globally use session-qualified imports; add Lib session

Session-qualified imports will be required for Isabelle2018 and help clarify
the structure of sessions in the build tree.

This commit mainly adds a new set of sessions for lib/, including a Lib
session that includes most theories in lib/ and a few separate sessions for
parts that have dependencies beyond CParser or are separate AFP sessions.
The group "lib" collects all lib/ sessions.

As a consequence, other theories should use lib/ theories by session name,
not by path, which in turns means spec and proof sessions should also refer
to each other by session name, not path, to avoid duplicate theory errors in
theory merges later.

ROOTS

@@ -6,5 +6,6 @@ proof
 tools
 camkes
 sys-init
+lib
 lib/Word_Lib
 lib/sep_algebra

camkes/ROOT

@@ -35,14 +35,15 @@ session CamkesAdlSpec (Camkes) in "adl-spec" = HOL +
  * of CamkesAdlSpec and DSpec, and is defined because we can't easily depend on both.
  *)
 session CamkesCdlBase (Camkes) in "adl-spec" = DPolicy +
+  sessions
+    DSpec
+    CamkesAdlSpec
+    Lib
   theories
-    (* DSpec *)
-      "../spec/capDL/Syscall_D"
-    (* CamkesAdlSpec *)
-      "Wellformed_CAMKES"
-      "Examples_CAMKES"
-    (* Lemma buckets *)
-      "../../lib/LemmaBucket"
+    "DSpec.Syscall_D"
+    "CamkesAdlSpec.Wellformed_CAMKES"
+    "CamkesAdlSpec.Examples_CAMKES"
+    "Lib.LemmaBucket"
 
 (* CAmkES<->CapDL reasoning. *)
 session CamkesCdlRefine (Camkes) in "cdl-refine" = CamkesCdlBase +

camkes/cdl-refine/Generator_CAMKES_CDL.thy

@@ -11,9 +11,9 @@
 theory Generator_CAMKES_CDL imports
   "../adl-spec/Types_CAMKES"
   "../adl-spec/Library_CAMKES"
-  "../../spec/capDL/Syscall_D"
+  "DSpec.Syscall_D"
   Types_CAMKES_CDL
-  "../../proof/access-control/Dpolicy"
+  "DPolicy.Dpolicy"
 begin
 
 text {*

camkes/cdl-refine/Types_CAMKES_CDL.thy

@@ -11,7 +11,7 @@
 theory Types_CAMKES_CDL imports
   "../adl-spec/Types_CAMKES"
   "../adl-spec/Library_CAMKES"
-  "../../spec/capDL/Syscall_D"
+  "DSpec.Syscall_D"
 begin
 
 (* placeholder for things to fill in *)

camkes/glue-proofs/DataIn.thy

@@ -10,8 +10,8 @@
 chapter {* Shared Memory *}
 (*<*)
 theory DataIn imports
-  "../../tools/c-parser/CTranslation"
-  "../../tools/autocorres/AutoCorres"
+  "CParser.CTranslation"
+  "AutoCorres.AutoCorres"
 begin
 
 (* THIS THEORY IS GENERATED. DO NOT EDIT. *)

camkes/glue-proofs/EventFrom.thy

@@ -11,8 +11,8 @@
 chapter {* Event Send *}
 (*<*)
 theory EventFrom imports
-  "../../tools/c-parser/CTranslation"
-  "../../tools/autocorres/AutoCorres"
+  "CParser.CTranslation"
+  "AutoCorres.AutoCorres"
 begin
 
 (* THIS THEORY IS GENERATED. DO NOT EDIT. *)

camkes/glue-proofs/EventTo.thy

@@ -10,8 +10,8 @@
 chapter {* Event Receive *}
 (*<*)
 theory EventTo imports
-  "../../tools/c-parser/CTranslation"
-  "../../tools/autocorres/AutoCorres"
+  "CParser.CTranslation"
+  "AutoCorres.AutoCorres"
 begin
 
 (* THIS THEORY IS GENERATED. DO NOT EDIT. *)

camkes/glue-proofs/RPCFrom.thy

@@ -9,8 +9,8 @@
  *)
 (*<*)
 theory RPCFrom imports
-  "../../tools/c-parser/CTranslation"
-  "../../tools/autocorres/AutoCorres"
+  "CParser.CTranslation"
+  "AutoCorres.AutoCorres"
 begin
 
 (* THIS THEORY IS GENERATED. DO NOT EDIT. *)

camkes/glue-proofs/RPCTo.thy

@@ -10,8 +10,8 @@
 chapter {* RPC Receive *}
 (*<*)
 theory RPCTo imports
-  "../../tools/c-parser/CTranslation"
-  "../../tools/autocorres/AutoCorres"
+  "CParser.CTranslation"
+  "AutoCorres.AutoCorres"
 begin
 
 (* THIS THEORY IS GENERATED. DO NOT EDIT. *)

camkes/glue-proofs/Syntax.thy

@@ -10,8 +10,8 @@
 chapter {* Syntax *}
 (*<*)
 theory Syntax imports
-  "../../tools/c-parser/CTranslation"
-  "../../tools/autocorres/AutoCorres"
+  "CParser.CTranslation"
+  "AutoCorres.AutoCorres"
 begin
 (*>*)
 

lib/AdjustSchematic.thy

@@ -9,7 +9,7 @@
  *)
 
 theory AdjustSchematic (* FIXME: bitrotted *)
-imports "~~/src/HOL/Main"
+imports Main
 begin
 
 lemma meta_arg_cong:

lib/Apply_Debug.thy

@@ -10,8 +10,11 @@
  *)
 
 theory Apply_Debug
-  imports Apply_Trace "~~/src/HOL/Eisbach/Eisbach_Tools"
-  keywords "apply_debug" :: "prf_script" % "proof" and
+  imports
+    Apply_Trace
+    "HOL-Eisbach.Eisbach_Tools"
+  keywords
+    "apply_debug" :: "prf_script" % "proof" and
     "continue" :: prf_script % "proof" and  "finish" :: prf_script % "proof"
 begin
 

lib/CorresK_Lemmas.thy

@@ -11,7 +11,10 @@
 
 
 theory CorresK_Lemmas
-imports Corres_Method "../spec/design/Syscall_H" "../spec/abstract/Syscall_A"
+imports
+  Corres_Method
+  "ExecSpec.Syscall_H"
+  "ASpec.Syscall_A"
 begin
 
 lemma corres_throwError_str [corres_concrete_rER]:

lib/Corres_Test.thy

@@ -14,7 +14,7 @@
 *)
 
 theory Corres_Test
-imports "../proof/refine/ARM/VSpace_R" Corres_Method
+imports "Refine.VSpace_R" Corres_Method
 begin
 
 chapter \<open>The Corres Method\<close>

lib/DataMap.thy

@@ -9,7 +9,7 @@
  *)
 
 theory DataMap
-imports "~~/src/HOL/Main"
+imports Main
 begin
 
 type_synonym ('k, 'a) map = "'k \<rightharpoonup> 'a"

lib/Eisbach_Methods.thy

@@ -13,9 +13,10 @@
 *)
 
 theory Eisbach_Methods
-imports "subgoal_focus/Subgoal_Methods"
-        "~~/src/HOL/Eisbach/Eisbach_Tools"
-        Rule_By_Method
+imports
+  "subgoal_focus/Subgoal_Methods"
+  "HOL-Eisbach.Eisbach_Tools"
+  Rule_By_Method
 begin
 
 

lib/ExpandAll.thy

@@ -9,7 +9,7 @@
  *)
 
 theory ExpandAll (* FIXME: bitrotted *)
-imports "~~/src/HOL/Main"
+imports Main
 begin
 
 lemma expand_forall:

lib/GenericLib_C.thy

@@ -1,18 +0,0 @@
-(*
- * Copyright 2014, NICTA
- *
- * This software may be distributed and modified according to the terms of
- * the BSD 2-Clause license. Note that NO WARRANTY is provided.
- * See "LICENSE_BSD2.txt" for details.
- *
- * @TAG(NICTA_BSD)
- *)
-
-theory GenericLib_C
-imports HaskellLemmaBucket
-begin
-
-(* Legacy interface file. *)
-
-
-end

lib/HaskellLib_H.thy

@@ -16,7 +16,7 @@
 theory HaskellLib_H
 imports
   Lib
-  "$L4V_ARCH/WordSetup"
+  "Word_Lib.WordSetup"
   "Monad_WP/NonDetMonadVCG"
 begin
 

lib/Hoare_Sep_Tactics/Hoare_Sep_Tactics.thy

@@ -10,8 +10,8 @@
 
 theory Hoare_Sep_Tactics
 imports
-  "../Monad_WP/NonDetMonadVCG"
-  "../sep_algebra/Sep_Algebra_L4v"
+  "Lib.NonDetMonadVCG"
+  "Sep_Algebra.Sep_Algebra_L4v"
 begin
 
 (* FIXME: needs cleanup *)

lib/Insulin.thy

@@ -49,7 +49,8 @@
  * - Naive algorithm, takes \<approx>quadratic time.
  *)
 
-theory Insulin imports HOL
+theory Insulin
+  imports Main
   keywords "desugar_term" "desugar_thm" "desugar_goal" :: diag
 begin
 

lib/Lib.thy

@@ -22,7 +22,7 @@ imports
   Extract_Conjunct
   Eval_Bool
   NICTATools
-  "~~/src/HOL/Library/Prefix_Order"
+  "HOL-Library.Prefix_Order"
 begin
 
 (* FIXME: eliminate *)

lib/List_Lib.thy

@@ -11,7 +11,7 @@
 chapter "List Manipulation Functions"
 
 theory List_Lib
-imports "~~/src/HOL/Main"
+imports Main
 begin
 
 definition list_replace :: "'a list \<Rightarrow> 'a \<Rightarrow> 'a \<Rightarrow> 'a list" where

lib/Monad_WP/wp/WP_Pre.thy

@@ -10,8 +10,8 @@
 
 theory WP_Pre
 imports
-  "~~/src/HOL/Main"
-  "~~/src/HOL/Eisbach/Eisbach_Tools"
+  Main
+  "HOL-Eisbach.Eisbach_Tools"
 begin
 
 named_theorems wp_pre

lib/NonDetMonadLemmaBucket.thy

@@ -13,8 +13,8 @@ imports
   "Monad_WP/NonDetMonadVCG"
   "MonadEq"
   "Monad_WP/WhileLoopRulesCompleteness"
-  Distinct_Prop
-  "~~/src/HOL/Word/Word_Miscellaneous"
+  "Word_Lib.Distinct_Prop"
+  "HOL-Word.Word_Miscellaneous"
 begin
 setup \<open>AutoLevity_Base.add_attribute_test "wp" WeakestPre.is_wp_rule\<close>
 

lib/RISCV64/WordSetup.thy

@@ -9,7 +9,7 @@
  *)
 
 
-theory WordSetup
+theory WordSetup (* part of non-AFP Word_Lib *)
 imports
   "../Distinct_Prop"
   "../Word_Lib/Word_Lemmas_64"

lib/ROOT

@@ -0,0 +1,175 @@
+(*
+ * Copyright 2018, Data61/CSIRO
+ *
+ * This software may be distributed and modified according to the terms of
+ * the BSD 2-Clause license. Note that NO WARRANTY is provided.
+ * See "LICENSE_BSD2.txt" for details.
+ *
+ * @TAG(DATA61_BSD)
+ *)
+
+chapter Lib
+
+session Lib (lib) = Word_Lib +
+  sessions
+    "HOL-Library"
+    "HOL-Eisbach"
+  theories
+    Lib
+    Apply_Trace_Cmd
+    AddUpdSimps
+    EmptyFailLib
+    List_Lib
+    Crunch_Test_NonDet
+    Crunch_Test_Qualified_NonDet
+    Crunch_Test_Qualified_Trace
+    Crunch_Test_Trace
+    SubMonadLib
+    Simulation
+    MonadEq
+    SimpStrategy
+    Extract_Conjunct
+    Apply_Debug_Test
+    GenericLib
+    ProvePart
+    Corres_Adjust_Preconds
+    AutoLevity_Base
+    Requalify
+    Value_Abbreviation
+    Eisbach_Methods
+    HaskellLib_H
+    AutoLevity_Test
+    Eval_Bool
+    Bisim_UL
+    Extend_Locale
+    Solves_Tac
+    Crunch
+    Crunch_Instances_NonDet
+    Crunch_Instances_Trace
+    StateMonad
+    Corres_UL
+    Find_Names
+    LemmaBucket
+    Try_Methods
+    ListLibLemmas
+    Time_Methods_Cmd
+    Apply_Debug
+    Match_Abbreviation_Test
+    MonadicRewrite
+    HaskellLemmaBucket
+    "ml-helpers/TermPatternAntiquote"
+    "subgoal_focus/Subgoal_Methods"
+    Insulin
+    ExtraCorres
+    NICTATools
+    BCorres_UL
+    Qualify
+    LexordList
+    Rule_By_Method
+    Defs
+    AutoLevity_Hooks
+    Distinct_Cmd
+    Match_Abbreviation
+    ShowTypes
+    SpecValid_R
+    EquivValid
+    SplitRule
+    Time_Methods_Cmd_Test
+    DataMap
+    Corres_Method
+    Conjuncts
+
+    (* should really be a separate session, but too entangled atm: *)
+    NonDetMonadLemmaBucket
+    "Monad_WP/WhileLoopRules"
+    "Monad_WP/TraceMonad"
+    "Monad_WP/OptionMonadND"
+    "Monad_WP/OptionMonadWP"
+    "Monad_WP/Strengthen_Demo"
+    "Monad_WP/TraceMonadLemmas"
+    "Monad_WP/wp/WPBang"
+    "Monad_WP/wp/WPFix"
+    "Monad_WP/wp/Eisbach_WP"
+    "Monad_WP/wp/WPI"
+    "Monad_WP/wp/WPC"
+    "Monad_WP/wp/WPEx"
+    "Monad_WP/wp/WP_Pre"
+    "Monad_WP/wp/WP"
+    "Monad_WP/Datatype_Schematic"
+    "Monad_WP/WhileLoopRulesCompleteness"
+    "Monad_WP/Strengthen"
+    "Monad_WP/OptionMonad"
+    "Monad_WP/TraceMonadVCG"
+    "Monad_WP/NonDetMonadVCG"
+    "Monad_WP/NonDetMonad"
+    "Monad_WP/NonDetMonadLemmas"
+
+(* bitrotted:
+    AdjustSchematic
+    ExpandAll
+    TSubst
+    Trace_Attribs
+    StringOrd
+    "ml-helpers/TacticAPI"
+*)
+
+session CLib (lib) in clib = CParser +
+  sessions
+    "HOL-Library"
+    "HOL-Statespace"
+    "HOL-Eisbach"
+    "Simpl-VCG"
+    Lib
+  theories
+    Corres_UL_C
+    CCorresLemmas
+    CCorres_Rewrite
+    Simpl_Rewrite
+    MonadicRewrite_C
+    DetWPLib
+    CTranslationNICTA
+    LemmaBucket_C
+    SIMPL_Lemmas
+    SimplRewrite
+    TypHeapLib
+    BitFieldProofsLib
+    XPres
+
+session CorresK = Lib +
+  sessions
+    ASpec
+    ExecSpec
+  theories
+    CorresK_Lemmas
+
+session LibTest (lib) = Refine +
+  sessions
+    Lib
+    CLib
+    ASpec
+    ExecSpec
+  theories
+    Corres_Test
+    WPTutorial
+
+session SepTactics (lib) in Hoare_Sep_Tactics = Sep_Algebra +
+  theories
+    Hoare_Sep_Tactics
+
+(* FIXME: in proof
+session AutoLevity (lib) = HOL +
+  theories
+    AutoLevity
+    AutoLevity_Run
+    AutoLevity_Theory_Report
+*)
+
+session Concurrency (lib) in concurrency = HOL +
+  sessions
+    Lib
+  theories
+    Atomicity_Lib
+    Triv_Refinement
+    Prefix_Refinement
+    "examples/Peterson_Atomicity"
+    "examples/Plus2_Prefix"

lib/Rule_By_Method.thy

@@ -11,7 +11,7 @@
 theory Rule_By_Method
 imports
   Main
-  "~~/src/HOL/Eisbach/Eisbach_Tools"
+  "HOL-Eisbach.Eisbach_Tools"
 begin
 
 ML \<open>

lib/SimpStrategy.thy

@@ -9,7 +9,7 @@
  *)
 
 theory SimpStrategy
-imports "~~/src/HOL/Main"
+imports Main
 begin
 
 text {*

lib/Simulation.thy

@@ -15,7 +15,7 @@
 chapter "Refinement"
 
 theory Simulation
-imports "~~/src/HOL/Main"
+imports Main
 begin
 
 text {*

lib/SplitRule.thy

@@ -9,7 +9,7 @@
  *)
 
 theory SplitRule
-imports "~~/src/HOL/Main"
+imports Main
 begin
 
 ML {*

lib/StringOrd.thy

@@ -9,7 +9,7 @@
  *)
 
 theory StringOrd
-imports "~~/src/HOL/Main"
+imports Main
 begin
 
 datatype anotherBL =

lib/Time_Methods_Cmd_Test.thy

@@ -11,7 +11,7 @@
 theory Time_Methods_Cmd_Test imports
   Time_Methods_Cmd
   Eisbach_Methods
-  "~~/src/HOL/Library/Sublist"
+  "HOL-Library.Sublist"
 begin
 
 text \<open>

lib/WPTutorial.thy

@@ -9,7 +9,7 @@
  *)
 
 theory WPTutorial
-imports "../proof/refine/$L4V_ARCH/Bits_R"
+imports "Refine.Bits_R"
 begin
 
 text {*

lib/clib/AutoCorresCRefine.thy

@@ -9,9 +9,7 @@
  *)
 
 theory AutoCorresCRefine
-
-imports Ctac "../../tools/autocorres/LegacyAutoCorres"
-
+imports Ctac LegacyAutoCorres
 begin
 
 context kernel begin

lib/clib/BitFieldProofsLib.thy

@@ -10,7 +10,7 @@
 
 theory BitFieldProofsLib
 imports
-  Eisbach_Methods
+  "Lib.Eisbach_Methods"
   TypHeapLib
 begin
 

lib/clib/CCorres_Rewrite.thy

@@ -11,9 +11,7 @@
  *)
 
 theory CCorres_Rewrite
-imports
-  "Corres_UL_C"
-  "Simpl_Rewrite"
+imports Corres_UL_C Simpl_Rewrite
 begin
 
 text \<open>A simple proof method for rewriting Simpl programs under @{term ccorres_underlying}.\<close>

lib/clib/CTranslationNICTA.thy

@@ -10,8 +10,8 @@
 
 theory CTranslationNICTA
 imports
-  "../tools/c-parser/CTranslation"
-  "Word_Lib/Word_Lib"
+  "CParser.CTranslation"
+  "Word_Lib.Word_Lib"
 begin
 
 declare len_of_numeral_defs [simp del]

lib/clib/Corres_UL_C.thy

@@ -15,9 +15,9 @@
 
 theory Corres_UL_C
 imports
-  "../LemmaBucket_C"
-  "../LemmaBucket"
-  "../SIMPL_Lemmas"
+  "LemmaBucket_C"
+  "Lib.LemmaBucket"
+  "SIMPL_Lemmas"
 begin
 
 declare word_neq_0_conv [simp del]

lib/clib/DetWPLib.thy

@@ -9,7 +9,7 @@
  *)
 
 theory DetWPLib
-imports "../GenericLib_C"
+imports "Lib.HaskellLemmaBucket"
 begin
 
 definition

lib/clib/LegacyAutoCorres.thy

@@ -10,7 +10,7 @@
 
 theory LegacyAutoCorres
 
-imports AutoCorres "../../lib/clib/Corres_UL_C"
+imports "AutoCorres.AutoCorres" "Corres_UL_C"
 
 begin
 

lib/clib/LemmaBucket_C.thy

@@ -10,10 +10,10 @@
 
 theory LemmaBucket_C
 imports
-  Lib
-  "$L4V_ARCH/WordSetup"
+  "Lib.Lib"
+  "Word_Lib.WordSetup"
   TypHeapLib
-  "../tools/c-parser/umm_heap/ArrayAssertion"
+  "CParser.ArrayAssertion"
 begin
 
 declare word_neq_0_conv [simp del]

lib/clib/MonadicRewrite_C.thy

@@ -12,7 +12,7 @@
 
 theory MonadicRewrite_C
 imports
-  "../MonadicRewrite"
+  "Lib.MonadicRewrite"
   Corres_UL_C
 begin
 

lib/clib/SIMPL_Lemmas.thy

@@ -10,7 +10,7 @@
 
 theory SIMPL_Lemmas
 imports
-  "GenericLib_C"
+  "Lib.HaskellLemmaBucket"
   "CTranslationNICTA"
 begin
 

lib/clib/SimplRewrite.thy

@@ -11,8 +11,8 @@
 theory SimplRewrite
 imports
   "CTranslationNICTA"
-  "SplitRule"
-  "~~/src/HOL/Eisbach/Eisbach"
+  "Lib.SplitRule"
+  "HOL-Eisbach.Eisbach"
 begin
 
 primrec

lib/clib/Simpl_Rewrite.thy

@@ -15,9 +15,9 @@ text \<open>A simple proof method for rewriting Simpl programs under a predicate
 
 theory Simpl_Rewrite
 imports
-  "../../tools/c-parser/Simpl/Vcg"
-  "../Eisbach_Methods"
-  "../Apply_Debug"
+  "Simpl-VCG.Vcg"
+  "Lib.Eisbach_Methods"
+  "Lib.Apply_Debug"
 begin
 
 text \<open>Definitions and lemmas for reasoning about equivalence of Simpl programs.\<close>

lib/clib/TypHeapLib.thy

@@ -9,7 +9,7 @@
  *)
 
 theory TypHeapLib
-imports "../tools/c-parser/CTranslation"
+imports "CParser.CTranslation"
 begin
 
 (* This file contains everything you need to know and use for the

lib/concurrency/Prefix_Refinement.thy

@@ -11,7 +11,7 @@ theory Prefix_Refinement
 
 imports
   Triv_Refinement
-  "../Monad_WP/TraceMonadLemmas"
+  "Lib.TraceMonadLemmas"
 
 begin
 

lib/concurrency/Triv_Refinement.thy

@@ -10,8 +10,8 @@
 theory Triv_Refinement
 
 imports
-  "../Monad_WP/TraceMonadVCG"
-  "../Monad_WP/Strengthen"
+  "Lib.TraceMonadVCG"
+  "Lib.Strengthen"
 
 begin
 

lib/sep_algebra/Map_Extra.thy

@@ -16,7 +16,7 @@
 chapter {* More properties of maps plus map disjuction. *}
 
 theory Map_Extra
-imports "~~/src/HOL/Main"
+imports Main
 begin
 
 text {*

lib/sep_algebra/MonadSep.thy

@@ -11,7 +11,7 @@
 theory MonadSep
 imports
   Sep_Algebra_L4v
-  "../LemmaBucket"
+  "Lib.LemmaBucket"
 begin
 
 locale sep_lifted =

lib/sep_algebra/ROOT

@@ -11,7 +11,11 @@
 chapter Lib
 
 (* This is a testing session to make sure none of these are forgotten *)
-session Sep_Algebra = Word_Lib +
+session Sep_Algebra (lib) = Word_Lib +
+  sessions
+    "HOL-Eisbach"
+    "HOL-Hoare"
+    Lib
   theories
     "Generic_Separation_Algebras"
     "MonadSep"

lib/sep_algebra/Separation_Algebra.thy

@@ -18,7 +18,7 @@ chapter "Abstract Separation Algebra"
 theory Separation_Algebra
 imports
   Arbitrary_Comm_Monoid
-  "~~/src/Tools/Adhoc_Overloading"
+  "HOL-Library.Adhoc_Overloading"
 begin
 
 text {* This theory is the main abstract separation algebra development *}

lib/sep_algebra/Separation_Algebra_Alt.thy

@@ -16,7 +16,7 @@
 chapter "Abstract Separation Logic, Alternative Definition"
 
 theory Separation_Algebra_Alt
-imports "~~/src/HOL/Main"
+imports Main
 begin
 
 text {*

lib/sep_algebra/ex/Simple_Separation_Example.thy

@@ -18,7 +18,7 @@ chapter "Example from HOL/Hoare/Separation"
 
 theory Simple_Separation_Example
 imports
-  "~~/src/HOL/Hoare/Hoare_Logic_Abort"
+  "HOL-Hoare.Hoare_Logic_Abort"
   "../Sep_Heap_Instance"
   "../Sep_Tactics"
 begin

lib/sep_algebra/ex/capDL/Types_D.thy

@@ -16,7 +16,7 @@
 chapter "A simplified version of the actual capDL specification."
 
 theory Types_D
-imports "~~/src/HOL/Word/Word"
+imports "HOL-Word.Word"
 begin
 
 (*

proof/ROOT

@@ -32,12 +32,22 @@ chapter "Proofs"
 
 session Refine = BaseRefine +
   description {* Refinement between Haskell and Abstract spec. *}
+  sessions
+    Lib
+    CorresK
+    AInvs
   theories [condition = "REFINE_QUICK_AND_DIRTY", quick_and_dirty]
     "refine/$L4V_ARCH/Refine"
+    "refine/$L4V_ARCH/RAB_FN"
+    "refine/$L4V_ARCH/EmptyFail_H"
   theories [condition = "SKIP_REFINE_PROOFS", quick_and_dirty, skip_proofs]
     "refine/$L4V_ARCH/Refine"
+    "refine/$L4V_ARCH/RAB_FN"
+    "refine/$L4V_ARCH/EmptyFail_H"
   theories
     "refine/$L4V_ARCH/Refine"
+    "refine/$L4V_ARCH/RAB_FN"
+    "refine/$L4V_ARCH/EmptyFail_H"
   theories [condition = "L4V_ARCH_IS_ARM"]
     "refine/$L4V_ARCH/Orphanage"
 
@@ -83,12 +93,16 @@ session CRefine = CBaseRefine +
     "crefine/$L4V_ARCH/Refine_C"
 
 session CBaseRefine = CSpec +
+  sessions
+    CLib
+    Refine
+    AutoCorres
   theories [condition = "SKIP_DUPLICATED_PROOFS", quick_and_dirty, skip_proofs]
     (* ../lib/clib/AutoCorres_C explains why L4VerifiedLinks is included here. *)
-    "../tools/autocorres/L4VerifiedLinks"
+    "crefine/lib/L4VerifiedLinks"
     "crefine/$L4V_ARCH/Include_C"
   theories
-    "../tools/autocorres/L4VerifiedLinks"
+    "crefine/lib/L4VerifiedLinks"
     "crefine/$L4V_ARCH/Include_C"
 
 session AutoCorresCRefine = CRefine +
@@ -100,6 +114,8 @@ session AutoCorresCRefine = CRefine +
  *)
 
 session DBaseRefine = Refine +
+  sessions
+    DSpec
   theories
     "drefine/Include_D"
 
@@ -108,6 +124,8 @@ session DRefine = DBaseRefine +
     "drefine/Refine_D"
 
 session DPolicy = DRefine +
+  sessions
+    Access
   theories
     "access-control/Dpolicy"
 
@@ -117,6 +135,7 @@ session DPolicy = DRefine +
 
 session Access in "access-control" = AInvs +
   theories
+    "ADT_AC"
     "Syscall_AC"
     "ExampleSystem"
 
@@ -125,6 +144,10 @@ session InfoFlow in "infoflow" = Access +
     "InfoFlow_Image_Toplevel"
 
 session InfoFlowCBase = CRefine +
+  sessions
+    Refine
+    Access
+    InfoFlow
   theories [condition = "SKIP_DUPLICATED_PROOFS", quick_and_dirty, skip_proofs]
     "infoflow/Include_IF_C"
   theories
@@ -140,6 +163,9 @@ session InfoFlowC = InfoFlowCBase +
  *)
 
 session SepDSpec = DSpec +
+  sessions
+    Sep_Algebra
+    SepTactics
   theories
     "sep-capDL/Frame_SD"
 
@@ -152,6 +178,8 @@ session DSpecProofs in "capDL-api" = SepDSpec +
  *)
 
 session Bisim in bisim = AInvs +
+  sessions
+    ASepSpec
   theories
     "Syscall_S"
   files
@@ -163,11 +191,9 @@ session Bisim in bisim = AInvs +
  * Separation Logic
  *)
 
-session SepTactics = Word_Lib +
-  theories
-    "../lib/Hoare_Sep_Tactics/Hoare_Sep_Tactics"
-
 session SepTacticsExamples = SepTactics +
+  sessions
+    SepDSpec
   theories [quick_and_dirty]
     "capDL-api/Sep_Tactic_Examples"
 

proof/access-control/Deterministic_AC.thy

@@ -10,7 +10,7 @@
 
 theory Deterministic_AC
 imports
-  "../invariant-abstract/$L4V_ARCH/ArchDetSchedSchedule_AI"
+  "AInvs.ArchDetSchedSchedule_AI"
 begin
 
 (*This theory defines an abstract "integrity" property over

proof/access-control/DomainSepInv.thy

@@ -11,7 +11,7 @@
 theory DomainSepInv
 imports
   "Ipc_AC" (* for transfer_caps_loop_pres_dest lec_valid_cap' set_simple_ko_get_tcb thread_set_tcb_fault_update_valid_mdb *)
-  "../../lib/Monad_WP/wp/WPBang"
+  "Lib.WPBang"
 begin
 
 context begin interpretation Arch . (*FIXME: arch_split*)

proof/access-control/Dpolicy.thy

@@ -11,8 +11,8 @@
 theory Dpolicy
 imports
   Access
-  "../drefine/Refine_D"
-  "../drefine/Include_D"
+  "DRefine.Refine_D"
+  "DBaseRefine.Include_D"
 begin
 
 (*

proof/access-control/Ipc_AC.thy

@@ -9,7 +9,7 @@
  *)
 
 theory Ipc_AC
-imports Finalise_AC "../../lib/MonadicRewrite"
+imports Finalise_AC "Lib.MonadicRewrite"
 begin
 
 context begin interpretation Arch . (*FIXME: arch_split*)

proof/asmrefine/SEL4GlobalsSwap.thy

@@ -13,7 +13,7 @@ theory SEL4GlobalsSwap
 imports "../../tools/asmrefine/GlobalsSwap"
   "../../tools/asmrefine/AsmSemanticsRespects"
   "../../tools/asmrefine/FieldAccessors"
-  "../../spec/cspec/Substitute"
+  "CSpec.Substitute"
 
 begin
 

proof/asmrefine/SEL4GraphRefine.thy

@@ -11,7 +11,7 @@
 theory SEL4GraphRefine
 imports
   "../../tools/asmrefine/ProveGraphRefine"
-  "../../spec/cspec/Substitute"
+  "CSpec.Substitute"
   "SEL4GlobalsSwap"
   "SEL4SimplExport"
 begin

proof/asmrefine/SEL4SimplExport.thy

@@ -12,7 +12,7 @@ theory SEL4SimplExport
 
 imports
   "../../tools/asmrefine/SimplExport"
-  "../../spec/cspec/Substitute"
+  "CSpec.Substitute"
 
 begin
 

proof/asmrefine/TestGraphRefine.thy

@@ -11,7 +11,7 @@
 theory TestGraphRefine
 
 imports "../../tools/asmrefine/ProveGraphRefine"
-  "../../spec/cspec/Substitute"
+  "CSpec.Substitute"
   "SEL4GlobalsSwap" "SEL4SimplExport"
 
 begin

proof/bisim/Separation.thy

@@ -12,10 +12,10 @@ chapter "Restricted capabilities in the Separation Kernel Abstract Specification
 
 theory Separation
 imports
-  "../../spec/sep-abstract/Syscall_SA"
-  "../invariant-abstract/AInvs"
-  "../../lib/Bisim_UL"
-  "../../lib/LemmaBucket"
+  "ASepSpec.Syscall_SA"
+  "AInvs.AInvs"
+  "Lib.Bisim_UL"
+  "Lib.LemmaBucket"
 begin
 
 text {*

proof/capDL-api/Kernel_DP.thy

@@ -10,8 +10,8 @@
 
 theory Kernel_DP
 imports
-  "../../spec/capDL/Syscall_D"
-  "../sep-capDL/Types_SD"
+  "DSpec.Syscall_D"
+  "SepDSpec.Types_SD"
 begin
 
 (* Bootinfo contructs *)

proof/capDL-api/ProofHelpers_DP.thy

@@ -11,7 +11,7 @@
 theory ProofHelpers_DP
 imports
   Kernel_DP
-  "../sep-capDL/Frame_SD"
+  "SepDSpec.Frame_SD"
 begin
 
 crunch_ignore (add:

proof/capDL-api/Sep_Tactic_Examples.thy

@@ -10,7 +10,7 @@
 
 theory Sep_Tactic_Examples
 imports
-  "../sep-capDL/Sep_Tactic_Helper"
+  "SepDSpec.Sep_Tactic_Helper"
   KHeap_DP
 begin
 

proof/crefine/ARM/ADT_C.thy

@@ -11,7 +11,7 @@
 theory ADT_C
 imports
   Schedule_C Retype_C Recycle_C
-  "../../invariant-abstract/BCorres2_AI"
+  "AInvs.BCorres2_AI"
 begin
 
 

proof/crefine/ARM/BuildRefineCache_C.thy

@@ -9,7 +9,7 @@
  *)
 
 theory BuildRefineCache_C (* FIXME: broken *)
-imports "~~/src/HOL/Main"
+imports Main
 begin
 
 ML {*

proof/crefine/ARM/CLevityCatch.thy

@@ -11,8 +11,8 @@
 theory CLevityCatch
 imports
   Include_C
-  "../../../lib/LemmaBucket_C"
-  "../../../lib/LemmaBucket"
+  "CLib.LemmaBucket_C"
+  "Lib.LemmaBucket"
 begin
 
 context begin interpretation Arch . (*FIXME: arch_split*)

proof/crefine/ARM/CSpaceAcc_C.thy

@@ -11,7 +11,7 @@
 (* collects lemmas common to the various CSpace branches *)
 
 theory CSpaceAcc_C
-imports "../../refine/$L4V_ARCH/EmptyFail" Ctac_lemmas_C
+imports "Refine.EmptyFail" Ctac_lemmas_C
 begin
 
 (* For resolving schematics *)

proof/crefine/ARM/CSpace_RAB_C.thy

@@ -9,7 +9,7 @@
  *)
 
 theory CSpace_RAB_C
-imports CSpaceAcc_C "../../../lib/clib/MonadicRewrite_C"
+imports CSpaceAcc_C "CLib.MonadicRewrite_C"
 begin
 
 context kernel

proof/crefine/ARM/Cache.thy

@@ -9,7 +9,7 @@
  *)
 
 theory Cache (* FIXME: broken *)
-imports "~~/src/HOL/Main"
+imports Main
 begin
 
 text {* Enable the proof cache, both skipping from it

proof/crefine/ARM/Ctac_lemmas_C.thy

@@ -12,7 +12,7 @@
 
 theory Ctac_lemmas_C
 imports
-        "../../../lib/clib/Ctac"
+  "../lib/Ctac"
 begin
 
 context kernel

proof/crefine/ARM/DetWP.thy

@@ -9,7 +9,7 @@
  *)
 
 theory DetWP
-imports "../../../lib/clib/DetWPLib" Include_C
+imports "CLib.DetWPLib" Include_C
 begin
 
 context begin interpretation Arch . (*FIXME: arch_split*)

proof/crefine/ARM/Fastpath_C.thy

@@ -14,8 +14,8 @@ imports
   SyscallArgs_C
   Delete_C
   Syscall_C
-  "../../refine/$L4V_ARCH/RAB_FN"
-  "../../../lib/clib/MonadicRewrite_C"
+  "Refine.RAB_FN"
+  "CLib.MonadicRewrite_C"
 begin
 
 context begin interpretation Arch . (*FIXME: arch_split*)

proof/crefine/ARM/Include_C.thy

@@ -10,8 +10,8 @@
 
 theory Include_C
 imports
-  "../../../spec/cspec/KernelInc_C"
-  "../../refine/$L4V_ARCH/Refine"
+  "CSpec.KernelInc_C"
+  "Refine.Refine"
 begin
 
 end

proof/crefine/ARM/Invoke_C.thy

@@ -9,7 +9,7 @@
  *)
 
 theory Invoke_C
-imports Recycle_C "../../../lib/clib/MonadicRewrite_C"
+imports Recycle_C "CLib.MonadicRewrite_C"
 begin
 
 context kernel_m

proof/crefine/ARM/IsolatedThreadAction.thy

@@ -9,7 +9,7 @@
  *)
 
 theory IsolatedThreadAction
-imports "../../../lib/clib/MonadicRewrite_C" Finalise_C CSpace_All SyscallArgs_C
+imports "CLib.MonadicRewrite_C" Finalise_C CSpace_All SyscallArgs_C
 begin
 
 datatype tcb_state_regs = TCBStateRegs "thread_state" "MachineTypes.register \<Rightarrow> machine_word"

proof/crefine/ARM/Move.thy

@@ -11,7 +11,7 @@
 (* things that should be moved into first refinement *)
 
 theory Move
-imports "../../refine/$L4V_ARCH/Refine"
+imports "Refine.Refine"
 begin
 
 lemma finaliseCap_Reply:

proof/crefine/ARM/Refine_C.thy

@@ -11,7 +11,7 @@
 chapter "Toplevel Refinement Statement"
 
 theory Refine_C
-imports Init_C Fastpath_C "../../../lib/clib/CToCRefine"
+imports Init_C Fastpath_C "../lib/CToCRefine"
 begin
 
 context begin interpretation Arch . (*FIXME: arch_split*)

proof/crefine/ARM/Refine_nondet_C.thy

@@ -13,7 +13,7 @@ header "Toplevel Refinement Statement for nondeterministic specification"
 theory Refine_nondet_C (* FIXME: broken *)
 imports
   Refine_C
-  "../../invariant-abstract/BCorres2_AI"
+  "AInvs.BCorres2_AI"
 begin
 
 definition (in state_rel)

proof/crefine/ARM/SR_lemmas_C.thy

@@ -11,7 +11,7 @@
 theory SR_lemmas_C
 imports
   StateRelation_C
-  "../../refine/$L4V_ARCH/Invariants_H"
+  "Refine.Invariants_H"
 begin
 
 context begin interpretation Arch . (*FIXME: arch_split*)

proof/crefine/ARM/Wellformed_C.thy

@@ -13,9 +13,9 @@
 
 theory Wellformed_C
 imports
-  "../../../lib/CTranslationNICTA"
+  "CLib.CTranslationNICTA"
   CLevityCatch
-  "../../../spec/cspec/Substitute"
+  "CSpec.Substitute"
 begin
 
 context begin interpretation Arch . (*FIXME: arch_split*)

proof/crefine/ARM_HYP/ADT_C.thy

@@ -11,7 +11,7 @@
 theory ADT_C
 imports
   Schedule_C Retype_C Recycle_C
-  "../../invariant-abstract/BCorres2_AI"
+  "AInvs.BCorres2_AI"
 begin
 
 

proof/crefine/ARM_HYP/BuildRefineCache_C.thy

@@ -9,7 +9,7 @@
  *)
 
 theory BuildRefineCache_C (* FIXME: broken *)
-imports "~~/src/HOL/Main"
+imports Main
 begin
 
 ML {*

proof/crefine/ARM_HYP/CLevityCatch.thy

@@ -12,8 +12,8 @@ theory CLevityCatch
 imports
   Include_C
   Move
-  "../../../lib/LemmaBucket_C"
-  "../../../lib/LemmaBucket"
+  "CLib.LemmaBucket_C"
+  "Lib.LemmaBucket"
 begin
 
 context begin interpretation Arch . (*FIXME: arch_split*)

proof/crefine/ARM_HYP/CSpaceAcc_C.thy

@@ -11,7 +11,7 @@
 (* collects lemmas common to the various CSpace branches *)
 
 theory CSpaceAcc_C
-imports "../../refine/$L4V_ARCH/EmptyFail" Ctac_lemmas_C
+imports "Refine.EmptyFail" Ctac_lemmas_C
 begin
 
 (* For resolving schematics *)

proof/crefine/ARM_HYP/CSpace_RAB_C.thy

@@ -9,7 +9,7 @@
  *)
 
 theory CSpace_RAB_C
-imports CSpaceAcc_C "../../../lib/clib/MonadicRewrite_C"
+imports CSpaceAcc_C "CLib.MonadicRewrite_C"
 begin
 
 context kernel

proof/crefine/ARM_HYP/Cache.thy

@@ -9,7 +9,7 @@
  *)
 
 theory Cache (* FIXME: broken *)
-imports "~~/src/HOL/Main"
+imports Main
 begin
 
 text {* Enable the proof cache, both skipping from it

proof/crefine/ARM_HYP/Ctac_lemmas_C.thy

@@ -12,7 +12,7 @@
 
 theory Ctac_lemmas_C
 imports
-        "../../../lib/clib/Ctac"
+  "../lib/Ctac"
 begin
 
 context kernel

proof/crefine/ARM_HYP/DetWP.thy

@@ -9,7 +9,7 @@
  *)
 
 theory DetWP
-imports "../../../lib/clib/DetWPLib" Include_C
+imports "CLib.DetWPLib" Include_C
 begin
 
 (* FIXME YUCK where did you come from *)

proof/crefine/ARM_HYP/Fastpath_C.thy

@@ -14,8 +14,8 @@ imports
   SyscallArgs_C
   Delete_C
   Syscall_C
-  "../../refine/$L4V_ARCH/RAB_FN"
-  "../../../lib/clib/MonadicRewrite_C"
+  "Refine.RAB_FN"
+  "CLib.MonadicRewrite_C"
 begin
 
 context begin interpretation Arch . (*FIXME: arch_split*)

proof/crefine/ARM_HYP/Include_C.thy

@@ -10,8 +10,8 @@
 
 theory Include_C
 imports
-  "../../../spec/cspec/KernelInc_C"
-  "../../refine/$L4V_ARCH/Refine"
+  "CSpec.KernelInc_C"
+  "Refine.Refine"
 begin
 
 end

proof/crefine/ARM_HYP/Invoke_C.thy

@@ -9,7 +9,7 @@
  *)
 
 theory Invoke_C
-imports Recycle_C "../../../lib/clib/MonadicRewrite_C"
+imports Recycle_C "CLib.MonadicRewrite_C"
 begin
 
 context kernel_m

proof/crefine/ARM_HYP/IsolatedThreadAction.thy

@@ -9,7 +9,7 @@
  *)
 
 theory IsolatedThreadAction
-imports "../../../lib/clib/MonadicRewrite_C" Finalise_C CSpace_All SyscallArgs_C
+imports "CLib.MonadicRewrite_C" Finalise_C CSpace_All SyscallArgs_C
 begin
 
 datatype tcb_state_regs = TCBStateRegs "thread_state" "MachineTypes.register \<Rightarrow> machine_word"

proof/crefine/ARM_HYP/Move.thy

@@ -11,7 +11,7 @@
 (* things that should be moved into first refinement *)
 
 theory Move
-imports "../../refine/$L4V_ARCH/Refine"
+imports "Refine.Refine"
 begin
 
 (* FIXME move: need a theory on top of CSpec that arches can share *)