This package contains the verified implementation of the SCION protocol, a future Internet architecture. SCION is the first clean-slate Internet architecture designed to provide route control, failure isolation, and explicit trust information for end-to-end communication.
To find out more about the project, please visit the official project page.
We focus on verifying the main implementation of SCION, written in the Go programming language.
To that end, we have developed Gobra, a program verifier for Go. Gobra allows users to annotate Go code with specifications in the form of logical assertions establishing the behaviour of the program. It then automatically checks whether the implementation matches its given specification.
Initially, we aim at verifying the dataplane component of the SCION border router. We established the following milestones that we will achieve in the process:
- verify memory safety, crash freedom, and race-freedom of the SCION dataplane code
- prove progress properties of the dataplane code
- prove that the IO behaviour of the router matches the protocol description
When necessary, we make reasonable assumptions and explicitly state them.
The repository contains two main directories:
go/contains the original code on which the verified version is based (commitae63a60fe8ade106230f20a6e6eb086529f7a2e0from the SCION repository)gobra/contains the verified version of the code using Gobra
Observations
- The package structure of
gobra/directly mimics the one ofgo/ - The code available in
gobra/does not contain a complete verified version of the one available ingo/. Instead, it contains only the code required to verify the dataplane of the border router. This is to be expected, given that this is an ongoing project.
