forked from Isabelle_DOF/Isabelle_DOF
108 lines
4.3 KiB
Plaintext
108 lines
4.3 KiB
Plaintext
chapter\<open>Setting and modifying attributes of doc-items\<close>
|
|
|
|
theory Concept_ExampleInvariant
|
|
imports "../../ontologies/Conceptual" (* we use the generic "Conceptual" ontology *)
|
|
begin
|
|
|
|
section\<open>Example: Standard Class Invariant\<close>
|
|
|
|
text\<open>Status:\<close>
|
|
print_doc_classes
|
|
print_doc_items
|
|
|
|
|
|
text\<open>Watch out: The current programming interface to document class invariants is pretty low-level:
|
|
\<^item> No inheritance principle
|
|
\<^item> No high-level notation in HOL
|
|
\<^item> Typing on ML level is assumed to be correct.
|
|
The implementor of an ontology must know what he does ...
|
|
\<close>
|
|
|
|
text\<open>Setting a sample invariant, which simply produces some side-effect:\<close>
|
|
setup\<open>DOF_core.update_class_invariant "Conceptual.A" (fn oid =>
|
|
fn {is_monitor = b} =>
|
|
fn ctxt =>
|
|
(writeln ("sample echo : "^oid); true))\<close>
|
|
|
|
subsection*[b::A, x = "5"] \<open> Lorem ipsum dolor sit amet, ... \<close>
|
|
|
|
|
|
text\<open>Setting a sample invariant, referring to attribute value "x":\<close>
|
|
ML\<open>fun check_A_invariant oid {is_monitor:bool} ctxt =
|
|
let val term = AttributeAccess.compute_attr_access ctxt "x" oid @{here} @{here}
|
|
val (@{typ "int"},x_value) = HOLogic.dest_number term
|
|
in if x_value > 5 then error("class A invariant violation") else true end
|
|
\<close>
|
|
|
|
setup\<open>DOF_core.update_class_invariant "Conceptual.A" check_A_invariant\<close>
|
|
|
|
|
|
|
|
subsection*[d::A, x = "4"] \<open> Lorem ipsum dolor sit amet, ... \<close>
|
|
|
|
(* test : update should not fail, invariant still valid *)
|
|
update_instance*[d::A, x += "1"]
|
|
|
|
|
|
section\<open>Example: Monitor Class Invariant\<close>
|
|
|
|
text\<open>Of particular interest are class invariants attached to monitor classes: since the
|
|
latter manage a trace-attribute, a class invariant on them can assure a global form of consistency.
|
|
It is possible to express:
|
|
\<^item> that attributes of a document element must satisfy particular conditions depending on the
|
|
prior document elements --- as long they have been observed in a monitor.
|
|
\<^item> non-regular properties on a trace not expressible in a regular expression
|
|
(like balanced ness of opening and closing text elements)
|
|
\<^item> etc.
|
|
\<close>
|
|
|
|
text\<open>A simple global trace-invariant is expressed in the following: it requires
|
|
that instances of class C occur more often as those of class D; note that this is meant
|
|
to take sub-classing into account:
|
|
\<close>
|
|
|
|
ML\<open>fun check_M_invariant oid {is_monitor} ctxt =
|
|
let val term = AttributeAccess.compute_attr_access ctxt "trace" oid @{here} @{here}
|
|
fun conv (Const(@{const_name "Pair"},_) $ Const(s,_) $ S) = (s, HOLogic.dest_string S)
|
|
val string_pair_list = map conv (HOLogic.dest_list term)
|
|
val cid_list = map fst string_pair_list
|
|
val ctxt' = Proof_Context.init_global(Context.theory_of ctxt)
|
|
fun is_C x = DOF_core.is_subclass ctxt' x "Conceptual.C"
|
|
fun is_D x = DOF_core.is_subclass ctxt' x "Conceptual.D"
|
|
val n = length (filter is_C cid_list)
|
|
val m = length (filter is_D cid_list)
|
|
in if m > n then error("class M invariant violation") else true end
|
|
\<close>
|
|
|
|
setup\<open>DOF_core.update_class_invariant "Conceptual.M" check_M_invariant\<close>
|
|
|
|
|
|
section\<open>Example: Monitor Class Invariant\<close>
|
|
|
|
open_monitor*[struct::M]
|
|
|
|
subsection*[a::A, x = "3"] \<open> Lorem ipsum dolor sit amet, ... \<close>
|
|
|
|
text*[c1::C, x = "''beta''"] \<open> ... suspendisse non arcu malesuada mollis, nibh morbi, ... \<close>
|
|
|
|
text*[d1::E, a1 = "X3"] \<open> ... phasellus amet id massa nunc, pede suscipit repellendus, ... \<close>
|
|
|
|
text*[c2:: C, x = "''delta''"] \<open> ... in ut tortor eleifend augue pretium consectetuer... \<close>
|
|
|
|
subsection*[f::E] \<open> Lectus accumsan velit ultrices, ... }\<close>
|
|
|
|
(* test : close_monitor should fail :
|
|
section*[f2::E] \<open> Lectus accumsan velit ultrices, ... }\<close>
|
|
*)
|
|
|
|
ML\<open>val term = AttributeAccess.compute_attr_access (Context.Proof @{context}) "trace" "struct" @{here} @{here} ;
|
|
fun conv (Const(@{const_name "Pair"},_) $ Const(s,_) $ S) = (s, HOLogic.dest_string S)
|
|
val string_pair_list = map conv (HOLogic.dest_list term)
|
|
\<close>
|
|
|
|
|
|
close_monitor*[struct]
|
|
|
|
|
|
end
|
|
|