isabelle: comparison src/HOL/Bali/DeclConcepts.thy

equal deleted inserted replaced

-:f87d1105e181
+:ee939247b2fb
 theory DeclConcepts imports TypeRel begin
 section "access control (cf. 6.6), overriding and hiding (cf. 8.4.6.1)"
 definition is_public :: "prog \<Rightarrow> qtname \<Rightarrow> bool" where
-"is_public G qn \<equiv> (case class G qn of
+"is_public G qn = (case class G qn of
 None       \<Rightarrow> (case iface G qn of
 None       \<Rightarrow> False
 | Some i \<Rightarrow> access i = Public)
 | Some c \<Rightarrow> access c = Public)"
 text {*
 Primitive types are always accessible, interfaces and classes are accessible
 in their package or if they are defined public, an array type is accessible if
 its element type is accessible *}
-consts accessible_in   :: "prog \<Rightarrow> ty     \<Rightarrow> pname \<Rightarrow> bool"
-("_ \<turnstile> _ accessible'_in _" [61,61,61] 60)
-rt_accessible_in:: "prog \<Rightarrow> ref_ty \<Rightarrow> pname \<Rightarrow> bool"
-("_ \<turnstile> _ accessible'_in' _" [61,61,61] 60)
 primrec
-"G\<turnstile>(PrimT p)   accessible_in pack  = True"
+accessible_in :: "prog \<Rightarrow> ty \<Rightarrow> pname \<Rightarrow> bool"  ("_ \<turnstile> _ accessible'_in _" [61,61,61] 60) and
-accessible_in_RefT_simp:
+rt_accessible_in :: "prog \<Rightarrow> ref_ty \<Rightarrow> pname \<Rightarrow> bool"  ("_ \<turnstile> _ accessible'_in' _" [61,61,61] 60)
-"G\<turnstile>(RefT  r)   accessible_in pack  = G\<turnstile>r accessible_in' pack"
+where
+"G\<turnstile>(PrimT p) accessible_in pack = True"
-"G\<turnstile>(NullT)     accessible_in' pack = True"
+| accessible_in_RefT_simp:
-"G\<turnstile>(IfaceT I)  accessible_in' pack = ((pid I = pack) \<or> is_public G I)"
+"G\<turnstile>(RefT  r) accessible_in pack = G\<turnstile>r accessible_in' pack"
-"G\<turnstile>(ClassT C)  accessible_in' pack = ((pid C = pack) \<or> is_public G C)"
+| "G\<turnstile>(NullT) accessible_in' pack = True"
-"G\<turnstile>(ArrayT ty) accessible_in' pack = G\<turnstile>ty accessible_in pack"
+| "G\<turnstile>(IfaceT I) accessible_in' pack = ((pid I = pack) \<or> is_public G I)"
+| "G\<turnstile>(ClassT C) accessible_in' pack = ((pid C = pack) \<or> is_public G C)"
+| "G\<turnstile>(ArrayT ty) accessible_in' pack = G\<turnstile>ty accessible_in pack"
 declare accessible_in_RefT_simp [simp del]
-definition is_acc_class :: "prog \<Rightarrow> pname \<Rightarrow> qtname \<Rightarrow> bool" where
+definition
-"is_acc_class G P C \<equiv> is_class G C \<and> G\<turnstile>(Class C) accessible_in P"
+is_acc_class :: "prog \<Rightarrow> pname \<Rightarrow> qtname \<Rightarrow> bool"
+where "is_acc_class G P C = (is_class G C \<and> G\<turnstile>(Class C) accessible_in P)"
-definition is_acc_iface :: "prog \<Rightarrow> pname \<Rightarrow> qtname \<Rightarrow> bool" where
-"is_acc_iface G P I \<equiv> is_iface G I \<and> G\<turnstile>(Iface I) accessible_in P"
+definition
+is_acc_iface :: "prog \<Rightarrow> pname \<Rightarrow> qtname \<Rightarrow> bool"
-definition is_acc_type  :: "prog \<Rightarrow> pname \<Rightarrow> ty     \<Rightarrow> bool" where
+where "is_acc_iface G P I = (is_iface G I \<and> G\<turnstile>(Iface I) accessible_in P)"
-"is_acc_type  G P T \<equiv> is_type G T  \<and> G\<turnstile>T accessible_in P"
+definition
-definition is_acc_reftype  :: "prog \<Rightarrow> pname \<Rightarrow> ref_ty \<Rightarrow> bool" where
+is_acc_type :: "prog \<Rightarrow> pname \<Rightarrow> ty \<Rightarrow> bool"
-"is_acc_reftype  G P T \<equiv> isrtype G T  \<and> G\<turnstile>T accessible_in' P"
+where "is_acc_type  G P T = (is_type G T  \<and> G\<turnstile>T accessible_in P)"
+definition
+is_acc_reftype  :: "prog \<Rightarrow> pname \<Rightarrow> ref_ty \<Rightarrow> bool"
+where "is_acc_reftype G P T = (isrtype G T  \<and> G\<turnstile>T accessible_in' P)"
 lemma is_acc_classD:
 "is_acc_class G P C \<Longrightarrow>  is_class G C \<and> G\<turnstile>(Class C) accessible_in P"
 by (simp add: is_acc_class_def)
 instantiation acc_modi :: has_accmodi
 begin
 definition
-acc_modi_accmodi_def: "accmodi (a::acc_modi) \<equiv> a"
+acc_modi_accmodi_def: "accmodi (a::acc_modi) = a"
 instance ..
 end
 instantiation decl_ext_type:: (type) has_accmodi
 begin
 definition
-decl_acc_modi_def: "accmodi (d::('a:: type) decl_scheme) \<equiv> access d"
+decl_acc_modi_def: "accmodi (d::('a:: type) decl_scheme) = access d"
 instance ..
 end
 instantiation prod :: (type, has_accmodi) has_accmodi
 begin
 definition
-pair_acc_modi_def: "accmodi p \<equiv> (accmodi (snd p))"
+pair_acc_modi_def: "accmodi p = accmodi (snd p)"
 instance ..
 end
 instantiation memberdecl :: has_accmodi
 begin
 definition
-memberdecl_acc_modi_def: "accmodi m \<equiv> (case m of
+memberdecl_acc_modi_def: "accmodi m = (case m of
 fdecl f \<Rightarrow> accmodi f
 | mdecl m \<Rightarrow> accmodi m)"
 instance ..
 instantiation qtname_ext_type :: (type) has_declclass
 begin
 definition
-"declclass q \<equiv> \<lparr> pid = pid q, tid = tid q \<rparr>"
+"declclass q = \<lparr> pid = pid q, tid = tid q \<rparr>"
 instance ..
 end
 instantiation prod :: (has_declclass, type) has_declclass
 begin
 definition
-pair_declclass_def: "declclass p \<equiv> declclass (fst p)"
+pair_declclass_def: "declclass p = declclass (fst p)"
 instance ..
 end
 instantiation prod :: (type, has_static) has_static
 begin
 definition
-pair_is_static_def: "is_static p \<equiv> is_static (snd p)"
+pair_is_static_def: "is_static p = is_static (snd p)"
 instance ..
 end
 instantiation memberdecl :: has_static
 begin
 definition
 memberdecl_is_static_def:
-"is_static m \<equiv> (case m of
+"is_static m = (case m of
 fdecl f \<Rightarrow> is_static f
 | mdecl m \<Rightarrow> is_static m)"
 instance ..
 lemma mhead_static_simp [simp]: "is_static (mhead m) = is_static m"
 by (cases m) (simp add: mhead_def member_is_static_simp)
 -- {* some mnemotic selectors for various pairs *}
-definition decliface :: "qtname \<times> 'a decl_scheme \<Rightarrow> qtname" where
+definition
+decliface :: "qtname \<times> 'a decl_scheme \<Rightarrow> qtname" where
 "decliface = fst"          --{* get the interface component *}
-definition mbr :: "qtname \<times> memberdecl \<Rightarrow> memberdecl" where
+definition
+mbr :: "qtname \<times> memberdecl \<Rightarrow> memberdecl" where
 "mbr = snd"            --{* get the memberdecl component *}
-definition mthd :: "'b \<times> 'a \<Rightarrow> 'a" where
+definition
+mthd :: "'b \<times> 'a \<Rightarrow> 'a" where
 "mthd = snd"              --{* get the method component *}
 --{* also used for mdecl, mhead *}
-definition fld :: "'b \<times> 'a decl_scheme \<Rightarrow> 'a decl_scheme" where
+definition
+fld :: "'b \<times> 'a decl_scheme \<Rightarrow> 'a decl_scheme" where
 "fld = snd"               --{* get the field component *}
 --{* also used for @{text "((vname \<times> qtname)\<times> field)"} *}
 -- {* some mnemotic selectors for @{text "(vname \<times> qtname)"} *}
-definition fname:: "vname \<times> 'a \<Rightarrow> vname" where
+definition
-"fname = fst"
+fname:: "vname \<times> 'a \<Rightarrow> vname"
+where "fname = fst"
 --{* also used for fdecl *}
-definition declclassf:: "(vname \<times> qtname) \<Rightarrow> qtname" where
+definition
-"declclassf = snd"
+declclassf:: "(vname \<times> qtname) \<Rightarrow> qtname"
+where "declclassf = snd"
 lemma decliface_simp[simp]: "decliface (I,m) = I"
 by (simp add: decliface_def)
 lemma declclassf_simp[simp]:"declclassf (n,c) = c"
 by (simp add: declclassf_def)
 --{* some mnemotic selectors for @{text "(vname \<times> qtname)"} *}
-definition fldname :: "vname \<times> qtname \<Rightarrow> vname"  where
+definition
-"fldname = fst"
+fldname :: "vname \<times> qtname \<Rightarrow> vname"
+where "fldname = fst"
-definition fldclass :: "vname \<times> qtname \<Rightarrow> qtname" where
-"fldclass = snd"
+definition
+fldclass :: "vname \<times> qtname \<Rightarrow> qtname"
+where "fldclass = snd"
 lemma fldname_simp[simp]: "fldname (n,c) = n"
 by (simp add: fldname_def)
 lemma fldclass_simp[simp]: "fldclass (n,c) = c"
 by (simp add: fldname_def fldclass_def)
 text {* Convert a qualified method declaration (qualified with its declaring
 class) to a qualified member declaration:  @{text methdMembr}  *}
-definition methdMembr :: "qtname \<times> mdecl \<Rightarrow> qtname \<times> memberdecl" where
+definition
-"methdMembr m = (fst m, mdecl (snd m))"
+methdMembr :: "qtname \<times> mdecl \<Rightarrow> qtname \<times> memberdecl"
+where "methdMembr m = (fst m, mdecl (snd m))"
 lemma methdMembr_simp[simp]: "methdMembr (c,m) = (c,mdecl m)"
 by (simp add: methdMembr_def)
 lemma accmodi_methdMembr_simp[simp]: "accmodi (methdMembr m) = accmodi m"
 by (cases m) (simp add: methdMembr_def)
 text {* Convert a qualified method (qualified with its declaring
 class) to a qualified member declaration:  @{text method}  *}
-definition method :: "sig \<Rightarrow> (qtname \<times> methd) \<Rightarrow> (qtname \<times> memberdecl)" where
+definition
-"method sig m \<equiv> (declclass m, mdecl (sig, mthd m))"
+method :: "sig \<Rightarrow> (qtname \<times> methd) \<Rightarrow> (qtname \<times> memberdecl)"
+where "method sig m = (declclass m, mdecl (sig, mthd m))"
 lemma method_simp[simp]: "method sig (C,m) = (C,mdecl (sig,m))"
 by (simp add: method_def)
 lemma accmodi_method_simp[simp]: "accmodi (method sig m) = accmodi m"
 by (simp add: mbr_def method_def)
 lemma memberid_method_simp[simp]:  "memberid (method sig m) = mid sig"
 by (simp add: method_def)
-definition fieldm :: "vname \<Rightarrow> (qtname \<times> field) \<Rightarrow> (qtname \<times> memberdecl)" where
+definition
-"fieldm n f \<equiv> (declclass f, fdecl (n, fld f))"
+fieldm :: "vname \<Rightarrow> (qtname \<times> field) \<Rightarrow> (qtname \<times> memberdecl)"
+where "fieldm n f = (declclass f, fdecl (n, fld f))"
 lemma fieldm_simp[simp]: "fieldm n (C,f) = (C,fdecl (n,f))"
 by (simp add: fieldm_def)
 lemma accmodi_fieldm_simp[simp]: "accmodi (fieldm n f) = accmodi f"
 by (simp add: fieldm_def)
 text {* Select the signature out of a qualified method declaration:
 @{text msig} *}
-definition msig :: "(qtname \<times> mdecl) \<Rightarrow> sig" where
+definition
-"msig m \<equiv> fst (snd m)"
+msig :: "(qtname \<times> mdecl) \<Rightarrow> sig"
+where "msig m = fst (snd m)"
 lemma msig_simp[simp]: "msig (c,(s,m)) = s"
 by (simp add: msig_def)
 text {* Convert a qualified method (qualified with its declaring
 class) to a qualified method declaration:  @{text qmdecl}  *}
-definition qmdecl :: "sig \<Rightarrow> (qtname \<times> methd) \<Rightarrow> (qtname \<times> mdecl)" where
+definition
-"qmdecl sig m \<equiv> (declclass m, (sig,mthd m))"
+qmdecl :: "sig \<Rightarrow> (qtname \<times> methd) \<Rightarrow> (qtname \<times> mdecl)"
+where "qmdecl sig m = (declclass m, (sig,mthd m))"
 lemma qmdecl_simp[simp]: "qmdecl sig (C,m) = (C,(sig,m))"
 by (simp add: qmdecl_def)
 lemma declclass_qmdecl_simp[simp]: "declclass (qmdecl sig m) = declclass m"
 instantiation prod :: ("type","has_resTy") has_resTy
 begin
 definition
-pair_resTy_def: "resTy p \<equiv> resTy (snd p)"
+pair_resTy_def: "resTy p = resTy (snd p)"
 instance ..
 end
 declared with default (package) access, the package of the declaration
 class of m is also P. If the member m is declared with private access
 it is not accessible for inheritance at all.
 \end{itemize}
 *}
-definition inheritable_in :: "prog \<Rightarrow> (qtname \<times> memberdecl) \<Rightarrow> pname \<Rightarrow> bool" ("_ \<turnstile> _ inheritable'_in _" [61,61,61] 60) where
+definition
+inheritable_in :: "prog \<Rightarrow> (qtname \<times> memberdecl) \<Rightarrow> pname \<Rightarrow> bool" ("_ \<turnstile> _ inheritable'_in _" [61,61,61] 60)
-"G\<turnstile>membr inheritable_in pack
+where
-\<equiv> (case (accmodi membr) of
+"G\<turnstile>membr inheritable_in pack =
-Private   \<Rightarrow> False
+(case (accmodi membr) of
-| Package   \<Rightarrow> (pid (declclass membr)) = pack
+Private   \<Rightarrow> False
-| Protected \<Rightarrow> True
+| Package   \<Rightarrow> (pid (declclass membr)) = pack
-| Public    \<Rightarrow> True)"
+| Protected \<Rightarrow> True
+| Public    \<Rightarrow> True)"
 abbreviation
 Method_inheritable_in_syntax::
 "prog \<Rightarrow> (qtname \<times> mdecl) \<Rightarrow> pname \<Rightarrow> bool"
 ("_ \<turnstile>Method _ inheritable'_in _ " [61,61,61] 60)
 ("_ \<turnstile>Methd _ _ inheritable'_in _ " [61,61,61,61] 60)
 where "G\<turnstile>Methd s m inheritable_in p == G\<turnstile>(method s m) inheritable_in p"
 subsubsection "declared-in/undeclared-in"
-definition cdeclaredmethd :: "prog \<Rightarrow> qtname \<Rightarrow> (sig,methd) table" where
+definition
-"cdeclaredmethd G C
+cdeclaredmethd :: "prog \<Rightarrow> qtname \<Rightarrow> (sig,methd) table" where
-\<equiv> (case class G C of
+"cdeclaredmethd G C =
+(case class G C of
 None \<Rightarrow> \<lambda> sig. None
-| Some c \<Rightarrow> table_of (methods c)
+| Some c \<Rightarrow> table_of (methods c))"
-)"
+definition
-definition cdeclaredfield :: "prog \<Rightarrow> qtname \<Rightarrow> (vname,field) table" where
+cdeclaredfield :: "prog \<Rightarrow> qtname \<Rightarrow> (vname,field) table" where
-"cdeclaredfield G C
+"cdeclaredfield G C =
-\<equiv> (case class G C of
+(case class G C of
 None \<Rightarrow> \<lambda> sig. None
-| Some c \<Rightarrow> table_of (cfields c)
+| Some c \<Rightarrow> table_of (cfields c))"
-)"
+definition
-definition declared_in :: "prog  \<Rightarrow> memberdecl \<Rightarrow> qtname \<Rightarrow> bool" ("_\<turnstile> _ declared'_in _" [61,61,61] 60) where
+declared_in :: "prog  \<Rightarrow> memberdecl \<Rightarrow> qtname \<Rightarrow> bool" ("_\<turnstile> _ declared'_in _" [61,61,61] 60)
-"G\<turnstile>m declared_in C \<equiv> (case m of
+where
-fdecl (fn,f ) \<Rightarrow> cdeclaredfield G C fn  = Some f
+"G\<turnstile>m declared_in C = (case m of
-| mdecl (sig,m) \<Rightarrow> cdeclaredmethd G C sig = Some m)"
+fdecl (fn,f ) \<Rightarrow> cdeclaredfield G C fn  = Some f
+| mdecl (sig,m) \<Rightarrow> cdeclaredmethd G C sig = Some m)"
 abbreviation
 method_declared_in:: "prog  \<Rightarrow> (qtname \<times> mdecl) \<Rightarrow> qtname \<Rightarrow> bool"
 ("_\<turnstile>Method _ declared'_in _" [61,61,61] 60)
 where "G\<turnstile>Method m declared_in C == G\<turnstile>mdecl (mthd m) declared_in C"
 lemma declared_in_classD:
 "G\<turnstile>m declared_in C \<Longrightarrow> is_class G C"
 by (cases m)
 (auto simp add: declared_in_def cdeclaredmethd_def cdeclaredfield_def)
-definition undeclared_in :: "prog  \<Rightarrow> memberid \<Rightarrow> qtname \<Rightarrow> bool" ("_\<turnstile> _ undeclared'_in _" [61,61,61] 60) where
+definition
-"G\<turnstile>m undeclared_in C \<equiv> (case m of
+undeclared_in :: "prog  \<Rightarrow> memberid \<Rightarrow> qtname \<Rightarrow> bool" ("_\<turnstile> _ undeclared'_in _" [61,61,61] 60)
-fid fn  \<Rightarrow> cdeclaredfield G C fn  = None
+where
-| mid sig \<Rightarrow> cdeclaredmethd G C sig = None)"
+"G\<turnstile>m undeclared_in C = (case m of
+fid fn  \<Rightarrow> cdeclaredfield G C fn  = None
+| mid sig \<Rightarrow> cdeclaredmethd G C sig = None)"
 subsubsection "members"
 (* Can't just take a function: prog \<Rightarrow> qtname \<Rightarrow> memberdecl set because
 abbreviation
 fieldm_member_of:: "prog \<Rightarrow> vname \<Rightarrow> (qtname \<times> field) \<Rightarrow> qtname \<Rightarrow> bool"
 ("_ \<turnstile>Field _  _ member'_of _" [61,61,61] 60)
 where "G\<turnstile>Field n f member_of C == G\<turnstile>fieldm n f member_of C"
-definition inherits :: "prog \<Rightarrow> qtname \<Rightarrow> (qtname \<times> memberdecl) \<Rightarrow> bool" ("_ \<turnstile> _ inherits _" [61,61,61] 60) where
+definition
-"G\<turnstile>C inherits m
+inherits :: "prog \<Rightarrow> qtname \<Rightarrow> (qtname \<times> memberdecl) \<Rightarrow> bool" ("_ \<turnstile> _ inherits _" [61,61,61] 60)
-\<equiv> G\<turnstile>m inheritable_in (pid C) \<and> G\<turnstile>memberid m undeclared_in C \<and>
+where
-(\<exists> S. G\<turnstile>C \<prec>\<^sub>C1 S \<and> G\<turnstile>(Class S) accessible_in (pid C) \<and> G\<turnstile>m member_of S)"
+"G\<turnstile>C inherits m =
+(G\<turnstile>m inheritable_in (pid C) \<and> G\<turnstile>memberid m undeclared_in C \<and>
+(\<exists>S. G\<turnstile>C \<prec>\<^sub>C1 S \<and> G\<turnstile>(Class S) accessible_in (pid C) \<and> G\<turnstile>m member_of S))"
 lemma inherits_member: "G\<turnstile>C inherits m \<Longrightarrow> G\<turnstile>m member_of C"
 by (auto simp add: inherits_def intro: members.Inherited)
-definition member_in :: "prog \<Rightarrow> (qtname \<times> memberdecl) \<Rightarrow> qtname \<Rightarrow> bool" ("_ \<turnstile> _ member'_in _" [61,61,61] 60) where
+definition
-"G\<turnstile>m member_in C \<equiv> \<exists> provC. G\<turnstile> C \<preceq>\<^sub>C provC \<and> G \<turnstile> m member_of provC"
+member_in :: "prog \<Rightarrow> (qtname \<times> memberdecl) \<Rightarrow> qtname \<Rightarrow> bool" ("_ \<turnstile> _ member'_in _" [61,61,61] 60)
+where "G\<turnstile>m member_in C = (\<exists> provC. G\<turnstile> C \<preceq>\<^sub>C provC \<and> G \<turnstile> m member_of provC)"
 text {* A member is in a class if it is member of the class or a superclass.
 If a member is in a class we can select this member. This additional notion
 is necessary since not all members are inherited to subclasses. So such
 members are not member-of the subclass but member-in the subclass.*}
 ("_,_\<turnstile> _ overrides _" [61,61,61,61] 60)
 where "G,s\<turnstile>new overrides old == G\<turnstile>(qmdecl s new) overrides (qmdecl s old)"
 subsubsection "Hiding"
-definition hides :: "prog \<Rightarrow> (qtname \<times> mdecl) \<Rightarrow> (qtname \<times> mdecl) \<Rightarrow> bool" ("_\<turnstile> _ hides _" [61,61,61] 60) where
+definition
-"G\<turnstile>new hides old
+hides :: "prog \<Rightarrow> (qtname \<times> mdecl) \<Rightarrow> (qtname \<times> mdecl) \<Rightarrow> bool" ("_\<turnstile> _ hides _" [61,61,61] 60)
-\<equiv> is_static new \<and> msig new = msig old \<and>
+where
-G\<turnstile>(declclass new) \<prec>\<^sub>C (declclass old) \<and>
+"G\<turnstile>new hides old =
-G\<turnstile>Method new declared_in (declclass new) \<and>
+(is_static new \<and> msig new = msig old \<and>
-G\<turnstile>Method old declared_in (declclass old) \<and>
+G\<turnstile>(declclass new) \<prec>\<^sub>C (declclass old) \<and>
-G\<turnstile>Method old inheritable_in pid (declclass new)"
+G\<turnstile>Method new declared_in (declclass new) \<and>
+G\<turnstile>Method old declared_in (declclass old) \<and>
+G\<turnstile>Method old inheritable_in pid (declclass new))"
 abbreviation
 sig_hides:: "prog  \<Rightarrow> sig \<Rightarrow> (qtname \<times> methd) \<Rightarrow> (qtname \<times> methd) \<Rightarrow> bool"
 ("_,_\<turnstile> _ hides _" [61,61,61,61] 60)
 where "G,s\<turnstile>new hides old == G\<turnstile>(qmdecl s new) hides (qmdecl s old)"
 lemma hides_eq_sigD:
 "\<lbrakk>G\<turnstile>new hides old\<rbrakk> \<Longrightarrow> msig old=msig new"
 by (auto simp add: hides_def)
 subsubsection "permits access"
-definition permits_acc :: "prog \<Rightarrow> (qtname \<times> memberdecl) \<Rightarrow> qtname \<Rightarrow> qtname \<Rightarrow> bool" ("_ \<turnstile> _ in _ permits'_acc'_from _" [61,61,61,61] 60) where
+definition
-"G\<turnstile>membr in cls permits_acc_from accclass
+permits_acc :: "prog \<Rightarrow> (qtname \<times> memberdecl) \<Rightarrow> qtname \<Rightarrow> qtname \<Rightarrow> bool" ("_ \<turnstile> _ in _ permits'_acc'_from _" [61,61,61,61] 60)
-\<equiv> (case (accmodi membr) of
+where
-Private   \<Rightarrow> (declclass membr = accclass)
+"G\<turnstile>membr in cls permits_acc_from accclass =
-| Package   \<Rightarrow> (pid (declclass membr) = pid accclass)
+(case (accmodi membr) of
-| Protected \<Rightarrow> (pid (declclass membr) = pid accclass)
+Private   \<Rightarrow> (declclass membr = accclass)
+| Package   \<Rightarrow> (pid (declclass membr) = pid accclass)
+| Protected \<Rightarrow> (pid (declclass membr) = pid accclass)
 \<or>
 (G\<turnstile>accclass \<prec>\<^sub>C declclass membr
 \<and> (G\<turnstile>cls \<preceq>\<^sub>C accclass \<or> is_static membr))
 | Public    \<Rightarrow> True)"
 text {*
 The subcondition of the @{term "Protected"} case:
 @{term "G\<turnstile>accclass \<prec>\<^sub>C declclass membr"} could also be relaxed to:
 @{term "G\<turnstile>accclass \<preceq>\<^sub>C declclass membr"} since in case both classes are the
 same the other condition @{term "(pid (declclass membr) = pid accclass)"}
 fspec = "vname \<times> qtname"
 translations
 (type) "fspec" <= (type) "vname \<times> qtname"
-definition imethds :: "prog \<Rightarrow> qtname \<Rightarrow> (sig,qtname \<times> mhead) tables" where
+definition
-"imethds G I
+imethds :: "prog \<Rightarrow> qtname \<Rightarrow> (sig,qtname \<times> mhead) tables" where
-\<equiv> iface_rec G I
+"imethds G I =
-(\<lambda>I i ts. (Un_tables ts) \<oplus>\<oplus>
+iface_rec G I  (\<lambda>I i ts. (Un_tables ts) \<oplus>\<oplus>
 (Option.set \<circ> table_of (map (\<lambda>(s,m). (s,I,m)) (imethods i))))"
 text {* methods of an interface, with overriding and inheritance, cf. 9.2 *}
-definition accimethds :: "prog \<Rightarrow> pname \<Rightarrow> qtname \<Rightarrow> (sig,qtname \<times> mhead) tables" where
+definition
-"accimethds G pack I
+accimethds :: "prog \<Rightarrow> pname \<Rightarrow> qtname \<Rightarrow> (sig,qtname \<times> mhead) tables" where
-\<equiv> if G\<turnstile>Iface I accessible_in pack
+"accimethds G pack I =
-then imethds G I
+(if G\<turnstile>Iface I accessible_in pack
-else (\<lambda> k. {})"
+then imethds G I
+else (\<lambda> k. {}))"
 text {* only returns imethds if the interface is accessible *}
-definition methd :: "prog \<Rightarrow> qtname  \<Rightarrow> (sig,qtname \<times> methd) table" where
+definition
+methd :: "prog \<Rightarrow> qtname  \<Rightarrow> (sig,qtname \<times> methd) table" where
-"methd G C
+"methd G C =
-\<equiv> class_rec G C empty
+class_rec G C empty
 (\<lambda>C c subcls_mthds.
 filter_tab (\<lambda>sig m. G\<turnstile>C inherits method sig m)
 subcls_mthds
 ++
 table_of (map (\<lambda>(s,m). (s,C,m)) (methods c)))"
 with inheritance and hiding cf. 8.4.6;
 Overriding is captured by @{text dynmethd}.
 Every new method with the same signature coalesces the
 method of a superclass. *}
-definition accmethd :: "prog \<Rightarrow> qtname \<Rightarrow> qtname  \<Rightarrow> (sig,qtname \<times> methd) table" where
+definition
-"accmethd G S C
+accmethd :: "prog \<Rightarrow> qtname \<Rightarrow> qtname  \<Rightarrow> (sig,qtname \<times> methd) table" where
-\<equiv> filter_tab (\<lambda>sig m. G\<turnstile>method sig m of C accessible_from S)
+"accmethd G S C =
-(methd G C)"
+filter_tab (\<lambda>sig m. G\<turnstile>method sig m of C accessible_from S) (methd G C)"
 text {* @{term "accmethd G S C"}: only those methods of @{term "methd G C"},
 accessible from S *}
 text {* Note the class component in the accessibility filter. The class where
 method @{term m} is declared (@{term declC}) isn't necessarily accessible
 from the current scope @{term S}. The method can be made accessible
 through inheritance, too.
 So we must test accessibility of method @{term m} of class @{term C}
 (not @{term "declclass m"}) *}
-definition dynmethd :: "prog  \<Rightarrow> qtname \<Rightarrow> qtname \<Rightarrow> (sig,qtname \<times> methd) table" where
+definition
-"dynmethd G statC dynC
+dynmethd :: "prog  \<Rightarrow> qtname \<Rightarrow> qtname \<Rightarrow> (sig,qtname \<times> methd) table" where
-\<equiv> \<lambda> sig.
+"dynmethd G statC dynC =
-(if G\<turnstile>dynC \<preceq>\<^sub>C statC
+(\<lambda>sig.
-then (case methd G statC sig of
+(if G\<turnstile>dynC \<preceq>\<^sub>C statC
-None \<Rightarrow> None
+then (case methd G statC sig of
-| Some statM
+None \<Rightarrow> None
-\<Rightarrow> (class_rec G dynC empty
+| Some statM
-(\<lambda>C c subcls_mthds.
+\<Rightarrow> (class_rec G dynC empty
-subcls_mthds
+(\<lambda>C c subcls_mthds.
-++
+subcls_mthds
-(filter_tab
+++
-(\<lambda> _ dynM. G,sig\<turnstile>dynM overrides statM \<or> dynM=statM)
+(filter_tab
-(methd G C) ))
+(\<lambda> _ dynM. G,sig\<turnstile>dynM overrides statM \<or> dynM=statM)
-) sig
+(methd G C) ))
-)
+) sig
-else None)"
+)
+else None))"
 text {* @{term "dynmethd G statC dynC"}: dynamic method lookup of a reference
 with dynamic class @{term dynC} and static class @{term statC} *}
 text {* Note some kind of duality between @{term methd} and @{term dynmethd}
 in the @{term class_rec} arguments. Whereas @{term methd} filters the
 subclass methods (to get only the inherited ones), @{term dynmethd}
 filters the new methods (to get only those methods which actually
 override the methods of the static class) *}
-definition dynimethd :: "prog \<Rightarrow> qtname \<Rightarrow> qtname \<Rightarrow> (sig,qtname \<times> methd) table" where
+definition
-"dynimethd G I dynC
+dynimethd :: "prog \<Rightarrow> qtname \<Rightarrow> qtname \<Rightarrow> (sig,qtname \<times> methd) table" where
-\<equiv> \<lambda> sig. if imethds G I sig \<noteq> {}
+"dynimethd G I dynC =
-then methd G dynC sig
+(\<lambda>sig. if imethds G I sig \<noteq> {}
-else dynmethd G Object dynC sig"
+then methd G dynC sig
+else dynmethd G Object dynC sig)"
 text {* @{term "dynimethd G I dynC"}: dynamic method lookup of a reference with
 dynamic class dynC and static interface type I *}
 text {*
 When calling an interface method, we must distinguish if the method signature
 was defined in the interface or if it must be an Object method in the other
 effects like in case of dynmethd. The method will be inherited or
 overridden in all classes from the first class implementing the interface
 down to the actual dynamic class.
 *}
-definition dynlookup :: "prog  \<Rightarrow> ref_ty \<Rightarrow> qtname \<Rightarrow> (sig,qtname \<times> methd) table" where
+definition
-"dynlookup G statT dynC
+dynlookup :: "prog  \<Rightarrow> ref_ty \<Rightarrow> qtname \<Rightarrow> (sig,qtname \<times> methd) table" where
-\<equiv> (case statT of
+"dynlookup G statT dynC =
-NullT        \<Rightarrow> empty
+(case statT of
-| IfaceT I     \<Rightarrow> dynimethd G I      dynC
+NullT        \<Rightarrow> empty
-| ClassT statC \<Rightarrow> dynmethd  G statC  dynC
+| IfaceT I     \<Rightarrow> dynimethd G I      dynC
-| ArrayT ty    \<Rightarrow> dynmethd  G Object dynC)"
+| ClassT statC \<Rightarrow> dynmethd  G statC  dynC
+| ArrayT ty    \<Rightarrow> dynmethd  G Object dynC)"
 text {* @{term "dynlookup G statT dynC"}: dynamic lookup of a method within the
 static reference type statT and the dynamic class dynC.
 In a wellformd context statT will not be NullT and in case
 statT is an array type, dynC=Object *}
-definition fields :: "prog \<Rightarrow> qtname \<Rightarrow> ((vname \<times> qtname) \<times> field) list" where
+definition
-"fields G C
+fields :: "prog \<Rightarrow> qtname \<Rightarrow> ((vname \<times> qtname) \<times> field) list" where
-\<equiv> class_rec G C [] (\<lambda>C c ts. map (\<lambda>(n,t). ((n,C),t)) (cfields c) @ ts)"
+"fields G C =
+class_rec G C [] (\<lambda>C c ts. map (\<lambda>(n,t). ((n,C),t)) (cfields c) @ ts)"
 text {* @{term "fields G C"}
 list of fields of a class, including all the fields of the superclasses
 (private, inherited and hidden ones) not only the accessible ones
 (an instance of a object allocates all these fields *}
-definition accfield :: "prog \<Rightarrow> qtname \<Rightarrow> qtname \<Rightarrow> (vname, qtname  \<times>  field) table" where
+definition
-"accfield G S C
+accfield :: "prog \<Rightarrow> qtname \<Rightarrow> qtname \<Rightarrow> (vname, qtname  \<times>  field) table" where
-\<equiv> let field_tab = table_of((map (\<lambda>((n,d),f).(n,(d,f)))) (fields G C))
+"accfield G S C =
-in filter_tab (\<lambda>n (declC,f). G\<turnstile> (declC,fdecl (n,f)) of C accessible_from S)
+(let field_tab = table_of((map (\<lambda>((n,d),f).(n,(d,f)))) (fields G C))
-field_tab"
+in filter_tab (\<lambda>n (declC,f). G\<turnstile> (declC,fdecl (n,f)) of C accessible_from S)
+field_tab)"
 text  {* @{term "accfield G C S"}: fields of a class @{term C} which are
 accessible from scope of class
 @{term S} with inheritance and hiding, cf. 8.3 *}
 text {* note the class component in the accessibility filter (see also
 @{term methd}).
 The class declaring field @{term f} (@{term declC}) isn't necessarily
 accessible from scope @{term S}. The field can be made visible through
 inheritance, too. So we must test accessibility of field @{term f} of class
 @{term C} (not @{term "declclass f"}) *}
-definition is_methd :: "prog \<Rightarrow> qtname  \<Rightarrow> sig \<Rightarrow> bool" where
+definition
-"is_methd G \<equiv> \<lambda>C sig. is_class G C \<and> methd G C sig \<noteq> None"
+is_methd :: "prog \<Rightarrow> qtname  \<Rightarrow> sig \<Rightarrow> bool"
+where "is_methd G = (\<lambda>C sig. is_class G C \<and> methd G C sig \<noteq> None)"
-definition efname :: "((vname \<times> qtname) \<times> field) \<Rightarrow> (vname \<times> qtname)" where
-"efname \<equiv> fst"
+definition
+efname :: "((vname \<times> qtname) \<times> field) \<Rightarrow> (vname \<times> qtname)"
+where "efname = fst"
 lemma efname_simp[simp]:"efname (n,f) = n"
 by (simp add: efname_def)
 apply assumption
 done
 section "calculation of the superclasses of a class"
-definition superclasses :: "prog \<Rightarrow> qtname \<Rightarrow> qtname set" where
+definition
-"superclasses G C \<equiv> class_rec G C {}
+superclasses :: "prog \<Rightarrow> qtname \<Rightarrow> qtname set" where
+"superclasses G C = class_rec G C {}
 (\<lambda> C c superclss. (if C=Object
 then {}
 else insert (super c) superclss))"
 lemma superclasses_rec: "\<lbrakk>class G C = Some c; ws_prog G\<rbrakk> \<Longrightarrow>

changeset 37956	ee939247b2fb
parent 37678	0040bafffdef
child 38540	8c08631cb4b6