Composing TLA+ Specifications with State Machines

Hillel Wayne·Hillel Wayne·Tech·

Last year a client asked me to solve a problem: they wanted to be able to compose two large TLA+ specs as part of a larger system. Normally you’re not supposed to do this and instead write one large spec with both systems hardcoded in, but these specs were enormous and had many internal invariants of their own. They needed a way to develop the two specs independently and then integrate them with minimal overhead. This is what I came up with. Warning: this is a complex solution is aimed at advanc...

Read full article →

Related Articles

Show HN: Tilde.run – Agent sandbox with a transactional, versioned filesystem
ozkatz · Hacker News · 2d ago
Computer Use is 45x more expensive than structured APIs
palashawas · Hacker News · 3d ago
Bun is being ported from Zig to Rust
SergeAx · Hacker News · 4d ago
Reverse-engineering the 1998 Ultima Online demo server
notsentient · Hacker News · 2d ago
RaTeX: KaTeX-compatible LaTeX rendering engine in pure Rust
atilimcetin · Hacker News · 4d ago