Revisited Convergence of Dolev et al BFS Spanning Tree Algorithm
Karine Altisen, Marius Bozga
TL;DR
The paper tackles the convergence of Dolev et al's BFS spanning tree algorithm under the most general execution model with an unfair daemon. It introduces a novel, constructive convergence proof built around a carefully designed potential function and a structured decomposition of steps, all formalized and certified in the PADEC Coq framework. The authors report a substantial Coq development (about $5{,}155$ lines) and demonstrate that the approach yields a sound constructive termination argument even with unbounded variables. This work not only validates the algorithm under broad conditions but also showcases PADEC's capability to handle complex distributed proofs, with implications for future complexity analyses of self-stabilizing algorithms.
Abstract
We provide a constructive proof for the convergence of Dolev et al's BFS spanning tree algorithm running under the general assumption of an unfair daemon. Already known proofs of this algorithm are either using non-constructive principles (e.g., proofs by contradiction) or are restricted to less general execution daemons (e.g., weakly fair). In this work, we address these limitations by defining the well-founded orders and potential functions ensuring convergence in the general case. The proof has been fully formalized in PADEC, a Coq-based framework for certification of self-stabilization algorithm.