src/HOL/BNF_Wellorder_Constructions.thy
author wenzelm
Mon Dec 07 10:38:04 2015 +0100 (2015-12-07)
changeset 61799 4cf66f21b764
parent 60758 d8d85a8172b5
child 61943 7fba644ed827
permissions -rw-r--r--
isabelle update_cartouches -c -t;
blanchet@58127
     1
(*  Title:      HOL/BNF_Wellorder_Constructions.thy
blanchet@48975
     2
    Author:     Andrei Popescu, TU Muenchen
blanchet@48975
     3
    Copyright   2012
blanchet@48975
     4
blanchet@55059
     5
Constructions on wellorders as needed by bounded natural functors.
blanchet@48975
     6
*)
blanchet@48975
     7
wenzelm@60758
     8
section \<open>Constructions on Wellorders as Needed by Bounded Natural Functors\<close>
blanchet@48975
     9
blanchet@58127
    10
theory BNF_Wellorder_Constructions
blanchet@55056
    11
imports BNF_Wellorder_Embedding
blanchet@48975
    12
begin
blanchet@48975
    13
wenzelm@60758
    14
text \<open>In this section, we study basic constructions on well-orders, such as restriction to
blanchet@48975
    15
a set/order filter, copy via direct images, ordinal-like sum of disjoint well-orders,
blanchet@48975
    16
and bounded square.  We also define between well-orders
wenzelm@61799
    17
the relations \<open>ordLeq\<close>, of being embedded (abbreviated \<open>\<le>o\<close>),
wenzelm@61799
    18
\<open>ordLess\<close>, of being strictly embedded (abbreviated \<open><o\<close>), and
wenzelm@61799
    19
\<open>ordIso\<close>, of being isomorphic (abbreviated \<open>=o\<close>).  We study the
blanchet@48975
    20
connections between these relations, order filters, and the aforementioned constructions.
wenzelm@61799
    21
A main result of this section is that \<open><o\<close> is well-founded.\<close>
blanchet@48975
    22
blanchet@48975
    23
wenzelm@60758
    24
subsection \<open>Restriction to a set\<close>
blanchet@48975
    25
blanchet@48975
    26
abbreviation Restr :: "'a rel \<Rightarrow> 'a set \<Rightarrow> 'a rel"
blanchet@48975
    27
where "Restr r A \<equiv> r Int (A \<times> A)"
blanchet@48975
    28
blanchet@48975
    29
lemma Restr_subset:
blanchet@48975
    30
"A \<le> B \<Longrightarrow> Restr (Restr r B) A = Restr r A"
blanchet@48975
    31
by blast
blanchet@48975
    32
blanchet@48975
    33
lemma Restr_Field: "Restr r (Field r) = r"
blanchet@48975
    34
unfolding Field_def by auto
blanchet@48975
    35
blanchet@48975
    36
lemma Refl_Restr: "Refl r \<Longrightarrow> Refl(Restr r A)"
blanchet@48975
    37
unfolding refl_on_def Field_def by auto
blanchet@48975
    38
blanchet@48975
    39
lemma antisym_Restr:
blanchet@48975
    40
"antisym r \<Longrightarrow> antisym(Restr r A)"
blanchet@48975
    41
unfolding antisym_def Field_def by auto
blanchet@48975
    42
blanchet@48975
    43
lemma Total_Restr:
blanchet@48975
    44
"Total r \<Longrightarrow> Total(Restr r A)"
blanchet@48975
    45
unfolding total_on_def Field_def by auto
blanchet@48975
    46
blanchet@48975
    47
lemma trans_Restr:
blanchet@48975
    48
"trans r \<Longrightarrow> trans(Restr r A)"
blanchet@48975
    49
unfolding trans_def Field_def by blast
blanchet@48975
    50
blanchet@48975
    51
lemma Preorder_Restr:
blanchet@48975
    52
"Preorder r \<Longrightarrow> Preorder(Restr r A)"
blanchet@48975
    53
unfolding preorder_on_def by (simp add: Refl_Restr trans_Restr)
blanchet@48975
    54
blanchet@48975
    55
lemma Partial_order_Restr:
blanchet@48975
    56
"Partial_order r \<Longrightarrow> Partial_order(Restr r A)"
blanchet@48975
    57
unfolding partial_order_on_def by (simp add: Preorder_Restr antisym_Restr)
blanchet@48975
    58
blanchet@48975
    59
lemma Linear_order_Restr:
blanchet@48975
    60
"Linear_order r \<Longrightarrow> Linear_order(Restr r A)"
blanchet@48975
    61
unfolding linear_order_on_def by (simp add: Partial_order_Restr Total_Restr)
blanchet@48975
    62
blanchet@48975
    63
lemma Well_order_Restr:
blanchet@48975
    64
assumes "Well_order r"
blanchet@48975
    65
shows "Well_order(Restr r A)"
blanchet@48975
    66
proof-
blanchet@48975
    67
  have "Restr r A - Id \<le> r - Id" using Restr_subset by blast
blanchet@48975
    68
  hence "wf(Restr r A - Id)" using assms
blanchet@48975
    69
  using well_order_on_def wf_subset by blast
blanchet@48975
    70
  thus ?thesis using assms unfolding well_order_on_def
blanchet@48975
    71
  by (simp add: Linear_order_Restr)
blanchet@48975
    72
qed
blanchet@48975
    73
blanchet@48975
    74
lemma Field_Restr_subset: "Field(Restr r A) \<le> A"
blanchet@48975
    75
by (auto simp add: Field_def)
blanchet@48975
    76
blanchet@48975
    77
lemma Refl_Field_Restr:
blanchet@48975
    78
"Refl r \<Longrightarrow> Field(Restr r A) = (Field r) Int A"
blanchet@54482
    79
unfolding refl_on_def Field_def by blast
blanchet@48975
    80
blanchet@48975
    81
lemma Refl_Field_Restr2:
blanchet@48975
    82
"\<lbrakk>Refl r; A \<le> Field r\<rbrakk> \<Longrightarrow> Field(Restr r A) = A"
blanchet@48975
    83
by (auto simp add: Refl_Field_Restr)
blanchet@48975
    84
blanchet@48975
    85
lemma well_order_on_Restr:
blanchet@48975
    86
assumes WELL: "Well_order r" and SUB: "A \<le> Field r"
blanchet@48975
    87
shows "well_order_on A (Restr r A)"
blanchet@48975
    88
using assms
blanchet@48975
    89
using Well_order_Restr[of r A] Refl_Field_Restr2[of r A]
blanchet@48975
    90
     order_on_defs[of "Field r" r] by auto
blanchet@48975
    91
blanchet@48975
    92
wenzelm@60758
    93
subsection \<open>Order filters versus restrictions and embeddings\<close>
blanchet@48975
    94
blanchet@48975
    95
lemma Field_Restr_ofilter:
blanchet@48975
    96
"\<lbrakk>Well_order r; wo_rel.ofilter r A\<rbrakk> \<Longrightarrow> Field(Restr r A) = A"
blanchet@48975
    97
by (auto simp add: wo_rel_def wo_rel.ofilter_def wo_rel.REFL Refl_Field_Restr2)
blanchet@48975
    98
blanchet@48975
    99
lemma ofilter_Restr_under:
blanchet@48975
   100
assumes WELL: "Well_order r" and OF: "wo_rel.ofilter r A" and IN: "a \<in> A"
blanchet@55023
   101
shows "under (Restr r A) a = under r a"
blanchet@48975
   102
using assms wo_rel_def
blanchet@55023
   103
proof(auto simp add: wo_rel.ofilter_def under_def)
blanchet@48975
   104
  fix b assume *: "a \<in> A" and "(b,a) \<in> r"
blanchet@55023
   105
  hence "b \<in> under r a \<and> a \<in> Field r"
blanchet@55023
   106
  unfolding under_def using Field_def by fastforce
blanchet@48975
   107
  thus "b \<in> A" using * assms by (auto simp add: wo_rel_def wo_rel.ofilter_def)
blanchet@48975
   108
qed
blanchet@48975
   109
blanchet@48975
   110
lemma ofilter_embed:
blanchet@48975
   111
assumes "Well_order r"
blanchet@48975
   112
shows "wo_rel.ofilter r A = (A \<le> Field r \<and> embed (Restr r A) r id)"
blanchet@48975
   113
proof
blanchet@48975
   114
  assume *: "wo_rel.ofilter r A"
blanchet@48975
   115
  show "A \<le> Field r \<and> embed (Restr r A) r id"
blanchet@48975
   116
  proof(unfold embed_def, auto)
blanchet@48975
   117
    fix a assume "a \<in> A" thus "a \<in> Field r" using assms *
blanchet@48975
   118
    by (auto simp add: wo_rel_def wo_rel.ofilter_def)
blanchet@48975
   119
  next
blanchet@48975
   120
    fix a assume "a \<in> Field (Restr r A)"
blanchet@55023
   121
    thus "bij_betw id (under (Restr r A) a) (under r a)" using assms *
blanchet@48975
   122
    by (simp add: ofilter_Restr_under Field_Restr_ofilter)
blanchet@48975
   123
  qed
blanchet@48975
   124
next
blanchet@48975
   125
  assume *: "A \<le> Field r \<and> embed (Restr r A) r id"
blanchet@48975
   126
  hence "Field(Restr r A) \<le> Field r"
blanchet@48975
   127
  using assms  embed_Field[of "Restr r A" r id] id_def
blanchet@48975
   128
        Well_order_Restr[of r] by auto
blanchet@48975
   129
  {fix a assume "a \<in> A"
blanchet@48975
   130
   hence "a \<in> Field(Restr r A)" using * assms
blanchet@48975
   131
   by (simp add: order_on_defs Refl_Field_Restr2)
blanchet@55023
   132
   hence "bij_betw id (under (Restr r A) a) (under r a)"
blanchet@48975
   133
   using * unfolding embed_def by auto
blanchet@55023
   134
   hence "under r a \<le> under (Restr r A) a"
blanchet@48975
   135
   unfolding bij_betw_def by auto
blanchet@55023
   136
   also have "\<dots> \<le> Field(Restr r A)" by (simp add: under_Field)
blanchet@48975
   137
   also have "\<dots> \<le> A" by (simp add: Field_Restr_subset)
blanchet@55023
   138
   finally have "under r a \<le> A" .
blanchet@48975
   139
  }
blanchet@48975
   140
  thus "wo_rel.ofilter r A" using assms * by (simp add: wo_rel_def wo_rel.ofilter_def)
blanchet@48975
   141
qed
blanchet@48975
   142
blanchet@48975
   143
lemma ofilter_Restr_Int:
blanchet@48975
   144
assumes WELL: "Well_order r" and OFA: "wo_rel.ofilter r A"
blanchet@48975
   145
shows "wo_rel.ofilter (Restr r B) (A Int B)"
blanchet@48975
   146
proof-
blanchet@48975
   147
  let ?rB = "Restr r B"
blanchet@48975
   148
  have Well: "wo_rel r" unfolding wo_rel_def using WELL .
blanchet@48975
   149
  hence Refl: "Refl r" by (simp add: wo_rel.REFL)
blanchet@48975
   150
  hence Field: "Field ?rB = Field r Int B"
blanchet@48975
   151
  using Refl_Field_Restr by blast
blanchet@48975
   152
  have WellB: "wo_rel ?rB \<and> Well_order ?rB" using WELL
blanchet@48975
   153
  by (simp add: Well_order_Restr wo_rel_def)
blanchet@48975
   154
  (* Main proof *)
blanchet@48975
   155
  show ?thesis using WellB assms
blanchet@55023
   156
  proof(auto simp add: wo_rel.ofilter_def under_def)
blanchet@48975
   157
    fix a assume "a \<in> A" and *: "a \<in> B"
blanchet@48975
   158
    hence "a \<in> Field r" using OFA Well by (auto simp add: wo_rel.ofilter_def)
blanchet@48975
   159
    with * show "a \<in> Field ?rB" using Field by auto
blanchet@48975
   160
  next
blanchet@48975
   161
    fix a b assume "a \<in> A" and "(b,a) \<in> r"
blanchet@55023
   162
    thus "b \<in> A" using Well OFA by (auto simp add: wo_rel.ofilter_def under_def)
blanchet@48975
   163
  qed
blanchet@48975
   164
qed
blanchet@48975
   165
blanchet@48975
   166
lemma ofilter_Restr_subset:
blanchet@48975
   167
assumes WELL: "Well_order r" and OFA: "wo_rel.ofilter r A" and SUB: "A \<le> B"
blanchet@48975
   168
shows "wo_rel.ofilter (Restr r B) A"
blanchet@48975
   169
proof-
blanchet@48975
   170
  have "A Int B = A" using SUB by blast
blanchet@48975
   171
  thus ?thesis using assms ofilter_Restr_Int[of r A B] by auto
blanchet@48975
   172
qed
blanchet@48975
   173
blanchet@48975
   174
lemma ofilter_subset_embed:
blanchet@48975
   175
assumes WELL: "Well_order r" and
blanchet@48975
   176
        OFA: "wo_rel.ofilter r A" and OFB: "wo_rel.ofilter r B"
blanchet@48975
   177
shows "(A \<le> B) = (embed (Restr r A) (Restr r B) id)"
blanchet@48975
   178
proof-
blanchet@48975
   179
  let ?rA = "Restr r A"  let ?rB = "Restr r B"
blanchet@48975
   180
  have Well: "wo_rel r" unfolding wo_rel_def using WELL .
blanchet@48975
   181
  hence Refl: "Refl r" by (simp add: wo_rel.REFL)
blanchet@48975
   182
  hence FieldA: "Field ?rA = Field r Int A"
blanchet@48975
   183
  using Refl_Field_Restr by blast
blanchet@48975
   184
  have FieldB: "Field ?rB = Field r Int B"
blanchet@48975
   185
  using Refl Refl_Field_Restr by blast
blanchet@48975
   186
  have WellA: "wo_rel ?rA \<and> Well_order ?rA" using WELL
blanchet@48975
   187
  by (simp add: Well_order_Restr wo_rel_def)
blanchet@48975
   188
  have WellB: "wo_rel ?rB \<and> Well_order ?rB" using WELL
blanchet@48975
   189
  by (simp add: Well_order_Restr wo_rel_def)
blanchet@48975
   190
  (* Main proof *)
blanchet@48975
   191
  show ?thesis
blanchet@48975
   192
  proof
blanchet@48975
   193
    assume *: "A \<le> B"
blanchet@48975
   194
    hence "wo_rel.ofilter (Restr r B) A" using assms
blanchet@48975
   195
    by (simp add: ofilter_Restr_subset)
blanchet@48975
   196
    hence "embed (Restr ?rB A) (Restr r B) id"
blanchet@48975
   197
    using WellB ofilter_embed[of "?rB" A] by auto
blanchet@48975
   198
    thus "embed (Restr r A) (Restr r B) id"
blanchet@48975
   199
    using * by (simp add: Restr_subset)
blanchet@48975
   200
  next
blanchet@48975
   201
    assume *: "embed (Restr r A) (Restr r B) id"
blanchet@48975
   202
    {fix a assume **: "a \<in> A"
blanchet@48975
   203
     hence "a \<in> Field r" using Well OFA by (auto simp add: wo_rel.ofilter_def)
blanchet@48975
   204
     with ** FieldA have "a \<in> Field ?rA" by auto
blanchet@48975
   205
     hence "a \<in> Field ?rB" using * WellA embed_Field[of ?rA ?rB id] by auto
blanchet@48975
   206
     hence "a \<in> B" using FieldB by auto
blanchet@48975
   207
    }
blanchet@48975
   208
    thus "A \<le> B" by blast
blanchet@48975
   209
  qed
blanchet@48975
   210
qed
blanchet@48975
   211
blanchet@48975
   212
lemma ofilter_subset_embedS_iso:
blanchet@48975
   213
assumes WELL: "Well_order r" and
blanchet@48975
   214
        OFA: "wo_rel.ofilter r A" and OFB: "wo_rel.ofilter r B"
blanchet@48975
   215
shows "((A < B) = (embedS (Restr r A) (Restr r B) id)) \<and>
blanchet@48975
   216
       ((A = B) = (iso (Restr r A) (Restr r B) id))"
blanchet@48975
   217
proof-
blanchet@48975
   218
  let ?rA = "Restr r A"  let ?rB = "Restr r B"
blanchet@48975
   219
  have Well: "wo_rel r" unfolding wo_rel_def using WELL .
blanchet@48975
   220
  hence Refl: "Refl r" by (simp add: wo_rel.REFL)
blanchet@48975
   221
  hence "Field ?rA = Field r Int A"
blanchet@48975
   222
  using Refl_Field_Restr by blast
blanchet@48975
   223
  hence FieldA: "Field ?rA = A" using OFA Well
blanchet@48975
   224
  by (auto simp add: wo_rel.ofilter_def)
blanchet@48975
   225
  have "Field ?rB = Field r Int B"
blanchet@48975
   226
  using Refl Refl_Field_Restr by blast
blanchet@48975
   227
  hence FieldB: "Field ?rB = B" using OFB Well
blanchet@48975
   228
  by (auto simp add: wo_rel.ofilter_def)
blanchet@48975
   229
  (* Main proof *)
blanchet@48975
   230
  show ?thesis unfolding embedS_def iso_def
blanchet@48975
   231
  using assms ofilter_subset_embed[of r A B]
blanchet@48975
   232
        FieldA FieldB bij_betw_id_iff[of A B] by auto
blanchet@48975
   233
qed
blanchet@48975
   234
blanchet@48975
   235
lemma ofilter_subset_embedS:
blanchet@48975
   236
assumes WELL: "Well_order r" and
blanchet@48975
   237
        OFA: "wo_rel.ofilter r A" and OFB: "wo_rel.ofilter r B"
blanchet@48975
   238
shows "(A < B) = embedS (Restr r A) (Restr r B) id"
blanchet@48975
   239
using assms by (simp add: ofilter_subset_embedS_iso)
blanchet@48975
   240
blanchet@48975
   241
lemma embed_implies_iso_Restr:
blanchet@48975
   242
assumes WELL: "Well_order r" and WELL': "Well_order r'" and
blanchet@48975
   243
        EMB: "embed r' r f"
blanchet@48975
   244
shows "iso r' (Restr r (f ` (Field r'))) f"
blanchet@48975
   245
proof-
blanchet@48975
   246
  let ?A' = "Field r'"
blanchet@48975
   247
  let ?r'' = "Restr r (f ` ?A')"
blanchet@48975
   248
  have 0: "Well_order ?r''" using WELL Well_order_Restr by blast
blanchet@48975
   249
  have 1: "wo_rel.ofilter r (f ` ?A')" using assms embed_Field_ofilter  by blast
blanchet@48975
   250
  hence "Field ?r'' = f ` (Field r')" using WELL Field_Restr_ofilter by blast
blanchet@48975
   251
  hence "bij_betw f ?A' (Field ?r'')"
blanchet@48975
   252
  using EMB embed_inj_on WELL' unfolding bij_betw_def by blast
blanchet@48975
   253
  moreover
blanchet@48975
   254
  {have "\<forall>a b. (a,b) \<in> r' \<longrightarrow> a \<in> Field r' \<and> b \<in> Field r'"
blanchet@48975
   255
   unfolding Field_def by auto
blanchet@48975
   256
   hence "compat r' ?r'' f"
blanchet@48975
   257
   using assms embed_iff_compat_inj_on_ofilter
blanchet@48975
   258
   unfolding compat_def by blast
blanchet@48975
   259
  }
blanchet@48975
   260
  ultimately show ?thesis using WELL' 0 iso_iff3 by blast
blanchet@48975
   261
qed
blanchet@48975
   262
blanchet@48975
   263
wenzelm@60758
   264
subsection \<open>The strict inclusion on proper ofilters is well-founded\<close>
blanchet@48975
   265
blanchet@48975
   266
definition ofilterIncl :: "'a rel \<Rightarrow> 'a set rel"
blanchet@48975
   267
where
blanchet@48975
   268
"ofilterIncl r \<equiv> {(A,B). wo_rel.ofilter r A \<and> A \<noteq> Field r \<and>
blanchet@48975
   269
                         wo_rel.ofilter r B \<and> B \<noteq> Field r \<and> A < B}"
blanchet@48975
   270
blanchet@48975
   271
lemma wf_ofilterIncl:
blanchet@48975
   272
assumes WELL: "Well_order r"
blanchet@48975
   273
shows "wf(ofilterIncl r)"
blanchet@48975
   274
proof-
blanchet@48975
   275
  have Well: "wo_rel r" using WELL by (simp add: wo_rel_def)
blanchet@48975
   276
  hence Lo: "Linear_order r" by (simp add: wo_rel.LIN)
blanchet@48975
   277
  let ?h = "(\<lambda> A. wo_rel.suc r A)"
blanchet@48975
   278
  let ?rS = "r - Id"
blanchet@48975
   279
  have "wf ?rS" using WELL by (simp add: order_on_defs)
blanchet@48975
   280
  moreover
blanchet@48975
   281
  have "compat (ofilterIncl r) ?rS ?h"
blanchet@48975
   282
  proof(unfold compat_def ofilterIncl_def,
blanchet@48975
   283
        intro allI impI, simp, elim conjE)
blanchet@48975
   284
    fix A B
blanchet@48975
   285
    assume *: "wo_rel.ofilter r A" "A \<noteq> Field r" and
blanchet@48975
   286
           **: "wo_rel.ofilter r B" "B \<noteq> Field r" and ***: "A < B"
blanchet@48975
   287
    then obtain a and b where 0: "a \<in> Field r \<and> b \<in> Field r" and
blanchet@55023
   288
                         1: "A = underS r a \<and> B = underS r b"
blanchet@48975
   289
    using Well by (auto simp add: wo_rel.ofilter_underS_Field)
blanchet@48975
   290
    hence "a \<noteq> b" using *** by auto
blanchet@48975
   291
    moreover
blanchet@48975
   292
    have "(a,b) \<in> r" using 0 1 Lo ***
blanchet@55023
   293
    by (auto simp add: underS_incl_iff)
blanchet@48975
   294
    moreover
blanchet@48975
   295
    have "a = wo_rel.suc r A \<and> b = wo_rel.suc r B"
blanchet@48975
   296
    using Well 0 1 by (simp add: wo_rel.suc_underS)
blanchet@48975
   297
    ultimately
blanchet@48975
   298
    show "(wo_rel.suc r A, wo_rel.suc r B) \<in> r \<and> wo_rel.suc r A \<noteq> wo_rel.suc r B"
blanchet@48975
   299
    by simp
blanchet@48975
   300
  qed
blanchet@48975
   301
  ultimately show "wf (ofilterIncl r)" by (simp add: compat_wf)
blanchet@48975
   302
qed
blanchet@48975
   303
blanchet@48975
   304
wenzelm@60758
   305
subsection \<open>Ordering the well-orders by existence of embeddings\<close>
blanchet@48975
   306
wenzelm@60758
   307
text \<open>We define three relations between well-orders:
blanchet@48975
   308
\begin{itemize}
wenzelm@61799
   309
\item \<open>ordLeq\<close>, of being embedded (abbreviated \<open>\<le>o\<close>);
wenzelm@61799
   310
\item \<open>ordLess\<close>, of being strictly embedded (abbreviated \<open><o\<close>);
wenzelm@61799
   311
\item \<open>ordIso\<close>, of being isomorphic (abbreviated \<open>=o\<close>).
blanchet@48975
   312
\end{itemize}
blanchet@48975
   313
%
blanchet@48975
   314
The prefix "ord" and the index "o" in these names stand for "ordinal-like".
blanchet@48975
   315
These relations shall be proved to be inter-connected in a similar fashion as the trio
wenzelm@61799
   316
\<open>\<le>\<close>, \<open><\<close>, \<open>=\<close> associated to a total order on a set.
wenzelm@60758
   317
\<close>
blanchet@48975
   318
blanchet@48975
   319
definition ordLeq :: "('a rel * 'a' rel) set"
blanchet@48975
   320
where
blanchet@48975
   321
"ordLeq = {(r,r'). Well_order r \<and> Well_order r' \<and> (\<exists>f. embed r r' f)}"
blanchet@48975
   322
blanchet@48975
   323
abbreviation ordLeq2 :: "'a rel \<Rightarrow> 'a' rel \<Rightarrow> bool" (infix "<=o" 50)
blanchet@48975
   324
where "r <=o r' \<equiv> (r,r') \<in> ordLeq"
blanchet@48975
   325
blanchet@48975
   326
abbreviation ordLeq3 :: "'a rel \<Rightarrow> 'a' rel \<Rightarrow> bool" (infix "\<le>o" 50)
blanchet@48975
   327
where "r \<le>o r' \<equiv> r <=o r'"
blanchet@48975
   328
blanchet@48975
   329
definition ordLess :: "('a rel * 'a' rel) set"
blanchet@48975
   330
where
blanchet@48975
   331
"ordLess = {(r,r'). Well_order r \<and> Well_order r' \<and> (\<exists>f. embedS r r' f)}"
blanchet@48975
   332
blanchet@48975
   333
abbreviation ordLess2 :: "'a rel \<Rightarrow> 'a' rel \<Rightarrow> bool" (infix "<o" 50)
blanchet@48975
   334
where "r <o r' \<equiv> (r,r') \<in> ordLess"
blanchet@48975
   335
blanchet@48975
   336
definition ordIso :: "('a rel * 'a' rel) set"
blanchet@48975
   337
where
blanchet@48975
   338
"ordIso = {(r,r'). Well_order r \<and> Well_order r' \<and> (\<exists>f. iso r r' f)}"
blanchet@48975
   339
blanchet@48975
   340
abbreviation ordIso2 :: "'a rel \<Rightarrow> 'a' rel \<Rightarrow> bool" (infix "=o" 50)
blanchet@48975
   341
where "r =o r' \<equiv> (r,r') \<in> ordIso"
blanchet@48975
   342
blanchet@48975
   343
lemmas ordRels_def = ordLeq_def ordLess_def ordIso_def
blanchet@48975
   344
blanchet@48975
   345
lemma ordLeq_Well_order_simp:
blanchet@48975
   346
assumes "r \<le>o r'"
blanchet@48975
   347
shows "Well_order r \<and> Well_order r'"
blanchet@48975
   348
using assms unfolding ordLeq_def by simp
blanchet@48975
   349
wenzelm@61799
   350
text\<open>Notice that the relations \<open>\<le>o\<close>, \<open><o\<close>, \<open>=o\<close> connect well-orders
blanchet@48975
   351
on potentially {\em distinct} types. However, some of the lemmas below, including the next one,
wenzelm@61799
   352
restrict implicitly the type of these relations to \<open>(('a rel) * ('a rel)) set\<close> , i.e.,
wenzelm@61799
   353
to \<open>'a rel rel\<close>.\<close>
blanchet@48975
   354
blanchet@48975
   355
lemma ordLeq_reflexive:
blanchet@48975
   356
"Well_order r \<Longrightarrow> r \<le>o r"
blanchet@48975
   357
unfolding ordLeq_def using id_embed[of r] by blast
blanchet@48975
   358
blanchet@48975
   359
lemma ordLeq_transitive[trans]:
blanchet@48975
   360
assumes *: "r \<le>o r'" and **: "r' \<le>o r''"
blanchet@48975
   361
shows "r \<le>o r''"
blanchet@48975
   362
proof-
blanchet@48975
   363
  obtain f and f'
blanchet@48975
   364
  where 1: "Well_order r \<and> Well_order r' \<and> Well_order r''" and
blanchet@48975
   365
        "embed r r' f" and "embed r' r'' f'"
blanchet@48975
   366
  using * ** unfolding ordLeq_def by blast
blanchet@48975
   367
  hence "embed r r'' (f' o f)"
blanchet@48975
   368
  using comp_embed[of r r' f r'' f'] by auto
blanchet@48975
   369
  thus "r \<le>o r''" unfolding ordLeq_def using 1 by auto
blanchet@48975
   370
qed
blanchet@48975
   371
blanchet@48975
   372
lemma ordLeq_total:
blanchet@48975
   373
"\<lbrakk>Well_order r; Well_order r'\<rbrakk> \<Longrightarrow> r \<le>o r' \<or> r' \<le>o r"
blanchet@48975
   374
unfolding ordLeq_def using wellorders_totally_ordered by blast
blanchet@48975
   375
blanchet@48975
   376
lemma ordIso_reflexive:
blanchet@48975
   377
"Well_order r \<Longrightarrow> r =o r"
blanchet@48975
   378
unfolding ordIso_def using id_iso[of r] by blast
blanchet@48975
   379
blanchet@48975
   380
lemma ordIso_transitive[trans]:
blanchet@48975
   381
assumes *: "r =o r'" and **: "r' =o r''"
blanchet@48975
   382
shows "r =o r''"
blanchet@48975
   383
proof-
blanchet@48975
   384
  obtain f and f'
blanchet@48975
   385
  where 1: "Well_order r \<and> Well_order r' \<and> Well_order r''" and
blanchet@48975
   386
        "iso r r' f" and 3: "iso r' r'' f'"
blanchet@48975
   387
  using * ** unfolding ordIso_def by auto
blanchet@48975
   388
  hence "iso r r'' (f' o f)"
blanchet@48975
   389
  using comp_iso[of r r' f r'' f'] by auto
blanchet@48975
   390
  thus "r =o r''" unfolding ordIso_def using 1 by auto
blanchet@48975
   391
qed
blanchet@48975
   392
blanchet@48975
   393
lemma ordIso_symmetric:
blanchet@48975
   394
assumes *: "r =o r'"
blanchet@48975
   395
shows "r' =o r"
blanchet@48975
   396
proof-
blanchet@48975
   397
  obtain f where 1: "Well_order r \<and> Well_order r'" and
blanchet@48975
   398
                 2: "embed r r' f \<and> bij_betw f (Field r) (Field r')"
blanchet@48975
   399
  using * by (auto simp add: ordIso_def iso_def)
blanchet@48975
   400
  let ?f' = "inv_into (Field r) f"
blanchet@48975
   401
  have "embed r' r ?f' \<and> bij_betw ?f' (Field r') (Field r)"
blanchet@48975
   402
  using 1 2 by (simp add: bij_betw_inv_into inv_into_Field_embed_bij_betw)
blanchet@48975
   403
  thus "r' =o r" unfolding ordIso_def using 1 by (auto simp add: iso_def)
blanchet@48975
   404
qed
blanchet@48975
   405
blanchet@48975
   406
lemma ordLeq_ordLess_trans[trans]:
blanchet@48975
   407
assumes "r \<le>o r'" and " r' <o r''"
blanchet@48975
   408
shows "r <o r''"
blanchet@48975
   409
proof-
blanchet@48975
   410
  have "Well_order r \<and> Well_order r''"
blanchet@48975
   411
  using assms unfolding ordLeq_def ordLess_def by auto
blanchet@48975
   412
  thus ?thesis using assms unfolding ordLeq_def ordLess_def
blanchet@48975
   413
  using embed_comp_embedS by blast
blanchet@48975
   414
qed
blanchet@48975
   415
blanchet@48975
   416
lemma ordLess_ordLeq_trans[trans]:
blanchet@48975
   417
assumes "r <o r'" and " r' \<le>o r''"
blanchet@48975
   418
shows "r <o r''"
blanchet@48975
   419
proof-
blanchet@48975
   420
  have "Well_order r \<and> Well_order r''"
blanchet@48975
   421
  using assms unfolding ordLeq_def ordLess_def by auto
blanchet@48975
   422
  thus ?thesis using assms unfolding ordLeq_def ordLess_def
blanchet@48975
   423
  using embedS_comp_embed by blast
blanchet@48975
   424
qed
blanchet@48975
   425
blanchet@48975
   426
lemma ordLeq_ordIso_trans[trans]:
blanchet@48975
   427
assumes "r \<le>o r'" and " r' =o r''"
blanchet@48975
   428
shows "r \<le>o r''"
blanchet@48975
   429
proof-
blanchet@48975
   430
  have "Well_order r \<and> Well_order r''"
blanchet@48975
   431
  using assms unfolding ordLeq_def ordIso_def by auto
blanchet@48975
   432
  thus ?thesis using assms unfolding ordLeq_def ordIso_def
blanchet@48975
   433
  using embed_comp_iso by blast
blanchet@48975
   434
qed
blanchet@48975
   435
blanchet@48975
   436
lemma ordIso_ordLeq_trans[trans]:
blanchet@48975
   437
assumes "r =o r'" and " r' \<le>o r''"
blanchet@48975
   438
shows "r \<le>o r''"
blanchet@48975
   439
proof-
blanchet@48975
   440
  have "Well_order r \<and> Well_order r''"
blanchet@48975
   441
  using assms unfolding ordLeq_def ordIso_def by auto
blanchet@48975
   442
  thus ?thesis using assms unfolding ordLeq_def ordIso_def
blanchet@48975
   443
  using iso_comp_embed by blast
blanchet@48975
   444
qed
blanchet@48975
   445
blanchet@48975
   446
lemma ordLess_ordIso_trans[trans]:
blanchet@48975
   447
assumes "r <o r'" and " r' =o r''"
blanchet@48975
   448
shows "r <o r''"
blanchet@48975
   449
proof-
blanchet@48975
   450
  have "Well_order r \<and> Well_order r''"
blanchet@48975
   451
  using assms unfolding ordLess_def ordIso_def by auto
blanchet@48975
   452
  thus ?thesis using assms unfolding ordLess_def ordIso_def
blanchet@48975
   453
  using embedS_comp_iso by blast
blanchet@48975
   454
qed
blanchet@48975
   455
blanchet@48975
   456
lemma ordIso_ordLess_trans[trans]:
blanchet@48975
   457
assumes "r =o r'" and " r' <o r''"
blanchet@48975
   458
shows "r <o r''"
blanchet@48975
   459
proof-
blanchet@48975
   460
  have "Well_order r \<and> Well_order r''"
blanchet@48975
   461
  using assms unfolding ordLess_def ordIso_def by auto
blanchet@48975
   462
  thus ?thesis using assms unfolding ordLess_def ordIso_def
blanchet@48975
   463
  using iso_comp_embedS by blast
blanchet@48975
   464
qed
blanchet@48975
   465
blanchet@48975
   466
lemma ordLess_not_embed:
blanchet@48975
   467
assumes "r <o r'"
blanchet@48975
   468
shows "\<not>(\<exists>f'. embed r' r f')"
blanchet@48975
   469
proof-
blanchet@48975
   470
  obtain f where 1: "Well_order r \<and> Well_order r'" and 2: "embed r r' f" and
blanchet@48975
   471
                 3: " \<not> bij_betw f (Field r) (Field r')"
blanchet@48975
   472
  using assms unfolding ordLess_def by (auto simp add: embedS_def)
blanchet@48975
   473
  {fix f' assume *: "embed r' r f'"
blanchet@48975
   474
   hence "bij_betw f (Field r) (Field r')" using 1 2
blanchet@48975
   475
   by (simp add: embed_bothWays_Field_bij_betw)
blanchet@48975
   476
   with 3 have False by contradiction
blanchet@48975
   477
  }
blanchet@48975
   478
  thus ?thesis by blast
blanchet@48975
   479
qed
blanchet@48975
   480
blanchet@48975
   481
lemma ordLess_Field:
blanchet@48975
   482
assumes OL: "r1 <o r2" and EMB: "embed r1 r2 f"
blanchet@48975
   483
shows "\<not> (f`(Field r1) = Field r2)"
blanchet@48975
   484
proof-
blanchet@48975
   485
  let ?A1 = "Field r1"  let ?A2 = "Field r2"
blanchet@48975
   486
  obtain g where
blanchet@48975
   487
  0: "Well_order r1 \<and> Well_order r2" and
blanchet@48975
   488
  1: "embed r1 r2 g \<and> \<not>(bij_betw g ?A1 ?A2)"
blanchet@48975
   489
  using OL unfolding ordLess_def by (auto simp add: embedS_def)
blanchet@48975
   490
  hence "\<forall>a \<in> ?A1. f a = g a"
blanchet@48975
   491
  using 0 EMB embed_unique[of r1] by auto
blanchet@48975
   492
  hence "\<not>(bij_betw f ?A1 ?A2)"
blanchet@48975
   493
  using 1 bij_betw_cong[of ?A1] by blast
blanchet@48975
   494
  moreover
blanchet@48975
   495
  have "inj_on f ?A1" using EMB 0 by (simp add: embed_inj_on)
blanchet@48975
   496
  ultimately show ?thesis by (simp add: bij_betw_def)
blanchet@48975
   497
qed
blanchet@48975
   498
blanchet@48975
   499
lemma ordLess_iff:
blanchet@48975
   500
"r <o r' = (Well_order r \<and> Well_order r' \<and> \<not>(\<exists>f'. embed r' r f'))"
blanchet@48975
   501
proof
blanchet@48975
   502
  assume *: "r <o r'"
blanchet@48975
   503
  hence "\<not>(\<exists>f'. embed r' r f')" using ordLess_not_embed[of r r'] by simp
blanchet@48975
   504
  with * show "Well_order r \<and> Well_order r' \<and> \<not> (\<exists>f'. embed r' r f')"
blanchet@48975
   505
  unfolding ordLess_def by auto
blanchet@48975
   506
next
blanchet@48975
   507
  assume *: "Well_order r \<and> Well_order r' \<and> \<not> (\<exists>f'. embed r' r f')"
blanchet@48975
   508
  then obtain f where 1: "embed r r' f"
blanchet@48975
   509
  using wellorders_totally_ordered[of r r'] by blast
blanchet@48975
   510
  moreover
blanchet@48975
   511
  {assume "bij_betw f (Field r) (Field r')"
blanchet@48975
   512
   with * 1 have "embed r' r (inv_into (Field r) f) "
blanchet@48975
   513
   using inv_into_Field_embed_bij_betw[of r r' f] by auto
blanchet@48975
   514
   with * have False by blast
blanchet@48975
   515
  }
blanchet@48975
   516
  ultimately show "(r,r') \<in> ordLess"
blanchet@48975
   517
  unfolding ordLess_def using * by (fastforce simp add: embedS_def)
blanchet@48975
   518
qed
blanchet@48975
   519
blanchet@48975
   520
lemma ordLess_irreflexive: "\<not> r <o r"
blanchet@48975
   521
proof
blanchet@48975
   522
  assume "r <o r"
blanchet@48975
   523
  hence "Well_order r \<and>  \<not>(\<exists>f. embed r r f)"
blanchet@48975
   524
  unfolding ordLess_iff ..
blanchet@48975
   525
  moreover have "embed r r id" using id_embed[of r] .
blanchet@48975
   526
  ultimately show False by blast
blanchet@48975
   527
qed
blanchet@48975
   528
blanchet@48975
   529
lemma ordLeq_iff_ordLess_or_ordIso:
blanchet@48975
   530
"r \<le>o r' = (r <o r' \<or> r =o r')"
blanchet@48975
   531
unfolding ordRels_def embedS_defs iso_defs by blast
blanchet@48975
   532
blanchet@48975
   533
lemma ordIso_iff_ordLeq:
blanchet@48975
   534
"(r =o r') = (r \<le>o r' \<and> r' \<le>o r)"
blanchet@48975
   535
proof
blanchet@48975
   536
  assume "r =o r'"
blanchet@48975
   537
  then obtain f where 1: "Well_order r \<and> Well_order r' \<and>
blanchet@48975
   538
                     embed r r' f \<and> bij_betw f (Field r) (Field r')"
blanchet@48975
   539
  unfolding ordIso_def iso_defs by auto
blanchet@48975
   540
  hence "embed r r' f \<and> embed r' r (inv_into (Field r) f)"
blanchet@48975
   541
  by (simp add: inv_into_Field_embed_bij_betw)
blanchet@48975
   542
  thus  "r \<le>o r' \<and> r' \<le>o r"
blanchet@48975
   543
  unfolding ordLeq_def using 1 by auto
blanchet@48975
   544
next
blanchet@48975
   545
  assume "r \<le>o r' \<and> r' \<le>o r"
blanchet@48975
   546
  then obtain f and g where 1: "Well_order r \<and> Well_order r' \<and>
blanchet@48975
   547
                           embed r r' f \<and> embed r' r g"
blanchet@48975
   548
  unfolding ordLeq_def by auto
blanchet@48975
   549
  hence "iso r r' f" by (auto simp add: embed_bothWays_iso)
blanchet@48975
   550
  thus "r =o r'" unfolding ordIso_def using 1 by auto
blanchet@48975
   551
qed
blanchet@48975
   552
blanchet@48975
   553
lemma not_ordLess_ordLeq:
blanchet@48975
   554
"r <o r' \<Longrightarrow> \<not> r' \<le>o r"
blanchet@48975
   555
using ordLess_ordLeq_trans ordLess_irreflexive by blast
blanchet@48975
   556
blanchet@48975
   557
lemma ordLess_or_ordLeq:
blanchet@48975
   558
assumes WELL: "Well_order r" and WELL': "Well_order r'"
blanchet@48975
   559
shows "r <o r' \<or> r' \<le>o r"
blanchet@48975
   560
proof-
blanchet@48975
   561
  have "r \<le>o r' \<or> r' \<le>o r"
blanchet@48975
   562
  using assms by (simp add: ordLeq_total)
blanchet@48975
   563
  moreover
blanchet@48975
   564
  {assume "\<not> r <o r' \<and> r \<le>o r'"
blanchet@48975
   565
   hence "r =o r'" using ordLeq_iff_ordLess_or_ordIso by blast
blanchet@48975
   566
   hence "r' \<le>o r" using ordIso_symmetric ordIso_iff_ordLeq by blast
blanchet@48975
   567
  }
blanchet@48975
   568
  ultimately show ?thesis by blast
blanchet@48975
   569
qed
blanchet@48975
   570
blanchet@48975
   571
lemma not_ordLess_ordIso:
blanchet@48975
   572
"r <o r' \<Longrightarrow> \<not> r =o r'"
blanchet@48975
   573
using assms ordLess_ordIso_trans ordIso_symmetric ordLess_irreflexive by blast
blanchet@48975
   574
blanchet@48975
   575
lemma not_ordLeq_iff_ordLess:
blanchet@48975
   576
assumes WELL: "Well_order r" and WELL': "Well_order r'"
blanchet@48975
   577
shows "(\<not> r' \<le>o r) = (r <o r')"
blanchet@48975
   578
using assms not_ordLess_ordLeq ordLess_or_ordLeq by blast
blanchet@48975
   579
blanchet@48975
   580
lemma not_ordLess_iff_ordLeq:
blanchet@48975
   581
assumes WELL: "Well_order r" and WELL': "Well_order r'"
blanchet@48975
   582
shows "(\<not> r' <o r) = (r \<le>o r')"
blanchet@48975
   583
using assms not_ordLess_ordLeq ordLess_or_ordLeq by blast
blanchet@48975
   584
blanchet@48975
   585
lemma ordLess_transitive[trans]:
blanchet@48975
   586
"\<lbrakk>r <o r'; r' <o r''\<rbrakk> \<Longrightarrow> r <o r''"
blanchet@48975
   587
using assms ordLess_ordLeq_trans ordLeq_iff_ordLess_or_ordIso by blast
blanchet@48975
   588
blanchet@48975
   589
corollary ordLess_trans: "trans ordLess"
blanchet@48975
   590
unfolding trans_def using ordLess_transitive by blast
blanchet@48975
   591
blanchet@48975
   592
lemmas ordIso_equivalence = ordIso_transitive ordIso_reflexive ordIso_symmetric
blanchet@48975
   593
blanchet@48975
   594
lemma ordIso_imp_ordLeq:
blanchet@48975
   595
"r =o r' \<Longrightarrow> r \<le>o r'"
blanchet@48975
   596
using ordIso_iff_ordLeq by blast
blanchet@48975
   597
blanchet@48975
   598
lemma ordLess_imp_ordLeq:
blanchet@48975
   599
"r <o r' \<Longrightarrow> r \<le>o r'"
blanchet@48975
   600
using ordLeq_iff_ordLess_or_ordIso by blast
blanchet@48975
   601
blanchet@48975
   602
lemma ofilter_subset_ordLeq:
blanchet@48975
   603
assumes WELL: "Well_order r" and
blanchet@48975
   604
        OFA: "wo_rel.ofilter r A" and OFB: "wo_rel.ofilter r B"
blanchet@48975
   605
shows "(A \<le> B) = (Restr r A \<le>o Restr r B)"
blanchet@48975
   606
proof
blanchet@48975
   607
  assume "A \<le> B"
blanchet@48975
   608
  thus "Restr r A \<le>o Restr r B"
blanchet@48975
   609
  unfolding ordLeq_def using assms
blanchet@48975
   610
  Well_order_Restr Well_order_Restr ofilter_subset_embed by blast
blanchet@48975
   611
next
blanchet@48975
   612
  assume *: "Restr r A \<le>o Restr r B"
blanchet@48975
   613
  then obtain f where "embed (Restr r A) (Restr r B) f"
blanchet@48975
   614
  unfolding ordLeq_def by blast
blanchet@48975
   615
  {assume "B < A"
blanchet@48975
   616
   hence "Restr r B <o Restr r A"
blanchet@48975
   617
   unfolding ordLess_def using assms
blanchet@48975
   618
   Well_order_Restr Well_order_Restr ofilter_subset_embedS by blast
blanchet@48975
   619
   hence False using * not_ordLess_ordLeq by blast
blanchet@48975
   620
  }
blanchet@48975
   621
  thus "A \<le> B" using OFA OFB WELL
blanchet@48975
   622
  wo_rel_def[of r] wo_rel.ofilter_linord[of r A B] by blast
blanchet@48975
   623
qed
blanchet@48975
   624
blanchet@48975
   625
lemma ofilter_subset_ordLess:
blanchet@48975
   626
assumes WELL: "Well_order r" and
blanchet@48975
   627
        OFA: "wo_rel.ofilter r A" and OFB: "wo_rel.ofilter r B"
blanchet@48975
   628
shows "(A < B) = (Restr r A <o Restr r B)"
blanchet@48975
   629
proof-
blanchet@48975
   630
  let ?rA = "Restr r A" let ?rB = "Restr r B"
blanchet@48975
   631
  have 1: "Well_order ?rA \<and> Well_order ?rB"
blanchet@48975
   632
  using WELL Well_order_Restr by blast
blanchet@48975
   633
  have "(A < B) = (\<not> B \<le> A)" using assms
blanchet@48975
   634
  wo_rel_def wo_rel.ofilter_linord[of r A B] by blast
blanchet@48975
   635
  also have "\<dots> = (\<not> Restr r B \<le>o Restr r A)"
blanchet@48975
   636
  using assms ofilter_subset_ordLeq by blast
blanchet@48975
   637
  also have "\<dots> = (Restr r A <o Restr r B)"
blanchet@48975
   638
  using 1 not_ordLeq_iff_ordLess by blast
blanchet@48975
   639
  finally show ?thesis .
blanchet@48975
   640
qed
blanchet@48975
   641
blanchet@48975
   642
lemma ofilter_ordLess:
blanchet@48975
   643
"\<lbrakk>Well_order r; wo_rel.ofilter r A\<rbrakk> \<Longrightarrow> (A < Field r) = (Restr r A <o r)"
blanchet@48975
   644
by (simp add: ofilter_subset_ordLess wo_rel.Field_ofilter
blanchet@48975
   645
    wo_rel_def Restr_Field)
blanchet@48975
   646
blanchet@48975
   647
corollary underS_Restr_ordLess:
blanchet@48975
   648
assumes "Well_order r" and "Field r \<noteq> {}"
blanchet@55023
   649
shows "Restr r (underS r a) <o r"
blanchet@48975
   650
proof-
blanchet@55023
   651
  have "underS r a < Field r" using assms
blanchet@55023
   652
  by (simp add: underS_Field3)
blanchet@48975
   653
  thus ?thesis using assms
blanchet@48975
   654
  by (simp add: ofilter_ordLess wo_rel.underS_ofilter wo_rel_def)
blanchet@48975
   655
qed
blanchet@48975
   656
blanchet@48975
   657
lemma embed_ordLess_ofilterIncl:
blanchet@48975
   658
assumes
blanchet@48975
   659
  OL12: "r1 <o r2" and OL23: "r2 <o r3" and
blanchet@48975
   660
  EMB13: "embed r1 r3 f13" and EMB23: "embed r2 r3 f23"
blanchet@48975
   661
shows "(f13`(Field r1), f23`(Field r2)) \<in> (ofilterIncl r3)"
blanchet@48975
   662
proof-
blanchet@48975
   663
  have OL13: "r1 <o r3"
blanchet@48975
   664
  using OL12 OL23 using ordLess_transitive by auto
blanchet@48975
   665
  let ?A1 = "Field r1"  let ?A2 ="Field r2" let ?A3 ="Field r3"
blanchet@48975
   666
  obtain f12 g23 where
blanchet@48975
   667
  0: "Well_order r1 \<and> Well_order r2 \<and> Well_order r3" and
blanchet@48975
   668
  1: "embed r1 r2 f12 \<and> \<not>(bij_betw f12 ?A1 ?A2)" and
blanchet@48975
   669
  2: "embed r2 r3 g23 \<and> \<not>(bij_betw g23 ?A2 ?A3)"
blanchet@48975
   670
  using OL12 OL23 by (auto simp add: ordLess_def embedS_def)
blanchet@48975
   671
  hence "\<forall>a \<in> ?A2. f23 a = g23 a"
blanchet@48975
   672
  using EMB23 embed_unique[of r2 r3] by blast
blanchet@48975
   673
  hence 3: "\<not>(bij_betw f23 ?A2 ?A3)"
blanchet@48975
   674
  using 2 bij_betw_cong[of ?A2 f23 g23] by blast
blanchet@48975
   675
  (*  *)
blanchet@48975
   676
  have 4: "wo_rel.ofilter r2 (f12 ` ?A1) \<and> f12 ` ?A1 \<noteq> ?A2"
blanchet@48975
   677
  using 0 1 OL12 by (simp add: embed_Field_ofilter ordLess_Field)
blanchet@48975
   678
  have 5: "wo_rel.ofilter r3 (f23 ` ?A2) \<and> f23 ` ?A2 \<noteq> ?A3"
blanchet@48975
   679
  using 0 EMB23 OL23 by (simp add: embed_Field_ofilter ordLess_Field)
blanchet@48975
   680
  have 6: "wo_rel.ofilter r3 (f13 ` ?A1)  \<and> f13 ` ?A1 \<noteq> ?A3"
blanchet@48975
   681
  using 0 EMB13 OL13 by (simp add: embed_Field_ofilter ordLess_Field)
blanchet@48975
   682
  (*  *)
blanchet@48975
   683
  have "f12 ` ?A1 < ?A2"
blanchet@48975
   684
  using 0 4 by (auto simp add: wo_rel_def wo_rel.ofilter_def)
blanchet@48975
   685
  moreover have "inj_on f23 ?A2"
blanchet@48975
   686
  using EMB23 0 by (simp add: wo_rel_def embed_inj_on)
blanchet@48975
   687
  ultimately
blanchet@48975
   688
  have "f23 ` (f12 ` ?A1) < f23 ` ?A2" by (simp add: inj_on_strict_subset)
blanchet@48975
   689
  moreover
blanchet@48975
   690
  {have "embed r1 r3 (f23 o f12)"
blanchet@48975
   691
   using 1 EMB23 0 by (auto simp add: comp_embed)
blanchet@48975
   692
   hence "\<forall>a \<in> ?A1. f23(f12 a) = f13 a"
blanchet@48975
   693
   using EMB13 0 embed_unique[of r1 r3 "f23 o f12" f13] by auto
blanchet@48975
   694
   hence "f23 ` (f12 ` ?A1) = f13 ` ?A1" by force
blanchet@48975
   695
  }
blanchet@48975
   696
  ultimately
blanchet@48975
   697
  have "f13 ` ?A1 < f23 ` ?A2" by simp
blanchet@48975
   698
  (*  *)
blanchet@48975
   699
  with 5 6 show ?thesis
blanchet@48975
   700
  unfolding ofilterIncl_def by auto
blanchet@48975
   701
qed
blanchet@48975
   702
blanchet@48975
   703
lemma ordLess_iff_ordIso_Restr:
blanchet@48975
   704
assumes WELL: "Well_order r" and WELL': "Well_order r'"
blanchet@55023
   705
shows "(r' <o r) = (\<exists>a \<in> Field r. r' =o Restr r (underS r a))"
blanchet@48975
   706
proof(auto)
blanchet@55023
   707
  fix a assume *: "a \<in> Field r" and **: "r' =o Restr r (underS r a)"
blanchet@55023
   708
  hence "Restr r (underS r a) <o r" using WELL underS_Restr_ordLess[of r] by blast
blanchet@48975
   709
  thus "r' <o r" using ** ordIso_ordLess_trans by blast
blanchet@48975
   710
next
blanchet@48975
   711
  assume "r' <o r"
blanchet@48975
   712
  then obtain f where 1: "Well_order r \<and> Well_order r'" and
blanchet@48975
   713
                      2: "embed r' r f \<and> f ` (Field r') \<noteq> Field r"
blanchet@48975
   714
  unfolding ordLess_def embedS_def[abs_def] bij_betw_def using embed_inj_on by blast
blanchet@48975
   715
  hence "wo_rel.ofilter r (f ` (Field r'))" using embed_Field_ofilter by blast
blanchet@55023
   716
  then obtain a where 3: "a \<in> Field r" and 4: "underS r a = f ` (Field r')"
blanchet@48975
   717
  using 1 2 by (auto simp add: wo_rel.ofilter_underS_Field wo_rel_def)
blanchet@48975
   718
  have "iso r' (Restr r (f ` (Field r'))) f"
blanchet@48975
   719
  using embed_implies_iso_Restr 2 assms by blast
blanchet@48975
   720
  moreover have "Well_order (Restr r (f ` (Field r')))"
blanchet@48975
   721
  using WELL Well_order_Restr by blast
blanchet@48975
   722
  ultimately have "r' =o Restr r (f ` (Field r'))"
blanchet@48975
   723
  using WELL' unfolding ordIso_def by auto
blanchet@55023
   724
  hence "r' =o Restr r (underS r a)" using 4 by auto
blanchet@55023
   725
  thus "\<exists>a \<in> Field r. r' =o Restr r (underS r a)" using 3 by auto
blanchet@48975
   726
qed
blanchet@48975
   727
blanchet@48975
   728
lemma internalize_ordLess:
blanchet@48975
   729
"(r' <o r) = (\<exists>p. Field p < Field r \<and> r' =o p \<and> p <o r)"
blanchet@48975
   730
proof
blanchet@48975
   731
  assume *: "r' <o r"
blanchet@48975
   732
  hence 0: "Well_order r \<and> Well_order r'" unfolding ordLess_def by auto
blanchet@55023
   733
  with * obtain a where 1: "a \<in> Field r" and 2: "r' =o Restr r (underS r a)"
blanchet@48975
   734
  using ordLess_iff_ordIso_Restr by blast
blanchet@55023
   735
  let ?p = "Restr r (underS r a)"
blanchet@55023
   736
  have "wo_rel.ofilter r (underS r a)" using 0
blanchet@48975
   737
  by (simp add: wo_rel_def wo_rel.underS_ofilter)
blanchet@55023
   738
  hence "Field ?p = underS r a" using 0 Field_Restr_ofilter by blast
blanchet@55023
   739
  hence "Field ?p < Field r" using underS_Field2 1 by fast
blanchet@48975
   740
  moreover have "?p <o r" using underS_Restr_ordLess[of r a] 0 1 by blast
blanchet@48975
   741
  ultimately
blanchet@48975
   742
  show "\<exists>p. Field p < Field r \<and> r' =o p \<and> p <o r" using 2 by blast
blanchet@48975
   743
next
blanchet@48975
   744
  assume "\<exists>p. Field p < Field r \<and> r' =o p \<and> p <o r"
blanchet@48975
   745
  thus "r' <o r" using ordIso_ordLess_trans by blast
blanchet@48975
   746
qed
blanchet@48975
   747
blanchet@48975
   748
lemma internalize_ordLeq:
blanchet@48975
   749
"(r' \<le>o r) = (\<exists>p. Field p \<le> Field r \<and> r' =o p \<and> p \<le>o r)"
blanchet@48975
   750
proof
blanchet@48975
   751
  assume *: "r' \<le>o r"
blanchet@48975
   752
  moreover
blanchet@48975
   753
  {assume "r' <o r"
blanchet@48975
   754
   then obtain p where "Field p < Field r \<and> r' =o p \<and> p <o r"
blanchet@48975
   755
   using internalize_ordLess[of r' r] by blast
blanchet@48975
   756
   hence "\<exists>p. Field p \<le> Field r \<and> r' =o p \<and> p \<le>o r"
blanchet@48975
   757
   using ordLeq_iff_ordLess_or_ordIso by blast
blanchet@48975
   758
  }
blanchet@48975
   759
  moreover
blanchet@48975
   760
  have "r \<le>o r" using * ordLeq_def ordLeq_reflexive by blast
blanchet@48975
   761
  ultimately show "\<exists>p. Field p \<le> Field r \<and> r' =o p \<and> p \<le>o r"
blanchet@48975
   762
  using ordLeq_iff_ordLess_or_ordIso by blast
blanchet@48975
   763
next
blanchet@48975
   764
  assume "\<exists>p. Field p \<le> Field r \<and> r' =o p \<and> p \<le>o r"
blanchet@48975
   765
  thus "r' \<le>o r" using ordIso_ordLeq_trans by blast
blanchet@48975
   766
qed
blanchet@48975
   767
blanchet@48975
   768
lemma ordLeq_iff_ordLess_Restr:
blanchet@48975
   769
assumes WELL: "Well_order r" and WELL': "Well_order r'"
blanchet@55023
   770
shows "(r \<le>o r') = (\<forall>a \<in> Field r. Restr r (underS r a) <o r')"
blanchet@48975
   771
proof(auto)
blanchet@48975
   772
  assume *: "r \<le>o r'"
blanchet@48975
   773
  fix a assume "a \<in> Field r"
blanchet@55023
   774
  hence "Restr r (underS r a) <o r"
blanchet@48975
   775
  using WELL underS_Restr_ordLess[of r] by blast
blanchet@55023
   776
  thus "Restr r (underS r a) <o r'"
blanchet@48975
   777
  using * ordLess_ordLeq_trans by blast
blanchet@48975
   778
next
blanchet@55023
   779
  assume *: "\<forall>a \<in> Field r. Restr r (underS r a) <o r'"
blanchet@48975
   780
  {assume "r' <o r"
blanchet@55023
   781
   then obtain a where "a \<in> Field r \<and> r' =o Restr r (underS r a)"
blanchet@48975
   782
   using assms ordLess_iff_ordIso_Restr by blast
blanchet@48975
   783
   hence False using * not_ordLess_ordIso ordIso_symmetric by blast
blanchet@48975
   784
  }
blanchet@48975
   785
  thus "r \<le>o r'" using ordLess_or_ordLeq assms by blast
blanchet@48975
   786
qed
blanchet@48975
   787
blanchet@48975
   788
lemma finite_ordLess_infinite:
blanchet@48975
   789
assumes WELL: "Well_order r" and WELL': "Well_order r'" and
traytel@54578
   790
        FIN: "finite(Field r)" and INF: "\<not>finite(Field r')"
blanchet@48975
   791
shows "r <o r'"
blanchet@48975
   792
proof-
blanchet@48975
   793
  {assume "r' \<le>o r"
blanchet@48975
   794
   then obtain h where "inj_on h (Field r') \<and> h ` (Field r') \<le> Field r"
blanchet@48975
   795
   unfolding ordLeq_def using assms embed_inj_on embed_Field by blast
traytel@55811
   796
   hence False using finite_imageD finite_subset FIN INF by blast
blanchet@48975
   797
  }
blanchet@48975
   798
  thus ?thesis using WELL WELL' ordLess_or_ordLeq by blast
blanchet@48975
   799
qed
blanchet@48975
   800
blanchet@48975
   801
lemma finite_well_order_on_ordIso:
blanchet@48975
   802
assumes FIN: "finite A" and
blanchet@48975
   803
        WELL: "well_order_on A r" and WELL': "well_order_on A r'"
blanchet@48975
   804
shows "r =o r'"
blanchet@48975
   805
proof-
blanchet@48975
   806
  have 0: "Well_order r \<and> Well_order r' \<and> Field r = A \<and> Field r' = A"
blanchet@55023
   807
  using assms well_order_on_Well_order by blast
blanchet@48975
   808
  moreover
blanchet@48975
   809
  have "\<forall>r r'. well_order_on A r \<and> well_order_on A r' \<and> r \<le>o r'
blanchet@48975
   810
                  \<longrightarrow> r =o r'"
blanchet@48975
   811
  proof(clarify)
blanchet@48975
   812
    fix r r' assume *: "well_order_on A r" and **: "well_order_on A r'"
blanchet@48975
   813
    have 2: "Well_order r \<and> Well_order r' \<and> Field r = A \<and> Field r' = A"
blanchet@55023
   814
    using * ** well_order_on_Well_order by blast
blanchet@48975
   815
    assume "r \<le>o r'"
blanchet@48975
   816
    then obtain f where 1: "embed r r' f" and
blanchet@48975
   817
                        "inj_on f A \<and> f ` A \<le> A"
blanchet@48975
   818
    unfolding ordLeq_def using 2 embed_inj_on embed_Field by blast
blanchet@48975
   819
    hence "bij_betw f A A" unfolding bij_betw_def using FIN endo_inj_surj by blast
blanchet@48975
   820
    thus "r =o r'" unfolding ordIso_def iso_def[abs_def] using 1 2 by auto
blanchet@48975
   821
  qed
traytel@55811
   822
  ultimately show ?thesis using assms ordLeq_total ordIso_symmetric by blast
blanchet@48975
   823
qed
blanchet@48975
   824
wenzelm@61799
   825
subsection\<open>\<open><o\<close> is well-founded\<close>
blanchet@48975
   826
wenzelm@61799
   827
text \<open>Of course, it only makes sense to state that the \<open><o\<close> is well-founded
wenzelm@61799
   828
on the restricted type \<open>'a rel rel\<close>.  We prove this by first showing that, for any set
blanchet@48975
   829
of well-orders all embedded in a fixed well-order, the function mapping each well-order
wenzelm@61799
   830
in the set to an order filter of the fixed well-order is compatible w.r.t. to \<open><o\<close> versus
wenzelm@60758
   831
{\em strict inclusion}; and we already know that strict inclusion of order filters is well-founded.\<close>
blanchet@48975
   832
blanchet@48975
   833
definition ord_to_filter :: "'a rel \<Rightarrow> 'a rel \<Rightarrow> 'a set"
blanchet@48975
   834
where "ord_to_filter r0 r \<equiv> (SOME f. embed r r0 f) ` (Field r)"
blanchet@48975
   835
blanchet@48975
   836
lemma ord_to_filter_compat:
blanchet@48975
   837
"compat (ordLess Int (ordLess^-1``{r0} \<times> ordLess^-1``{r0}))
blanchet@48975
   838
        (ofilterIncl r0)
blanchet@48975
   839
        (ord_to_filter r0)"
blanchet@48975
   840
proof(unfold compat_def ord_to_filter_def, clarify)
blanchet@48975
   841
  fix r1::"'a rel" and r2::"'a rel"
blanchet@48975
   842
  let ?A1 = "Field r1"  let ?A2 ="Field r2" let ?A0 ="Field r0"
blanchet@48975
   843
  let ?phi10 = "\<lambda> f10. embed r1 r0 f10" let ?f10 = "SOME f. ?phi10 f"
blanchet@48975
   844
  let ?phi20 = "\<lambda> f20. embed r2 r0 f20" let ?f20 = "SOME f. ?phi20 f"
blanchet@48975
   845
  assume *: "r1 <o r0" "r2 <o r0" and **: "r1 <o r2"
blanchet@48975
   846
  hence "(\<exists>f. ?phi10 f) \<and> (\<exists>f. ?phi20 f)"
blanchet@48975
   847
  by (auto simp add: ordLess_def embedS_def)
blanchet@48975
   848
  hence "?phi10 ?f10 \<and> ?phi20 ?f20" by (auto simp add: someI_ex)
blanchet@48975
   849
  thus "(?f10 ` ?A1, ?f20 ` ?A2) \<in> ofilterIncl r0"
blanchet@48975
   850
  using * ** by (simp add: embed_ordLess_ofilterIncl)
blanchet@48975
   851
qed
blanchet@48975
   852
blanchet@48975
   853
theorem wf_ordLess: "wf ordLess"
blanchet@48975
   854
proof-
blanchet@48975
   855
  {fix r0 :: "('a \<times> 'a) set"
blanchet@48975
   856
   (* need to annotate here!*)
blanchet@48975
   857
   let ?ordLess = "ordLess::('d rel * 'd rel) set"
blanchet@48975
   858
   let ?R = "?ordLess Int (?ordLess^-1``{r0} \<times> ?ordLess^-1``{r0})"
blanchet@48975
   859
   {assume Case1: "Well_order r0"
blanchet@48975
   860
    hence "wf ?R"
blanchet@48975
   861
    using wf_ofilterIncl[of r0]
blanchet@48975
   862
          compat_wf[of ?R "ofilterIncl r0" "ord_to_filter r0"]
blanchet@48975
   863
          ord_to_filter_compat[of r0] by auto
blanchet@48975
   864
   }
blanchet@48975
   865
   moreover
blanchet@48975
   866
   {assume Case2: "\<not> Well_order r0"
blanchet@48975
   867
    hence "?R = {}" unfolding ordLess_def by auto
blanchet@48975
   868
    hence "wf ?R" using wf_empty by simp
blanchet@48975
   869
   }
blanchet@48975
   870
   ultimately have "wf ?R" by blast
blanchet@48975
   871
  }
blanchet@48975
   872
  thus ?thesis by (simp add: trans_wf_iff ordLess_trans)
blanchet@48975
   873
qed
blanchet@48975
   874
blanchet@48975
   875
corollary exists_minim_Well_order:
blanchet@48975
   876
assumes NE: "R \<noteq> {}" and WELL: "\<forall>r \<in> R. Well_order r"
blanchet@48975
   877
shows "\<exists>r \<in> R. \<forall>r' \<in> R. r \<le>o r'"
blanchet@48975
   878
proof-
blanchet@48975
   879
  obtain r where "r \<in> R \<and> (\<forall>r' \<in> R. \<not> r' <o r)"
blanchet@48975
   880
  using NE spec[OF spec[OF subst[OF wf_eq_minimal, of "%x. x", OF wf_ordLess]], of _ R]
blanchet@48975
   881
    equals0I[of R] by blast
blanchet@48975
   882
  with not_ordLeq_iff_ordLess WELL show ?thesis by blast
blanchet@48975
   883
qed
blanchet@48975
   884
blanchet@48975
   885
wenzelm@60758
   886
subsection \<open>Copy via direct images\<close>
blanchet@48975
   887
wenzelm@61799
   888
text\<open>The direct image operator is the dual of the inverse image operator \<open>inv_image\<close>
wenzelm@61799
   889
from \<open>Relation.thy\<close>.  It is useful for transporting a well-order between
wenzelm@60758
   890
different types.\<close>
blanchet@48975
   891
blanchet@48975
   892
definition dir_image :: "'a rel \<Rightarrow> ('a \<Rightarrow> 'a') \<Rightarrow> 'a' rel"
blanchet@48975
   893
where
blanchet@48975
   894
"dir_image r f = {(f a, f b)| a b. (a,b) \<in> r}"
blanchet@48975
   895
blanchet@48975
   896
lemma dir_image_Field:
traytel@56191
   897
"Field(dir_image r f) = f ` (Field r)"
traytel@56191
   898
unfolding dir_image_def Field_def Range_def Domain_def by fast
blanchet@48975
   899
blanchet@48975
   900
lemma dir_image_minus_Id:
blanchet@48975
   901
"inj_on f (Field r) \<Longrightarrow> (dir_image r f) - Id = dir_image (r - Id) f"
blanchet@48975
   902
unfolding inj_on_def Field_def dir_image_def by auto
blanchet@48975
   903
blanchet@48975
   904
lemma Refl_dir_image:
blanchet@48975
   905
assumes "Refl r"
blanchet@48975
   906
shows "Refl(dir_image r f)"
blanchet@48975
   907
proof-
blanchet@48975
   908
  {fix a' b'
blanchet@48975
   909
   assume "(a',b') \<in> dir_image r f"
blanchet@48975
   910
   then obtain a b where 1: "a' = f a \<and> b' = f b \<and> (a,b) \<in> r"
blanchet@48975
   911
   unfolding dir_image_def by blast
blanchet@48975
   912
   hence "a \<in> Field r \<and> b \<in> Field r" using Field_def by fastforce
blanchet@48975
   913
   hence "(a,a) \<in> r \<and> (b,b) \<in> r" using assms by (simp add: refl_on_def)
blanchet@48975
   914
   with 1 have "(a',a') \<in> dir_image r f \<and> (b',b') \<in> dir_image r f"
blanchet@48975
   915
   unfolding dir_image_def by auto
blanchet@48975
   916
  }
blanchet@48975
   917
  thus ?thesis
blanchet@48975
   918
  by(unfold refl_on_def Field_def Domain_def Range_def, auto)
blanchet@48975
   919
qed
blanchet@48975
   920
blanchet@48975
   921
lemma trans_dir_image:
blanchet@48975
   922
assumes TRANS: "trans r" and INJ: "inj_on f (Field r)"
blanchet@48975
   923
shows "trans(dir_image r f)"
blanchet@48975
   924
proof(unfold trans_def, auto)
blanchet@48975
   925
  fix a' b' c'
blanchet@48975
   926
  assume "(a',b') \<in> dir_image r f" "(b',c') \<in> dir_image r f"
blanchet@48975
   927
  then obtain a b1 b2 c where 1: "a' = f a \<and> b' = f b1 \<and> b' = f b2 \<and> c' = f c" and
blanchet@48975
   928
                         2: "(a,b1) \<in> r \<and> (b2,c) \<in> r"
blanchet@48975
   929
  unfolding dir_image_def by blast
blanchet@48975
   930
  hence "b1 \<in> Field r \<and> b2 \<in> Field r"
blanchet@48975
   931
  unfolding Field_def by auto
blanchet@48975
   932
  hence "b1 = b2" using 1 INJ unfolding inj_on_def by auto
blanchet@48975
   933
  hence "(a,c): r" using 2 TRANS unfolding trans_def by blast
blanchet@48975
   934
  thus "(a',c') \<in> dir_image r f"
blanchet@48975
   935
  unfolding dir_image_def using 1 by auto
blanchet@48975
   936
qed
blanchet@48975
   937
blanchet@48975
   938
lemma Preorder_dir_image:
blanchet@48975
   939
"\<lbrakk>Preorder r; inj_on f (Field r)\<rbrakk> \<Longrightarrow> Preorder (dir_image r f)"
blanchet@48975
   940
by (simp add: preorder_on_def Refl_dir_image trans_dir_image)
blanchet@48975
   941
blanchet@48975
   942
lemma antisym_dir_image:
blanchet@48975
   943
assumes AN: "antisym r" and INJ: "inj_on f (Field r)"
blanchet@48975
   944
shows "antisym(dir_image r f)"
blanchet@48975
   945
proof(unfold antisym_def, auto)
blanchet@48975
   946
  fix a' b'
blanchet@48975
   947
  assume "(a',b') \<in> dir_image r f" "(b',a') \<in> dir_image r f"
blanchet@48975
   948
  then obtain a1 b1 a2 b2 where 1: "a' = f a1 \<and> a' = f a2 \<and> b' = f b1 \<and> b' = f b2" and
blanchet@48975
   949
                           2: "(a1,b1) \<in> r \<and> (b2,a2) \<in> r " and
blanchet@48975
   950
                           3: "{a1,a2,b1,b2} \<le> Field r"
blanchet@48975
   951
  unfolding dir_image_def Field_def by blast
blanchet@48975
   952
  hence "a1 = a2 \<and> b1 = b2" using INJ unfolding inj_on_def by auto
blanchet@48975
   953
  hence "a1 = b2" using 2 AN unfolding antisym_def by auto
blanchet@48975
   954
  thus "a' = b'" using 1 by auto
blanchet@48975
   955
qed
blanchet@48975
   956
blanchet@48975
   957
lemma Partial_order_dir_image:
blanchet@48975
   958
"\<lbrakk>Partial_order r; inj_on f (Field r)\<rbrakk> \<Longrightarrow> Partial_order (dir_image r f)"
blanchet@48975
   959
by (simp add: partial_order_on_def Preorder_dir_image antisym_dir_image)
blanchet@48975
   960
blanchet@48975
   961
lemma Total_dir_image:
blanchet@48975
   962
assumes TOT: "Total r" and INJ: "inj_on f (Field r)"
blanchet@48975
   963
shows "Total(dir_image r f)"
blanchet@48975
   964
proof(unfold total_on_def, intro ballI impI)
blanchet@48975
   965
  fix a' b'
blanchet@48975
   966
  assume "a' \<in> Field (dir_image r f)" "b' \<in> Field (dir_image r f)"
blanchet@48975
   967
  then obtain a and b where 1: "a \<in> Field r \<and> b \<in> Field r \<and> f a = a' \<and> f b = b'"
traytel@56191
   968
    unfolding dir_image_Field[of r f] by blast
blanchet@48975
   969
  moreover assume "a' \<noteq> b'"
blanchet@48975
   970
  ultimately have "a \<noteq> b" using INJ unfolding inj_on_def by auto
blanchet@48975
   971
  hence "(a,b) \<in> r \<or> (b,a) \<in> r" using 1 TOT unfolding total_on_def by auto
blanchet@48975
   972
  thus "(a',b') \<in> dir_image r f \<or> (b',a') \<in> dir_image r f"
blanchet@48975
   973
  using 1 unfolding dir_image_def by auto
blanchet@48975
   974
qed
blanchet@48975
   975
blanchet@48975
   976
lemma Linear_order_dir_image:
blanchet@48975
   977
"\<lbrakk>Linear_order r; inj_on f (Field r)\<rbrakk> \<Longrightarrow> Linear_order (dir_image r f)"
blanchet@48975
   978
by (simp add: linear_order_on_def Partial_order_dir_image Total_dir_image)
blanchet@48975
   979
blanchet@48975
   980
lemma wf_dir_image:
blanchet@48975
   981
assumes WF: "wf r" and INJ: "inj_on f (Field r)"
blanchet@48975
   982
shows "wf(dir_image r f)"
blanchet@48975
   983
proof(unfold wf_eq_minimal2, intro allI impI, elim conjE)
blanchet@48975
   984
  fix A'::"'b set"
blanchet@48975
   985
  assume SUB: "A' \<le> Field(dir_image r f)" and NE: "A' \<noteq> {}"
blanchet@48975
   986
  obtain A where A_def: "A = {a \<in> Field r. f a \<in> A'}" by blast
traytel@56191
   987
  have "A \<noteq> {} \<and> A \<le> Field r" using A_def SUB NE by (auto simp: dir_image_Field)
blanchet@48975
   988
  then obtain a where 1: "a \<in> A \<and> (\<forall>b \<in> A. (b,a) \<notin> r)"
traytel@56191
   989
  using spec[OF WF[unfolded wf_eq_minimal2], of A] by blast
blanchet@48975
   990
  have "\<forall>b' \<in> A'. (b',f a) \<notin> dir_image r f"
blanchet@48975
   991
  proof(clarify)
blanchet@48975
   992
    fix b' assume *: "b' \<in> A'" and **: "(b',f a) \<in> dir_image r f"
blanchet@48975
   993
    obtain b1 a1 where 2: "b' = f b1 \<and> f a = f a1" and
blanchet@48975
   994
                       3: "(b1,a1) \<in> r \<and> {a1,b1} \<le> Field r"
blanchet@48975
   995
    using ** unfolding dir_image_def Field_def by blast
blanchet@48975
   996
    hence "a = a1" using 1 A_def INJ unfolding inj_on_def by auto
blanchet@48975
   997
    hence "b1 \<in> A \<and> (b1,a) \<in> r" using 2 3 A_def * by auto
blanchet@48975
   998
    with 1 show False by auto
blanchet@48975
   999
  qed
blanchet@48975
  1000
  thus "\<exists>a'\<in>A'. \<forall>b'\<in>A'. (b', a') \<notin> dir_image r f"
blanchet@48975
  1001
  using A_def 1 by blast
blanchet@48975
  1002
qed
blanchet@48975
  1003
blanchet@48975
  1004
lemma Well_order_dir_image:
blanchet@48975
  1005
"\<lbrakk>Well_order r; inj_on f (Field r)\<rbrakk> \<Longrightarrow> Well_order (dir_image r f)"
blanchet@48975
  1006
using assms unfolding well_order_on_def
blanchet@48975
  1007
using Linear_order_dir_image[of r f] wf_dir_image[of "r - Id" f]
blanchet@48975
  1008
  dir_image_minus_Id[of f r]
blanchet@48975
  1009
  subset_inj_on[of f "Field r" "Field(r - Id)"]
blanchet@48975
  1010
  mono_Field[of "r - Id" r] by auto
blanchet@48975
  1011
blanchet@48975
  1012
lemma dir_image_bij_betw:
traytel@56191
  1013
"\<lbrakk>inj_on f (Field r)\<rbrakk> \<Longrightarrow> bij_betw f (Field r) (Field (dir_image r f))"
traytel@56191
  1014
unfolding bij_betw_def by (simp add: dir_image_Field order_on_defs)
blanchet@48975
  1015
blanchet@48975
  1016
lemma dir_image_compat:
blanchet@48975
  1017
"compat r (dir_image r f) f"
blanchet@48975
  1018
unfolding compat_def dir_image_def by auto
blanchet@48975
  1019
blanchet@48975
  1020
lemma dir_image_iso:
blanchet@48975
  1021
"\<lbrakk>Well_order r; inj_on f (Field r)\<rbrakk>  \<Longrightarrow> iso r (dir_image r f) f"
blanchet@48975
  1022
using iso_iff3 dir_image_compat dir_image_bij_betw Well_order_dir_image by blast
blanchet@48975
  1023
blanchet@48975
  1024
lemma dir_image_ordIso:
blanchet@48975
  1025
"\<lbrakk>Well_order r; inj_on f (Field r)\<rbrakk>  \<Longrightarrow> r =o dir_image r f"
blanchet@48975
  1026
unfolding ordIso_def using dir_image_iso Well_order_dir_image by blast
blanchet@48975
  1027
blanchet@48975
  1028
lemma Well_order_iso_copy:
blanchet@48975
  1029
assumes WELL: "well_order_on A r" and BIJ: "bij_betw f A A'"
blanchet@48975
  1030
shows "\<exists>r'. well_order_on A' r' \<and> r =o r'"
blanchet@48975
  1031
proof-
blanchet@48975
  1032
   let ?r' = "dir_image r f"
blanchet@48975
  1033
   have 1: "A = Field r \<and> Well_order r"
blanchet@55023
  1034
   using WELL well_order_on_Well_order by blast
blanchet@48975
  1035
   hence 2: "iso r ?r' f"
blanchet@48975
  1036
   using dir_image_iso using BIJ unfolding bij_betw_def by auto
blanchet@48975
  1037
   hence "f ` (Field r) = Field ?r'" using 1 iso_iff[of r ?r'] by blast
blanchet@48975
  1038
   hence "Field ?r' = A'"
blanchet@48975
  1039
   using 1 BIJ unfolding bij_betw_def by auto
blanchet@48975
  1040
   moreover have "Well_order ?r'"
blanchet@48975
  1041
   using 1 Well_order_dir_image BIJ unfolding bij_betw_def by blast
blanchet@48975
  1042
   ultimately show ?thesis unfolding ordIso_def using 1 2 by blast
blanchet@48975
  1043
qed
blanchet@48975
  1044
blanchet@48975
  1045
wenzelm@60758
  1046
subsection \<open>Bounded square\<close>
blanchet@48975
  1047
wenzelm@61799
  1048
text\<open>This construction essentially defines, for an order relation \<open>r\<close>, a lexicographic
wenzelm@61799
  1049
order \<open>bsqr r\<close> on \<open>(Field r) \<times> (Field r)\<close>, applying the
blanchet@48975
  1050
following criteria (in this order):
blanchet@48975
  1051
\begin{itemize}
blanchet@48975
  1052
\item compare the maximums;
blanchet@48975
  1053
\item compare the first components;
blanchet@48975
  1054
\item compare the second components.
blanchet@48975
  1055
\end{itemize}
blanchet@48975
  1056
%
blanchet@48975
  1057
The only application of this construction that we are aware of is
blanchet@48975
  1058
at proving that the square of an infinite set has the same cardinal
blanchet@48975
  1059
as that set. The essential property required there (and which is ensured by this
blanchet@48975
  1060
construction) is that any proper order filter of the product order is included in a rectangle, i.e.,
wenzelm@60758
  1061
in a product of proper filters on the original relation (assumed to be a well-order).\<close>
blanchet@48975
  1062
blanchet@48975
  1063
definition bsqr :: "'a rel => ('a * 'a)rel"
blanchet@48975
  1064
where
blanchet@48975
  1065
"bsqr r = {((a1,a2),(b1,b2)).
blanchet@48975
  1066
           {a1,a2,b1,b2} \<le> Field r \<and>
blanchet@48975
  1067
           (a1 = b1 \<and> a2 = b2 \<or>
blanchet@48975
  1068
            (wo_rel.max2 r a1 a2, wo_rel.max2 r b1 b2) \<in> r - Id \<or>
blanchet@48975
  1069
            wo_rel.max2 r a1 a2 = wo_rel.max2 r b1 b2 \<and> (a1,b1) \<in> r - Id \<or>
blanchet@48975
  1070
            wo_rel.max2 r a1 a2 = wo_rel.max2 r b1 b2 \<and> a1 = b1  \<and> (a2,b2) \<in> r - Id
blanchet@48975
  1071
           )}"
blanchet@48975
  1072
blanchet@48975
  1073
lemma Field_bsqr:
blanchet@48975
  1074
"Field (bsqr r) = Field r \<times> Field r"
blanchet@48975
  1075
proof
blanchet@48975
  1076
  show "Field (bsqr r) \<le> Field r \<times> Field r"
blanchet@48975
  1077
  proof-
blanchet@48975
  1078
    {fix a1 a2 assume "(a1,a2) \<in> Field (bsqr r)"
blanchet@48975
  1079
     moreover
blanchet@48975
  1080
     have "\<And> b1 b2. ((a1,a2),(b1,b2)) \<in> bsqr r \<or> ((b1,b2),(a1,a2)) \<in> bsqr r \<Longrightarrow>
blanchet@48975
  1081
                      a1 \<in> Field r \<and> a2 \<in> Field r" unfolding bsqr_def by auto
blanchet@48975
  1082
     ultimately have "a1 \<in> Field r \<and> a2 \<in> Field r" unfolding Field_def by auto
blanchet@48975
  1083
    }
blanchet@48975
  1084
    thus ?thesis unfolding Field_def by force
blanchet@48975
  1085
  qed
blanchet@48975
  1086
next
blanchet@48975
  1087
  show "Field r \<times> Field r \<le> Field (bsqr r)"
blanchet@48975
  1088
  proof(auto)
blanchet@48975
  1089
    fix a1 a2 assume "a1 \<in> Field r" and "a2 \<in> Field r"
blanchet@48975
  1090
    hence "((a1,a2),(a1,a2)) \<in> bsqr r" unfolding bsqr_def by blast
blanchet@48975
  1091
    thus "(a1,a2) \<in> Field (bsqr r)" unfolding Field_def by auto
blanchet@48975
  1092
  qed
blanchet@48975
  1093
qed
blanchet@48975
  1094
blanchet@48975
  1095
lemma bsqr_Refl: "Refl(bsqr r)"
blanchet@48975
  1096
by(unfold refl_on_def Field_bsqr, auto simp add: bsqr_def)
blanchet@48975
  1097
blanchet@48975
  1098
lemma bsqr_Trans:
blanchet@48975
  1099
assumes "Well_order r"
blanchet@48975
  1100
shows "trans (bsqr r)"
blanchet@48975
  1101
proof(unfold trans_def, auto)
blanchet@48975
  1102
  (* Preliminary facts *)
blanchet@48975
  1103
  have Well: "wo_rel r" using assms wo_rel_def by auto
blanchet@48975
  1104
  hence Trans: "trans r" using wo_rel.TRANS by auto
blanchet@48975
  1105
  have Anti: "antisym r" using wo_rel.ANTISYM Well by auto
blanchet@48975
  1106
  hence TransS: "trans(r - Id)" using Trans by (simp add: trans_diff_Id)
blanchet@48975
  1107
  (* Main proof *)
blanchet@48975
  1108
  fix a1 a2 b1 b2 c1 c2
blanchet@48975
  1109
  assume *: "((a1,a2),(b1,b2)) \<in> bsqr r" and **: "((b1,b2),(c1,c2)) \<in> bsqr r"
blanchet@48975
  1110
  hence 0: "{a1,a2,b1,b2,c1,c2} \<le> Field r" unfolding bsqr_def by auto
blanchet@48975
  1111
  have 1: "a1 = b1 \<and> a2 = b2 \<or> (wo_rel.max2 r a1 a2, wo_rel.max2 r b1 b2) \<in> r - Id \<or>
blanchet@48975
  1112
           wo_rel.max2 r a1 a2 = wo_rel.max2 r b1 b2 \<and> (a1,b1) \<in> r - Id \<or>
blanchet@48975
  1113
           wo_rel.max2 r a1 a2 = wo_rel.max2 r b1 b2 \<and> a1 = b1 \<and> (a2,b2) \<in> r - Id"
blanchet@48975
  1114
  using * unfolding bsqr_def by auto
blanchet@48975
  1115
  have 2: "b1 = c1 \<and> b2 = c2 \<or> (wo_rel.max2 r b1 b2, wo_rel.max2 r c1 c2) \<in> r - Id \<or>
blanchet@48975
  1116
           wo_rel.max2 r b1 b2 = wo_rel.max2 r c1 c2 \<and> (b1,c1) \<in> r - Id \<or>
blanchet@48975
  1117
           wo_rel.max2 r b1 b2 = wo_rel.max2 r c1 c2 \<and> b1 = c1 \<and> (b2,c2) \<in> r - Id"
blanchet@48975
  1118
  using ** unfolding bsqr_def by auto
blanchet@48975
  1119
  show "((a1,a2),(c1,c2)) \<in> bsqr r"
blanchet@48975
  1120
  proof-
blanchet@48975
  1121
    {assume Case1: "a1 = b1 \<and> a2 = b2"
blanchet@48975
  1122
     hence ?thesis using ** by simp
blanchet@48975
  1123
    }
blanchet@48975
  1124
    moreover
blanchet@48975
  1125
    {assume Case2: "(wo_rel.max2 r a1 a2, wo_rel.max2 r b1 b2) \<in> r - Id"
blanchet@48975
  1126
     {assume Case21: "b1 = c1 \<and> b2 = c2"
blanchet@48975
  1127
      hence ?thesis using * by simp
blanchet@48975
  1128
     }
blanchet@48975
  1129
     moreover
blanchet@48975
  1130
     {assume Case22: "(wo_rel.max2 r b1 b2, wo_rel.max2 r c1 c2) \<in> r - Id"
blanchet@48975
  1131
      hence "(wo_rel.max2 r a1 a2, wo_rel.max2 r c1 c2) \<in> r - Id"
blanchet@48975
  1132
      using Case2 TransS trans_def[of "r - Id"] by blast
blanchet@48975
  1133
      hence ?thesis using 0 unfolding bsqr_def by auto
blanchet@48975
  1134
     }
blanchet@48975
  1135
     moreover
blanchet@48975
  1136
     {assume Case23_4: "wo_rel.max2 r b1 b2 = wo_rel.max2 r c1 c2"
blanchet@48975
  1137
      hence ?thesis using Case2 0 unfolding bsqr_def by auto
blanchet@48975
  1138
     }
blanchet@48975
  1139
     ultimately have ?thesis using 0 2 by auto
blanchet@48975
  1140
    }
blanchet@48975
  1141
    moreover
blanchet@48975
  1142
    {assume Case3: "wo_rel.max2 r a1 a2 = wo_rel.max2 r b1 b2 \<and> (a1,b1) \<in> r - Id"
blanchet@48975
  1143
     {assume Case31: "b1 = c1 \<and> b2 = c2"
blanchet@48975
  1144
      hence ?thesis using * by simp
blanchet@48975
  1145
     }
blanchet@48975
  1146
     moreover
blanchet@48975
  1147
     {assume Case32: "(wo_rel.max2 r b1 b2, wo_rel.max2 r c1 c2) \<in> r - Id"
blanchet@48975
  1148
      hence ?thesis using Case3 0 unfolding bsqr_def by auto
blanchet@48975
  1149
     }
blanchet@48975
  1150
     moreover
blanchet@48975
  1151
     {assume Case33: "wo_rel.max2 r b1 b2 = wo_rel.max2 r c1 c2 \<and> (b1,c1) \<in> r - Id"
blanchet@48975
  1152
      hence "(a1,c1) \<in> r - Id"
blanchet@48975
  1153
      using Case3 TransS trans_def[of "r - Id"] by blast
blanchet@48975
  1154
      hence ?thesis using Case3 Case33 0 unfolding bsqr_def by auto
blanchet@48975
  1155
     }
blanchet@48975
  1156
     moreover
blanchet@48975
  1157
     {assume Case33: "wo_rel.max2 r b1 b2 = wo_rel.max2 r c1 c2 \<and> b1 = c1"
blanchet@48975
  1158
      hence ?thesis using Case3 0 unfolding bsqr_def by auto
blanchet@48975
  1159
     }
blanchet@48975
  1160
     ultimately have ?thesis using 0 2 by auto
blanchet@48975
  1161
    }
blanchet@48975
  1162
    moreover
blanchet@48975
  1163
    {assume Case4: "wo_rel.max2 r a1 a2 = wo_rel.max2 r b1 b2 \<and> a1 = b1 \<and> (a2,b2) \<in> r - Id"
blanchet@48975
  1164
     {assume Case41: "b1 = c1 \<and> b2 = c2"
blanchet@48975
  1165
      hence ?thesis using * by simp
blanchet@48975
  1166
     }
blanchet@48975
  1167
     moreover
blanchet@48975
  1168
     {assume Case42: "(wo_rel.max2 r b1 b2, wo_rel.max2 r c1 c2) \<in> r - Id"
traytel@51764
  1169
      hence ?thesis using Case4 0 unfolding bsqr_def by force
blanchet@48975
  1170
     }
blanchet@48975
  1171
     moreover
blanchet@48975
  1172
     {assume Case43: "wo_rel.max2 r b1 b2 = wo_rel.max2 r c1 c2 \<and> (b1,c1) \<in> r - Id"
blanchet@48975
  1173
      hence ?thesis using Case4 0 unfolding bsqr_def by auto
blanchet@48975
  1174
     }
blanchet@48975
  1175
     moreover
blanchet@48975
  1176
     {assume Case44: "wo_rel.max2 r b1 b2 = wo_rel.max2 r c1 c2 \<and> b1 = c1 \<and> (b2,c2) \<in> r - Id"
blanchet@48975
  1177
      hence "(a2,c2) \<in> r - Id"
blanchet@48975
  1178
      using Case4 TransS trans_def[of "r - Id"] by blast
blanchet@48975
  1179
      hence ?thesis using Case4 Case44 0 unfolding bsqr_def by auto
blanchet@48975
  1180
     }
blanchet@48975
  1181
     ultimately have ?thesis using 0 2 by auto
blanchet@48975
  1182
    }
blanchet@48975
  1183
    ultimately show ?thesis using 0 1 by auto
blanchet@48975
  1184
  qed
blanchet@48975
  1185
qed
blanchet@48975
  1186
blanchet@48975
  1187
lemma bsqr_antisym:
blanchet@48975
  1188
assumes "Well_order r"
blanchet@48975
  1189
shows "antisym (bsqr r)"
blanchet@48975
  1190
proof(unfold antisym_def, clarify)
blanchet@48975
  1191
  (* Preliminary facts *)
blanchet@48975
  1192
  have Well: "wo_rel r" using assms wo_rel_def by auto
blanchet@48975
  1193
  hence Trans: "trans r" using wo_rel.TRANS by auto
blanchet@48975
  1194
  have Anti: "antisym r" using wo_rel.ANTISYM Well by auto
blanchet@48975
  1195
  hence TransS: "trans(r - Id)" using Trans by (simp add: trans_diff_Id)
blanchet@48975
  1196
  hence IrrS: "\<forall>a b. \<not>((a,b) \<in> r - Id \<and> (b,a) \<in> r - Id)"
blanchet@48975
  1197
  using Anti trans_def[of "r - Id"] antisym_def[of "r - Id"] by blast
blanchet@48975
  1198
  (* Main proof *)
blanchet@48975
  1199
  fix a1 a2 b1 b2
blanchet@48975
  1200
  assume *: "((a1,a2),(b1,b2)) \<in> bsqr r" and **: "((b1,b2),(a1,a2)) \<in> bsqr r"
blanchet@48975
  1201
  hence 0: "{a1,a2,b1,b2} \<le> Field r" unfolding bsqr_def by auto
blanchet@48975
  1202
  have 1: "a1 = b1 \<and> a2 = b2 \<or> (wo_rel.max2 r a1 a2, wo_rel.max2 r b1 b2) \<in> r - Id \<or>
blanchet@48975
  1203
           wo_rel.max2 r a1 a2 = wo_rel.max2 r b1 b2 \<and> (a1,b1) \<in> r - Id \<or>
blanchet@48975
  1204
           wo_rel.max2 r a1 a2 = wo_rel.max2 r b1 b2 \<and> a1 = b1 \<and> (a2,b2) \<in> r - Id"
blanchet@48975
  1205
  using * unfolding bsqr_def by auto
blanchet@48975
  1206
  have 2: "b1 = a1 \<and> b2 = a2 \<or> (wo_rel.max2 r b1 b2, wo_rel.max2 r a1 a2) \<in> r - Id \<or>
blanchet@48975
  1207
           wo_rel.max2 r b1 b2 = wo_rel.max2 r a1 a2 \<and> (b1,a1) \<in> r - Id \<or>
blanchet@48975
  1208
           wo_rel.max2 r b1 b2 = wo_rel.max2 r a1 a2 \<and> b1 = a1 \<and> (b2,a2) \<in> r - Id"
blanchet@48975
  1209
  using ** unfolding bsqr_def by auto
blanchet@48975
  1210
  show "a1 = b1 \<and> a2 = b2"
blanchet@48975
  1211
  proof-
blanchet@48975
  1212
    {assume Case1: "(wo_rel.max2 r a1 a2, wo_rel.max2 r b1 b2) \<in> r - Id"
blanchet@48975
  1213
     {assume Case11: "(wo_rel.max2 r b1 b2, wo_rel.max2 r a1 a2) \<in> r - Id"
blanchet@48975
  1214
      hence False using Case1 IrrS by blast
blanchet@48975
  1215
     }
blanchet@48975
  1216
     moreover
blanchet@48975
  1217
     {assume Case12_3: "wo_rel.max2 r b1 b2 = wo_rel.max2 r a1 a2"
blanchet@48975
  1218
      hence False using Case1 by auto
blanchet@48975
  1219
     }
blanchet@48975
  1220
     ultimately have ?thesis using 0 2 by auto
blanchet@48975
  1221
    }
blanchet@48975
  1222
    moreover
blanchet@48975
  1223
    {assume Case2: "wo_rel.max2 r a1 a2 = wo_rel.max2 r b1 b2 \<and> (a1,b1) \<in> r - Id"
blanchet@48975
  1224
     {assume Case21: "(wo_rel.max2 r b1 b2, wo_rel.max2 r a1 a2) \<in> r - Id"
blanchet@48975
  1225
       hence False using Case2 by auto
blanchet@48975
  1226
     }
blanchet@48975
  1227
     moreover
blanchet@48975
  1228
     {assume Case22: "(b1,a1) \<in> r - Id"
blanchet@48975
  1229
      hence False using Case2 IrrS by blast
blanchet@48975
  1230
     }
blanchet@48975
  1231
     moreover
blanchet@48975
  1232
     {assume Case23: "b1 = a1"
blanchet@48975
  1233
      hence False using Case2 by auto
blanchet@48975
  1234
     }
blanchet@48975
  1235
     ultimately have ?thesis using 0 2 by auto
blanchet@48975
  1236
    }
blanchet@48975
  1237
    moreover
blanchet@48975
  1238
    {assume Case3: "wo_rel.max2 r a1 a2 = wo_rel.max2 r b1 b2 \<and> a1 = b1 \<and> (a2,b2) \<in> r - Id"
blanchet@48975
  1239
     moreover
blanchet@48975
  1240
     {assume Case31: "(wo_rel.max2 r b1 b2, wo_rel.max2 r a1 a2) \<in> r - Id"
blanchet@48975
  1241
      hence False using Case3 by auto
blanchet@48975
  1242
     }
blanchet@48975
  1243
     moreover
blanchet@48975
  1244
     {assume Case32: "(b1,a1) \<in> r - Id"
blanchet@48975
  1245
      hence False using Case3 by auto
blanchet@48975
  1246
     }
blanchet@48975
  1247
     moreover
blanchet@48975
  1248
     {assume Case33: "(b2,a2) \<in> r - Id"
blanchet@48975
  1249
      hence False using Case3 IrrS by blast
blanchet@48975
  1250
     }
blanchet@48975
  1251
     ultimately have ?thesis using 0 2 by auto
blanchet@48975
  1252
    }
blanchet@48975
  1253
    ultimately show ?thesis using 0 1 by blast
blanchet@48975
  1254
  qed
blanchet@48975
  1255
qed
blanchet@48975
  1256
blanchet@48975
  1257
lemma bsqr_Total:
blanchet@48975
  1258
assumes "Well_order r"
blanchet@48975
  1259
shows "Total(bsqr r)"
blanchet@48975
  1260
proof-
blanchet@48975
  1261
  (* Preliminary facts *)
blanchet@48975
  1262
  have Well: "wo_rel r" using assms wo_rel_def by auto
blanchet@48975
  1263
  hence Total: "\<forall>a \<in> Field r. \<forall>b \<in> Field r. (a,b) \<in> r \<or> (b,a) \<in> r"
blanchet@48975
  1264
  using wo_rel.TOTALS by auto
blanchet@48975
  1265
  (* Main proof *)
blanchet@48975
  1266
  {fix a1 a2 b1 b2 assume "{(a1,a2), (b1,b2)} \<le> Field(bsqr r)"
blanchet@48975
  1267
   hence 0: "a1 \<in> Field r \<and> a2 \<in> Field r \<and> b1 \<in> Field r \<and> b2 \<in> Field r"
blanchet@48975
  1268
   using Field_bsqr by blast
blanchet@48975
  1269
   have "((a1,a2) = (b1,b2) \<or> ((a1,a2),(b1,b2)) \<in> bsqr r \<or> ((b1,b2),(a1,a2)) \<in> bsqr r)"
blanchet@48975
  1270
   proof(rule wo_rel.cases_Total[of r a1 a2], clarsimp simp add: Well, simp add: 0)
blanchet@48975
  1271
       (* Why didn't clarsimp simp add: Well 0 do the same job? *)
blanchet@48975
  1272
     assume Case1: "(a1,a2) \<in> r"
blanchet@48975
  1273
     hence 1: "wo_rel.max2 r a1 a2 = a2"
blanchet@48975
  1274
     using Well 0 by (simp add: wo_rel.max2_equals2)
blanchet@48975
  1275
     show ?thesis
blanchet@48975
  1276
     proof(rule wo_rel.cases_Total[of r b1 b2], clarsimp simp add: Well, simp add: 0)
blanchet@48975
  1277
       assume Case11: "(b1,b2) \<in> r"
blanchet@48975
  1278
       hence 2: "wo_rel.max2 r b1 b2 = b2"
blanchet@48975
  1279
       using Well 0 by (simp add: wo_rel.max2_equals2)
blanchet@48975
  1280
       show ?thesis
blanchet@48975
  1281
       proof(rule wo_rel.cases_Total3[of r a2 b2], clarsimp simp add: Well, simp add: 0)
blanchet@48975
  1282
         assume Case111: "(a2,b2) \<in> r - Id \<or> (b2,a2) \<in> r - Id"
blanchet@48975
  1283
         thus ?thesis using 0 1 2 unfolding bsqr_def by auto
blanchet@48975
  1284
       next
blanchet@48975
  1285
         assume Case112: "a2 = b2"
blanchet@48975
  1286
         show ?thesis
blanchet@48975
  1287
         proof(rule wo_rel.cases_Total3[of r a1 b1], clarsimp simp add: Well, simp add: 0)
blanchet@48975
  1288
           assume Case1121: "(a1,b1) \<in> r - Id \<or> (b1,a1) \<in> r - Id"
blanchet@48975
  1289
           thus ?thesis using 0 1 2 Case112 unfolding bsqr_def by auto
blanchet@48975
  1290
         next
blanchet@48975
  1291
           assume Case1122: "a1 = b1"
blanchet@48975
  1292
           thus ?thesis using Case112 by auto
blanchet@48975
  1293
         qed
blanchet@48975
  1294
       qed
blanchet@48975
  1295
     next
blanchet@48975
  1296
       assume Case12: "(b2,b1) \<in> r"
blanchet@48975
  1297
       hence 3: "wo_rel.max2 r b1 b2 = b1" using Well 0 by (simp add: wo_rel.max2_equals1)
blanchet@48975
  1298
       show ?thesis
blanchet@48975
  1299
       proof(rule wo_rel.cases_Total3[of r a2 b1], clarsimp simp add: Well, simp add: 0)
blanchet@48975
  1300
         assume Case121: "(a2,b1) \<in> r - Id \<or> (b1,a2) \<in> r - Id"
blanchet@48975
  1301
         thus ?thesis using 0 1 3 unfolding bsqr_def by auto
blanchet@48975
  1302
       next
blanchet@48975
  1303
         assume Case122: "a2 = b1"
blanchet@48975
  1304
         show ?thesis
blanchet@48975
  1305
         proof(rule wo_rel.cases_Total3[of r a1 b1], clarsimp simp add: Well, simp add: 0)
blanchet@48975
  1306
           assume Case1221: "(a1,b1) \<in> r - Id \<or> (b1,a1) \<in> r - Id"
blanchet@48975
  1307
           thus ?thesis using 0 1 3 Case122 unfolding bsqr_def by auto
blanchet@48975
  1308
         next
blanchet@48975
  1309
           assume Case1222: "a1 = b1"
blanchet@48975
  1310
           show ?thesis
blanchet@48975
  1311
           proof(rule wo_rel.cases_Total3[of r a2 b2], clarsimp simp add: Well, simp add: 0)
blanchet@48975
  1312
             assume Case12221: "(a2,b2) \<in> r - Id \<or> (b2,a2) \<in> r - Id"
blanchet@48975
  1313
             thus ?thesis using 0 1 3 Case122 Case1222 unfolding bsqr_def by auto
blanchet@48975
  1314
           next
blanchet@48975
  1315
             assume Case12222: "a2 = b2"
blanchet@48975
  1316
             thus ?thesis using Case122 Case1222 by auto
blanchet@48975
  1317
           qed
blanchet@48975
  1318
         qed
blanchet@48975
  1319
       qed
blanchet@48975
  1320
     qed
blanchet@48975
  1321
   next
blanchet@48975
  1322
     assume Case2: "(a2,a1) \<in> r"
blanchet@48975
  1323
     hence 1: "wo_rel.max2 r a1 a2 = a1" using Well 0 by (simp add: wo_rel.max2_equals1)
blanchet@48975
  1324
     show ?thesis
blanchet@48975
  1325
     proof(rule wo_rel.cases_Total[of r b1 b2], clarsimp simp add: Well, simp add: 0)
blanchet@48975
  1326
       assume Case21: "(b1,b2) \<in> r"
blanchet@48975
  1327
       hence 2: "wo_rel.max2 r b1 b2 = b2" using Well 0 by (simp add: wo_rel.max2_equals2)
blanchet@48975
  1328
       show ?thesis
blanchet@48975
  1329
       proof(rule wo_rel.cases_Total3[of r a1 b2], clarsimp simp add: Well, simp add: 0)
blanchet@48975
  1330
         assume Case211: "(a1,b2) \<in> r - Id \<or> (b2,a1) \<in> r - Id"
blanchet@48975
  1331
         thus ?thesis using 0 1 2 unfolding bsqr_def by auto
blanchet@48975
  1332
       next
blanchet@48975
  1333
         assume Case212: "a1 = b2"
blanchet@48975
  1334
         show ?thesis
blanchet@48975
  1335
         proof(rule wo_rel.cases_Total3[of r a1 b1], clarsimp simp add: Well, simp add: 0)
blanchet@48975
  1336
           assume Case2121: "(a1,b1) \<in> r - Id \<or> (b1,a1) \<in> r - Id"
blanchet@48975
  1337
           thus ?thesis using 0 1 2 Case212 unfolding bsqr_def by auto
blanchet@48975
  1338
         next
blanchet@48975
  1339
           assume Case2122: "a1 = b1"
blanchet@48975
  1340
           show ?thesis
blanchet@48975
  1341
           proof(rule wo_rel.cases_Total3[of r a2 b2], clarsimp simp add: Well, simp add: 0)
blanchet@48975
  1342
             assume Case21221: "(a2,b2) \<in> r - Id \<or> (b2,a2) \<in> r - Id"
blanchet@48975
  1343
             thus ?thesis using 0 1 2 Case212 Case2122 unfolding bsqr_def by auto
blanchet@48975
  1344
           next
blanchet@48975
  1345
             assume Case21222: "a2 = b2"
blanchet@48975
  1346
             thus ?thesis using Case2122 Case212 by auto
blanchet@48975
  1347
           qed
blanchet@48975
  1348
         qed
blanchet@48975
  1349
       qed
blanchet@48975
  1350
     next
blanchet@48975
  1351
       assume Case22: "(b2,b1) \<in> r"
blanchet@48975
  1352
       hence 3: "wo_rel.max2 r b1 b2 = b1"  using Well 0 by (simp add: wo_rel.max2_equals1)
blanchet@48975
  1353
       show ?thesis
blanchet@48975
  1354
       proof(rule wo_rel.cases_Total3[of r a1 b1], clarsimp simp add: Well, simp add: 0)
blanchet@48975
  1355
         assume Case221: "(a1,b1) \<in> r - Id \<or> (b1,a1) \<in> r - Id"
blanchet@48975
  1356
         thus ?thesis using 0 1 3 unfolding bsqr_def by auto
blanchet@48975
  1357
       next
blanchet@48975
  1358
         assume Case222: "a1 = b1"
blanchet@48975
  1359
         show ?thesis
blanchet@48975
  1360
         proof(rule wo_rel.cases_Total3[of r a2 b2], clarsimp simp add: Well, simp add: 0)
blanchet@48975
  1361
           assume Case2221: "(a2,b2) \<in> r - Id \<or> (b2,a2) \<in> r - Id"
blanchet@48975
  1362
           thus ?thesis using 0 1 3 Case222 unfolding bsqr_def by auto
blanchet@48975
  1363
         next
blanchet@48975
  1364
           assume Case2222: "a2 = b2"
blanchet@48975
  1365
           thus ?thesis using Case222 by auto
blanchet@48975
  1366
         qed
blanchet@48975
  1367
       qed
blanchet@48975
  1368
     qed
blanchet@48975
  1369
   qed
blanchet@48975
  1370
  }
blanchet@48975
  1371
  thus ?thesis unfolding total_on_def by fast
blanchet@48975
  1372
qed
blanchet@48975
  1373
blanchet@48975
  1374
lemma bsqr_Linear_order:
blanchet@48975
  1375
assumes "Well_order r"
blanchet@48975
  1376
shows "Linear_order(bsqr r)"
blanchet@48975
  1377
unfolding order_on_defs
blanchet@48975
  1378
using assms bsqr_Refl bsqr_Trans bsqr_antisym bsqr_Total by blast
blanchet@48975
  1379
blanchet@48975
  1380
lemma bsqr_Well_order:
blanchet@48975
  1381
assumes "Well_order r"
blanchet@48975
  1382
shows "Well_order(bsqr r)"
blanchet@48975
  1383
using assms
blanchet@48975
  1384
proof(simp add: bsqr_Linear_order Linear_order_Well_order_iff, intro allI impI)
blanchet@48975
  1385
  have 0: "\<forall>A \<le> Field r. A \<noteq> {} \<longrightarrow> (\<exists>a \<in> A. \<forall>a' \<in> A. (a,a') \<in> r)"
blanchet@48975
  1386
  using assms well_order_on_def Linear_order_Well_order_iff by blast
blanchet@48975
  1387
  fix D assume *: "D \<le> Field (bsqr r)" and **: "D \<noteq> {}"
blanchet@48975
  1388
  hence 1: "D \<le> Field r \<times> Field r" unfolding Field_bsqr by simp
blanchet@48975
  1389
  (*  *)
blanchet@48975
  1390
  obtain M where M_def: "M = {wo_rel.max2 r a1 a2| a1 a2. (a1,a2) \<in> D}" by blast
blanchet@48975
  1391
  have "M \<noteq> {}" using 1 M_def ** by auto
blanchet@48975
  1392
  moreover
blanchet@48975
  1393
  have "M \<le> Field r" unfolding M_def
blanchet@48975
  1394
  using 1 assms wo_rel_def[of r] wo_rel.max2_among[of r] by fastforce
blanchet@48975
  1395
  ultimately obtain m where m_min: "m \<in> M \<and> (\<forall>a \<in> M. (m,a) \<in> r)"
blanchet@48975
  1396
  using 0 by blast
blanchet@48975
  1397
  (*  *)
blanchet@48975
  1398
  obtain A1 where A1_def: "A1 = {a1. \<exists>a2. (a1,a2) \<in> D \<and> wo_rel.max2 r a1 a2 = m}" by blast
blanchet@48975
  1399
  have "A1 \<le> Field r" unfolding A1_def using 1 by auto
blanchet@48975
  1400
  moreover have "A1 \<noteq> {}" unfolding A1_def using m_min unfolding M_def by blast
blanchet@48975
  1401
  ultimately obtain a1 where a1_min: "a1 \<in> A1 \<and> (\<forall>a \<in> A1. (a1,a) \<in> r)"
blanchet@48975
  1402
  using 0 by blast
blanchet@48975
  1403
  (*  *)
blanchet@48975
  1404
  obtain A2 where A2_def: "A2 = {a2. (a1,a2) \<in> D \<and> wo_rel.max2 r a1 a2 = m}" by blast
blanchet@48975
  1405
  have "A2 \<le> Field r" unfolding A2_def using 1 by auto
blanchet@48975
  1406
  moreover have "A2 \<noteq> {}" unfolding A2_def
blanchet@48975
  1407
  using m_min a1_min unfolding A1_def M_def by blast
blanchet@48975
  1408
  ultimately obtain a2 where a2_min: "a2 \<in> A2 \<and> (\<forall>a \<in> A2. (a2,a) \<in> r)"
blanchet@48975
  1409
  using 0 by blast
blanchet@48975
  1410
  (*   *)
blanchet@48975
  1411
  have 2: "wo_rel.max2 r a1 a2 = m"
blanchet@48975
  1412
  using a1_min a2_min unfolding A1_def A2_def by auto
blanchet@48975
  1413
  have 3: "(a1,a2) \<in> D" using a2_min unfolding A2_def by auto
blanchet@48975
  1414
  (*  *)
blanchet@48975
  1415
  moreover
blanchet@48975
  1416
  {fix b1 b2 assume ***: "(b1,b2) \<in> D"
blanchet@48975
  1417
   hence 4: "{a1,a2,b1,b2} \<le> Field r" using 1 3 by blast
blanchet@48975
  1418
   have 5: "(wo_rel.max2 r a1 a2, wo_rel.max2 r b1 b2) \<in> r"
blanchet@48975
  1419
   using *** a1_min a2_min m_min unfolding A1_def A2_def M_def by auto
blanchet@48975
  1420
   have "((a1,a2),(b1,b2)) \<in> bsqr r"
blanchet@48975
  1421
   proof(cases "wo_rel.max2 r a1 a2 = wo_rel.max2 r b1 b2")
blanchet@48975
  1422
     assume Case1: "wo_rel.max2 r a1 a2 \<noteq> wo_rel.max2 r b1 b2"
blanchet@48975
  1423
     thus ?thesis unfolding bsqr_def using 4 5 by auto
blanchet@48975
  1424
   next
blanchet@48975
  1425
     assume Case2: "wo_rel.max2 r a1 a2 = wo_rel.max2 r b1 b2"
blanchet@48975
  1426
     hence "b1 \<in> A1" unfolding A1_def using 2 *** by auto
blanchet@48975
  1427
     hence 6: "(a1,b1) \<in> r" using a1_min by auto
blanchet@48975
  1428
     show ?thesis
blanchet@48975
  1429
     proof(cases "a1 = b1")
blanchet@48975
  1430
       assume Case21: "a1 \<noteq> b1"
blanchet@48975
  1431
       thus ?thesis unfolding bsqr_def using 4 Case2 6 by auto
blanchet@48975
  1432
     next
blanchet@48975
  1433
       assume Case22: "a1 = b1"
blanchet@48975
  1434
       hence "b2 \<in> A2" unfolding A2_def using 2 *** Case2 by auto
blanchet@48975
  1435
       hence 7: "(a2,b2) \<in> r" using a2_min by auto
blanchet@48975
  1436
       thus ?thesis unfolding bsqr_def using 4 7 Case2 Case22 by auto
blanchet@48975
  1437
     qed
blanchet@48975
  1438
   qed
blanchet@48975
  1439
  }
blanchet@48975
  1440
  (*  *)
blanchet@48975
  1441
  ultimately show "\<exists>d \<in> D. \<forall>d' \<in> D. (d,d') \<in> bsqr r" by fastforce
blanchet@48975
  1442
qed
blanchet@48975
  1443
blanchet@48975
  1444
lemma bsqr_max2:
blanchet@48975
  1445
assumes WELL: "Well_order r" and LEQ: "((a1,a2),(b1,b2)) \<in> bsqr r"
blanchet@48975
  1446
shows "(wo_rel.max2 r a1 a2, wo_rel.max2 r b1 b2) \<in> r"
blanchet@48975
  1447
proof-
blanchet@48975
  1448
  have "{(a1,a2),(b1,b2)} \<le> Field(bsqr r)"
blanchet@48975
  1449
  using LEQ unfolding Field_def by auto
blanchet@48975
  1450
  hence "{a1,a2,b1,b2} \<le> Field r" unfolding Field_bsqr by auto
blanchet@48975
  1451
  hence "{wo_rel.max2 r a1 a2, wo_rel.max2 r b1 b2} \<le> Field r"
blanchet@48975
  1452
  using WELL wo_rel_def[of r] wo_rel.max2_among[of r] by fastforce
blanchet@48975
  1453
  moreover have "(wo_rel.max2 r a1 a2, wo_rel.max2 r b1 b2) \<in> r \<or> wo_rel.max2 r a1 a2 = wo_rel.max2 r b1 b2"
blanchet@48975
  1454
  using LEQ unfolding bsqr_def by auto
blanchet@48975
  1455
  ultimately show ?thesis using WELL unfolding order_on_defs refl_on_def by auto
blanchet@48975
  1456
qed
blanchet@48975
  1457
blanchet@48975
  1458
lemma bsqr_ofilter:
blanchet@48975
  1459
assumes WELL: "Well_order r" and
blanchet@48975
  1460
        OF: "wo_rel.ofilter (bsqr r) D" and SUB: "D < Field r \<times> Field r" and
blanchet@55023
  1461
        NE: "\<not> (\<exists>a. Field r = under r a)"
blanchet@48975
  1462
shows "\<exists>A. wo_rel.ofilter r A \<and> A < Field r \<and> D \<le> A \<times> A"
blanchet@48975
  1463
proof-
blanchet@48975
  1464
  let ?r' = "bsqr r"
blanchet@48975
  1465
  have Well: "wo_rel r" using WELL wo_rel_def by blast
blanchet@48975
  1466
  hence Trans: "trans r" using wo_rel.TRANS by blast
blanchet@48975
  1467
  have Well': "Well_order ?r' \<and> wo_rel ?r'"
blanchet@48975
  1468
  using WELL bsqr_Well_order wo_rel_def by blast
blanchet@48975
  1469
  (*  *)
blanchet@48975
  1470
  have "D < Field ?r'" unfolding Field_bsqr using SUB .
blanchet@48975
  1471
  with OF obtain a1 and a2 where
blanchet@55023
  1472
  "(a1,a2) \<in> Field ?r'" and 1: "D = underS ?r' (a1,a2)"
blanchet@48975
  1473
  using Well' wo_rel.ofilter_underS_Field[of ?r' D] by auto
blanchet@48975
  1474
  hence 2: "{a1,a2} \<le> Field r" unfolding Field_bsqr by auto
blanchet@48975
  1475
  let ?m = "wo_rel.max2 r a1 a2"
blanchet@55023
  1476
  have "D \<le> (under r ?m) \<times> (under r ?m)"
blanchet@48975
  1477
  proof(unfold 1)
blanchet@48975
  1478
    {fix b1 b2
blanchet@48975
  1479
     let ?n = "wo_rel.max2 r b1 b2"
blanchet@55023
  1480
     assume "(b1,b2) \<in> underS ?r' (a1,a2)"
blanchet@48975
  1481
     hence 3: "((b1,b2),(a1,a2)) \<in> ?r'"
blanchet@55023
  1482
     unfolding underS_def by blast
blanchet@48975
  1483
     hence "(?n,?m) \<in> r" using WELL by (simp add: bsqr_max2)
blanchet@48975
  1484
     moreover
blanchet@48975
  1485
     {have "(b1,b2) \<in> Field ?r'" using 3 unfolding Field_def by auto
blanchet@48975
  1486
      hence "{b1,b2} \<le> Field r" unfolding Field_bsqr by auto
blanchet@48975
  1487
      hence "(b1,?n) \<in> r \<and> (b2,?n) \<in> r"
blanchet@48975
  1488
      using Well by (simp add: wo_rel.max2_greater)
blanchet@48975
  1489
     }
blanchet@48975
  1490
     ultimately have "(b1,?m) \<in> r \<and> (b2,?m) \<in> r"
blanchet@48975
  1491
     using Trans trans_def[of r] by blast
blanchet@55023
  1492
     hence "(b1,b2) \<in> (under r ?m) \<times> (under r ?m)" unfolding under_def by simp}
blanchet@55023
  1493
     thus "underS ?r' (a1,a2) \<le> (under r ?m) \<times> (under r ?m)" by auto
blanchet@48975
  1494
  qed
blanchet@55023
  1495
  moreover have "wo_rel.ofilter r (under r ?m)"
blanchet@48975
  1496
  using Well by (simp add: wo_rel.under_ofilter)
blanchet@55023
  1497
  moreover have "under r ?m < Field r"
blanchet@55023
  1498
  using NE under_Field[of r ?m] by blast
blanchet@48975
  1499
  ultimately show ?thesis by blast
blanchet@48975
  1500
qed
blanchet@48975
  1501
traytel@54980
  1502
definition Func where
traytel@54980
  1503
"Func A B = {f . (\<forall> a \<in> A. f a \<in> B) \<and> (\<forall> a. a \<notin> A \<longrightarrow> f a = undefined)}"
traytel@54980
  1504
traytel@54980
  1505
lemma Func_empty:
traytel@54980
  1506
"Func {} B = {\<lambda>x. undefined}"
traytel@54980
  1507
unfolding Func_def by auto
traytel@54980
  1508
traytel@54980
  1509
lemma Func_elim:
traytel@54980
  1510
assumes "g \<in> Func A B" and "a \<in> A"
traytel@54980
  1511
shows "\<exists> b. b \<in> B \<and> g a = b"
traytel@54980
  1512
using assms unfolding Func_def by (cases "g a = undefined") auto
traytel@54980
  1513
traytel@54980
  1514
definition curr where
traytel@54980
  1515
"curr A f \<equiv> \<lambda> a. if a \<in> A then \<lambda>b. f (a,b) else undefined"
traytel@54980
  1516
traytel@54980
  1517
lemma curr_in:
traytel@54980
  1518
assumes f: "f \<in> Func (A <*> B) C"
traytel@54980
  1519
shows "curr A f \<in> Func A (Func B C)"
traytel@54980
  1520
using assms unfolding curr_def Func_def by auto
traytel@54980
  1521
traytel@54980
  1522
lemma curr_inj:
traytel@54980
  1523
assumes "f1 \<in> Func (A <*> B) C" and "f2 \<in> Func (A <*> B) C"
traytel@54980
  1524
shows "curr A f1 = curr A f2 \<longleftrightarrow> f1 = f2"
traytel@54980
  1525
proof safe
traytel@54980
  1526
  assume c: "curr A f1 = curr A f2"
traytel@54980
  1527
  show "f1 = f2"
traytel@54980
  1528
  proof (rule ext, clarify)
traytel@54980
  1529
    fix a b show "f1 (a, b) = f2 (a, b)"
traytel@54980
  1530
    proof (cases "(a,b) \<in> A <*> B")
traytel@54980
  1531
      case False
traytel@54980
  1532
      thus ?thesis using assms unfolding Func_def by auto
traytel@54980
  1533
    next
traytel@54980
  1534
      case True hence a: "a \<in> A" and b: "b \<in> B" by auto
traytel@54980
  1535
      thus ?thesis
traytel@54980
  1536
      using c unfolding curr_def fun_eq_iff by(elim allE[of _ a]) simp
traytel@54980
  1537
    qed
traytel@54980
  1538
  qed
traytel@54980
  1539
qed
traytel@54980
  1540
traytel@54980
  1541
lemma curr_surj:
traytel@54980
  1542
assumes "g \<in> Func A (Func B C)"
traytel@54980
  1543
shows "\<exists> f \<in> Func (A <*> B) C. curr A f = g"
traytel@54980
  1544
proof
traytel@54980
  1545
  let ?f = "\<lambda> ab. if fst ab \<in> A \<and> snd ab \<in> B then g (fst ab) (snd ab) else undefined"
traytel@54980
  1546
  show "curr A ?f = g"
traytel@54980
  1547
  proof (rule ext)
traytel@54980
  1548
    fix a show "curr A ?f a = g a"
traytel@54980
  1549
    proof (cases "a \<in> A")
traytel@54980
  1550
      case False
traytel@54980
  1551
      hence "g a = undefined" using assms unfolding Func_def by auto
traytel@54980
  1552
      thus ?thesis unfolding curr_def using False by simp
traytel@54980
  1553
    next
traytel@54980
  1554
      case True
traytel@54980
  1555
      obtain g1 where "g1 \<in> Func B C" and "g a = g1"
traytel@54980
  1556
      using assms using Func_elim[OF assms True] by blast
traytel@54980
  1557
      thus ?thesis using True unfolding Func_def curr_def by auto
traytel@54980
  1558
    qed
traytel@54980
  1559
  qed
traytel@54980
  1560
  show "?f \<in> Func (A <*> B) C" using assms unfolding Func_def mem_Collect_eq by auto
traytel@54980
  1561
qed
traytel@54980
  1562
traytel@54980
  1563
lemma bij_betw_curr:
traytel@54980
  1564
"bij_betw (curr A) (Func (A <*> B) C) (Func A (Func B C))"
traytel@54980
  1565
unfolding bij_betw_def inj_on_def image_def
traytel@54980
  1566
apply (intro impI conjI ballI)
traytel@54980
  1567
apply (erule curr_inj[THEN iffD1], assumption+)
traytel@54980
  1568
apply auto
traytel@54980
  1569
apply (erule curr_in)
traytel@54980
  1570
using curr_surj by blast
traytel@54980
  1571
traytel@54980
  1572
definition Func_map where
traytel@54980
  1573
"Func_map B2 f1 f2 g b2 \<equiv> if b2 \<in> B2 then f1 (g (f2 b2)) else undefined"
traytel@54980
  1574
traytel@54980
  1575
lemma Func_map:
traytel@54980
  1576
assumes g: "g \<in> Func A2 A1" and f1: "f1 ` A1 \<subseteq> B1" and f2: "f2 ` B2 \<subseteq> A2"
traytel@54980
  1577
shows "Func_map B2 f1 f2 g \<in> Func B2 B1"
traytel@54980
  1578
using assms unfolding Func_def Func_map_def mem_Collect_eq by auto
traytel@54980
  1579
traytel@54980
  1580
lemma Func_non_emp:
traytel@54980
  1581
assumes "B \<noteq> {}"
traytel@54980
  1582
shows "Func A B \<noteq> {}"
traytel@54980
  1583
proof-
traytel@54980
  1584
  obtain b where b: "b \<in> B" using assms by auto
traytel@54980
  1585
  hence "(\<lambda> a. if a \<in> A then b else undefined) \<in> Func A B" unfolding Func_def by auto
traytel@54980
  1586
  thus ?thesis by blast
traytel@54980
  1587
qed
traytel@54980
  1588
traytel@54980
  1589
lemma Func_is_emp:
traytel@54980
  1590
"Func A B = {} \<longleftrightarrow> A \<noteq> {} \<and> B = {}" (is "?L \<longleftrightarrow> ?R")
traytel@54980
  1591
proof
traytel@54980
  1592
  assume L: ?L
traytel@54980
  1593
  moreover {assume "A = {}" hence False using L Func_empty by auto}
traytel@55811
  1594
  moreover {assume "B \<noteq> {}" hence False using L Func_non_emp[of B A] by simp }
traytel@54980
  1595
  ultimately show ?R by blast
traytel@54980
  1596
next
traytel@54980
  1597
  assume R: ?R
traytel@54980
  1598
  moreover
traytel@54980
  1599
  {fix f assume "f \<in> Func A B"
traytel@54980
  1600
   moreover obtain a where "a \<in> A" using R by blast
traytel@54980
  1601
   ultimately obtain b where "b \<in> B" unfolding Func_def by blast
traytel@54980
  1602
   with R have False by blast
traytel@54980
  1603
  }
traytel@54980
  1604
  thus ?L by blast
traytel@54980
  1605
qed
traytel@54980
  1606
traytel@54980
  1607
lemma Func_map_surj:
traytel@54980
  1608
assumes B1: "f1 ` A1 = B1" and A2: "inj_on f2 B2" "f2 ` B2 \<subseteq> A2"
traytel@54980
  1609
and B2A2: "B2 = {} \<Longrightarrow> A2 = {}"
traytel@54980
  1610
shows "Func B2 B1 = Func_map B2 f1 f2 ` Func A2 A1"
traytel@54980
  1611
proof(cases "B2 = {}")
traytel@54980
  1612
  case True
traytel@54980
  1613
  thus ?thesis using B2A2 by (auto simp: Func_empty Func_map_def)
traytel@54980
  1614
next
traytel@54980
  1615
  case False note B2 = False
traytel@54980
  1616
  show ?thesis
traytel@54980
  1617
  proof safe
traytel@54980
  1618
    fix h assume h: "h \<in> Func B2 B1"
traytel@54980
  1619
    def j1 \<equiv> "inv_into A1 f1"
traytel@54980
  1620
    have "\<forall> a2 \<in> f2 ` B2. \<exists> b2. b2 \<in> B2 \<and> f2 b2 = a2" by blast
traytel@55811
  1621
    then obtain k where k: "\<forall> a2 \<in> f2 ` B2. k a2 \<in> B2 \<and> f2 (k a2) = a2"
traytel@55811
  1622
      by atomize_elim (rule bchoice)
traytel@54980
  1623
    {fix b2 assume b2: "b2 \<in> B2"
traytel@54980
  1624
     hence "f2 (k (f2 b2)) = f2 b2" using k A2(2) by auto
traytel@54980
  1625
     moreover have "k (f2 b2) \<in> B2" using b2 A2(2) k by auto
traytel@54980
  1626
     ultimately have "k (f2 b2) = b2" using b2 A2(1) unfolding inj_on_def by blast
traytel@54980
  1627
    } note kk = this
traytel@54980
  1628
    obtain b22 where b22: "b22 \<in> B2" using B2 by auto
traytel@54980
  1629
    def j2 \<equiv> "\<lambda> a2. if a2 \<in> f2 ` B2 then k a2 else b22"
traytel@54980
  1630
    have j2A2: "j2 ` A2 \<subseteq> B2" unfolding j2_def using k b22 by auto
traytel@54980
  1631
    have j2: "\<And> b2. b2 \<in> B2 \<Longrightarrow> j2 (f2 b2) = b2"
traytel@54980
  1632
    using kk unfolding j2_def by auto
traytel@54980
  1633
    def g \<equiv> "Func_map A2 j1 j2 h"
traytel@54980
  1634
    have "Func_map B2 f1 f2 g = h"
traytel@54980
  1635
    proof (rule ext)
traytel@54980
  1636
      fix b2 show "Func_map B2 f1 f2 g b2 = h b2"
traytel@54980
  1637
      proof(cases "b2 \<in> B2")
traytel@54980
  1638
        case True
traytel@54980
  1639
        show ?thesis
traytel@54980
  1640
        proof (cases "h b2 = undefined")
traytel@54980
  1641
          case True
wenzelm@60758
  1642
          hence b1: "h b2 \<in> f1 ` A1" using h \<open>b2 \<in> B2\<close> unfolding B1 Func_def by auto
traytel@54980
  1643
          show ?thesis using A2 f_inv_into_f[OF b1]
wenzelm@60758
  1644
            unfolding True g_def Func_map_def j1_def j2[OF \<open>b2 \<in> B2\<close>] by auto
traytel@54980
  1645
        qed(insert A2 True j2[OF True] h B1, unfold j1_def g_def Func_def Func_map_def,
traytel@54980
  1646
          auto intro: f_inv_into_f)
traytel@54980
  1647
      qed(insert h, unfold Func_def Func_map_def, auto)
traytel@54980
  1648
    qed
traytel@54980
  1649
    moreover have "g \<in> Func A2 A1" unfolding g_def apply(rule Func_map[OF h])
haftmann@56077
  1650
    using j2A2 B1 A2 unfolding j1_def by (fast intro: inv_into_into)+
traytel@54980
  1651
    ultimately show "h \<in> Func_map B2 f1 f2 ` Func A2 A1"
haftmann@56077
  1652
    unfolding Func_map_def[abs_def] by auto
traytel@54980
  1653
  qed(insert B1 Func_map[OF _ _ A2(2)], auto)
traytel@54980
  1654
qed
blanchet@48975
  1655
blanchet@48975
  1656
end