Mercurial Mercurial > hg > regexp / annotate
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
prio/Paper/PrioGDef.tex
author urbanc
Wed, 29 Aug 2012 13:09:36 +0000
changeset 368 2d6beddb6fa6
parent 262 4190df6f4488
permissions -rw-r--r--
some addition to the MN-paper
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
262
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
     1
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
     2
 
\begin{isabellebody}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
     3
 
\def\isabellecontext{PrioGDef}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
     4
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
     5
 
\isadelimtheory
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
     6
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
     7
 
\endisadelimtheory
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
     8
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
     9
 
\isatagtheory
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    10
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    11
 
\endisatagtheory
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    12
 
{\isafoldtheory}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    13
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    14
 
\isadelimtheory
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    15
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    16
 
\endisadelimtheory
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    17
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    18
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    19
 
In this section, the formal model of Priority Inheritance is presented. First, the identifiers of {\em threads},
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    20
 
  {\em priority} and {\em critical resources } (abbreviated as \isa{cs}) are all represented as natural numbers,
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    21
 
  i.e. standard Isabelle/HOL type \isa{nat}.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    22
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    23
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    24
 
\isacommand{type{\isaliteral{5F}{\isacharunderscore}}synonym}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    25
 
\ thread\ {\isaliteral{3D}{\isacharequal}}\ nat\ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    26
 
\isamarkupcmt{Type for thread identifiers.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    27
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    28
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    29
 
\isacommand{type{\isaliteral{5F}{\isacharunderscore}}synonym}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    30
 
\ priority\ {\isaliteral{3D}{\isacharequal}}\ nat\ \ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    31
 
\isamarkupcmt{Type for priorities.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    32
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    33
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    34
 
\isacommand{type{\isaliteral{5F}{\isacharunderscore}}synonym}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    35
 
\ cs\ {\isaliteral{3D}{\isacharequal}}\ nat\ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    36
 
\isamarkupcmt{Type for critical sections (or critical resources).%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    37
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    38
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    39
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    40
 
Priority Inheritance protocol is modeled as an event driven system, where every event represents an
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    41
 
  system call. Event format is given by the following type definition:%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    42
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    43
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    44
 
\isacommand{datatype}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    45
 
\ event\ {\isaliteral{3D}{\isacharequal}}\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    46
 
\ \ Create\ thread\ priority\ {\isaliteral{7C}{\isacharbar}}\ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    47
 
\isamarkupcmt{Thread \isa{thread} is created with priority \isa{priority}.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    48
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    49
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    50
 
\ \ Exit\ thread\ {\isaliteral{7C}{\isacharbar}}\ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    51
 
\isamarkupcmt{Thread \isa{thread} finishing its execution.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    52
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    53
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    54
 
\ \ P\ thread\ cs\ {\isaliteral{7C}{\isacharbar}}\ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    55
 
\isamarkupcmt{Thread \isa{thread} requesting critical resource \isa{cs}.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    56
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    57
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    58
 
\ \ V\ thread\ cs\ {\isaliteral{7C}{\isacharbar}}\ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    59
 
\isamarkupcmt{Thread \isa{thread}  releasing critical resource \isa{cs}.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    60
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    61
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    62
 
\ \ Set\ thread\ priority\ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    63
 
\isamarkupcmt{Thread \isa{thread} resets its priority to \isa{priority}.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    64
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    65
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    66
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    67
 
Resource Allocation Graph (RAG for short) is used extensively in the analysis of Priority Inheritance.
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    68
 
  The following type \isa{node} is used to model nodes in RAG.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    69
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    70
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    71
 
\isacommand{datatype}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    72
 
\ node\ {\isaliteral{3D}{\isacharequal}}\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    73
 
\ \ \ Th\ {\isaliteral{22}{\isachardoublequoteopen}}thread{\isaliteral{22}{\isachardoublequoteclose}}\ {\isaliteral{7C}{\isacharbar}}\ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    74
 
\isamarkupcmt{Node for thread.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    75
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    76
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    77
 
\ \ \ Cs\ {\isaliteral{22}{\isachardoublequoteopen}}cs{\isaliteral{22}{\isachardoublequoteclose}}\ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    78
 
\isamarkupcmt{Node for critical resource.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    79
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    80
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    81
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    82
 
The protocol is analyzed using Paulson's inductive protocol verification method, where
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    83
 
  the state of the system is modelled as the list of events happened so far with the latest
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    84
 
  event at the head. Therefore, the state of the system is represented by the following
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    85
 
  type \isa{state}.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    86
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    87
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    88
 
\isacommand{type{\isaliteral{5F}{\isacharunderscore}}synonym}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    89
 
\ state\ {\isaliteral{3D}{\isacharequal}}\ {\isaliteral{22}{\isachardoublequoteopen}}event\ list{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    90
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    91
 
The following \isa{threads} is used to calculate the set of live threads (\isa{threads\ s})
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    92
 
  in state \isa{s}.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    93
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    94
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    95
 
\isacommand{fun}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    96
 
\ threads\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}state\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ set{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    97
 
\isakeyword{where}\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    98
 
\ \ {\isaliteral{22}{\isachardoublequoteopen}}threads\ {\isaliteral{5B}{\isacharbrackleft}}{\isaliteral{5D}{\isacharbrackright}}\ {\isaliteral{3D}{\isacharequal}}\ {\isaliteral{7B}{\isacharbraceleft}}{\isaliteral{7D}{\isacharbraceright}}{\isaliteral{22}{\isachardoublequoteclose}}\ {\isaliteral{7C}{\isacharbar}}\ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
    99
 
\isamarkupcmt{At the start of the system, the set of threads is empty.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   100
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   101
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   102
 
\ \ {\isaliteral{22}{\isachardoublequoteopen}}threads\ {\isaliteral{28}{\isacharparenleft}}Create\ thread\ prio{\isaliteral{23}{\isacharhash}}s{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{3D}{\isacharequal}}\ {\isaliteral{7B}{\isacharbraceleft}}thread{\isaliteral{7D}{\isacharbraceright}}\ {\isaliteral{5C3C756E696F6E3E}{\isasymunion}}\ threads\ s{\isaliteral{22}{\isachardoublequoteclose}}\ {\isaliteral{7C}{\isacharbar}}\ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   103
 
\isamarkupcmt{New thread is added to the \isa{threads}.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   104
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   105
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   106
 
\ \ {\isaliteral{22}{\isachardoublequoteopen}}threads\ {\isaliteral{28}{\isacharparenleft}}Exit\ thread\ {\isaliteral{23}{\isacharhash}}\ s{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{3D}{\isacharequal}}\ {\isaliteral{28}{\isacharparenleft}}threads\ s{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{2D}{\isacharminus}}\ {\isaliteral{7B}{\isacharbraceleft}}thread{\isaliteral{7D}{\isacharbraceright}}{\isaliteral{22}{\isachardoublequoteclose}}\ {\isaliteral{7C}{\isacharbar}}\ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   107
 
\isamarkupcmt{Finished thread is removed.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   108
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   109
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   110
 
\ \ {\isaliteral{22}{\isachardoublequoteopen}}threads\ {\isaliteral{28}{\isacharparenleft}}e{\isaliteral{23}{\isacharhash}}s{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{3D}{\isacharequal}}\ threads\ s{\isaliteral{22}{\isachardoublequoteclose}}\ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   111
 
\isamarkupcmt{other kind of events does not affect the value of \isa{threads}.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   112
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   113
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   114
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   115
 
Functions such as \isa{threads}, which extract information out of system states, are called
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   116
 
  {\em observing functions}. A series of observing functions will be defined in the sequel in order to
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   117
 
  model the protocol.
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   118
 
  Observing function \isa{original{\isaliteral{5F}{\isacharunderscore}}priority} calculates
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   119
 
  the {\em original priority} of thread \isa{th} in state \isa{s}, expressed as
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   120
 
  : \isa{original{\isaliteral{5F}{\isacharunderscore}}priority\ th\ s}. The {\em original priority} is the priority
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   121
 
  assigned to a thread when it is created or when it is reset by system call \isa{Set\ thread\ priority}.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   122
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   123
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   124
 
\isacommand{fun}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   125
 
\ original{\isaliteral{5F}{\isacharunderscore}}priority\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}thread\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ state\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ priority{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   126
 
\isakeyword{where}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   127
 
\ \ {\isaliteral{22}{\isachardoublequoteopen}}original{\isaliteral{5F}{\isacharunderscore}}priority\ thread\ {\isaliteral{5B}{\isacharbrackleft}}{\isaliteral{5D}{\isacharbrackright}}\ {\isaliteral{3D}{\isacharequal}}\ {\isadigit{0}}{\isaliteral{22}{\isachardoublequoteclose}}\ {\isaliteral{7C}{\isacharbar}}\ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   128
 
\isamarkupcmt{\isa{{\isadigit{0}}} is assigned to threads which have never been created.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   129
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   130
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   131
 
\ \ {\isaliteral{22}{\isachardoublequoteopen}}original{\isaliteral{5F}{\isacharunderscore}}priority\ thread\ {\isaliteral{28}{\isacharparenleft}}Create\ thread{\isaliteral{27}{\isacharprime}}\ prio{\isaliteral{23}{\isacharhash}}s{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{3D}{\isacharequal}}\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   132
 
\ \ \ \ \ {\isaliteral{28}{\isacharparenleft}}if\ thread{\isaliteral{27}{\isacharprime}}\ {\isaliteral{3D}{\isacharequal}}\ thread\ then\ prio\ else\ original{\isaliteral{5F}{\isacharunderscore}}priority\ thread\ s{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}\ {\isaliteral{7C}{\isacharbar}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   133
 
\ \ {\isaliteral{22}{\isachardoublequoteopen}}original{\isaliteral{5F}{\isacharunderscore}}priority\ thread\ {\isaliteral{28}{\isacharparenleft}}Set\ thread{\isaliteral{27}{\isacharprime}}\ prio{\isaliteral{23}{\isacharhash}}s{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{3D}{\isacharequal}}\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   134
 
\ \ \ \ \ {\isaliteral{28}{\isacharparenleft}}if\ thread{\isaliteral{27}{\isacharprime}}\ {\isaliteral{3D}{\isacharequal}}\ thread\ then\ prio\ else\ original{\isaliteral{5F}{\isacharunderscore}}priority\ thread\ s{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}\ {\isaliteral{7C}{\isacharbar}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   135
 
\ \ {\isaliteral{22}{\isachardoublequoteopen}}original{\isaliteral{5F}{\isacharunderscore}}priority\ thread\ {\isaliteral{28}{\isacharparenleft}}e{\isaliteral{23}{\isacharhash}}s{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{3D}{\isacharequal}}\ original{\isaliteral{5F}{\isacharunderscore}}priority\ thread\ s{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   136
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   137
 
\isa{birthtime\ th\ s} is the time when thread \isa{th} is created, observed from state \isa{s}.
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   138
 
  The time in the system is measured by the number of events happened so far since the very beginning.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   139
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   140
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   141
 
\isacommand{fun}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   142
 
\ birthtime\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}thread\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ state\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ nat{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   143
 
\isakeyword{where}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   144
 
\ \ {\isaliteral{22}{\isachardoublequoteopen}}birthtime\ thread\ {\isaliteral{5B}{\isacharbrackleft}}{\isaliteral{5D}{\isacharbrackright}}\ {\isaliteral{3D}{\isacharequal}}\ {\isadigit{0}}{\isaliteral{22}{\isachardoublequoteclose}}\ {\isaliteral{7C}{\isacharbar}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   145
 
\ \ {\isaliteral{22}{\isachardoublequoteopen}}birthtime\ thread\ {\isaliteral{28}{\isacharparenleft}}{\isaliteral{28}{\isacharparenleft}}Create\ thread{\isaliteral{27}{\isacharprime}}\ prio{\isaliteral{29}{\isacharparenright}}{\isaliteral{23}{\isacharhash}}s{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{3D}{\isacharequal}}\ {\isaliteral{28}{\isacharparenleft}}if\ {\isaliteral{28}{\isacharparenleft}}thread\ {\isaliteral{3D}{\isacharequal}}\ thread{\isaliteral{27}{\isacharprime}}{\isaliteral{29}{\isacharparenright}}\ then\ length\ s\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   146
 
\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ else\ birthtime\ thread\ s{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}\ {\isaliteral{7C}{\isacharbar}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   147
 
\ \ {\isaliteral{22}{\isachardoublequoteopen}}birthtime\ thread\ {\isaliteral{28}{\isacharparenleft}}{\isaliteral{28}{\isacharparenleft}}Set\ thread{\isaliteral{27}{\isacharprime}}\ prio{\isaliteral{29}{\isacharparenright}}{\isaliteral{23}{\isacharhash}}s{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{3D}{\isacharequal}}\ {\isaliteral{28}{\isacharparenleft}}if\ {\isaliteral{28}{\isacharparenleft}}thread\ {\isaliteral{3D}{\isacharequal}}\ thread{\isaliteral{27}{\isacharprime}}{\isaliteral{29}{\isacharparenright}}\ then\ length\ s\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   148
 
\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ else\ birthtime\ thread\ s{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}\ {\isaliteral{7C}{\isacharbar}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   149
 
\ \ {\isaliteral{22}{\isachardoublequoteopen}}birthtime\ thread\ {\isaliteral{28}{\isacharparenleft}}e{\isaliteral{23}{\isacharhash}}s{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{3D}{\isacharequal}}\ birthtime\ thread\ s{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   150
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   151
 
The {\em precedence} is a notion derived from {\em priority}, where the {\em precedence} of
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   152
 
  a thread is the combination of its {\em original priority} and {\em birth time}. The intention is
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   153
 
  to discriminate threads with the same priority by giving threads with the earlier assigned priority
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   154
 
  higher precedence in scheduling. This explains the following definition:%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   155
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   156
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   157
 
\isacommand{definition}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   158
 
\ preced\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}thread\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ state\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ precedence{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   159
 
\ \ \isakeyword{where}\ {\isaliteral{22}{\isachardoublequoteopen}}preced\ thread\ s\ {\isaliteral{3D}{\isacharequal}}\ Prc\ {\isaliteral{28}{\isacharparenleft}}original{\isaliteral{5F}{\isacharunderscore}}priority\ thread\ s{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{28}{\isacharparenleft}}birthtime\ thread\ s{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   160
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   161
 
A number of important notions are defined here:%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   162
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   163
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   164
 
\isacommand{consts}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   165
 
\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   166
 
\ \ holding\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}{\isaliteral{27}{\isacharprime}}b\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ cs\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ bool{\isaliteral{22}{\isachardoublequoteclose}}\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   167
 
\ \ \ \ \ \ \ waiting\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}{\isaliteral{27}{\isacharprime}}b\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ cs\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ bool{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   168
 
\ \ \ \ \ \ \ depend\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}{\isaliteral{27}{\isacharprime}}b\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ {\isaliteral{28}{\isacharparenleft}}node\ {\isaliteral{5C3C74696D65733E}{\isasymtimes}}\ node{\isaliteral{29}{\isacharparenright}}\ set{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   169
 
\ \ \ \ \ \ \ dependents\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}{\isaliteral{27}{\isacharprime}}b\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ set{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   170
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   171
 
The definition of the following several functions, it is supposed that
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   172
 
  the waiting queue of every critical resource is given by a waiting queue
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   173
 
  function \isa{wq}, which servers as arguments of these functions.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   174
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   175
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   176
 
\isacommand{defs}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   177
 
\ {\isaliteral{28}{\isacharparenleft}}\isakeyword{overloaded}{\isaliteral{29}{\isacharparenright}}\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   178
 
\ \ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   179
 
\isamarkupcmt{\begin{minipage}{0.8\textwidth}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   180
 
  We define that the thread which is at the head of waiting queue of resource \isa{cs}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   181
 
  is holding the resource. This definition is slightly different from tradition where
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   182
 
  all threads in the waiting queue are considered as waiting for the resource.
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   183
 
  This notion is reflected in the definition of \isa{holding\ wq\ th\ cs} as follows:
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   184
 
  \end{minipage}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   185
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   186
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   187
 
\ \ cs{\isaliteral{5F}{\isacharunderscore}}holding{\isaliteral{5F}{\isacharunderscore}}def{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}holding\ wq\ thread\ cs\ {\isaliteral{3D}{\isacharequal}}{\isaliteral{3D}{\isacharequal}}\ {\isaliteral{28}{\isacharparenleft}}thread\ {\isaliteral{5C3C696E3E}{\isasymin}}\ set\ {\isaliteral{28}{\isacharparenleft}}wq\ cs{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{5C3C616E643E}{\isasymand}}\ thread\ {\isaliteral{3D}{\isacharequal}}\ hd\ {\isaliteral{28}{\isacharparenleft}}wq\ cs{\isaliteral{29}{\isacharparenright}}{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   188
 
\ \ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   189
 
\isamarkupcmt{\begin{minipage}{0.8\textwidth}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   190
 
  In accordance with the definition of \isa{holding\ wq\ th\ cs},
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   191
 
  a thread \isa{th} is considered waiting for \isa{cs} if
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   192
 
  it is in the {\em waiting queue} of critical resource \isa{cs}, but not at the head.
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   193
 
  This is reflected in the definition of \isa{waiting\ wq\ th\ cs} as follows:
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   194
 
  \end{minipage}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   195
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   196
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   197
 
\ \ cs{\isaliteral{5F}{\isacharunderscore}}waiting{\isaliteral{5F}{\isacharunderscore}}def{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}waiting\ wq\ thread\ cs\ {\isaliteral{3D}{\isacharequal}}{\isaliteral{3D}{\isacharequal}}\ {\isaliteral{28}{\isacharparenleft}}thread\ {\isaliteral{5C3C696E3E}{\isasymin}}\ set\ {\isaliteral{28}{\isacharparenleft}}wq\ cs{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{5C3C616E643E}{\isasymand}}\ thread\ {\isaliteral{5C3C6E6F7465713E}{\isasymnoteq}}\ hd\ {\isaliteral{28}{\isacharparenleft}}wq\ cs{\isaliteral{29}{\isacharparenright}}{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   198
 
\ \ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   199
 
\isamarkupcmt{\begin{minipage}{0.8\textwidth}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   200
 
  \isa{depend\ wq} represents the Resource Allocation Graph of the system under the waiting
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   201
 
  queue function \isa{wq}.
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   202
 
  \end{minipage}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   203
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   204
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   205
 
\ \ cs{\isaliteral{5F}{\isacharunderscore}}depend{\isaliteral{5F}{\isacharunderscore}}def{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}depend\ {\isaliteral{28}{\isacharparenleft}}wq{\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}cs\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ list{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{3D}{\isacharequal}}{\isaliteral{3D}{\isacharequal}}\ {\isaliteral{7B}{\isacharbraceleft}}{\isaliteral{28}{\isacharparenleft}}Th\ t{\isaliteral{2C}{\isacharcomma}}\ Cs\ c{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{7C}{\isacharbar}}\ t\ c{\isaliteral{2E}{\isachardot}}\ waiting\ wq\ t\ c{\isaliteral{7D}{\isacharbraceright}}\ {\isaliteral{5C3C756E696F6E3E}{\isasymunion}}\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   206
 
\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ {\isaliteral{7B}{\isacharbraceleft}}{\isaliteral{28}{\isacharparenleft}}Cs\ c{\isaliteral{2C}{\isacharcomma}}\ Th\ t{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{7C}{\isacharbar}}\ c\ t{\isaliteral{2E}{\isachardot}}\ holding\ wq\ t\ c{\isaliteral{7D}{\isacharbraceright}}{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   207
 
\ \ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   208
 
\isamarkupcmt{\begin{minipage}{0.8\textwidth}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   209
 
  \isa{dependents\ wq\ th} represents the set of threads which are depending on
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   210
 
  thread \isa{th} in Resource Allocation Graph \isa{depend\ wq}:
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   211
 
  \end{minipage}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   212
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   213
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   214
 
\ \ cs{\isaliteral{5F}{\isacharunderscore}}dependents{\isaliteral{5F}{\isacharunderscore}}def{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}dependents\ {\isaliteral{28}{\isacharparenleft}}wq{\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}cs\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ list{\isaliteral{29}{\isacharparenright}}\ th\ {\isaliteral{3D}{\isacharequal}}{\isaliteral{3D}{\isacharequal}}\ {\isaliteral{7B}{\isacharbraceleft}}th{\isaliteral{27}{\isacharprime}}\ {\isaliteral{2E}{\isachardot}}\ {\isaliteral{28}{\isacharparenleft}}Th\ th{\isaliteral{27}{\isacharprime}}{\isaliteral{2C}{\isacharcomma}}\ Th\ th{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{5C3C696E3E}{\isasymin}}\ {\isaliteral{28}{\isacharparenleft}}depend\ wq{\isaliteral{29}{\isacharparenright}}{\isaliteral{5E}{\isacharcircum}}{\isaliteral{2B}{\isacharplus}}{\isaliteral{7D}{\isacharbraceright}}{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   215
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   216
 
The data structure used by the operating system for scheduling is referred to as
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   217
 
  {\em schedule state}. It is represented as a record consisting of
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   218
 
  a function assigning waiting queue to resources and a function assigning precedence to
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   219
 
  threads:%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   220
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   221
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   222
 
\isacommand{record}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   223
 
\ schedule{\isaliteral{5F}{\isacharunderscore}}state\ {\isaliteral{3D}{\isacharequal}}\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   224
 
\ \ \ \ waiting{\isaliteral{5F}{\isacharunderscore}}queue\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}cs\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ list{\isaliteral{22}{\isachardoublequoteclose}}\ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   225
 
\isamarkupcmt{The function assigning waiting queue.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   226
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   227
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   228
 
\ \ \ \ cur{\isaliteral{5F}{\isacharunderscore}}preced\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}thread\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ precedence{\isaliteral{22}{\isachardoublequoteclose}}\ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   229
 
\isamarkupcmt{The function assigning precedence.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   230
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   231
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   232
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   233
 
\isa{cpreced\ s\ th} gives the {\em current precedence} of thread \isa{th} under
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   234
 
  state \isa{s}. The definition of \isa{cpreced} reflects the basic idea of
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   235
 
  Priority Inheritance that the {\em current precedence} of a thread is the precedence
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   236
 
  inherited from the maximum of all its dependents, i.e. the threads which are waiting
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   237
 
  directly or indirectly waiting for some resources from it. If no such thread exits,
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   238
 
  \isa{th}'s {\em current precedence} equals its original precedence, i.e.
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   239
 
  \isa{preced\ th\ s}.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   240
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   241
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   242
 
\isacommand{definition}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   243
 
\ cpreced\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}state\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ {\isaliteral{28}{\isacharparenleft}}cs\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ list{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ precedence{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   244
 
\isakeyword{where}\ {\isaliteral{22}{\isachardoublequoteopen}}cpreced\ s\ wq\ {\isaliteral{3D}{\isacharequal}}\ {\isaliteral{28}{\isacharparenleft}}{\isaliteral{5C3C6C616D6264613E}{\isasymlambda}}\ th{\isaliteral{2E}{\isachardot}}\ Max\ {\isaliteral{28}{\isacharparenleft}}{\isaliteral{28}{\isacharparenleft}}{\isaliteral{5C3C6C616D6264613E}{\isasymlambda}}\ th{\isaliteral{2E}{\isachardot}}\ preced\ th\ s{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{60}{\isacharbackquote}}\ {\isaliteral{28}{\isacharparenleft}}{\isaliteral{7B}{\isacharbraceleft}}th{\isaliteral{7D}{\isacharbraceright}}\ {\isaliteral{5C3C756E696F6E3E}{\isasymunion}}\ dependents\ wq\ th{\isaliteral{29}{\isacharparenright}}{\isaliteral{29}{\isacharparenright}}{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   245
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   246
 
The following function \isa{schs} is used to calculate the schedule state \isa{schs\ s}.
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   247
 
  It is the key function to model Priority Inheritance:%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   248
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   249
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   250
 
\isacommand{fun}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   251
 
\ schs\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}state\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ schedule{\isaliteral{5F}{\isacharunderscore}}state{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   252
 
\isakeyword{where}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   253
 
\ \ \ {\isaliteral{22}{\isachardoublequoteopen}}schs\ {\isaliteral{5B}{\isacharbrackleft}}{\isaliteral{5D}{\isacharbrackright}}\ {\isaliteral{3D}{\isacharequal}}\ {\isaliteral{5C3C6C706172723E}{\isasymlparr}}waiting{\isaliteral{5F}{\isacharunderscore}}queue\ {\isaliteral{3D}{\isacharequal}}\ {\isaliteral{5C3C6C616D6264613E}{\isasymlambda}}\ cs{\isaliteral{2E}{\isachardot}}\ {\isaliteral{5B}{\isacharbrackleft}}{\isaliteral{5D}{\isacharbrackright}}{\isaliteral{2C}{\isacharcomma}}\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   254
 
\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ cur{\isaliteral{5F}{\isacharunderscore}}preced\ {\isaliteral{3D}{\isacharequal}}\ cpreced\ {\isaliteral{5B}{\isacharbrackleft}}{\isaliteral{5D}{\isacharbrackright}}\ {\isaliteral{28}{\isacharparenleft}}{\isaliteral{5C3C6C616D6264613E}{\isasymlambda}}\ cs{\isaliteral{2E}{\isachardot}}\ {\isaliteral{5B}{\isacharbrackleft}}{\isaliteral{5D}{\isacharbrackright}}{\isaliteral{29}{\isacharparenright}}{\isaliteral{5C3C72706172723E}{\isasymrparr}}{\isaliteral{22}{\isachardoublequoteclose}}\ {\isaliteral{7C}{\isacharbar}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   255
 
\ \ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   256
 
\isamarkupcmt{\begin{minipage}{0.8\textwidth}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   257
 
  \begin{enumerate}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   258
 
  \item \isa{ps} is the schedule state of last moment.
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   259
 
  \item \isa{pwq} is the waiting queue function of last moment.
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   260
 
  \item \isa{pcp} is the precedence function of last moment.
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   261
 
  \item \isa{nwq} is the new waiting queue function. It is calculated using a \isa{case} statement:
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   262
 
  \begin{enumerate}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   263
 
      \item If the happening event is \isa{P\ thread\ cs}, \isa{thread} is added to
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   264
 
            the end of \isa{cs}'s waiting queue.
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   265
 
      \item If the happening event is \isa{V\ thread\ cs} and \isa{s} is a legal state,
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   266
 
            \isa{th{\isaliteral{27}{\isacharprime}}} must equal to \isa{thread},
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   267
 
            because \isa{thread} is the one currently holding \isa{cs}.
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   268
 
            The case \isa{{\isaliteral{5B}{\isacharbrackleft}}{\isaliteral{5D}{\isacharbrackright}}\ {\isaliteral{5C3C4C6F6E6772696768746172726F773E}{\isasymLongrightarrow}}\ {\isaliteral{5B}{\isacharbrackleft}}{\isaliteral{5D}{\isacharbrackright}}} may never be executed in a legal state.
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   269
 
            the \isa{{\isaliteral{28}{\isacharparenleft}}SOME\ q{\isaliteral{2E}{\isachardot}}\ distinct\ q\ {\isaliteral{5C3C616E643E}{\isasymand}}\ set\ q\ {\isaliteral{3D}{\isacharequal}}\ set\ qs{\isaliteral{29}{\isacharparenright}}} is used to choose arbitrarily one
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   270
 
            thread in waiting to take over the released resource \isa{cs}. In our representation,
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   271
 
            this amounts to rearrange elements in waiting queue, so that one of them is put at the head.
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   272
 
      \item For other happening event, the schedule state just does not change.
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   273
 
  \end{enumerate}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   274
 
  \item \isa{ncp} is new precedence function, it is calculated from the newly updated waiting queue
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   275
 
        function. The dependency of precedence function on waiting queue function is the reason to
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   276
 
        put them in the same record so that they can evolve together.
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   277
 
  \end{enumerate}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   278
 
  \end{minipage}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   279
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   280
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   281
 
\ \ \ {\isaliteral{22}{\isachardoublequoteopen}}schs\ {\isaliteral{28}{\isacharparenleft}}e{\isaliteral{23}{\isacharhash}}s{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{3D}{\isacharequal}}\ {\isaliteral{28}{\isacharparenleft}}let\ ps\ {\isaliteral{3D}{\isacharequal}}\ schs\ s\ in\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   282
 
\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ let\ pwq\ {\isaliteral{3D}{\isacharequal}}\ waiting{\isaliteral{5F}{\isacharunderscore}}queue\ ps\ in\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   283
 
\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ let\ pcp\ {\isaliteral{3D}{\isacharequal}}\ cur{\isaliteral{5F}{\isacharunderscore}}preced\ ps\ in\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   284
 
\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ let\ nwq\ {\isaliteral{3D}{\isacharequal}}\ case\ e\ of\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   285
 
\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ P\ thread\ cs\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ \ pwq{\isaliteral{28}{\isacharparenleft}}cs{\isaliteral{3A}{\isacharcolon}}{\isaliteral{3D}{\isacharequal}}{\isaliteral{28}{\isacharparenleft}}pwq\ cs\ {\isaliteral{40}{\isacharat}}\ {\isaliteral{5B}{\isacharbrackleft}}thread{\isaliteral{5D}{\isacharbrackright}}{\isaliteral{29}{\isacharparenright}}{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{7C}{\isacharbar}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   286
 
\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ V\ thread\ cs\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ let\ nq\ {\isaliteral{3D}{\isacharequal}}\ case\ {\isaliteral{28}{\isacharparenleft}}pwq\ cs{\isaliteral{29}{\isacharparenright}}\ of\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   287
 
\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ {\isaliteral{5B}{\isacharbrackleft}}{\isaliteral{5D}{\isacharbrackright}}\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ {\isaliteral{5B}{\isacharbrackleft}}{\isaliteral{5D}{\isacharbrackright}}\ {\isaliteral{7C}{\isacharbar}}\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   288
 
\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ {\isaliteral{28}{\isacharparenleft}}th{\isaliteral{27}{\isacharprime}}{\isaliteral{23}{\isacharhash}}qs{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ {\isaliteral{28}{\isacharparenleft}}SOME\ q{\isaliteral{2E}{\isachardot}}\ distinct\ q\ {\isaliteral{5C3C616E643E}{\isasymand}}\ set\ q\ {\isaliteral{3D}{\isacharequal}}\ set\ qs{\isaliteral{29}{\isacharparenright}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   289
 
\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ in\ pwq{\isaliteral{28}{\isacharparenleft}}cs{\isaliteral{3A}{\isacharcolon}}{\isaliteral{3D}{\isacharequal}}nq{\isaliteral{29}{\isacharparenright}}\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ {\isaliteral{7C}{\isacharbar}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   290
 
\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ {\isaliteral{5F}{\isacharunderscore}}\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ pwq\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   291
 
\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ in\ let\ ncp\ {\isaliteral{3D}{\isacharequal}}\ cpreced\ {\isaliteral{28}{\isacharparenleft}}e{\isaliteral{23}{\isacharhash}}s{\isaliteral{29}{\isacharparenright}}\ nwq\ in\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   292
 
\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ {\isaliteral{5C3C6C706172723E}{\isasymlparr}}waiting{\isaliteral{5F}{\isacharunderscore}}queue\ {\isaliteral{3D}{\isacharequal}}\ nwq{\isaliteral{2C}{\isacharcomma}}\ cur{\isaliteral{5F}{\isacharunderscore}}preced\ {\isaliteral{3D}{\isacharequal}}\ ncp{\isaliteral{5C3C72706172723E}{\isasymrparr}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   293
 
\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ {\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   294
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   295
 
\isa{wq} is a shorthand for \isa{waiting{\isaliteral{5F}{\isacharunderscore}}queue}.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   296
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   297
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   298
 
\isacommand{definition}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   299
 
\ wq\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}state\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ cs\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ list{\isaliteral{22}{\isachardoublequoteclose}}\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   300
 
\isakeyword{where}\ {\isaliteral{22}{\isachardoublequoteopen}}wq\ s\ {\isaliteral{3D}{\isacharequal}}{\isaliteral{3D}{\isacharequal}}\ waiting{\isaliteral{5F}{\isacharunderscore}}queue\ {\isaliteral{28}{\isacharparenleft}}schs\ s{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   301
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   302
 
\isa{cp} is a shorthand for \isa{cur{\isaliteral{5F}{\isacharunderscore}}preced}.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   303
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   304
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   305
 
\isacommand{definition}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   306
 
\ cp\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}state\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ precedence{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   307
 
\isakeyword{where}\ {\isaliteral{22}{\isachardoublequoteopen}}cp\ s\ {\isaliteral{3D}{\isacharequal}}\ cur{\isaliteral{5F}{\isacharunderscore}}preced\ {\isaliteral{28}{\isacharparenleft}}schs\ s{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   308
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   309
 
Functions \isa{holding}, \isa{waiting}, \isa{depend} and \isa{dependents} still have the
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   310
 
  same meaning, but redefined so that they no longer depend on the fictitious {\em waiting queue function}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   311
 
  \isa{wq}, but on system state \isa{s}.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   312
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   313
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   314
 
\isacommand{defs}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   315
 
\ {\isaliteral{28}{\isacharparenleft}}\isakeyword{overloaded}{\isaliteral{29}{\isacharparenright}}\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   316
 
\ \ s{\isaliteral{5F}{\isacharunderscore}}holding{\isaliteral{5F}{\isacharunderscore}}def{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}holding\ {\isaliteral{28}{\isacharparenleft}}s{\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}state{\isaliteral{29}{\isacharparenright}}\ thread\ cs\ {\isaliteral{3D}{\isacharequal}}{\isaliteral{3D}{\isacharequal}}\ {\isaliteral{28}{\isacharparenleft}}thread\ {\isaliteral{5C3C696E3E}{\isasymin}}\ set\ {\isaliteral{28}{\isacharparenleft}}wq\ s\ cs{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{5C3C616E643E}{\isasymand}}\ thread\ {\isaliteral{3D}{\isacharequal}}\ hd\ {\isaliteral{28}{\isacharparenleft}}wq\ s\ cs{\isaliteral{29}{\isacharparenright}}{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   317
 
\ \ s{\isaliteral{5F}{\isacharunderscore}}waiting{\isaliteral{5F}{\isacharunderscore}}def{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}waiting\ {\isaliteral{28}{\isacharparenleft}}s{\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}state{\isaliteral{29}{\isacharparenright}}\ thread\ cs\ {\isaliteral{3D}{\isacharequal}}{\isaliteral{3D}{\isacharequal}}\ {\isaliteral{28}{\isacharparenleft}}thread\ {\isaliteral{5C3C696E3E}{\isasymin}}\ set\ {\isaliteral{28}{\isacharparenleft}}wq\ s\ cs{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{5C3C616E643E}{\isasymand}}\ thread\ {\isaliteral{5C3C6E6F7465713E}{\isasymnoteq}}\ hd\ {\isaliteral{28}{\isacharparenleft}}wq\ s\ cs{\isaliteral{29}{\isacharparenright}}{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   318
 
\ \ s{\isaliteral{5F}{\isacharunderscore}}depend{\isaliteral{5F}{\isacharunderscore}}def{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}depend\ {\isaliteral{28}{\isacharparenleft}}s{\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}state{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{3D}{\isacharequal}}{\isaliteral{3D}{\isacharequal}}\ {\isaliteral{7B}{\isacharbraceleft}}{\isaliteral{28}{\isacharparenleft}}Th\ t{\isaliteral{2C}{\isacharcomma}}\ Cs\ c{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{7C}{\isacharbar}}\ t\ c{\isaliteral{2E}{\isachardot}}\ waiting\ {\isaliteral{28}{\isacharparenleft}}wq\ s{\isaliteral{29}{\isacharparenright}}\ t\ c{\isaliteral{7D}{\isacharbraceright}}\ {\isaliteral{5C3C756E696F6E3E}{\isasymunion}}\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   319
 
\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ {\isaliteral{7B}{\isacharbraceleft}}{\isaliteral{28}{\isacharparenleft}}Cs\ c{\isaliteral{2C}{\isacharcomma}}\ Th\ t{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{7C}{\isacharbar}}\ c\ t{\isaliteral{2E}{\isachardot}}\ holding\ {\isaliteral{28}{\isacharparenleft}}wq\ s{\isaliteral{29}{\isacharparenright}}\ t\ c{\isaliteral{7D}{\isacharbraceright}}{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   320
 
\ \ s{\isaliteral{5F}{\isacharunderscore}}dependents{\isaliteral{5F}{\isacharunderscore}}def{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}dependents\ {\isaliteral{28}{\isacharparenleft}}s{\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}state{\isaliteral{29}{\isacharparenright}}\ th\ {\isaliteral{3D}{\isacharequal}}{\isaliteral{3D}{\isacharequal}}\ {\isaliteral{7B}{\isacharbraceleft}}th{\isaliteral{27}{\isacharprime}}\ {\isaliteral{2E}{\isachardot}}\ {\isaliteral{28}{\isacharparenleft}}Th\ th{\isaliteral{27}{\isacharprime}}{\isaliteral{2C}{\isacharcomma}}\ Th\ th{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{5C3C696E3E}{\isasymin}}\ {\isaliteral{28}{\isacharparenleft}}depend\ {\isaliteral{28}{\isacharparenleft}}wq\ s{\isaliteral{29}{\isacharparenright}}{\isaliteral{29}{\isacharparenright}}{\isaliteral{5E}{\isacharcircum}}{\isaliteral{2B}{\isacharplus}}{\isaliteral{7D}{\isacharbraceright}}{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   321
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   322
 
The following function \isa{readys} calculates the set of ready threads. A thread is {\em ready}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   323
 
  for running if it is a live thread and it is not waiting for any critical resource.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   324
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   325
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   326
 
\isacommand{definition}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   327
 
\ readys\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}state\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ set{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   328
 
\isakeyword{where}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   329
 
\ \ {\isaliteral{22}{\isachardoublequoteopen}}readys\ s\ {\isaliteral{3D}{\isacharequal}}\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   330
 
\ \ \ \ \ {\isaliteral{7B}{\isacharbraceleft}}thread\ {\isaliteral{2E}{\isachardot}}\ thread\ {\isaliteral{5C3C696E3E}{\isasymin}}\ threads\ s\ {\isaliteral{5C3C616E643E}{\isasymand}}\ {\isaliteral{28}{\isacharparenleft}}{\isaliteral{5C3C666F72616C6C3E}{\isasymforall}}\ cs{\isaliteral{2E}{\isachardot}}\ {\isaliteral{5C3C6E6F743E}{\isasymnot}}\ waiting\ s\ thread\ cs{\isaliteral{29}{\isacharparenright}}{\isaliteral{7D}{\isacharbraceright}}{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   331
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   332
 
The following function \isa{runing} calculates the set of running thread, which is the ready
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   333
 
  thread with the highest precedence.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   334
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   335
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   336
 
\isacommand{definition}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   337
 
\ runing\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}state\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ set{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   338
 
\isakeyword{where}\ {\isaliteral{22}{\isachardoublequoteopen}}runing\ s\ {\isaliteral{3D}{\isacharequal}}\ {\isaliteral{7B}{\isacharbraceleft}}th\ {\isaliteral{2E}{\isachardot}}\ th\ {\isaliteral{5C3C696E3E}{\isasymin}}\ readys\ s\ {\isaliteral{5C3C616E643E}{\isasymand}}\ cp\ s\ th\ {\isaliteral{3D}{\isacharequal}}\ Max\ {\isaliteral{28}{\isacharparenleft}}{\isaliteral{28}{\isacharparenleft}}cp\ s{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{60}{\isacharbackquote}}\ {\isaliteral{28}{\isacharparenleft}}readys\ s{\isaliteral{29}{\isacharparenright}}{\isaliteral{29}{\isacharparenright}}{\isaliteral{7D}{\isacharbraceright}}{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   339
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   340
 
The following function \isa{holdents\ s\ th} returns the set of resources held by thread
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   341
 
  \isa{th} in state \isa{s}.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   342
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   343
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   344
 
\isacommand{definition}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   345
 
\ holdents\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}state\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ cs\ set{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   346
 
\ \ \isakeyword{where}\ {\isaliteral{22}{\isachardoublequoteopen}}holdents\ s\ th\ {\isaliteral{3D}{\isacharequal}}\ {\isaliteral{7B}{\isacharbraceleft}}cs\ {\isaliteral{2E}{\isachardot}}\ {\isaliteral{28}{\isacharparenleft}}Cs\ cs{\isaliteral{2C}{\isacharcomma}}\ Th\ th{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{5C3C696E3E}{\isasymin}}\ depend\ s{\isaliteral{7D}{\isacharbraceright}}{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   347
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   348
 
\isa{cntCS\ s\ th} returns the number of resources held by thread \isa{th} in
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   349
 
  state \isa{s}:%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   350
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   351
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   352
 
\isacommand{definition}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   353
 
\ cntCS\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}state\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ nat{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   354
 
\isakeyword{where}\ {\isaliteral{22}{\isachardoublequoteopen}}cntCS\ s\ th\ {\isaliteral{3D}{\isacharequal}}\ card\ {\isaliteral{28}{\isacharparenleft}}holdents\ s\ th{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   355
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   356
 
The fact that event \isa{e} is eligible to happen next in state \isa{s}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   357
 
  is expressed as \isa{step\ s\ e}. The predicate \isa{step} is inductively defined as
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   358
 
  follows:%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   359
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   360
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   361
 
\isacommand{inductive}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   362
 
\ step\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}state\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ event\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ bool{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   363
 
\isakeyword{where}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   364
 
\ \ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   365
 
\isamarkupcmt{A thread can be created if it is not a live thread:%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   366
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   367
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   368
 
\ \ thread{\isaliteral{5F}{\isacharunderscore}}create{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}{\isaliteral{5C3C6C6272616B6B3E}{\isasymlbrakk}}thread\ {\isaliteral{5C3C6E6F74696E3E}{\isasymnotin}}\ threads\ s{\isaliteral{5C3C726272616B6B3E}{\isasymrbrakk}}\ {\isaliteral{5C3C4C6F6E6772696768746172726F773E}{\isasymLongrightarrow}}\ step\ s\ {\isaliteral{28}{\isacharparenleft}}Create\ thread\ prio{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}\ {\isaliteral{7C}{\isacharbar}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   369
 
\ \ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   370
 
\isamarkupcmt{A thread can exit if it no longer hold any resource:%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   371
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   372
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   373
 
\ \ thread{\isaliteral{5F}{\isacharunderscore}}exit{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}{\isaliteral{5C3C6C6272616B6B3E}{\isasymlbrakk}}thread\ {\isaliteral{5C3C696E3E}{\isasymin}}\ runing\ s{\isaliteral{3B}{\isacharsemicolon}}\ holdents\ s\ thread\ {\isaliteral{3D}{\isacharequal}}\ {\isaliteral{7B}{\isacharbraceleft}}{\isaliteral{7D}{\isacharbraceright}}{\isaliteral{5C3C726272616B6B3E}{\isasymrbrakk}}\ {\isaliteral{5C3C4C6F6E6772696768746172726F773E}{\isasymLongrightarrow}}\ step\ s\ {\isaliteral{28}{\isacharparenleft}}Exit\ thread{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}\ {\isaliteral{7C}{\isacharbar}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   374
 
\ \ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   375
 
\isamarkupcmt{A thread can request for an critical resource \isa{cs}, if it is running and
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   376
 
  the request does not form a loop in the current RAG. The latter condition
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   377
 
  is set up to avoid deadlock. The condition also reflects our assumption all threads are
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   378
 
  carefully programmed so that deadlock can not happen.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   379
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   380
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   381
 
\ \ thread{\isaliteral{5F}{\isacharunderscore}}P{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}{\isaliteral{5C3C6C6272616B6B3E}{\isasymlbrakk}}thread\ {\isaliteral{5C3C696E3E}{\isasymin}}\ runing\ s{\isaliteral{3B}{\isacharsemicolon}}\ \ {\isaliteral{28}{\isacharparenleft}}Cs\ cs{\isaliteral{2C}{\isacharcomma}}\ Th\ thread{\isaliteral{29}{\isacharparenright}}\ \ {\isaliteral{5C3C6E6F74696E3E}{\isasymnotin}}\ {\isaliteral{28}{\isacharparenleft}}depend\ s{\isaliteral{29}{\isacharparenright}}{\isaliteral{5E}{\isacharcircum}}{\isaliteral{2B}{\isacharplus}}{\isaliteral{5C3C726272616B6B3E}{\isasymrbrakk}}\ {\isaliteral{5C3C4C6F6E6772696768746172726F773E}{\isasymLongrightarrow}}\ step\ s\ {\isaliteral{28}{\isacharparenleft}}P\ thread\ cs{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}\ {\isaliteral{7C}{\isacharbar}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   382
 
\ \ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   383
 
\isamarkupcmt{A thread can release a critical resource \isa{cs} if it is running and holding that resource.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   384
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   385
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   386
 
\ \ thread{\isaliteral{5F}{\isacharunderscore}}V{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}{\isaliteral{5C3C6C6272616B6B3E}{\isasymlbrakk}}thread\ {\isaliteral{5C3C696E3E}{\isasymin}}\ runing\ s{\isaliteral{3B}{\isacharsemicolon}}\ \ holding\ s\ thread\ cs{\isaliteral{5C3C726272616B6B3E}{\isasymrbrakk}}\ {\isaliteral{5C3C4C6F6E6772696768746172726F773E}{\isasymLongrightarrow}}\ step\ s\ {\isaliteral{28}{\isacharparenleft}}V\ thread\ cs{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}\ {\isaliteral{7C}{\isacharbar}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   387
 
\ \ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   388
 
\isamarkupcmt{A thread can adjust its own priority as long as it is current running.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   389
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   390
 
\ \ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   391
 
\ \ thread{\isaliteral{5F}{\isacharunderscore}}set{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}{\isaliteral{5C3C6C6272616B6B3E}{\isasymlbrakk}}thread\ {\isaliteral{5C3C696E3E}{\isasymin}}\ runing\ s{\isaliteral{5C3C726272616B6B3E}{\isasymrbrakk}}\ {\isaliteral{5C3C4C6F6E6772696768746172726F773E}{\isasymLongrightarrow}}\ step\ s\ {\isaliteral{28}{\isacharparenleft}}Set\ thread\ prio{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   392
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   393
 
With predicate \isa{step}, the fact that \isa{s} is a legal state in
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   394
 
  Priority Inheritance protocol can be expressed as: \isa{vt\ step\ s}, where
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   395
 
  the predicate \isa{vt} can be defined as the following:%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   396
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   397
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   398
 
\isacommand{inductive}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   399
 
\ vt\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}{\isaliteral{28}{\isacharparenleft}}state\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ event\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ bool{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ state\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ bool{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   400
 
\ \isakeyword{for}\ cs\ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   401
 
\isamarkupcmt{\isa{cs} is an argument representing any step predicate.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   402
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   403
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   404
 
\isakeyword{where}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   405
 
\ \ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   406
 
\isamarkupcmt{Empty list \isa{{\isaliteral{5B}{\isacharbrackleft}}{\isaliteral{5D}{\isacharbrackright}}} is a legal state in any protocol:%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   407
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   408
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   409
 
\ \ vt{\isaliteral{5F}{\isacharunderscore}}nil{\isaliteral{5B}{\isacharbrackleft}}intro{\isaliteral{5D}{\isacharbrackright}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}vt\ cs\ {\isaliteral{5B}{\isacharbrackleft}}{\isaliteral{5D}{\isacharbrackright}}{\isaliteral{22}{\isachardoublequoteclose}}\ {\isaliteral{7C}{\isacharbar}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   410
 
\ \ %
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   411
 
\isamarkupcmt{If \isa{s} a legal state, and event \isa{e} is eligible to happen
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   412
 
        in state \isa{s}, then \isa{e{\isaliteral{23}{\isacharhash}}{\isaliteral{23}{\isacharhash}}s} is a legal state as well:%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   413
 
}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   414
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   415
 
\ \ vt{\isaliteral{5F}{\isacharunderscore}}cons{\isaliteral{5B}{\isacharbrackleft}}intro{\isaliteral{5D}{\isacharbrackright}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}{\isaliteral{5C3C6C6272616B6B3E}{\isasymlbrakk}}vt\ cs\ s{\isaliteral{3B}{\isacharsemicolon}}\ cs\ s\ e{\isaliteral{5C3C726272616B6B3E}{\isasymrbrakk}}\ {\isaliteral{5C3C4C6F6E6772696768746172726F773E}{\isasymLongrightarrow}}\ vt\ cs\ {\isaliteral{28}{\isacharparenleft}}e{\isaliteral{23}{\isacharhash}}s{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   416
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   417
 
It is easy to see that the definition of \isa{vt} is generic. It can be applied to
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   418
 
  any step predicate to get the set of legal states.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   419
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   420
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   421
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   422
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   423
 
The following two functions \isa{the{\isaliteral{5F}{\isacharunderscore}}cs} and \isa{the{\isaliteral{5F}{\isacharunderscore}}th} are used to extract
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   424
 
  critical resource and thread respectively out of RAG nodes.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   425
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   426
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   427
 
\isacommand{fun}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   428
 
\ the{\isaliteral{5F}{\isacharunderscore}}cs\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}node\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ cs{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   429
 
\isakeyword{where}\ {\isaliteral{22}{\isachardoublequoteopen}}the{\isaliteral{5F}{\isacharunderscore}}cs\ {\isaliteral{28}{\isacharparenleft}}Cs\ cs{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{3D}{\isacharequal}}\ cs{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   430
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   431
 
\isacommand{fun}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   432
 
\ the{\isaliteral{5F}{\isacharunderscore}}th\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}node\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   433
 
\ \ \isakeyword{where}\ {\isaliteral{22}{\isachardoublequoteopen}}the{\isaliteral{5F}{\isacharunderscore}}th\ {\isaliteral{28}{\isacharparenleft}}Th\ th{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{3D}{\isacharequal}}\ th{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   434
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   435
 
The following predicate \isa{next{\isaliteral{5F}{\isacharunderscore}}th} describe the next thread to
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   436
 
  take over when a critical resource is released. In \isa{next{\isaliteral{5F}{\isacharunderscore}}th\ s\ th\ cs\ t},
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   437
 
  \isa{th} is the thread to release, \isa{t} is the one to take over.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   438
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   439
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   440
 
\isacommand{definition}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   441
 
\ next{\isaliteral{5F}{\isacharunderscore}}th{\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}state\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ cs\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ bool{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   442
 
\ \ \isakeyword{where}\ {\isaliteral{22}{\isachardoublequoteopen}}next{\isaliteral{5F}{\isacharunderscore}}th\ s\ th\ cs\ t\ {\isaliteral{3D}{\isacharequal}}\ {\isaliteral{28}{\isacharparenleft}}{\isaliteral{5C3C6578697374733E}{\isasymexists}}\ rest{\isaliteral{2E}{\isachardot}}\ wq\ s\ cs\ {\isaliteral{3D}{\isacharequal}}\ th{\isaliteral{23}{\isacharhash}}rest\ {\isaliteral{5C3C616E643E}{\isasymand}}\ rest\ {\isaliteral{5C3C6E6F7465713E}{\isasymnoteq}}\ {\isaliteral{5B}{\isacharbrackleft}}{\isaliteral{5D}{\isacharbrackright}}\ {\isaliteral{5C3C616E643E}{\isasymand}}\ \isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   443
 
\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ t\ {\isaliteral{3D}{\isacharequal}}\ hd\ {\isaliteral{28}{\isacharparenleft}}SOME\ q{\isaliteral{2E}{\isachardot}}\ distinct\ q\ {\isaliteral{5C3C616E643E}{\isasymand}}\ set\ q\ {\isaliteral{3D}{\isacharequal}}\ set\ rest{\isaliteral{29}{\isacharparenright}}{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   444
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   445
 
The function \isa{count\ Q\ l} is used to count the occurrence of situation \isa{Q}
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   446
 
  in list \isa{l}:%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   447
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   448
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   449
 
\isacommand{definition}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   450
 
\ count\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}{\isaliteral{28}{\isacharparenleft}}{\isaliteral{27}{\isacharprime}}a\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ bool{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ {\isaliteral{27}{\isacharprime}}a\ list\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ nat{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   451
 
\isakeyword{where}\ {\isaliteral{22}{\isachardoublequoteopen}}count\ Q\ l\ {\isaliteral{3D}{\isacharequal}}\ length\ {\isaliteral{28}{\isacharparenleft}}filter\ Q\ l{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   452
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   453
 
\isa{cntP\ s} returns the number of operation \isa{P} happened
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   454
 
  before reaching state \isa{s}.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   455
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   456
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   457
 
\isacommand{definition}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   458
 
\ cntP\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}state\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ nat{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   459
 
\isakeyword{where}\ {\isaliteral{22}{\isachardoublequoteopen}}cntP\ s\ th\ {\isaliteral{3D}{\isacharequal}}\ count\ {\isaliteral{28}{\isacharparenleft}}{\isaliteral{5C3C6C616D6264613E}{\isasymlambda}}\ e{\isaliteral{2E}{\isachardot}}\ {\isaliteral{5C3C6578697374733E}{\isasymexists}}\ cs{\isaliteral{2E}{\isachardot}}\ e\ {\isaliteral{3D}{\isacharequal}}\ P\ th\ cs{\isaliteral{29}{\isacharparenright}}\ s{\isaliteral{22}{\isachardoublequoteclose}}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   460
 
\begin{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   461
 
\isa{cntV\ s} returns the number of operation \isa{V} happened
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   462
 
  before reaching state \isa{s}.%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   463
 
\end{isamarkuptext}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   464
 
\isamarkuptrue%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   465
 
\isacommand{definition}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   466
 
\ cntV\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}state\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ thread\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ nat{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   467
 
\isakeyword{where}\ {\isaliteral{22}{\isachardoublequoteopen}}cntV\ s\ th\ {\isaliteral{3D}{\isacharequal}}\ count\ {\isaliteral{28}{\isacharparenleft}}{\isaliteral{5C3C6C616D6264613E}{\isasymlambda}}\ e{\isaliteral{2E}{\isachardot}}\ {\isaliteral{5C3C6578697374733E}{\isasymexists}}\ cs{\isaliteral{2E}{\isachardot}}\ e\ {\isaliteral{3D}{\isacharequal}}\ V\ th\ cs{\isaliteral{29}{\isacharparenright}}\ s{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   468
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   469
 
\isadelimtheory
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   470
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   471
 
\endisadelimtheory
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   472
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   473
 
\isatagtheory
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   474
 
\isacommand{end}\isamarkupfalse%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   475
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   476
 
\endisatagtheory
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   477
 
{\isafoldtheory}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   478
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   479
 
\isadelimtheory
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   480
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   481
 
%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   482
 
\endisadelimtheory
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   483
 
\isanewline
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   484
 
\end{isabellebody}%
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   485
 
%%% Local Variables:
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   486
 
%%% mode: latex
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   487
 
%%% TeX-master: "root"
4190df6f4488 initial version of the PIP formalisation
urbanc
parents:
diff changeset 
   488
 
%%% End:
regexp