module ModelChecking where

open import Level renaming (zero to Z ; suc to succ)

open import Data.Nat hiding (compare)
open import Data.Nat.Properties as NatProp
open import Data.Maybe
-- open import Data.Maybe.Properties
open import Data.Empty
open import Data.List
-- open import Data.Tree.Binary
-- open import Data.Product
open import Function as F hiding (const)
open import Relation.Binary
open import Relation.Binary.PropositionalEquality
open import Relation.Nullary
open import logic
open import Data.Unit hiding ( _≟_ ;  _≤?_ ; _≤_)
open import Relation.Binary.Definitions

record AtomicNat : Set where
      ptr : ℕ       -- memory pointer ( unique id of DataGear )
      value : ℕ

init-AtomicNat : AtomicNat
init-AtomicNat = record { ptr = 0 ; value = 0 }

-- single process implemenation

f_set : {n : Level } {t : Set n} → AtomicNat → (value : ℕ) → ( AtomicNat → t ) → t
f_set a v next = next record a { value = v }

record Phil  : Set  where
      ptr : ℕ
      left right : AtomicNat

init-Phil : Phil
init-Phil = record { ptr = 0 ; left = init-AtomicNat ; right = init-AtomicNat }

pickup_rfork : {n : Level} {t : Set n} → Phil → ( Phil → t ) → t
pickup_lfork : {n : Level} {t : Set n} → Phil → ( Phil → t ) → t
eating : {n : Level} {t : Set n} → Phil → ( Phil → t ) → t
putdown_rfork : {n : Level} {t : Set n} → Phil → ( Phil → t ) → t
putdown_lfork : {n : Level} {t : Set n} → Phil → ( Phil → t ) → t
thinking : {n : Level} {t : Set n} → Phil → ( Phil → t ) → t

pickup_rfork p next = f_set (Phil.right p) (Phil.ptr p) ( λ f → pickup_lfork record p { right = f } next )
pickup_lfork p next = f_set (Phil.left p) (Phil.ptr p) ( λ f → eating record p { left = f } next )
eating p next = putdown_rfork p next
putdown_rfork p next = f_set (Phil.right p) 0 ( λ f → putdown_lfork record p { right = f } next )
putdown_lfork p next = f_set (Phil.left p) 0 ( λ f → thinking record p { left = f } next )
thinking p next = next p

run : Phil
run = pickup_rfork record { ptr = 1 ; left = record { ptr = 2 ; value = 0 } ; right = record { ptr = 3 ; value = 0 } } $ λ p → p

-- Coda Gear

data Code : Set  where
   C_nop : Code
   C_cas_int : Code
   C_putdown_rfork : Code 
   C_putdown_lfork : Code 
   C_thinking : Code 
   C_pickup_rfork : Code 
   C_pickup_lfork : Code 
   C_eating : Code 

-- all possible arguments in -APIs
record AtomicNat-API : Set where
      next : Code
      fail : Code
      value : ℕ
      impl : AtomicNat

record Phil-API : Set  where
      next : Code
      impl : Phil

data Error : Set where
   E_panic : Error
   E_cas_fail : Error

-- Data Gear
data Data : Set where
   -- D_AtomicNat :  AtomicNat → ℕ → Data
   D_AtomicNat :  AtomicNat → Data
   D_Phil :      Phil → Data
   D_Error :      Error → Data

open import hoareBinaryTree
--    A_AtomicNat :  AtomicNat-API → API
--    A_Phil :      Phil-API → API

open import hoareBinaryTree

record Context  : Set  where
      next :      Code 
      fail :      Code

      --  -API list (frame in Gears Agda )  --- a Data of API
      -- api : List API
      -- c_Phil-API :     Maybe Phil-API
      c_Phil-API :     Phil-API
      c_AtomicNat-API : AtomicNat-API

      mbase :     ℕ
      memory :    bt Data
      error :     Data
      fail_next :      Code

-- second level stub
AtomicInt_cas_stub : {n : Level} {t : Set n} → Context  → ( Code → Context → t ) → t
AtomicInt_cas_stub {_} {t} c next = updateTree (Context.memory c) (AtomicNat.ptr ai) ( D_AtomicNat (record ai { value = AtomicNat-API.value api } ))
     ( λ bt → next ( c ) c  ) -- segmentation fault ( null pointer )
     $ λ prev bt → f_cas prev bt  where
    api : AtomicNat-API
    api = Context.c_AtomicNat-API c
    ai : AtomicNat
    ai = AtomicNat-API.impl api
    f_cas : Data  → bt Data  → t
    f_cas (D_AtomicNat prev) bt with <-cmp ( AtomicNat.value  ai ) ( AtomicNat.value prev )
    ... | tri≈ ¬a b ¬c  = next ( api) ( record c { memory = bt ; c_AtomicNat-API = record api { impl = prev } }  ) -- update memory
    ... | tri< a₁ ¬b ¬c = next ( api) c   --- cleaer API
    ... | tri> ¬a ¬b _  = next ( api) c
    f_cas a bt    = next ( c ) c       -- type error / panic

-- putdown_rfork p next = f_set (Phil.right p) 0 ( λ f → putdown_lfork record p { right = f } next )
--               goto p->cas( 0 , putdown_lfork )
Phil_putdown_rfork_sub : {n : Level} {t : Set n} → Context  → ( Code → Context → t ) → t
Phil_putdown_rfork_sub c next = next C_cas_int record c { 
    c_AtomicNat-API = record { impl = Phil.right phil ; value =  0 ; fail = C_putdown_lfork ; next = C_putdown_lfork } }  where
    phil : Phil
    phil = Phil-API.impl ( Context.c_Phil-API c )

Phil_putdown_lfork_sub : {n : Level} {t : Set n} → Context  → ( Code → Context → t ) → t
Phil_putdown_lfork_sub c next = next C_cas_int record c { 
    c_AtomicNat-API = record { impl = Phil.left phil ; value =  0 ; fail = C_thinking ; next = C_thinking } }  where
    phil : Phil
    phil = Phil-API.impl ( Context.c_Phil-API c )

Phil_thiking : {n : Level} {t : Set n} → Context  → ( Code → Context → t ) → t
Phil_thiking c next = next C_pickup_rfork c  

Phil_pickup_lfork_sub : {n : Level} {t : Set n} → Context  → ( Code → Context → t ) → t
Phil_pickup_lfork_sub c next = next C_cas_int record c { 
    c_AtomicNat-API = record { impl = Phil.left phil ; value =  Phil.ptr phil ; fail = C_pickup_lfork ; next = C_pickup_rfork } }  where
    phil : Phil
    phil = Phil-API.impl ( Context.c_Phil-API c )

Phil_pickup_rfork_sub : {n : Level} {t : Set n} → Context  → ( Code → Context → t ) → t
Phil_pickup_rfork_sub c next = next C_cas_int record c { 
    c_AtomicNat-API = record { impl = Phil.left phil ; value =  Phil.ptr phil ; fail = C_pickup_rfork ; next = C_eating } }  where
    phil : Phil
    phil = Phil-API.impl ( Context.c_Phil-API c )

Phil_eating_sub : {n : Level} {t : Set n} → Context  → ( Code → Context → t ) → t
Phil_eating_sub c next =  next C_putdown_rfork c 

code_table :  {n : Level} {t : Set n} → Code → Context → ( Code → Context → t) → t
code_table C_nop  = λ c  next  → next C_nop c
code_table C_cas_int  = AtomicInt_cas_stub
code_table C_putdown_rfork = Phil_putdown_rfork_sub
code_table C_putdown_lfork = Phil_putdown_lfork_sub
code_table C_thinking = Phil_thiking
code_table C_pickup_rfork = Phil_pickup_lfork_sub
code_table C_pickup_lfork = Phil_pickup_rfork_sub
code_table C_eating = Phil_eating_sub

step : {n : Level} {t : Set n} → List Context → (List Context → t) → t
step {n} {t} [] next0 = next0 []
step {n} {t} (p ∷ ps) next0 = code_table ( p) p ( λ code np → next0 (update-context ps np ++ ( record np { next = code } ∷ [] )))  where
    update-context : List Context → Context  → List Context 
    update-context [] _ = []
    update-context (c1 ∷ t) np = record c1 { memory = Context.memory np  ; mbase = Context.mbase np } ∷ t

init-context : Context
init-context = record {
      next = C_nop
    ; fail = C_nop
    ; c_Phil-API = record { next = C_nop ; impl = init-Phil } 
    ; c_AtomicNat-API = record { next = C_nop ; fail = C_nop ; value = 0 ; impl = init-AtomicNat } 
    ; mbase = 0
    ; memory = leaf
    ; error = D_Error E_panic
    ; fail_next = C_nop

alloc-data : {n : Level} {t : Set n} → ( c : Context ) → ( Context → ℕ → t ) → t
alloc-data {n} {t} c next = next record c { mbase =  suc ( Context.mbase c ) } mnext  where
     mnext = suc ( Context.mbase c )

new-data : {n : Level} {t : Set n} → ( c : Context ) → (ℕ → Data ) → ( Context → ℕ → t ) → t
new-data  c x next  = alloc-data c $ λ c1 n → insertTree (Context.memory c1) n (x n) ( λ bt → next record c1 { memory = bt } n )

init-AtomicNat0 :  {n : Level} {t : Set n} → Context  → ( Context →  ℕ → t ) → t
init-AtomicNat0 c1  next = new-data c1  ( λ ptr → D_AtomicNat (a ptr) ) $ λ c2 ptr → next c2 ptr where
    a : ℕ → AtomicNat
    a ptr = record { ptr = ptr ; value = 0 }

init-Phil-0 : (ps : List Context) → (left right : AtomicNat ) → List Context
init-Phil-0 ps left right = new-data (c1 ps) ( λ ptr → D_Phil (p ptr) )  $ λ c ptr → record c { c_Phil-API = record { next = C_thinking ; impl = p ptr }} ∷ ps where
    p : ℕ → Phil
    p ptr = record  init-Phil { ptr = ptr ; left = left ; right = right }  
    c1 :  List Context → Context
    c1 [] =  init-context
    c1 (c2 ∷ ct) =  c2

init-AtomicNat1 :  {n : Level} {t : Set n} → Context  → ( Context →  AtomicNat → t ) → t
init-AtomicNat1 c1  next = new-data c1  ( λ ptr → D_AtomicNat (a ptr) ) $ λ c2 ptr → next c2 (a ptr) where
    a : ℕ → AtomicNat
    a ptr = record { ptr = ptr ; value = 0 }

init-Phil-1 : (ps : List Context) → (left right : AtomicNat ) → List Context
init-Phil-1 ps left right = new-data (c1 ps) ( λ ptr → D_Phil (p ptr) )  $ λ c ptr → record c { c_Phil-API = record { next = C_thinking ; impl = p ptr }} ∷ ps where
    p : ℕ → Phil
    p ptr = record  init-Phil { ptr = ptr ; left = left ; right = right }  
    c1 :  List Context → Context
    c1 [] =  init-context
    c1 (c2 ∷ ct) =  c2

test-j0 : {n : Level} {t : Set n} → Context → (Context → AtomicNat → t) → t
test-j0 c next = init-AtomicNat1 c next

test-j2 : AtomicNat  
test-j2 = test-j0 init-context (λ c f → f )

test-i1 : Context → Context 
test-i1 c = init-AtomicNat1 c $ λ c f → c

test-i0 : Context
test-i0 = test-i1 init-context

test-i2 : Context
test-i2 = test-i1 test-i0

test20 : bt (Data)
test20 = init-AtomicNat1 init-context $  λ c1 left → alloc-data c1
 $ λ c n → Context.memory c

-- infinite loop
test21 : bt (Data)
test21 = init-AtomicNat1 init-context $  λ c1 left → alloc-data c1
 $ λ c n → insertTree ( Context.memory c)  2 (D_AtomicNat record { ptr = 2 ; value = 0 }) $ λ t → t   

-- Ok
test212  : bt Data
test212 = insertTree   (node 1 (D_AtomicNat record { ptr = 1 ; value = 0 }) leaf leaf  ) 2 (D_AtomicNat record { ptr = 2 ; value = 0 })
     $ λ t → t 

open _∧_

test213 : bt Data
test213 = insertTree (test20)  2 (D_AtomicNat record { ptr = 2 ; value = 0 }) $ λ t → t

test2 : List Context 
test2 = init-AtomicNat1 init-context $  λ c left → alloc-data c
 $ λ c n → insertTree (Context.memory c) n  (D_AtomicNat (a n))
 $ λ bt → record c { memory = bt } ∷ [] where
    a : ℕ → AtomicNat
    a ptr = record { ptr = ptr ; value = 0 }

test-newdata : bt Data
test-newdata = new-data  init-context ( λ ptr → D_AtomicNat (a ptr) ) $ λ c n → Context.memory c where
    a : ℕ → AtomicNat
    a ptr = record { ptr = ptr ; value = 0 }

test0 : List Context 
test0 = init-AtomicNat1 init-context $ λ c left → c ∷ []

test01 : bt Data 
test01  = alloc-data init-context  $ λ c1 n → insertTree (Context.memory c1) n (D_AtomicNat (a n)) ( λ bt → next1 bt record c1 { memory = bt } n ) where
    a : ℕ → AtomicNat
    a ptr = record { ptr = ptr ; value = 0 }
    next1 :  bt Data → Context  → ℕ → bt Data
    next1 t c1 n = t

test01-tree : bt Data
test01-tree = node 1 (D_AtomicNat record { ptr = 1 ; value = 0 } ) leaf leaf

test01-assert : test01-tree ≡ test01
test01-assert = refl

tail1 :  Maybe (List (bt Data)) →  Maybe (List (bt Data)) 
tail1 (just x) = tail x
tail1 nothing = nothing

test22 : Context 
test22 = init-AtomicNat1 init-context $ λ c left → init-AtomicNat1 c $ λ c1 right → c1

test : List Context 
test = init-AtomicNat1 init-context $ λ c left → init-AtomicNat1 c $ λ c1 right → init-Phil-1 (c1 ∷ []) left right

test1 : List Context 
test1 = init-AtomicNat1 init-context $ λ c left → init-AtomicNat1 c $ λ c1 right → step (init-Phil-1 (c1 ∷ []) left right) (λ ps → ps )

