(* ID: $Id$


Author: Florian Haftmann, TU Muenchen


*)


header {* A simple counterexample generator *}


theory Quickcheck


imports Random Eval


begin


subsection {* The @{text random} class *}


class random = type +


fixes random :: "index \<Rightarrow> seed \<Rightarrow> 'a \<times> seed"


print_classes


instantiation itself :: (type) random


begin


definition


"random _ = return TYPE('a)"


instance ..


end


lemma random_aux_if:


fixes random' :: "index \<Rightarrow> index \<Rightarrow> seed \<Rightarrow> 'a \<times> seed"


assumes "random' 0 j = undefined"


and "\<And>i. random' (Suc_index i) j = rhs2 i"


shows "random' i j s = (if i = 0 then undefined else rhs2 (i  1) s)"


by (cases i rule: index.exhaust) (insert assms, simp_all add: undefined_fun)


setup {*


let


exception REC;


fun random_inst tyco thy =


let


val { descr, index, ... } = DatatypePackage.the_datatype thy tyco;


val _ = if length descr > 1 then raise REC else ();


val (raw_vs, _) = DatatypePackage.the_datatype_spec thy tyco;


val vs = (map o apsnd)


(curry (Sorts.inter_sort (Sign.classes_of thy)) @{sort random}) raw_vs;


val ty = Type (tyco, map TFree vs);


val typ_of = DatatypeAux.typ_of_dtyp descr vs;


val SOME (_, _, constrs) = AList.lookup (op =) descr index;


val randomN = NameSpace.base @{const_name random};


val random_aux_name = randomN ^ "_" ^ Class.type_name tyco ^ "'";


fun lift_ty ty = StateMonad.liftT ty @{typ seed};


val ty_aux = @{typ index} > @{typ index} > lift_ty ty;


fun random ty =


Const (@{const_name random}, @{typ index} > lift_ty ty);


val random_aux = Free (random_aux_name, ty_aux);


fun add_cons_arg dty (is_rec, t) =


let


val ty' = typ_of dty;


val rec_call = case try DatatypeAux.dest_DtRec dty


of SOME index' => index = index'


 NONE => false


val random' = if rec_call


then random_aux $ @{term "i\<Colon>index"} $ @{term "j\<Colon>index"}


else random ty' $ @{term "j\<Colon>index"}


val is_rec' = is_rec orelse DatatypeAux.is_rec_type dty;


val t' = StateMonad.mbind ty' ty @{typ seed} random' (Abs ("", ty', t))


in (is_rec', t') end;


fun mk_cons_t (c, dtys) =


let


val ty' = map typ_of dtys > ty;


val t = StateMonad.return ty @{typ seed} (list_comb (Const (c, ty'),


map Bound (length dtys  1 downto 0)));


val (is_rec, t') = fold_rev add_cons_arg dtys (false, t);


in (is_rec, StateMonad.run ty @{typ seed} t') end;


fun check_empty [] = NONE


 check_empty xs = SOME xs;


fun bundle_cons_ts cons_ts =


let


val ts = map snd cons_ts;


val t = HOLogic.mk_list (lift_ty ty) ts;


val t' = Const (@{const_name select}, HOLogic.listT (lift_ty ty) > lift_ty (lift_ty ty)) $ t;


val t'' = Const (@{const_name collapse}, lift_ty (lift_ty ty) > lift_ty ty) $ t';


in t'' end;


fun bundle_conss (some_rec_t, nonrec_t) =


let


val t = case some_rec_t


of SOME rec_t => Const (@{const_name collapse}, lift_ty (lift_ty ty) > lift_ty ty)


$ (Const (@{const_name select_default},


@{typ index} > lift_ty ty > lift_ty ty > lift_ty (lift_ty ty))


$ @{term "i\<Colon>index"} $ rec_t $ nonrec_t)


 NONE => nonrec_t


in t end;


val random_rhs = constrs


> map mk_cons_t


> List.partition fst


> apfst (Option.map bundle_cons_ts o check_empty)


> apsnd bundle_cons_ts


> bundle_conss;


val random_aux_undef = (HOLogic.mk_Trueprop o HOLogic.mk_eq)


(random_aux $ @{term "0\<Colon>index"} $ @{term "j\<Colon>index"}, Const (@{const_name undefined}, lift_ty ty))


val random_aux_eq = (HOLogic.mk_Trueprop o HOLogic.mk_eq)


(random_aux $ @{term "Suc_index i"} $ @{term "j\<Colon>index"}, random_rhs);


val random_eq = (HOLogic.mk_Trueprop o HOLogic.mk_eq) (Const (@{const_name random},


@{typ index} > lift_ty ty) $ @{term "i\<Colon>index"},


random_aux $ @{term "i\<Colon>index"} $ @{term "i\<Colon>index"});


val del_func = Attrib.internal (fn _ => Thm.declaration_attribute


(fn thm => Context.mapping (Code.del_func thm) I));


fun add_code simps lthy =


let


val thy = ProofContext.theory_of lthy;


val thm = @{thm random_aux_if}


> Drule.instantiate' [SOME (Thm.ctyp_of thy ty)] [SOME (Thm.cterm_of thy random_aux)]


> (fn thm => thm OF simps)


> singleton (ProofContext.export lthy (ProofContext.init thy))


in


lthy


> LocalTheory.theory (PureThy.note Thm.internalK (random_aux_name ^ "_code", thm)


#> Code.add_func)


end;


in


thy


> TheoryTarget.instantiation ([tyco], vs, @{sort random})


> PrimrecPackage.add_primrec [(random_aux_name, SOME ty_aux, NoSyn)]


[(("", [del_func]), random_aux_undef), (("", [del_func]), random_aux_eq)]


> add_code


> `(fn lthy => Syntax.check_term lthy random_eq)


> (fn eq => Specification.definition (NONE, (("", []), eq)))


> snd


> Class.prove_instantiation_instance (K (Class.intro_classes_tac []))


> LocalTheory.exit


> ProofContext.theory_of


end;


fun add_random_inst [tyco] = (fn thy => random_inst tyco thy handle REC =>


(warning ("Will not generated random elements for mutual recursive type " ^ quote tyco); thy))


 add_random_inst tycos = tap (fn _ => warning


("Will not generated random elements for mutual recursive type(s) " ^ commas (map quote tycos)));


in DatatypePackage.interpretation add_random_inst end


*}


instantiation int :: random


begin


definition


"random n = (do


(b, m) \<leftarrow> random n;


return (if b then int m else  int m)


done)"


instance ..


end


instantiation set :: (random) random


begin


155 
156 
157 
158 
159 
160 


lemma random_set'_code [code func]:


"random_set' i j s = (if i = 0 then undefined else collapse (select_default (i  1)


(do x \<leftarrow> random (i  1); xs \<leftarrow> random_set' (i  1) j; return (insert x xs) done)


(return {})) s)"


by (rule random_aux_if random_set'.simps)+


167 
168 
169 


instance ..


172 
173 


code_reserved SML Quickcheck


176 


subsection {* Quickcheck generator *}


179 
180 
181 
182 


val eval_ref : (unit > int > int * int > term list option * (int * int)) option ref = ref NONE;


185 
186 
187 
188 
189 
190 
191 
192 
193 
194 
195 
196 
197 
198 
199 
200 


fun compile_generator_expr thy prop tys =


let


val f = CodePackage.eval_term ("Quickcheck.eval_ref", eval_ref) thy


(mk_generator_expr prop tys) [];


in f #> Random_Engine.run #> (Option.map o map) (Code.postprocess_term thy) end;


207 
fun VALUE prop tys thy =


208 
let


209 
val t = mk_generator_expr prop tys;


210 
val eq = Logic.mk_equals (Free ("VALUE", fastype_of t), t)


211 
in


212 
thy


213 
> TheoryTarget.init NONE


214 
> Specification.definition (NONE, (("", []), eq))


215 
> snd


216 
> LocalTheory.exit


217 
> ProofContext.theory_of


218 
end;


219 


220 
end


221 
*}


222 


223 
(*setup {* Quickcheck.VALUE @{term "\<lambda>(n::nat) (m::nat) (q::nat). n = m + q + 1"} [@{typ nat}, @{typ nat}, @{typ nat}] *}


224 
export_code VALUE in SML module_name QuickcheckExample file "~~/../../gen_code/quickcheck.ML"


225 
use "~~/../../gen_code/quickcheck.ML"


226 
ML {* Random_Engine.run (QuickcheckExample.range 1) *}*)


227 


228 
ML {* val f = Quickcheck.compile_generator_expr @{theory}


229 
@{term "\<lambda>(n::nat) (m::nat) (q::nat). n = m + q + 1"} [@{typ nat}, @{typ nat}, @{typ nat}] *}


230 


231 
ML {* f 5 > (Option.map o map) (Sign.string_of_term @{theory}) *}


238 
242 


243 
ML {* val f = Quickcheck.compile_generator_expr @{theory}


244 
@{term "\<lambda>(n::int) (m::int) (q::int). n = m + q + 1"} [@{typ int}, @{typ int}, @{typ int}] *}


245 


246 
(*definition "FOO = (True, Suc 0)"


247 


248 
code_module (test) QuickcheckExample


249 
file "~~/../../gen_code/quickcheck'.ML"


250 
contains FOO*)


251 


252 
263 
266 


267 
ML {* val f = Quickcheck.compile_generator_expr @{theory}


268 
@{term "\<lambda>(xs\<Colon>int list) ys. rev (xs @ ys) = rev xs @ rev ys"}


269 
[@{typ "int list"}, @{typ "int list"}] *}


270 


271 
289 


290 
subsection {* Incremental function generator *}


291 


292 
ML {*


293 
structure Quickcheck =


294 
struct


295 


296 
open Quickcheck;


297 


298 
fun random_fun (eq : 'a > 'a > bool)


299 
(random : Random_Engine.seed > 'b * Random_Engine.seed)


300 
(random_split : Random_Engine.seed > Random_Engine.seed * Random_Engine.seed)


301 
(seed : Random_Engine.seed) =


302 
let


303 
val (seed', seed'') = random_split seed;


304 
val state = ref (seed', []);


305 
fun random_fun' x =


306 
let


307 
val (seed, fun_map) = ! state;


308 
in case AList.lookup (uncurry eq) fun_map x


309 
of SOME y => y


310 
 NONE => let


311 
val (y, seed') = random seed;


312 
val _ = state := (seed', (x, y) :: fun_map);


313 
in y end


314 
end;


315 
in (random_fun', seed'') end;


316 


317 
end


318 
*}


319 


320 
axiomatization


321 
random_fun_aux :: "('a \<Rightarrow> 'a \<Rightarrow> bool) \<Rightarrow> (seed \<Rightarrow> 'b \<times> seed)


322 
\<Rightarrow> (seed \<Rightarrow> seed \<times> seed) \<Rightarrow> seed \<Rightarrow> ('a \<Rightarrow> 'b) \<times> seed"


323 


324 
code_const random_fun_aux (SML "Quickcheck.random'_fun")


325 


326 
instantiation "fun" :: (term_of, term_of) term_of


327 
begin


328 


329 
instance ..


330 


331 
end


332 


333 
code_const "Eval.term_of :: ('a\<Colon>term_of \<Rightarrow> 'b\<Colon>term_of) \<Rightarrow> _"


334 
(SML "(fn '_ => Const (\"arbitrary\", dummyT))")


335 


336 
instantiation "fun" :: (eq, "{type, random}") random


337 
begin


338 


339 
definition


340 
"random n = random_fun_aux (op =) (random n) split_seed"


341 


342 
instance ..


343 


344 
end


345 


346 
ML {* val f = Quickcheck.compile_generator_expr @{theory}


347 
@{term "\<lambda>f k. int (f k) = k"} [@{typ "int \<Rightarrow> nat"}, @{typ int}] *}


348 


349 
355 


356 
ML {* val f = Quickcheck.compile_generator_expr @{theory}


357 
@{term "\<lambda>(A \<Colon> nat set) B. card (A \<union> B) = card A + card B"} [@{typ "nat set"}, @{typ "nat set"}] *}


358 


359 
367 


368 
ML {* val f = Quickcheck.compile_generator_expr @{theory}


369 
@{term "\<lambda>(s \<Colon> string). s \<noteq> rev s"} [@{typ string}] *}


370 


371 
382 


383 
end
