| products/sources/formale Sprachen/Isabelle/HOL/TLA/Memory/ |
|
Quellcode-Bibliothek© Kompilation durch diese Firma[Weder Korrektheit noch Funktionsfähigkeit der Software werden zugesichert.]Datei: RPC.thy Sprache: IsabelleOriginal von: Isabelle© |
|
||||||
|
(* Title: HOL/TLA/Memory/RPC.thy
Author: Stephan Merz, University of Munich *) section \<open>RPC-Memory example: RPC specification\<close> theory RPC imports RPCParameters ProcedureInterface Memory begin type_synonym rpcSndChType = "(rpcOp,Vals) channel" type_synonym rpcRcvChType = "memChType" type_synonym rpcStType = "(PrIds \ (* state predicates *) definition RPCInit :: "rpcRcvChType \ where "RPCInit rcv rst p == PRED ((rst!p = #rpcA) \ (* actions *) definition RPCFwd :: "rpcSndChType \ where "RPCFwd send rcv rst p == ACT $(Calling send p) \<and> $(rst!p) = # rpcA \<and> IsLegalRcvArg<arg<$(send!p)>> \<and> Call rcv p RPCRelayArg<arg<send!p>> \<and> (rst!p)$ = # rpcB \<and> unchanged (rtrner send!p)" definition RPCReject :: "rpcSndChType \ where "RPCReject send rcv rst p == ACT $(rst!p) = # rpcA \<and> \<not>IsLegalRcvArg<arg<$(send!p)>> \<and> Return send p #BadCall \<and> unchanged ((rst!p), (caller rcv!p))" definition RPCFail :: "rpcSndChType \ where "RPCFail send rcv rst p == ACT \<not>$(Calling rcv p) \<and> Return send p #RPCFailure \<and> (rst!p)$ = #rpcA \<and> unchanged (caller rcv!p)" definition RPCReply :: "rpcSndChType \ where "RPCReply send rcv rst p == ACT \<not>$(Calling rcv p) \<and> $(rst!p) = #rpcB \<and> Return send p res<rcv!p> \<and> (rst!p)$ = #rpcA \<and> unchanged (caller rcv!p)" definition RPCNext :: "rpcSndChType \ where "RPCNext send rcv rst p == ACT ( RPCFwd send rcv rst p \<or> RPCReject send rcv rst p \<or> RPCFail send rcv rst p \<or> RPCReply send rcv rst p)" (* temporal *) definition RPCIPSpec :: "rpcSndChType \ where "RPCIPSpec send rcv rst p == TEMP Init RPCInit rcv rst p \<and> \<box>[ RPCNext send rcv rst p ]_(rst!p, rtrner send!p, caller rcv!p) \<and> WF(RPCNext send rcv rst p)_(rst!p, rtrner send!p, caller rcv!p)" definition RPCISpec :: "rpcSndChType \ where "RPCISpec send rcv rst == TEMP (\ lemmas RPC_action_defs = RPCInit_def RPCFwd_def RPCReject_def RPCFail_def RPCReply_def RPCNext_def lemmas RPC_temp_defs = RPCIPSpec_def RPCISpec_def (* The RPC component engages in an action for process p only if there is an outstanding, unanswered call for that process. *) lemma RPCidle: "\ by (auto simp: AReturn_def RPC_action_defs) lemma RPCbusy: "\ by (auto simp: RPC_action_defs) (* RPC failure actions are visible. *) lemma RPCFail_vis: "\ <RPCNext send rcv rst p>_(rst!p, rtrner send!p, caller rcv!p)" by (auto dest!: Return_changed [temp_use] simp: angle_def RPCNext_def RPCFail_def) lemma RPCFail_Next_enabled: "\ Enabled (<RPCNext send rcv rst p>_(rst!p, rtrner send!p, caller rcv!p))" by (force elim!: enabled_mono [temp_use] RPCFail_vis [temp_use]) (* Enabledness of some actions *) lemma RPCFail_enabled: "\ \<turnstile> \<not>Calling rcv p \<and> Calling send p \<longrightarrow> Enabled (RPCFail send rcv rs by (tactic \<open>action_simp_tac (\<^context> addsimps [@{thm RPCFail_def}, @{thm AReturn_def}, @{thm caller_def}, @{thm rtrner_def}]) [exI] [@{thm base_enabled}, @{thm Pair_inject}] 1\<close>) lemma RPCReply_enabled: "\ \<turnstile> \<not>Calling rcv p \<and> Calling send p \<and> rst!p = #rpcB \<longrightarrow> Enabled (RPCReply send rcv rst p)" by (tactic \<open>action_simp_tac (\<^context> addsimps [@{thm RPCReply_def}, @{thm AReturn_def}, @{thm caller_def}, @{thm rtrner_def}]) [exI] [@{thm base_enabled}, @{thm Pair_inject}] 1\<close>) end ¤ Dauer der Verarbeitung: 0.16 Sekunden (vorverarbeitet) ¤ |
Haftungshinweis
Die Informationen auf dieser Webseite wurden
nach bestem Wissen sorgfältig zusammengestellt. Es wird jedoch weder Vollständigkeit, noch Richtigkeit,
noch Qualität der bereit gestellten Informationen zugesichert.
Bemerkung:Die farbliche Syntaxdarstellung ist noch experimentell.Bot Zugriff |
