tt) = ttt in
+        let (yu, o1) = tt in
+        let o2 = ver(*2,4,4,sjoin*)(xzk, yid, yu, hash(pair(hash(pair(n1, bsni(*: Un *))),f(*:Private*))), pair(n1, bsni(*: Un *))) in
         (assert(*#Certified(yid,yu)*) |
-        out(c3, bsign(*:Pair(yu : Blind(Private), Ok [*# exists([xid],Certified(xid,yu)) *])*)(pair(yu(*=yu*),ok(*: Ok [*# exists([xid],Certified(xid,yu)) *]*)), ki))
+        out(c3, bsign(*:Pair(yu : Blind(Private), Ok [*# exists([xid],Certified(xid,yu)) *])*)(pair((*=yu*)yu,ok(*: Ok [*# exists([xid],Certified(xid,yu)) *]*)), ki))
         ).
 
@@ -71 +66 @@
         !in(c4, xzks);
         let tttt = ver(*2,4,1,ssign*)(xzks,bvk(ki)) in
-        let xn = fst(tttt) in
-        let ttt = snd(tttt) in
-        let xxi = fst(ttt) in
-        let tt = snd(ttt) in
-        let xm = fst(tt) in
-        let o = snd(tt) in
-        let d = exercise(o) in
+        let (xn, ttt) = tttt in
+        let (xxi, tt) = ttt in
+        let (xm, o) = tt in
         assert(*#Authenticated(xm)*).
 
 process
-        new c2 (*: Ch Pair(yid : Un, Pair(yu : Blind(Private), Ok [*#Join(yid, yu)*] ))*);
-        new bsni (*: Untainted *);
+        new c2 (*: Ch(Pair(yid : Un, Pair(yu : Blind(Private), Ok [*#Join(yid, yu)*])))*);
+        new bsni (*: Un *);
         new daaseed (*: Private *);
         new f (*: Private *); (** cutting corners for now *)

processes/old/proxy.spi

@@ -11 +11 @@
         new song(*:Un*);
         (assume(*#Order(u,song)*) |
-        out(c, sign(pair(song(*=s*),ok(*:Ok[*#Order(u,s)*]*)),ku))).
+        out(c, sign(pair((*=s*)song,ok(*:Ok[*#Order(u,s)*]*)),ku))).
 
 let proxy =
@@ -17 +17 @@
         !in(c,m);
         let p = check(m,vk(ku)) in
-        let s = fst(p) in
-        let o = snd(p) in
-        let d = exercise(o) in
-        out(c, sign(pair(u(*=u1*),pair(s(*=s1*),ok(*:Ok[*#and(Order(u1,s1),Registered(u1))*]*))(*:Pair(s1:Un,Ok[*#and(Order(u1,s1),Registered(u1))*])*)), kp)).
+        let (s, o) = p in
+        out(c, sign(pair((*=u1*)u,pair((*=s1*)s,ok(*:Ok[*#and(Order(u1,s1),Registered(u1))*]*))(*:Pair(s1:Un,Ok[*#and(Order(u1,s1),Registered(u1))*])*)), kp)).
 
 let store =
         !in(c,x);
         let ttt = check(x,vk(kp)) in
-        let u = fst(ttt) in
-        let tt = snd(ttt) in
-        let s = fst(tt) in
-        let o = snd(tt) in
-        let d = exercise(o) in
+        let (u, tt) = ttt in
+        let (s, o) = tt in
         assert(*#CanDownload(u,s)*).
 

processes/old/sign.spi

@@ -8 +8 @@
         in(c, m);
         (assume (*#Good(m)*) |
-        out(c, sign(pair(m(*=x*),ok(*:Ok [*#Good(x)*]*)), ks))
+        out(c, sign(pair((*=x*)m,ok(*:Ok [*#Good(x)*]*)), ks))
         ).
 
@@ -14 +14 @@
         !in(c, y);
         let m = check(y, vk(ks)) in 
-        let z = fst(m) in
-        let p = snd(m) in
-        let dummy = exercise(p) in
+        let (z, p) = m in
         assert (*#Good(z)*).
 
@@ -22 +20 @@
         !in(c, y);
         let m = check(y, vk(ks)) in 
-        let z = fst(m) in
-        let p = snd(m) in
-        let dummy = exercise(p) in
+        let (z, p) = m in
         assert (*#Good(z)*).
 

src/typechecker/parser.mly

@@ -244 +244 @@
         | IDENT LPAREN STAR COLON typedef STAR RPAREN   { Ident($1, Some $5) }
         | PAIR LPAREN LPAREN STAR EQUAL IDENT STAR RPAREN term COMMA term LPAREN STAR COLON typedef STAR RPAREN RPAREN
-                                                                                                                { Pair($9, Some $6, $11, Some($15)) }
-        | PAIR LPAREN LPAREN STAR EQUAL IDENT STAR RPAREN term COMMA term RPAREN { Pair($9, Some $6, $11, None) }
+                                                                                                                { Pair($9, Some $6, $11, Some $15) }
+        | PAIR LPAREN term COMMA term LPAREN STAR COLON typedef STAR RPAREN RPAREN
+                                                                                                                { Pair($3, None, $5, Some $9) }
+        | PAIR LPAREN LPAREN STAR EQUAL IDENT STAR RPAREN term COMMA term RPAREN
+                                                                                                                { Pair($9, Some $6, $11, None) }
+        | PAIR LPAREN term COMMA term RPAREN
+                                                                                                                { Pair($3, None, $5, None) }
         | constr LPAREN STAR COLON typedef STAR RPAREN  { Constr($1, Some $5) }
         | constr                                                                                { Constr($1, None) }