fix(samples): generate and add C model tables to all 17 sample builds

All sample main.c files reference ARBITER_generated_model but their
CMakeLists.txt did not include the generated C table file. Generated
arbiter_model.{c,h} from each sample's .arb.yaml via arbiterc compile
and updated each CMakeLists.txt to include src/arbiter_model.c.

Co-Authored-By: Oz <oz-agent@warp.dev>

Author: tbitcs

samples/access_control/CMakeLists.txt

@@ -4,4 +4,4 @@ cmake_minimum_required(VERSION 3.20.0)
 find_package(Zephyr REQUIRED HINTS $ENV{ZEPHYR_BASE})
 project(accesscontrol)
 
-target_sources(app PRIVATE src/main.c)
+target_sources(app PRIVATE src/main.c src/arbiter_model.c)

samples/access_control/src/arbiter_model.c

@@ -0,0 +1,84 @@
+/* SPDX-License-Identifier: MIT */
+/* AUTO-GENERATED by arbiterc — do not edit */
+
+#include "arbiter_model.h"
+#include <arbiter/arbiter.h>
+
+static const struct ARBITER_fact_def model_facts[] = {
+	{ .id = 0, .type = ARBITER_FACT_ENUM, .range_min = 0, .range_max = 0, .default_value = 0, .stale_after_ms = 0, .safety_relevant = false, .name = "auth.decision" },
+	{ .id = 1, .type = ARBITER_FACT_UINT32, .range_min = 0, .range_max = 100, .default_value = 0, .stale_after_ms = 0, .safety_relevant = false, .name = "auth.risk_score" },
+	{ .id = 2, .type = ARBITER_FACT_BOOL, .range_min = 0, .range_max = 0, .default_value = 0, .stale_after_ms = 0, .safety_relevant = false, .name = "cors.allow" },
+	{ .id = 3, .type = ARBITER_FACT_BOOL, .range_min = 0, .range_max = 0, .default_value = 0, .stale_after_ms = 0, .safety_relevant = false, .name = "cors.preflight" },
+	{ .id = 4, .type = ARBITER_FACT_UINT32, .range_min = 0, .range_max = 100000, .default_value = 0, .stale_after_ms = 0, .safety_relevant = false, .name = "req.client_requests_1m" },
+	{ .id = 5, .type = ARBITER_FACT_UINT32, .range_min = 0, .range_max = 1048576, .default_value = 0, .stale_after_ms = 0, .safety_relevant = false, .name = "req.content_length" },
+	{ .id = 6, .type = ARBITER_FACT_BOOL, .range_min = 0, .range_max = 0, .default_value = 0, .stale_after_ms = 0, .safety_relevant = false, .name = "req.has_auth_token" },
+	{ .id = 7, .type = ARBITER_FACT_ENUM, .range_min = 0, .range_max = 0, .default_value = 0, .stale_after_ms = 0, .safety_relevant = false, .name = "req.method" },
+	{ .id = 8, .type = ARBITER_FACT_ENUM, .range_min = 0, .range_max = 0, .default_value = 0, .stale_after_ms = 0, .safety_relevant = false, .name = "req.origin_class" },
+	{ .id = 9, .type = ARBITER_FACT_ENUM, .range_min = 0, .range_max = 0, .default_value = 0, .stale_after_ms = 0, .safety_relevant = false, .name = "req.path_class" },
+	{ .id = 10, .type = ARBITER_FACT_ENUM, .range_min = 0, .range_max = 0, .default_value = 0, .stale_after_ms = 0, .safety_relevant = false, .name = "req.token_role" },
+	{ .id = 11, .type = ARBITER_FACT_BOOL, .range_min = 0, .range_max = 0, .default_value = 0, .stale_after_ms = 0, .safety_relevant = false, .name = "req.token_valid" },
+};
+
+static const struct ARBITER_condition_def model_conditions[] = {
+	{ .fact_id = 7, .op = ARBITER_OP_EQ, .value = 5, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 8, .op = ARBITER_OP_EQ, .value = 1, .group = ARBITER_COND_ANY, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 8, .op = ARBITER_OP_EQ, .value = 2, .group = ARBITER_COND_ANY, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 8, .op = ARBITER_OP_EQ, .value = 4, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 4, .op = ARBITER_OP_GT, .value = 60, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 9, .op = ARBITER_OP_EQ, .value = 1, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 9, .op = ARBITER_OP_EQ, .value = 4, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 7, .op = ARBITER_OP_EQ, .value = 1, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 6, .op = ARBITER_OP_EQ, .value = 0, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 9, .op = ARBITER_OP_EQ, .value = 2, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 6, .op = ARBITER_OP_EQ, .value = 1, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 11, .op = ARBITER_OP_EQ, .value = 0, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 9, .op = ARBITER_OP_EQ, .value = 3, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 10, .op = ARBITER_OP_LT, .value = 3, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 6, .op = ARBITER_OP_EQ, .value = 1, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 11, .op = ARBITER_OP_EQ, .value = 1, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 0, .op = ARBITER_OP_EQ, .value = 0, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 6, .op = ARBITER_OP_EQ, .value = 1, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 5, .op = ARBITER_OP_GT, .value = 65536, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+};
+
+static const struct ARBITER_action_def model_actions[] = {
+	{ .id = 0, .type = ARBITER_ACTION_CALLBACK, .target_fact_id = 0, .target_value = 0, .callback = NULL, .must_complete_within_ms = 0, .safe_state_action = false, .name = "send_429" },
+};
+
+static const struct ARBITER_rule_def model_rules[] = {
+	{ .id = 0, .rule_class = ARBITER_RULE_INFERENCE, .condition_start = 0, .condition_count = 1, .action_start = 0, .action_count = 0, .safety_goal_id = UINT16_MAX, .set_mode = 1, .safety_critical = false, .name = "01_cors.preflight", .explanation = "OPTIONS request — CORS preflight." },
+	{ .id = 1, .rule_class = ARBITER_RULE_INFERENCE, .condition_start = 1, .condition_count = 2, .action_start = 0, .action_count = 0, .safety_goal_id = UINT16_MAX, .set_mode = UINT16_MAX, .safety_critical = false, .name = "02_cors.allow_origin", .explanation = "Same-origin or allowed origin — CORS pass." },
+	{ .id = 2, .rule_class = ARBITER_RULE_CONSTRAINT, .condition_start = 3, .condition_count = 1, .action_start = 0, .action_count = 0, .safety_goal_id = UINT16_MAX, .set_mode = 2, .safety_critical = false, .name = "03_cors.block_origin", .explanation = "Blocked origin — 403." },
+	{ .id = 3, .rule_class = ARBITER_RULE_CONSTRAINT, .condition_start = 4, .condition_count = 1, .action_start = 0, .action_count = 1, .safety_goal_id = UINT16_MAX, .set_mode = 3, .safety_critical = false, .name = "10_rate.check", .explanation = "Client > 60 req/min — 429 Too Many Requests." },
+	{ .id = 4, .rule_class = ARBITER_RULE_INFERENCE, .condition_start = 5, .condition_count = 1, .action_start = 0, .action_count = 0, .safety_goal_id = UINT16_MAX, .set_mode = 0, .safety_critical = false, .name = "20_auth.public_path", .explanation = "Public path — no auth required." },
+	{ .id = 5, .rule_class = ARBITER_RULE_INFERENCE, .condition_start = 6, .condition_count = 2, .action_start = 0, .action_count = 0, .safety_goal_id = UINT16_MAX, .set_mode = 0, .safety_critical = false, .name = "21_auth.health_check", .explanation = "Health check GET — always allowed." },
+	{ .id = 6, .rule_class = ARBITER_RULE_CONSTRAINT, .condition_start = 8, .condition_count = 2, .action_start = 0, .action_count = 0, .safety_goal_id = UINT16_MAX, .set_mode = 2, .safety_critical = false, .name = "22_auth.no_token", .explanation = "Auth-required path but no token — 401." },
+	{ .id = 7, .rule_class = ARBITER_RULE_CONSTRAINT, .condition_start = 10, .condition_count = 2, .action_start = 0, .action_count = 0, .safety_goal_id = UINT16_MAX, .set_mode = 2, .safety_critical = false, .name = "23_auth.invalid_token", .explanation = "Invalid/expired token — 401." },
+	{ .id = 8, .rule_class = ARBITER_RULE_CONSTRAINT, .condition_start = 12, .condition_count = 2, .action_start = 0, .action_count = 0, .safety_goal_id = UINT16_MAX, .set_mode = 2, .safety_critical = false, .name = "24_auth.admin_check", .explanation = "Admin path requires admin role — 403." },
+	{ .id = 9, .rule_class = ARBITER_RULE_INFERENCE, .condition_start = 14, .condition_count = 3, .action_start = 0, .action_count = 0, .safety_goal_id = UINT16_MAX, .set_mode = 0, .safety_critical = false, .name = "25_auth.valid_token", .explanation = "Valid token, authorized — allow." },
+	{ .id = 10, .rule_class = ARBITER_RULE_INFERENCE, .condition_start = 17, .condition_count = 1, .action_start = 0, .action_count = 0, .safety_goal_id = UINT16_MAX, .set_mode = UINT16_MAX, .safety_critical = false, .name = "30_risk.compute", .explanation = NULL },
+	{ .id = 11, .rule_class = ARBITER_RULE_CONSTRAINT, .condition_start = 18, .condition_count = 1, .action_start = 0, .action_count = 0, .safety_goal_id = UINT16_MAX, .set_mode = 2, .safety_critical = false, .name = "40_payload.too_large", .explanation = "Payload > 64KB — rejected." },
+};
+
+static const char *model_mode_names[] = {
+	"mode.allow",
+	"mode.cors_preflight",
+	"mode.deny",
+	"mode.rate_limited",
+};
+
+const struct ARBITER_model ARBITER_generated_model = {
+	.name = "iot_access_control",
+	.model_hash = { 0xd0, 0x17, 0xb9, 0x4e, 0x8c, 0xe6, 0x6a, 0xd6, 0x46, 0x1c, 0x9f, 0xed, 0x03, 0xa1, 0xcc, 0x71, 0x0f, 0xe7, 0x8a, 0x48, 0xae, 0x97, 0xf7, 0x3a, 0xcd, 0x08, 0x85, 0xb0, 0x03, 0x27, 0xc1, 0x5b },
+	.schema_hash = { 0x0d, 0x55, 0x33, 0x65, 0xf3, 0x4e, 0x02, 0xf3, 0xf8, 0x94, 0xe8, 0x25, 0xbb, 0x47, 0x86, 0x45, 0xfd, 0x8b, 0x78, 0xb1, 0x27, 0xf5, 0x8c, 0x42, 0xba, 0xbd, 0x80, 0x1f, 0x77, 0x57, 0x1f, 0x35 },
+	.fact_count = 12,
+	.rule_count = 12,
+	.condition_count = 19,
+	.action_count = 1,
+	.mode_count = 4,
+	.facts = model_facts,
+	.rules = model_rules,
+	.conditions = model_conditions,
+	.actions = model_actions,
+	.mode_names = model_mode_names,
+};

samples/access_control/src/arbiter_model.h

@@ -0,0 +1,41 @@
+/* SPDX-License-Identifier: MIT */
+/* AUTO-GENERATED by arbiterc — do not edit */
+
+#pragma once
+
+#include <stdint.h>
+#include <stddef.h>
+#include <arbiter/arbiter_model.h>
+
+#define ARBITER_MODEL_NAME "iot_access_control"
+#define ARBITER_MODEL_HASH "d017b94e8ce66ad6461c9fed03a1cc710fe78a48ae97f73acd0885b00327c15b"
+#define ARBITER_MODEL_FACT_COUNT 12u
+#define ARBITER_MODEL_RULE_COUNT 12u
+#define ARBITER_MODEL_CONDITION_COUNT 19u
+#define ARBITER_MODEL_ACTION_COUNT 1u
+#define ARBITER_MODEL_MAX_FACTS 12u
+#define ARBITER_MODEL_MAX_RULES 12u
+#define ARBITER_MODEL_MAX_CONDITIONS 19u
+#define ARBITER_MODEL_MAX_ACTIONS 1u
+#define ARBITER_MODEL_WCET_OP_COUNT 31u
+#define ARBITER_MODEL_TRACE_CAPACITY 12u
+
+extern const struct ARBITER_model ARBITER_generated_model;
+
+#define ARBITER_FACT_AUTH_DECISION 0u
+#define ARBITER_FACT_AUTH_RISK_SCORE 1u
+#define ARBITER_FACT_CORS_ALLOW 2u
+#define ARBITER_FACT_CORS_PREFLIGHT 3u
+#define ARBITER_FACT_REQ_CLIENT_REQUESTS_1M 4u
+#define ARBITER_FACT_REQ_CONTENT_LENGTH 5u
+#define ARBITER_FACT_REQ_HAS_AUTH_TOKEN 6u
+#define ARBITER_FACT_REQ_METHOD 7u
+#define ARBITER_FACT_REQ_ORIGIN_CLASS 8u
+#define ARBITER_FACT_REQ_PATH_CLASS 9u
+#define ARBITER_FACT_REQ_TOKEN_ROLE 10u
+#define ARBITER_FACT_REQ_TOKEN_VALID 11u
+
+#define ARBITER_MODE_MODE_ALLOW 0u
+#define ARBITER_MODE_MODE_CORS_PREFLIGHT 1u
+#define ARBITER_MODE_MODE_DENY 2u
+#define ARBITER_MODE_MODE_RATE_LIMITED 3u

samples/battery_policy/CMakeLists.txt

@@ -4,4 +4,4 @@ cmake_minimum_required(VERSION 3.20.0)
 find_package(Zephyr REQUIRED HINTS $ENV{ZEPHYR_BASE})
 project(battery_policy)
 
-target_sources(app PRIVATE src/main.c)
+target_sources(app PRIVATE src/main.c src/arbiter_model.c)

samples/battery_policy/src/arbiter_model.c

@@ -0,0 +1,57 @@
+/* SPDX-License-Identifier: MIT */
+/* AUTO-GENERATED by arbiterc — do not edit */
+
+#include "arbiter_model.h"
+#include <arbiter/arbiter.h>
+
+static const struct ARBITER_fact_def model_facts[] = {
+	{ .id = 0, .type = ARBITER_FACT_INT32, .range_min = -3000, .range_max = 3000, .default_value = 0, .stale_after_ms = 500, .safety_relevant = false, .name = "battery.current_ma" },
+	{ .id = 1, .type = ARBITER_FACT_INT32, .range_min = -40, .range_max = 85, .default_value = 0, .stale_after_ms = 1000, .safety_relevant = false, .name = "battery.temp_c" },
+	{ .id = 2, .type = ARBITER_FACT_UINT32, .range_min = 0, .range_max = 5000, .default_value = 0, .stale_after_ms = 500, .safety_relevant = true, .name = "battery.voltage_mv" },
+	{ .id = 3, .type = ARBITER_FACT_BOOL, .range_min = 0, .range_max = 0, .default_value = 0, .stale_after_ms = 0, .safety_relevant = false, .name = "charger.enabled" },
+};
+
+static const struct ARBITER_condition_def model_conditions[] = {
+	{ .fact_id = 3, .op = ARBITER_OP_EQ, .value = 1, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 2, .op = ARBITER_OP_LT, .value = 4200, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 2, .op = ARBITER_OP_LT, .value = 3000, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 2, .op = ARBITER_OP_LT, .value = 3300, .group = ARBITER_COND_ALL, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 1, .op = ARBITER_OP_GT, .value = 60, .group = ARBITER_COND_ANY, .group_index = 0, .next = UINT16_MAX },
+	{ .fact_id = 1, .op = ARBITER_OP_LT, .value = -20, .group = ARBITER_COND_ANY, .group_index = 0, .next = UINT16_MAX },
+};
+
+static const struct ARBITER_action_def model_actions[] = {
+	{ .id = 0, .type = ARBITER_ACTION_CALLBACK, .target_fact_id = 0, .target_value = 0, .callback = NULL, .must_complete_within_ms = 0, .safe_state_action = false, .name = "disable_charger" },
+	{ .id = 1, .type = ARBITER_ACTION_CALLBACK, .target_fact_id = 0, .target_value = 0, .callback = NULL, .must_complete_within_ms = 0, .safe_state_action = false, .name = "disable_load" },
+};
+
+static const struct ARBITER_rule_def model_rules[] = {
+	{ .id = 0, .rule_class = ARBITER_RULE_INFERENCE, .condition_start = 0, .condition_count = 2, .action_start = 0, .action_count = 0, .safety_goal_id = UINT16_MAX, .set_mode = 0, .safety_critical = false, .name = "rule.charging", .explanation = "Charger connected and battery not full." },
+	{ .id = 1, .rule_class = ARBITER_RULE_SAFETY_GUARD, .condition_start = 2, .condition_count = 1, .action_start = 1, .action_count = 1, .safety_goal_id = UINT16_MAX, .set_mode = 1, .safety_critical = true, .name = "rule.critical_battery", .explanation = "Battery critically low, disabling load." },
+	{ .id = 2, .rule_class = ARBITER_RULE_MODE_GUARD, .condition_start = 3, .condition_count = 1, .action_start = 0, .action_count = 0, .safety_goal_id = UINT16_MAX, .set_mode = 2, .safety_critical = false, .name = "rule.low_battery", .explanation = "Battery voltage below 3.3V threshold." },
+	{ .id = 3, .rule_class = ARBITER_RULE_SAFETY_GUARD, .condition_start = 4, .condition_count = 2, .action_start = 0, .action_count = 1, .safety_goal_id = UINT16_MAX, .set_mode = 4, .safety_critical = true, .name = "rule.thermal_shutdown", .explanation = "Temperature out of safe range." },
+};
+
+static const char *model_mode_names[] = {
+	"mode.charging",
+	"mode.critical",
+	"mode.low_battery",
+	"mode.normal",
+	"mode.thermal_shutdown",
+};
+
+const struct ARBITER_model ARBITER_generated_model = {
+	.name = "battery_policy",
+	.model_hash = { 0xfb, 0x6a, 0x01, 0x02, 0x72, 0xec, 0x39, 0x45, 0x91, 0xc0, 0x74, 0xcd, 0x4d, 0x08, 0xdd, 0x8d, 0xa6, 0xa6, 0x89, 0x14, 0x82, 0xbe, 0xd0, 0x2b, 0x0e, 0x83, 0xf9, 0x01, 0xda, 0x48, 0xa8, 0x5a },
+	.schema_hash = { 0x0d, 0x55, 0x33, 0x65, 0xf3, 0x4e, 0x02, 0xf3, 0xf8, 0x94, 0xe8, 0x25, 0xbb, 0x47, 0x86, 0x45, 0xfd, 0x8b, 0x78, 0xb1, 0x27, 0xf5, 0x8c, 0x42, 0xba, 0xbd, 0x80, 0x1f, 0x77, 0x57, 0x1f, 0x35 },
+	.fact_count = 4,
+	.rule_count = 4,
+	.condition_count = 6,
+	.action_count = 2,
+	.mode_count = 5,
+	.facts = model_facts,
+	.rules = model_rules,
+	.conditions = model_conditions,
+	.actions = model_actions,
+	.mode_names = model_mode_names,
+};

samples/battery_policy/src/arbiter_model.h

@@ -0,0 +1,34 @@
+/* SPDX-License-Identifier: MIT */
+/* AUTO-GENERATED by arbiterc — do not edit */
+
+#pragma once
+
+#include <stdint.h>
+#include <stddef.h>
+#include <arbiter/arbiter_model.h>
+
+#define ARBITER_MODEL_NAME "battery_policy"
+#define ARBITER_MODEL_HASH "fb6a010272ec394591c074cd4d08dd8da6a6891482bed02b0e83f901da48a85a"
+#define ARBITER_MODEL_FACT_COUNT 4u
+#define ARBITER_MODEL_RULE_COUNT 4u
+#define ARBITER_MODEL_CONDITION_COUNT 6u
+#define ARBITER_MODEL_ACTION_COUNT 2u
+#define ARBITER_MODEL_MAX_FACTS 4u
+#define ARBITER_MODEL_MAX_RULES 4u
+#define ARBITER_MODEL_MAX_CONDITIONS 6u
+#define ARBITER_MODEL_MAX_ACTIONS 2u
+#define ARBITER_MODEL_WCET_OP_COUNT 10u
+#define ARBITER_MODEL_TRACE_CAPACITY 4u
+
+extern const struct ARBITER_model ARBITER_generated_model;
+
+#define ARBITER_FACT_BATTERY_CURRENT_MA 0u
+#define ARBITER_FACT_BATTERY_TEMP_C 1u
+#define ARBITER_FACT_BATTERY_VOLTAGE_MV 2u
+#define ARBITER_FACT_CHARGER_ENABLED 3u
+
+#define ARBITER_MODE_MODE_CHARGING 0u
+#define ARBITER_MODE_MODE_CRITICAL 1u
+#define ARBITER_MODE_MODE_LOW_BATTERY 2u
+#define ARBITER_MODE_MODE_NORMAL 3u
+#define ARBITER_MODE_MODE_THERMAL_SHUTDOWN 4u

samples/cobot_safety/CMakeLists.txt

@@ -4,4 +4,4 @@ cmake_minimum_required(VERSION 3.20.0)
 find_package(Zephyr REQUIRED HINTS $ENV{ZEPHYR_BASE})
 project(cobotsafety)
 
-target_sources(app PRIVATE src/main.c)
+target_sources(app PRIVATE src/main.c src/arbiter_model.c)