Example 1 with PathRegexes
use of org.batfish.symbolic.utils.PathRegexes in project batfish by batfish.
the class PropertyChecker method checkProperty.
/*
* General purpose logic for checking a property that holds that
* handles the various flags and parameters for a query with endpoints
*
* q is the question from the user.
* instrument instruments each router in the graph as needed to check the property.
* answer takes the result from Z3 and produces the answer for the user.
*
*/
private AnswerElement checkProperty(HeaderLocationQuestion q, TriFunction<Encoder, Set<String>, Set<GraphEdge>, Map<String, BoolExpr>> instrument, Function<VerifyParam, AnswerElement> answer) {
long totalTime = System.currentTimeMillis();
PathRegexes p = new PathRegexes(q);
Graph graph = new Graph(_batfish);
Set<GraphEdge> destPorts = findFinalInterfaces(graph, p);
List<String> sourceRouters = PatternUtils.findMatchingSourceNodes(graph, p);
if (destPorts.isEmpty()) {
throw new BatfishException("Set of valid destination interfaces is empty");
}
if (sourceRouters.isEmpty()) {
throw new BatfishException("Set of valid ingress nodes is empty");
}
inferDestinationHeaderSpace(graph, destPorts, q);
Set<GraphEdge> failOptions = failLinkSet(graph, q);
Tuple<Stream<Supplier<NetworkSlice>>, Long> ecs = findAllNetworkSlices(q, graph, true);
Stream<Supplier<NetworkSlice>> stream = ecs.getFirst();
Long timeAbstraction = ecs.getSecond();
AnswerElement[] answerElement = new AnswerElement[1];
VerificationResult[] result = new VerificationResult[2];
List<VerificationStats> ecStats = new ArrayList<>();
// Checks ECs in parallel, but short circuits when a counterexample is found
boolean hasCounterExample = stream.anyMatch(lazyEc -> {
long timeEc = System.currentTimeMillis();
NetworkSlice slice = lazyEc.get();
timeEc = System.currentTimeMillis() - timeEc;
synchronized (_lock) {
// Make sure the headerspace is correct
HeaderLocationQuestion question = new HeaderLocationQuestion(q);
question.setHeaderSpace(slice.getHeaderSpace());
// Get the EC graph and mapping
Graph g = slice.getGraph();
Set<String> srcRouters = mapConcreteToAbstract(slice, sourceRouters);
long timeEncoding = System.currentTimeMillis();
Encoder enc = new Encoder(_settings, g, question);
enc.computeEncoding();
timeEncoding = System.currentTimeMillis() - timeEncoding;
// Add environment constraints for base case
if (question.getDiffType() != null) {
if (question.getEnvDiff()) {
addEnvironmentConstraints(enc, question.getDeltaEnvironmentType());
}
} else {
addEnvironmentConstraints(enc, question.getBaseEnvironmentType());
}
Map<String, BoolExpr> prop = instrument.apply(enc, srcRouters, destPorts);
// If this is a equivalence query, we create a second copy of the network
Encoder enc2 = null;
Map<String, BoolExpr> prop2 = null;
if (question.getDiffType() != null) {
HeaderLocationQuestion q2 = new HeaderLocationQuestion(question);
q2.setFailures(0);
long timeDiffEncoding = System.currentTimeMillis();
enc2 = new Encoder(enc, g, q2);
enc2.computeEncoding();
timeDiffEncoding = System.currentTimeMillis() - timeDiffEncoding;
timeEncoding += timeDiffEncoding;
}
if (question.getDiffType() != null) {
assert (enc2 != null);
// create a map for enc2 to lookup a related environment variable from enc
Table2<GraphEdge, EdgeType, SymbolicRoute> relatedEnv = new Table2<>();
enc2.getMainSlice().getLogicalGraph().getEnvironmentVars().forEach((lge, r) -> relatedEnv.put(lge.getEdge(), lge.getEdgeType(), r));
BoolExpr related = enc.mkTrue();
addEnvironmentConstraints(enc2, question.getBaseEnvironmentType());
if (!question.getEnvDiff()) {
related = relateEnvironments(enc, enc2);
}
prop2 = instrument.apply(enc2, srcRouters, destPorts);
// Add diff constraints
BoolExpr required = enc.mkTrue();
for (String source : srcRouters) {
BoolExpr sourceProp1 = prop.get(source);
BoolExpr sourceProp2 = prop2.get(source);
BoolExpr val;
switch(q.getDiffType()) {
case INCREASED:
val = enc.mkImplies(sourceProp1, sourceProp2);
break;
case REDUCED:
val = enc.mkImplies(sourceProp2, sourceProp1);
break;
case ANY:
val = enc.mkEq(sourceProp1, sourceProp2);
break;
default:
throw new BatfishException("Missing case: " + q.getDiffType());
}
required = enc.mkAnd(required, val);
}
related = enc.mkAnd(related, relatePackets(enc, enc2));
enc.add(related);
enc.add(enc.mkNot(required));
} else {
// Not a differential query; just a query on a single version of the network.
BoolExpr allProp = enc.mkTrue();
for (String router : srcRouters) {
BoolExpr r = prop.get(router);
if (q.getNegate()) {
r = enc.mkNot(r);
}
allProp = enc.mkAnd(allProp, r);
}
enc.add(enc.mkNot(allProp));
}
addFailureConstraints(enc, destPorts, failOptions);
Tuple<VerificationResult, Model> tup = enc.verify();
VerificationResult res = tup.getFirst();
Model model = tup.getSecond();
if (q.getBenchmark()) {
VerificationStats stats = res.getStats();
stats.setAvgComputeEcTime(timeEc);
stats.setMaxComputeEcTime(timeEc);
stats.setMinComputeEcTime(timeEc);
stats.setAvgEncodingTime(timeEncoding);
stats.setMaxEncodingTime(timeEncoding);
stats.setMinEncodingTime(timeEncoding);
stats.setTimeCreateBdds((double) timeAbstraction);
synchronized (_lock) {
ecStats.add(stats);
}
}
if (!res.isVerified()) {
VerifyParam vp = new VerifyParam(res, model, srcRouters, enc, enc2, prop, prop2);
AnswerElement ae = answer.apply(vp);
synchronized (_lock) {
answerElement[0] = ae;
result[0] = res;
}
return true;
}
synchronized (_lock) {
result[1] = res;
}
return false;
}
});
totalTime = (System.currentTimeMillis() - totalTime);
VerificationResult res;
AnswerElement ae;
if (hasCounterExample) {
res = result[0];
ae = answerElement[0];
} else {
res = result[1];
VerifyParam vp = new VerifyParam(res, null, null, null, null, null, null);
ae = answer.apply(vp);
}
if (q.getBenchmark()) {
VerificationStats stats = VerificationStats.combineAll(ecStats, totalTime);
res.setStats(stats);
}
return ae;
}
Also used :
BoolExpr(com.microsoft.z3.BoolExpr)
HeaderLocationQuestion(org.batfish.datamodel.questions.smt.HeaderLocationQuestion)
ArrayList(java.util.ArrayList)
PathRegexes(org.batfish.symbolic.utils.PathRegexes)
NetworkSlice(org.batfish.symbolic.abstraction.NetworkSlice)
Table2(org.batfish.symbolic.collections.Table2)
Stream(java.util.stream.Stream)
Supplier(java.util.function.Supplier)
BatfishException(org.batfish.common.BatfishException)
SmtOneAnswerElement(org.batfish.symbolic.answers.SmtOneAnswerElement)
SmtDeterminismAnswerElement(org.batfish.symbolic.answers.SmtDeterminismAnswerElement)
SmtReachabilityAnswerElement(org.batfish.symbolic.answers.SmtReachabilityAnswerElement)
AnswerElement(org.batfish.datamodel.answers.AnswerElement)
SmtManyAnswerElement(org.batfish.symbolic.answers.SmtManyAnswerElement)
Graph(org.batfish.symbolic.Graph)
Model(com.microsoft.z3.Model)
GraphEdge(org.batfish.symbolic.GraphEdge)
Example 2 with PathRegexes
use of org.batfish.symbolic.utils.PathRegexes in project batfish by batfish.
the class PropertyChecker method checkMultipathConsistency.
/*
* Computes multipath consistency, which ensures traffic that travels
* multiple paths will be treated equivalently by each path
* (i.e., dropped or accepted by each).
*/
public AnswerElement checkMultipathConsistency(HeaderLocationQuestion q) {
if (q.getNegate()) {
throw new BatfishException("Negation not implemented for smt-multipath-consistency.");
}
PathRegexes p = new PathRegexes(q);
Graph graph = new Graph(_batfish);
Set<GraphEdge> destPorts = findFinalInterfaces(graph, p);
inferDestinationHeaderSpace(graph, destPorts, q);
Encoder enc = new Encoder(_settings, graph, q);
enc.computeEncoding();
EncoderSlice slice = enc.getMainSlice();
PropertyAdder pa = new PropertyAdder(slice);
Map<String, BoolExpr> reachableVars = pa.instrumentReachability(destPorts);
BoolExpr acc = enc.mkFalse();
for (Map.Entry<String, Configuration> entry : graph.getConfigurations().entrySet()) {
String router = entry.getKey();
BoolExpr reach = reachableVars.get(router);
BoolExpr all = enc.mkTrue();
for (GraphEdge edge : graph.getEdgeMap().get(router)) {
BoolExpr dataFwd = slice.getForwardsAcross().get(router, edge);
BoolExpr ctrFwd = slice.getSymbolicDecisions().getControlForwarding().get(router, edge);
assert (ctrFwd != null);
BoolExpr peerReach = enc.mkTrue();
if (edge.getPeer() != null) {
peerReach = reachableVars.get(edge.getPeer());
}
BoolExpr imp = enc.mkImplies(ctrFwd, enc.mkAnd(dataFwd, peerReach));
all = enc.mkAnd(all, imp);
}
acc = enc.mkOr(acc, enc.mkNot(enc.mkImplies(reach, all)));
}
enc.add(acc);
VerificationResult res = enc.verify().getFirst();
return new SmtOneAnswerElement(res);
}
Also used :
BatfishException(org.batfish.common.BatfishException)
BoolExpr(com.microsoft.z3.BoolExpr)
Configuration(org.batfish.datamodel.Configuration)
SmtOneAnswerElement(org.batfish.symbolic.answers.SmtOneAnswerElement)
PathRegexes(org.batfish.symbolic.utils.PathRegexes)
Graph(org.batfish.symbolic.Graph)
GraphEdge(org.batfish.symbolic.GraphEdge)
Map(java.util.Map)
EnumMap(java.util.EnumMap)
SortedMap(java.util.SortedMap)
HashMap(java.util.HashMap)
TreeMap(java.util.TreeMap)
Aggregations
BoolExpr (com.microsoft.z3.BoolExpr)2
BatfishException (org.batfish.common.BatfishException)2
Graph (org.batfish.symbolic.Graph)2
GraphEdge (org.batfish.symbolic.GraphEdge)2
SmtOneAnswerElement (org.batfish.symbolic.answers.SmtOneAnswerElement)2
PathRegexes (org.batfish.symbolic.utils.PathRegexes)2
Model (com.microsoft.z3.Model)1
ArrayList (java.util.ArrayList)1
EnumMap (java.util.EnumMap)1
HashMap (java.util.HashMap)1
Map (java.util.Map)1
SortedMap (java.util.SortedMap)1
TreeMap (java.util.TreeMap)1
Supplier (java.util.function.Supplier)1
Stream (java.util.stream.Stream)1
Configuration (org.batfish.datamodel.Configuration)1
AnswerElement (org.batfish.datamodel.answers.AnswerElement)1
HeaderLocationQuestion (org.batfish.datamodel.questions.smt.HeaderLocationQuestion)1
NetworkSlice (org.batfish.symbolic.abstraction.NetworkSlice)1
SmtDeterminismAnswerElement (org.batfish.symbolic.answers.SmtDeterminismAnswerElement)1
