3 Relating Multiparty and Binary Session Type Theories

⎪⎨

⎪⎪

⎩

p!{liUi.Gir}i∈I if r = p p?{liUi.Gir}i∈I if r = q

i∈IGir otherwise ( as in Definition 3)

• (G1| G2)r =

G_ir if r ∈ part(Gi) andr ∈ part(Gj), i = j ∈ {1, 2}

end if r ∈ part(G1) andr ∈ part(G2) When a side condition does not hold, the map is undeﬁned.

Definition 5 (Well-Formed Global Types [12]). Global type G∈ G is well-formed (WF) if for allr ∈ part(G), the projection Gr is deﬁned.

The last notion required in our characterization of multiparty session types as binary sessions is a swapping relation over global types [6], which enables transformations among causally independent communications. Such transfor-mations may represent optimizations that increase parallelism while preserving the intended global behavior.

Definition 6 (Global Swapping). The swapping relationswis the smallest congruence onG which satisﬁes the rules in Fig.3. (The symmetric of ( sw2) is omitted.)

3 Relating Multiparty and Binary Session Type Theories

Our analysis of multiparty protocols as binary sessions relies on the medium process of a global type. Mediums oﬀer a simple device for analyzing global types using the binary session types of [5]. Mediums uniformly capture the sequencing behavior in a global type, for they take part in all message exchanges between local participants.

After defining mediums (Definition 7), we establish their characterization results (Theorems4and5). We then present a process characterization of global swapping (Definition 6) in terms of context bisimilarity (Theorem 6). Subse-quently, we state operational correspondence results (Theorem 7), exploiting the auxiliary notions of instrumented mediums (Definition 10) and multiparty systems (Definition 11). We use the following conventions.

82 L. Caires and J.A. P´erez

Convention 3 (Indexed/Annotated Names). We consider names indexed by participants p, q, . . ., noted cp, c_q, . . . and names annotated by participants, noted k^p, k^q, . . .. Given p = q, indexed names cp and c_q denote two diﬀerent objects; in contrast, annotated names k^p and k^q denote the same name k with diﬀerent annotations. Given a G with part(G) = {p1, . . . ,p_n}, we will write npart(G) to denote the set that contains a unique name cpj for every participant pj of G. We will occasionally use npart(G) as an unordered sequence of names.

Definition 7 (Mediums). The medium of G ∈ G, denoted MG, is deﬁned as follows:

• Mend = 0

• MG1| G2 = MG1 | MG2

• Mpq:{liUi.Gi}i∈I = cp

l_i: c_p(u).c_ql_i; c_q(v).([u↔v] | MGi)

i∈I

The key case is Mp q:{liU_i.G_i}_i∈I: note how the medium uses two preﬁxes (on name c_p) to mediate withp, followed by two preﬁxes (on name cq) to mediate withq. We illustrate mediums by means of an example:

Example 2. The medium process for global type GBSin Example1is:

MGBS = cB1

send : c_B1(v).c_Ssend ; c_S(w).([w↔v] | c_S{rep : cS(v).c_B1rep; c_B1(w).([w↔v] |

c_S{rep : cS(v).c_B2rep; c_B2(w).([w↔v] | c_B1{shr : cB1(v).c_B2shr ; c_B2(w).([w↔v] |

c_B2{ ok : cB2(v).c_Sok ; c_S(w).([w↔v] | 0) ,

quit : c_B2(v).c_Squit ; c_S(w).([w↔v] | 0)})})})}) Intuitively, we expect that (well-typed) process implementations forB1, B2, and S should interact with MGBS through channels cB1, c_B2, and c_S, respectively. We now move on to state our characterization results. We require two auxiliary notions, given next. Below, we sometimes write Γ ; Δ MG instead of Γ ; Δ MG :: z:1, when z ∈ fn(MG).

Definition 8 (Compositional Typing). We say Γ ; Δ MG::z:C is a com-positional typing if: (i) it is a valid typing derivation; (ii) npart(G) ⊆ dom(Δ);

and (iii) C = 1.

A compositional typing says that MG depends on behaviors associated to each participant of G; it also specifies that MG does not offer any behaviors of its own. We relate binary session types and local types: the main difference is that the former do not mention participants. Below, B ranges over base types (bool, nat, . . .) in Definition2.

Definition 9 (Local Types → Binary Types). Mapping · from local types T (Definition 2) into binary types A (Definition 1) is inductively defined asend = B = 1 and

p!{liUi.Ti}i∈I = ⊕{li:Ui ⊗ Ti}i∈I

p?{l_iU_i.T_i}_i∈I = {l_i:U_i T_i}_i∈I.

3.1 Characterization Results

Our characterization results relate process MG (well-typed with a composi-tional typing) and G p1, . . . , G p_n (i.e., the local types of G transformed into binary session types via Definition 9). Our characterization results are in two directions, given by Theorems 4 and 5. The first direction says that well-formedness of global types (Definition5) ensures compositional typings for medi-ums with (logic based) binary session types:

Theorem 4 (Global Types → Typed Mediums). Let G ∈ G. If G is WF with part(G) = {p1, . . . ,p_n} then Γ ; cp1:G p1, . . . , cpn:G p_n MG is a compositional typing, for some Γ .

The second direction of the characterization is the converse of Theorem4: com-positional typings for mediums induce global types which are WF. Given local types T1, T2, below we write T1 T2 if there exists a local type T such that T1 T = T2 (cf. Deﬁnition 3). This notation allows us to handle the labeled alternatives silently introduced by rule (TL2).

Theorem 5 (Well-Typed Mediums → Global Types). Let G ∈ G. If Γ ; c_p₁:A₁, . . . , c_p_n:A_n MG is a compositional typing then ∃T1, . . . , T_n such that Gp_jT_j andT_j = A_j, for allp_j∈ part(G).

Theorems4and5tightly connect (i) global types, local types and projection, and (ii) medium processes, and logic-based binary session types. They also provide an independent deep justiﬁcation, through purely logical arguments, to the notion of projection.

3.2 A Behavioral Characterization of Global Swapping

Global swapping (Deﬁnition6, Fig.3) can be directly justiﬁed from more prim-itive notions, based on the characterizations given by Theorems 4 and 5. By abstracting a global type’s behavior in terms of its medium we may reduce trans-formations on global types to type-preserving transtrans-formations on processes. This is the content of Theorem 6 below, which connects global swapping (sw) and context bisimilarity (≈). Hence, sequentiality of mediums can be relaxed in the case of causally independent exchanges captured by sw.

Theorem 6. Let G1 ∈ G such that MG1 has a compositional typing Γ ; Δ MG1, for some Γ, Δ. If G1swG2 then Γ ; Δ MG1 ≈ MG2.

Since MG is a low-level representation of G, the converse of Theorem6 is less interesting, for type-preserving transformations at the (low) level of mediums do not always correspond to behavior-preserving transformations at the (high) level of global types. That is, since MG implements each communication in G using several preﬁxes, swapping in G occurs only when all relevant preﬁxes in MG can be commuted via c.

84 L. Caires and J.A. P´erez

3.3 Operational Correspondence Results

The results given so far focus on the static semantics of multiparty and binary systems, and are already key to justify essential properties such as absence of global deadlock. We now move on to dynamic semantics, and establish oper-ational correspondence results between a global type and its medium process (Theorem7).

We deﬁne the instrumented medium of a global type G, denoted M_kG, as a natural extension of Deﬁnition7. Process M_kG exploits fresh sessions (denoted

k), to emit a visible signal for each action of G. We use k as annotated names (cf. Convention3): each action on a k_i contains the identity of the participant of G which performs it. Then, using M_kG we define the set of systems associated to G (Definition 11), which collects process implementations for G mediated by M_kG. Since interactions between local implementations and M_kG are unobservable actions, Theorem 7 connects (i) the visible behavior of a system along annotated names k, and (ii) the visible behavior of G, defined by an LTS on global types (a variant of that in [12]). Below, k^p.P stands for k^p(x).P when x is not relevant in P . Also, k^p.P stands for k^p(v).(0| P ) for some v.

Definition 10 (Instrumented Mediums). Let k be fresh, annotated names.

The instrumented medium of G∈ G with respect to k, denoted M_kG, is deﬁned as follows:

• Mkend = 0

• Mk1,k2G1| G2 = Mk1G1 | Mk2G2

• Mkpq:{liUi.Gi}i∈I = c_p

l_i : k^pl_i; c_p(u). k^p.

c_q l_i; k^q {li: c_q(v).([u↔v] | k^q.M_kGi)}_{i}

i∈I

The key case is M_kp q:{liUi.Gi}i∈I. Each action of the multiparty exchange is “echoed” by an action on annotated name k: the selection of label l_i byp is followed by prefix k^p l_i; the output fromp (captured by the medium by the input c_p(u)) is echoed by prefix k^p. This way, the instrumented process M_kG induces a fine-grained correspondence with G, exploiting process actions with explicit participant identities.

To state our operational correspondence result, we introduce extended global types and a labeled transition system (LTS) for (extended) global types. The syntax of extended global types is deﬁned as G ::= G

|

^G1| G2with

G ::=end

|

pq:{liUi.Gi}i∈I

|

pq: lU.G

|

pq: l((U)).G

|

pq: ((U)).G We consider parallel composition of sequential global types. We also have three auxiliary forms for global types, denoted with : they represent intermediate steps. Types p q: lU.G and p q: l((U)).G denote the commitment of p to output and input along label l , resp. Type p q: ((U)).G represents the state just before the actual input action by q. We need the expected extension of Deﬁnition10for these types.

p q:{li Ui .Gi}i∈I p l_j

−−−→ p q: lj Uj .Gj (j ∈ I) p q: l U .G−→ p^p q: l ((U )).G p q: l ((U )).G−−→ p^{q l} q: ((U )).G p q: ((U )).G−→ G^q

Fig. 4. LTS over ﬁnite, extended global types (Excerpt).

We adapt the LTS in [12] to the case of (extended) global types. The set of observables is σ ::= p

|

p l

|

p l. Below, psubj(σ) denotes the partic-ipant in σ. This way, e.g., psubj(p l) = p. The LTS over global types, noted G−→ G^σ , is defined by rules including those in Fig.4. Since Definition10 anno-tates prefixes on k with participant identities, their associated actions will be annotated too; given a participantp, we may define the set of annotated visible actions as: λ^p::= k^p(y)

|

^k^p^l

|

^k^p^y

|

^k^p^(y)

|

^k^pl . We write k^pand k^pto denote actions k^p(y) and k^p(y), resp., whenever object y is unimportant. Also, psubj(λ^p) denotes the participantp which annotates λ. This way, e.g., psubj(k^p) =p and psubj(k^ql ) =q. To relate labels for global types and process labels, given an annotated name k, we deﬁne mappings {{·}}^k and|| · || as follows:

{{p}}^k= k^p {{p l}}^k = k^pl {{p }}^k = k^p {{ p l }}^k= k^pl

||k^p|| = p ||k^pl|| = p l || k^p|| = p || k^pl|| = p l

Operational correspondence is stated in terms of the multiparty systems of a global type. Following Deﬁnition 8, we say that Γ ; Δ, Δ M_kG :: z:C is an instrumented compositional typing if (i) it is a valid typing derivation;

(ii) npart(G) ⊆ dom(Δ); (iii) C = 1; (iv) dom(Δ) = k:

Definition 11 (Systems). Let G ∈ G be a WF global type, with part(G) = {p1, . . . ,p_n}. Also, let Γ ; Δ, Δ M_kG be an instrumented compositional typ-ing, with Δ = c_p₁:Gp1, . . . , cpn:Gp_n, for some Γ . Let z = npart(G). The set of systems of G is deﬁned as:

S_k(G) =

(νz)(Q1|· · ·| Qn| M_kG)

|

·; · Qj :: c_p_j:Gpj, j ∈ 1 . . . n Thus, given G, a multiparty system is obtained by composing M_kG with well-typed implementations for each of the local projections of G. An R∈ S_k(G) is an implementation of the multiparty protocol G. By construction, its only visible actions are on annotated names: interactions between all the Q_jand M_kG will be unobservable.

Theorem7below connects global types and systems: it conﬁrms that (instru-mented) medium processes faithfully mirror the communicating behavior of extended global types. Below, we write G−−−→ G^σ[p] if G−→ G^σ and psubj(σ) =p.

Also, we write P −−−→ P^λ[p] (resp. P =^λ[p]⇒ P) if P −→ P^λ (resp. P =^λ⇒ P) holds and psubj(λ) =p.

86 L. Caires and J.A. P´erez

Theorem 7 (Operational Correspondence). Let G be an extended WF global type and R ∈ S_k(G). We have: If G −−−→ G^σ[p] then R=^λ[p]⇒ R, for some λ, R, k∈ k such that λ = {{σ}}^k and R∈ S_k(G). Moreover, if there is some R0

s.t. R =⇒ R0

−−−→ Rλ[p] then G−−−→ G^σ[p] , for some σ, G such that σ =||λ|| and R∈ S_k(G).

In document Formal Techniques for Distributed Objects, Components, and Systems (Page 95-100)