Theory NodeClass

(***********************************************************************************
 * Copyright (c) 2016-2018 The University of Sheffield, UK
 *
 * All rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions are met:
 *
 * * Redistributions of source code must retain the above copyright notice, this
 *   list of conditions and the following disclaimer.
 *
 * * Redistributions in binary form must reproduce the above copyright notice,
 *   this list of conditions and the following disclaimer in the documentation
 *   and/or other materials provided with the distribution.
 *
 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
 * DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
 * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
 * CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
 * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 * 
 * SPDX-License-Identifier: BSD-2-Clause
 ***********************************************************************************)


section‹Node›
text‹In this theory, we introduce the types for the Node class.›

theory NodeClass
  imports
    ObjectClass
    "../pointers/NodePointer"
begin

subsubsection‹Node›

record RNode = RObject
  + nothing :: unit
register_default_tvars "'Node RNode_ext" 
type_synonym 'Node Node = "'Node RNode_scheme"
register_default_tvars "'Node Node" 
type_synonym ('Object, 'Node) Object = "('Node RNode_ext + 'Object) Object"
register_default_tvars "('Object, 'Node) Object" 

type_synonym ('object_ptr, 'node_ptr, 'Object, 'Node) heap
  = "('node_ptr node_ptr + 'object_ptr, 'Node RNode_ext + 'Object) heap"
register_default_tvars
  "('object_ptr, 'node_ptr, 'Object, 'Node) heap" 
type_synonym heap⇩_f⇩_i⇩_n⇩_a⇩_l = "(unit, unit, unit, unit) heap"


definition node_ptr_kinds :: "(_) heap ⇒ (_) node_ptr fset"
  where
    "node_ptr_kinds heap = 
    (the |`| (cast⇩_o⇩_b⇩_j⇩_e⇩_c⇩_t⇩_{_}⇩_p⇩_t⇩_r⇩₂⇩_n⇩_o⇩_d⇩_e⇩_{_}⇩_p⇩_t⇩_r |`| (ffilter is_node_ptr_kind (object_ptr_kinds heap))))"

lemma node_ptr_kinds_simp [simp]: 
  "node_ptr_kinds (Heap (fmupd (cast node_ptr) node (the_heap h))) 
       = {|node_ptr|} |∪| node_ptr_kinds h"
  by (auto simp add: node_ptr_kinds_def)

definition cast⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t⇩₂⇩_N⇩_o⇩_d⇩_e :: "(_) Object ⇒ (_) Node option"
  where
    "cast⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t⇩₂⇩_N⇩_o⇩_d⇩_e obj = (case RObject.more obj of Inl node 
    ⇒ Some (RObject.extend (RObject.truncate obj) node) | _ ⇒ None)"
adhoc_overloading cast cast⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t⇩₂⇩_N⇩_o⇩_d⇩_e

definition cast⇩_N⇩_o⇩_d⇩_e⇩₂⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t:: "(_) Node ⇒ (_) Object"
  where
    "cast⇩_N⇩_o⇩_d⇩_e⇩₂⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t node = (RObject.extend (RObject.truncate node) (Inl (RObject.more node)))"
adhoc_overloading cast cast⇩_N⇩_o⇩_d⇩_e⇩₂⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t

definition is_node_kind :: "(_) Object ⇒ bool"
  where
    "is_node_kind ptr ⟷ cast⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t⇩₂⇩_N⇩_o⇩_d⇩_e ptr ≠ None"

definition get⇩_N⇩_o⇩_d⇩_e :: "(_) node_ptr ⇒ (_) heap ⇒ (_) Node option"
  where                             
    "get⇩_N⇩_o⇩_d⇩_e node_ptr h = Option.bind (get (cast node_ptr) h) cast"
adhoc_overloading get get⇩_N⇩_o⇩_d⇩_e

locale l_type_wf_def⇩_N⇩_o⇩_d⇩_e
begin
definition a_type_wf :: "(_) heap ⇒ bool"
  where
    "a_type_wf h = (ObjectClass.type_wf h 
                    ∧ (∀node_ptr ∈ fset( node_ptr_kinds h). get⇩_N⇩_o⇩_d⇩_e node_ptr h ≠ None))"
end
global_interpretation l_type_wf_def⇩_N⇩_o⇩_d⇩_e defines type_wf = a_type_wf .
lemmas type_wf_defs = a_type_wf_def

locale l_type_wf⇩_N⇩_o⇩_d⇩_e = l_type_wf type_wf for type_wf :: "((_) heap ⇒ bool)" +
  assumes type_wf⇩_N⇩_o⇩_d⇩_e: "type_wf h ⟹ NodeClass.type_wf h"

sublocale l_type_wf⇩_N⇩_o⇩_d⇩_e ⊆ l_type_wf⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t
  apply(unfold_locales)
  using ObjectClass.a_type_wf_def by auto

locale l_get⇩_N⇩_o⇩_d⇩_e_lemmas = l_type_wf⇩_N⇩_o⇩_d⇩_e
begin
sublocale l_get⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t_lemmas by unfold_locales
lemma get⇩_N⇩_o⇩_d⇩_e_type_wf:
  assumes "type_wf h"
  shows "node_ptr |∈| node_ptr_kinds h ⟷ get⇩_N⇩_o⇩_d⇩_e node_ptr h ≠ None"
  using l_type_wf⇩_N⇩_o⇩_d⇩_e_axioms assms
  apply(simp add: type_wf_defs get⇩_N⇩_o⇩_d⇩_e_def l_type_wf⇩_N⇩_o⇩_d⇩_e_def)
  by (metis bind_eq_None_conv ffmember_filter fimage_eqI is_node_ptr_kind_cast 
            get⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t_type_wf node_ptr_casts_commute2 node_ptr_kinds_def option.sel option.simps(3))
end

global_interpretation l_get⇩_N⇩_o⇩_d⇩_e_lemmas type_wf
  by unfold_locales

definition put⇩_N⇩_o⇩_d⇩_e :: "(_) node_ptr ⇒ (_) Node ⇒ (_) heap ⇒ (_) heap"
  where
    "put⇩_N⇩_o⇩_d⇩_e node_ptr node = put (cast node_ptr) (cast node)"
adhoc_overloading put put⇩_N⇩_o⇩_d⇩_e

lemma put⇩_N⇩_o⇩_d⇩_e_ptr_in_heap:
  assumes "put⇩_N⇩_o⇩_d⇩_e node_ptr node h = h'"
  shows "node_ptr |∈| node_ptr_kinds h'"
  using assms
  unfolding put⇩_N⇩_o⇩_d⇩_e_def node_ptr_kinds_def
  by (metis ffmember_filter fimage_eqI is_node_ptr_kind_cast node_ptr_casts_commute2 
      option.sel put⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t_ptr_in_heap)

lemma put⇩_N⇩_o⇩_d⇩_e_put_ptrs:
  assumes "put⇩_N⇩_o⇩_d⇩_e node_ptr node h = h'"
  shows "object_ptr_kinds h' = object_ptr_kinds h |∪| {|cast node_ptr|}"
  using assms
  by (simp add: put⇩_N⇩_o⇩_d⇩_e_def put⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t_put_ptrs)

lemma node_ptr_kinds_commutes [simp]: 
  "cast node_ptr |∈| object_ptr_kinds h ⟷ node_ptr |∈| node_ptr_kinds h"
proof (rule iffI)
  show "cast node_ptr |∈| object_ptr_kinds h ⟹ node_ptr |∈| node_ptr_kinds h"
    by (metis ffmember_filter fimage.rep_eq image_eqI is_node_ptr_kind_cast node_ptr_casts_commute2
        node_ptr_kinds_def option.sel)
next
  show "node_ptr |∈| node_ptr_kinds h ⟹ cast node_ptr |∈| object_ptr_kinds h"
    by (auto simp: node_ptr_kinds_def)
qed

lemma node_empty [simp]: 
  "⦇RObject.nothing = (), RNode.nothing = (), … = RNode.more node⦈ = node"
  by simp

lemma cast⇩_N⇩_o⇩_d⇩_e⇩₂⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t_inject [simp]: "cast⇩_N⇩_o⇩_d⇩_e⇩₂⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t x = cast⇩_N⇩_o⇩_d⇩_e⇩₂⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t y ⟷ x = y"
  apply(simp add: cast⇩_N⇩_o⇩_d⇩_e⇩₂⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t_def RObject.extend_def)
  by (metis (full_types) RObject.surjective old.unit.exhaust)

lemma cast⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t⇩₂⇩_N⇩_o⇩_d⇩_e_none [simp]: 
  "cast⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t⇩₂⇩_N⇩_o⇩_d⇩_e obj = None ⟷ ¬ (∃node. cast⇩_N⇩_o⇩_d⇩_e⇩₂⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t node = obj)"
  apply(auto simp add: cast⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t⇩₂⇩_N⇩_o⇩_d⇩_e_def cast⇩_N⇩_o⇩_d⇩_e⇩₂⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t_def RObject.extend_def split: sum.splits)[1]
  by (metis (full_types) RObject.select_convs(2) RObject.surjective old.unit.exhaust)

lemma cast⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t⇩₂⇩_N⇩_o⇩_d⇩_e_some [simp]: "cast⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t⇩₂⇩_N⇩_o⇩_d⇩_e obj = Some node ⟷ cast node = obj"
  by(auto simp add: cast⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t⇩₂⇩_N⇩_o⇩_d⇩_e_def cast⇩_N⇩_o⇩_d⇩_e⇩₂⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t_def RObject.extend_def split: sum.splits)

lemma cast⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t⇩₂⇩_N⇩_o⇩_d⇩_e_inv [simp]: "cast⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t⇩₂⇩_N⇩_o⇩_d⇩_e (cast⇩_N⇩_o⇩_d⇩_e⇩₂⇩_O⇩_b⇩_j⇩_e⇩_c⇩_t node) = Some node"
  by simp

locale l_known_ptr⇩_N⇩_o⇩_d⇩_e
begin
definition a_known_ptr :: "(_) object_ptr ⇒ bool"
  where
    "a_known_ptr ptr = False"
end
global_interpretation l_known_ptr⇩_N⇩_o⇩_d⇩_e defines known_ptr = a_known_ptr .
lemmas known_ptr_defs = a_known_ptr_def


locale l_known_ptrs⇩_N⇩_o⇩_d⇩_e = l_known_ptr known_ptr for known_ptr :: "(_) object_ptr ⇒ bool"
begin
definition a_known_ptrs :: "(_) heap ⇒ bool"
  where
    "a_known_ptrs h = (∀ptr ∈ fset (object_ptr_kinds h). known_ptr ptr)"

lemma known_ptrs_known_ptr: "a_known_ptrs h ⟹ ptr |∈| object_ptr_kinds h ⟹ known_ptr ptr"
  by (simp add: a_known_ptrs_def)

lemma known_ptrs_preserved:
  "object_ptr_kinds h = object_ptr_kinds h' ⟹ a_known_ptrs h = a_known_ptrs h'"
  by(auto simp add: a_known_ptrs_def)
lemma known_ptrs_subset:
  "object_ptr_kinds h' |⊆| object_ptr_kinds h ⟹ a_known_ptrs h ⟹ a_known_ptrs h'"
  by(simp add: a_known_ptrs_def less_eq_fset.rep_eq subsetD)
lemma known_ptrs_new_ptr:
  "object_ptr_kinds h' = object_ptr_kinds h |∪| {|new_ptr|} ⟹ known_ptr new_ptr ⟹
a_known_ptrs h ⟹ a_known_ptrs h'"
  by(simp add: a_known_ptrs_def)
end
global_interpretation l_known_ptrs⇩_N⇩_o⇩_d⇩_e known_ptr defines known_ptrs = a_known_ptrs .
lemmas known_ptrs_defs = a_known_ptrs_def

lemma known_ptrs_is_l_known_ptrs: "l_known_ptrs known_ptr known_ptrs"
  using known_ptrs_known_ptr known_ptrs_preserved l_known_ptrs_def known_ptrs_subset
    known_ptrs_new_ptr
  by blast

lemma get_node_ptr_simp1 [simp]: "get⇩_N⇩_o⇩_d⇩_e node_ptr (put⇩_N⇩_o⇩_d⇩_e node_ptr node h) = Some node"
  by(auto simp add: get⇩_N⇩_o⇩_d⇩_e_def put⇩_N⇩_o⇩_d⇩_e_def)
lemma get_node_ptr_simp2 [simp]: 
  "node_ptr ≠ node_ptr' ⟹ get⇩_N⇩_o⇩_d⇩_e node_ptr (put⇩_N⇩_o⇩_d⇩_e node_ptr' node h) = get⇩_N⇩_o⇩_d⇩_e node_ptr h"
  by(auto simp add: get⇩_N⇩_o⇩_d⇩_e_def put⇩_N⇩_o⇩_d⇩_e_def)

end