Add ML files

Author: wimmers

ML/Checker.sml

@@ -0,0 +1,342 @@
+open Reachability_Checker;
+
+(*** Utilities for parsing
+ * Should be removed at some point
+***)
+datatype ('a, 'b) instr' = JMPZ' of 'a | ADD' | NOT' | AND' | LT' | LE' | EQ' | PUSH' of 'b | POP' |
+    LID' of 'a | STOREI' of 'a * 'b | COPY' | CALL' | RETURN' | HALT' |
+    STOREC' of 'a * 'b | SETF' of bool
+
+datatype ('a, 'b, 'c) instrc' = INSTR' of ('a, 'b) instr' | CEXP' of ('a, 'c) acconstraint
+
+datatype ('a, 'b) bexp' =
+  Not' of ('a, 'b) bexp' |
+  And' of ('a, 'b) bexp' * ('a, 'b) bexp' |
+  Or' of ('a, 'b) bexp' * ('a, 'b) bexp' |
+  Imply' of ('a, 'b) bexp' * ('a, 'b) bexp' |
+  Loc' of 'a * 'a | Eq' of 'a * 'b | Lea' of 'a * 'b |
+  Lta' of 'a * 'b | Ge' of 'a * 'b | Gt' of 'a * 'b
+
+infix 9 Lea' Lta' Ge' Gt' Eq'
+infix 8 And'
+infix 7 Or' Imply'
+
+fun map_acconstraint f g = fn
+  LTa (a, b) => LTa (f a, g b) |
+  LEa (a, b) => LEa (f a, g b) |
+  EQa (a, b) => EQa (f a, g b) |
+  GE (a, b) => GE (f a, g b) |
+  GT (a, b) => GT (f a, g b)
+
+fun map_act f = fn
+  In a => In (f a) |
+  Out a => Out (f a) |
+  Sil a => Sil (f a)
+
+fun map_instr f_nat f_int = fn
+  JMPZ' n => JMPZ (f_nat n) |
+  PUSH' i => PUSH (f_int i) |
+  LID' n => LID (f_nat n) |
+  STOREI' (n, i) => STOREI (f_nat n, f_int i) |
+  STOREC' (n, i) => STOREC (f_nat n, f_int i) |
+  ADD' => ADD | NOT' => NOT | AND' => AND | LT' => LT | LE' => LE | EQ' => EQ |
+  POP' => POP | COPY' => COPY | CALL' => CALL | RETURN' => RETURN | HALT' => HALT |
+  SETF' b => SETF b
+
+fun map_instrc f_nat f_int f_time = fn
+  INSTR' instr => INSTR (map_instr f_nat f_int instr) |
+  CEXP' ac => CEXP (map_acconstraint f_nat f_time ac)
+
+fun map_bexp f_nat f_int = fn
+  Not' a => Not (map_bexp f_nat f_int a) |
+  a And' b => And (map_bexp f_nat f_int a, map_bexp f_nat f_int b) |
+  a Or' b => Or (map_bexp f_nat f_int a, map_bexp f_nat f_int b) |
+  a Imply' b => Imply (map_bexp f_nat f_int a, map_bexp f_nat f_int b) |
+  Loc' (p, l) => Loc (f_nat p, f_nat l) |
+  v Lta' x => Lta (f_nat v, f_int x) |
+  v Lea' x => Lea (f_nat v, f_int x) |
+  v Eq' x => Eq (f_nat v, f_int x) |
+  v Ge' x => Ge (f_nat v, f_int x) |
+  v Gt' x => Gt (f_nat v, f_int x)
+
+val to_int = Int_of_integer o IntInf.fromInt
+val to_nat = nat_of_integer o IntInf.fromInt
+val nat_of_int = nat_of_integer o integer_of_int
+
+
+(*** Parsing ***)
+open Scan_More;
+
+fun scan_pairc_int x = scan_pairc [scan_int, scan_int] x
+val scan_acconstraint_lt = scan_pairc_int "LTa" (op LTa)
+val scan_acconstraint_le = scan_pairc_int "LEa" (op LEa)
+val scan_acconstraint_eq = scan_pairc_int "EQa" (op EQa)
+val scan_acconstraint_ge = scan_pairc_int "GE" (op GE)
+val scan_acconstraint_gt = scan_pairc_int "GT" (op GT)
+val scan_acconstraint = Scan.first [
+  scan_acconstraint_lt,
+  scan_acconstraint_le,
+  scan_acconstraint_eq,
+  scan_acconstraint_ge,
+  scan_acconstraint_gt
+  ]
+
+fun scan_infix_pairc_int x = scan_infix_pairc scan_int scan_int x;
+
+fun scan_parens lparen rparen inner =
+  op $$ lparen |-- scan_whitespace |-- inner --| scan_whitespace --| op $$ rparen
+
+val scan_bexp_elem = Scan.first [
+  scan_pairc_int "Loc'"  (op Loc'),
+  scan_pairc_int "Lea''" (op Lea'),
+  scan_pairc_int "Eq'"   (op Eq'),
+  scan_pairc_int "Lta'"  (op Lta'),
+  scan_pairc_int "Ge'"   (op Ge'),
+  scan_pairc_int "Gt'"   (op Gt')
+]
+fun scan_bexp xs =
+  let
+    val scan_parens = scan_parens "(" ")"
+    fun scan_7 xs =
+      xs |>
+      (
+        scan_infix_pairc scan_6 scan_7 "Imply'" op Imply' ||
+        scan_infix_pairc scan_6 scan_7 "Or'" op Or' ||
+        scan_6
+      )
+    and scan_6 xs =
+      xs |> (scan_infix_pairc scan_0 scan_6 "And'" op And' || scan_0)
+    and scan_inner_bexp xs = xs |> scan_parens scan_7
+    and scan_prefix sep constr =
+      Scan.this_string sep -- scan_whitespace |-- scan_inner_bexp >> constr
+    and scan_0 xs =
+      xs |>
+      (
+        scan_prefix "Not'" op Not' ||
+        scan_bexp_elem ||
+        scan_inner_bexp
+      )
+  in
+    scan_7 xs
+  end
+
+val scan_singlec_int = scan_singlec scan_int
+
+val scan_act = Scan.first [
+  scan_singlec_int "In" op In,
+  scan_singlec_int "Out" op Out,
+  scan_singlec_int "Sil" op Sil
+  ]
+
+val scan_bool =
+  Scan.this_string "true" >> K true || Scan.this_string "false" >> K false
+
+val instr_nullaries = [
+  ("ADD'", op ADD'),
+  ("NOT'", op NOT'),
+  ("AND'", op AND'),
+  ("LT'", op LT'),
+  ("LE'", op LE'),
+  ("EQ'", op EQ'),
+  ("COPY'", op COPY'),
+  ("CALL'", op CALL'),
+  ("RETURN'", op RETURN'),
+  ("HALT'", op HALT'),
+  ("POP'", op POP')
+  ]
+val scan_nullary_instr = Scan.first (map (uncurry scan_nullary) instr_nullaries)
+val scan_instr = scan_nullary_instr ||
+  Scan.first [
+  scan_pairc_int "STOREI'" op STOREI',
+  scan_pairc_int "STOREC'" op STOREC',
+  scan_singlec scan_int "JMPZ'" op JMPZ',
+  scan_singlec scan_int "LID'" op LID',
+  scan_singlec scan_int "PUSH'" op PUSH',
+  scan_singlec scan_bool "SETF'" op SETF'
+  ]
+val scan_instrc =
+  scan_singlec scan_nullary_instr "INSTR'" op INSTR' ||
+  scan_singlec (scan_parens "(" ")" scan_instr) "INSTR'" op INSTR' ||
+  scan_singlec (scan_parens "(" ")" scan_acconstraint) "CEXP'" op CEXP'
+
+fun scan_option p = scan_nullary "NONE" NONE || scan_singlec p "SOME" SOME
+
+fun scan_quadruple' (p1, p2, p3, p4) =
+  scan_parens "(" ")" (
+    (p1 --| op $$ "," --| scan_whitespace) --
+    (p2 --| op $$ "," --| scan_whitespace) --
+    (p3 --| op $$ "," --| scan_whitespace) --
+    p4 >> (fn (((a, b), c), d) => (a, b, c, d))
+  )
+val scan_invariant = scan_list (scan_list (scan_list scan_acconstraint))
+val scan_trans =
+  scan_quadruple' (scan_int, scan_act, scan_int, scan_int) |>
+  scan_list |>
+  scan_list |>
+  scan_list
+val scan_prog = scan_parens "(" ")" scan_instrc |> scan_option |> scan_list
+(* XXX Why do we need this renewed fixity declaration? *)
+val scan_all =
+  scan_int --- (* p *)
+  scan_int --- (* m *)
+  scan_list scan_int --- (* k *)
+  scan_int --- (* max_steps *)
+  scan_invariant --- (* inv *)
+  scan_trans --- (* trans *)
+  scan_prog --- (* prog *)
+  scan_bexp --- (* query *)
+  scan_list (scan_pair [scan_int, scan_int]) --- (* bounds *)
+  (scan_int |> scan_list |> scan_list) --- (* pred *)
+  scan_list scan_int --- (* s *)
+  scan_int (* na *)
+  (* XXX Can we end with EOF or EOS here? *)
+
+
+(*** Printing utilites ***)
+fun println s = print (s ^ "\n")
+
+fun list_to_string f = (fn x => "[" ^ x ^ "]") o String.concatWith ", " o map f;
+
+fun print_result NONE = println("Invalid input\n")
+    | print_result (SOME REACHABLE) = println("Property is not satisfied\n")
+    | print_result (SOME UNREACHABLE) = println("Property is not satisfied\n")
+    | print_result (SOME INIT_INV_ERR) =
+    println("The invariant of the initial state is not fulfilled initially\n")
+
+
+(*** Wrapping up the checker ***)
+fun check_and_verify2 p m ignore_k max_steps inv trans prog query bounds pred s na () =
+  let
+    val _ = debug_level := 1
+
+    val map_constraint = map (map_acconstraint to_nat to_int);
+    val inv = map (map map_constraint) inv;
+    val trans =
+      map (map (map (fn (g, a, r, l) => (to_nat g, (map_act to_nat a, (to_nat r, to_nat l)))))) trans;
+    val prog = map (map_option (map_instrc to_nat to_int to_int)) prog
+    val query = map_bexp to_nat to_int query
+    val bounds = map (fn (a, b) => (to_int a, to_int b)) bounds
+    val pred = map (map to_nat) pred
+    val s = map to_int s
+    val p = to_nat p
+    val m = to_nat m
+    val max_steps = to_nat max_steps
+    val na = to_nat na;
+    val _ = if !debug_level >= 1 then println("Now calculating ceiling") else ();
+    val k = k p m max_steps inv trans prog;
+    val k = map (map (map nat_of_int)) k;
+    val _ = if !debug_level >= 1 then println("Finished calculating ceiling") else ();
+    val _ =
+      if !debug_level >= 2 then
+        println (
+          "\n"
+          ^ list_to_string (list_to_string (list_to_string (IntInf.toString o integer_of_nat))) k
+          ^ "\n"
+        )
+      else ()
+
+    val test1 = uPPAAL_Reachability_Problem_precompiled_start_state
+        p m max_steps inv trans prog bounds pred s
+    val _ = if !debug_level >= 1 then println ("Test 1: " ^ (if test1 then "Passed" else "Failed")) else ()
+    val test1a = uPPAAL_Reachability_Problem_precompiled p m inv pred trans prog
+    val _ = if !debug_level >= 1 then println ("Test 1a: " ^ (if test1a then "Passed" else "Failed")) else ()
+    val test1aa = check_pre p m inv pred trans prog
+    val _ = if !debug_level >= 1 then println ("Test 1aa: " ^ (if test1aa then "Passed" else "Failed")) else ()
+    (*
+    val b = equal_nata (size_list inv) p andalso equal_nata (size_list pred) p andalso
+            equal_nata (size_list trans) p
+    val c = (all_interval_nat
+         (fn i =>
+           equal_nata (size_list (nth pred i))
+             (size_list (nth trans i)) andalso
+             equal_nata (size_list (nth inv i)) (size_list (nth trans i))) zero_nat p)
+    val d = list_all
+           (fn t =>
+             list_all
+               (list_all (fn (_, (_, (_, l))) => less_nat l (size_list t))) t)
+           trans
+    val e = equal_nata (size_list k) (plus_nat m one_nat) andalso
+            less_nat zero_nat p andalso less_nat zero_nat m
+    val f = all_interval_nat (fn i => not (null (nth trans i))) zero_nat p
+    val g = all_interval_nat
+                     (fn q => not (null (nth (nth trans q) zero_nat)))
+                     zero_nat p
+    val h = equal_nata (nth k zero_nat) zero_nat
+    val i = ball (clkp_set inv prog) (fn (_, a) => less_eq_int zero_inta a)
+    val j = eq_set (card_UNIV_nat, equal_nat) (clk_set inv prog) (Set (upt one_nat (suc m)))
+    val test1aa1 = check_resets prog andalso b andalso c andalso d andalso e andalso f andalso g
+      andalso h andalso i andalso j
+    val _ = println ("Test 1aa1: " ^ (if test1aa1 then "Passed" else "Failed"))
+    *)
+    val test1ab = check_ceiling p m max_steps inv trans prog k;
+    val _ = if !debug_level >= 1 then println ("Test 1ab: " ^ (if test1ab then "Passed" else "Failed")) else ()
+    val test1b =
+      uPPAAL_Reachability_Problem_precompiled_start_state_axioms p max_steps trans
+          prog bounds pred s;
+    val _ = if !debug_level >= 1 then println ("Test 1b: " ^ (if test1b then "Passed" else "Failed")) else ()
+    val init_pred_check = init_pred_check p prog max_steps pred s;
+    val _ = if !debug_level >= 1 then println ("Init pred: " ^ (if init_pred_check then "Passed" else "Failed")) else ()
+    val bounded_check = bounded_int bounds s
+    val _ = println ("Boundedness check: " ^ (if bounded_check then "Passed" else "Failed"))
+    val indep_1 = time_indep_check1 pred prog max_steps
+    val _ = if !debug_level >= 1 then println ("Time independence check 1: " ^ (if indep_1 then "Passed" else "Failed")) else ()
+    val indep_2 = time_indep_check2 trans prog max_steps
+    val _ = if !debug_level >= 1 then println ("Time independence check 2: " ^ (if indep_1 then "Passed" else "Failed")) else ()
+    val d = conjunction_check2 trans prog max_steps
+    val _ = if !debug_level >= 1 then println ("Conjunction check: " ^ (if d then "Passed" else "Failed")) else ()
+    (*
+    val test2 = uPPAAL_Reachability_Problem_precompiled_axioms trans na
+    val _ = println ("Test 2: " ^ (if test2 then "Passed" else "Failed"))
+    *)
+    val t = Time.now ()
+    val result = Reachability_Checker.check_and_verify p m k max_steps inv trans prog query bounds pred s na ()
+    val t = Time.- (Time.now (), t)
+    val _ = println("Internal time for precondition check + actual checking: " ^ Time.toString t)
+    val _ = println("")
+    val _ = println("# additions on DBM entries:" ^ Int.toString (!cnt))
+    val _ = println("# states added to wait list:" ^ Int.toString (!cnt2))
+    val _ = println("# states added to passed list:" ^ Int.toString (!cnt3))
+    val _ = println("")
+  in
+    print_result result
+  end;
+
+fun check_and_verify_parse input =
+  let
+    val (result, _) = scan_all input
+      handle x => (println "Parse error"; raise x)
+    val (result, na) = result
+    val (result, s) = result
+    val (result, pred) = result
+    val (result, bounds) = result
+    val (result, query) = result
+    val (result, prog) = result
+    val (result, trans) = result
+    val (result, inv) = result
+    val (result, max_steps) = result
+    val (result, ignore_k) = result
+    val (result, m) = result
+    val p = result
+  in
+    check_and_verify2 p m ignore_k max_steps inv trans prog query bounds pred s na
+  end;
+
+fun read_lines stream =
+  let
+    val input = TextIO.inputLine stream
+      handle Size => (println "Input line too long!"; raise Size)
+  in
+    case input of
+      NONE => ""
+    | SOME input => input ^ read_lines stream
+  end
+
+fun check_and_verify_from_stream stream =
+  let
+    val input = read_lines stream
+  in
+    if input = ""
+    then (println "Failed to read line from input!"; fn () => ())
+      (* We append a space to terminate the input for the parser *)
+    else input ^ " " |> explode_string |> check_and_verify_parse
+  end;

ML/Mlton_Main.sml

@@ -0,0 +1,2 @@
+val main = check_and_verify_from_stream (TextIO.stdIn)
+val _ = if MLton.isMLton then main() else ()

ML/Scan_More.ML

@@ -0,0 +1,51 @@
+infix 5 ---;
+
+structure Scan_More =
+struct
+
+  (** Copied from Mlton/sml90 to achieve compatiblity with Isabelle/ML **)
+  exception Ord
+  fun ord s =
+         if String.size s = 0
+            then raise Ord
+         else Char.ord(String.sub(s, 0))
+
+  (** Additional parsers to read ints, lists, and datatype constructor terms **)
+  val explode_string = map Char.toString o String.explode;
+  val scan_neg = op $$ "~" >> K (~1);
+  val scan_nat = Scan.many1 (fn x => ord "0" <= ord x andalso ord x <= ord "9") >> (the o Int.fromString o String.concat);
+  val scan_int = Scan.optional scan_neg 1 -- scan_nat >> op *;
+  val scan_whitespace = Scan.many (fn x => ord x = ord " ");
+  fun (p1 --- p2) = (p1 --| scan_whitespace -- p2)
+  fun scan_collection lparen rparen sep (item_parser : (string list -> 'a * string list)) =
+    op $$ lparen |--
+    (
+    (item_parser -- Scan.repeat (op $$ sep --- item_parser >> snd) >> op ::) ||
+    Scan.succeed []
+    )
+    --| op $$ rparen;
+  fun scan_list item_parser = scan_collection "[" "]" "," item_parser;
+  fun scan_tuple item_parser = scan_collection "(" ")" "," item_parser;
+  fun scan_collection' lparen rparen sep item_parsers =
+    let
+      fun scan_inner [] = Scan.succeed []
+        | scan_inner [p] = p >> (fn x => [x])
+        | scan_inner (p :: ps) =
+            (p -- op $$ sep -- scan_whitespace >> (fst o fst)) -- scan_inner ps >> op ::
+    in op $$ lparen -- scan_inner item_parsers -- op $$ rparen >> (snd o fst) end
+  fun scan_tuple' ps = scan_collection' "(" ")" "," ps;
+  fun scan_pair ps = scan_tuple' ps >> (fn [a,b] => (a,b))
+  fun scan_triple ps = scan_tuple' ps >> (fn [a,b,c] => (a,b,c))
+  fun scan_quadruple ps = scan_tuple' ps >> (fn [a,b,c,d] => (a,b,c,d))
+  fun scan_pairc ps head constr =
+    Scan.this_string head -- scan_whitespace |-- scan_pair ps >> constr
+  fun scan_singlec p head constr =
+    Scan.this_string head -- scan_whitespace |-- p >> constr
+  fun scan_nullary head constr =
+    Scan.this_string head >> K constr
+  fun scan_infix_pair p1 p2 sep =
+    p1 --| (scan_whitespace -- Scan.this_string sep -- scan_whitespace) -- p2
+  fun scan_infix_pairc p1 p2 sep constr =
+    scan_infix_pair p1 p2 sep >> constr
+
+end;