(* Title: ZF/upair 
UNORDERED pairs in ZermeloFraenkel Set Theory 

Observe the order of dependence: 

Upair is defined in terms of Replace 

Un is defined in terms of Upair and Union (similarly for Int) 

cons is defined in terms of Upair and Un 

Ordered pairs and descriptions are defined using cons ("set notation") 

*) 

15 
(*** Lemmas about power sets ***) 

9907  17 
bind_thm ("Pow_bottom", empty_subsetI RS PowI); (* 0 : Pow(B) *) 
bind_thm ("Pow_top", subset_refl RS PowI); (* A : Pow(A) *) 

(*** Unordered pairs  Upair ***) 

9211  23 
Goalw [Upair_def] "c : Upair(a,b) <> (c=a  c=b)"; 
by (Blast_tac 1) ; 

qed "Upair_iff"; 

Addsimps [Upair_iff]; 

Goal "a : Upair(a,b)"; 
by (Simp_tac 1); 

qed "UpairI1"; 

9180  33 
Goal "b : Upair(a,b)"; 
by (Simp_tac 1); 

qed "UpairI2"; 

val major::prems= Goal 

"[ a : Upair(b,c); a=b ==> P; a=c ==> P ] ==> P"; 

by (rtac (major RS (Upair_iff RS iffD1 RS disjE)) 1); 

by (REPEAT (eresolve_tac prems 1)) ; 

qed "UpairE"; 

AddSIs [UpairI1,UpairI2]; 
AddSEs [UpairE]; 

(*** Rules for binary union  Un  defined via Upair ***) 
Goalw [Un_def] "c : A Un B <> (c:A  c:B)"; 
qed "Un_iff"; 

52 
Addsimps [Un_iff]; 

Goal "c : A ==> c : A Un B"; 
by (Asm_simp_tac 1); 

qed "UnI1"; 

9180  58 
Goal "c : B ==> c : A Un B"; 
by (Asm_simp_tac 1); 

qed "UnI2"; 

val major::prems= Goal 

"[ c : A Un B; c:A ==> P; c:B ==> P ] ==> P"; 

by (rtac (major RS (Un_iff RS iffD1 RS disjE)) 1); 

by (REPEAT (eresolve_tac prems 1)) ; 

qed "UnE"; 

(*Stronger version of the rule above*) 
val major::prems = Goal 
"[ c : A Un B; c:A ==> P; [ c:B; c~:A ] ==> P ] ==> P"; 

by (rtac (major RS UnE) 1); 

by (eresolve_tac prems 1); 

by (rtac classical 1); 

by (eresolve_tac prems 1); 

by (swap_res_tac prems 1); 

by (etac notnotD 1); 

qed "UnE'"; 

(*Classical introduction rule: no commitment to A vs B*) 
val prems = Goal "(c ~: B ==> c : A) ==> c : A Un B"; 
by (Simp_tac 1); 

by (blast_tac (claset() addSIs prems) 1); 

qed "UnCI"; 

AddSIs [UnCI]; 
AddSEs [UnE]; 

(*** Rules for small intersection  Int  defined via Upair ***) 

Goalw [Int_def] "c : A Int B <> (c:A & c:B)"; 
by (Blast_tac 1); 

93 
qed "Int_iff"; 

Addsimps [Int_iff]; 

Goal "[ c : A; c : B ] ==> c : A Int B"; 
by (Asm_simp_tac 1); 

qed "IntI"; 

Goal "c : A Int B ==> c : A"; 
by (Asm_full_simp_tac 1); 

qed "IntD1"; 

Goal "c : A Int B ==> c : B"; 
by (Asm_full_simp_tac 1); 

qed "IntD2"; 

val prems = Goal "[ c : A Int B; [ c:A; c:B ] ==> P ] ==> P"; 
by (resolve_tac prems 1); 

by (REPEAT (resolve_tac (prems RL [IntD1,IntD2]) 1)) ; 

qed "IntE"; 

AddSIs [IntI]; 
AddSEs [IntE]; 

(*** Rules for set difference  defined via Upair ***) 

9211  119 
120 
121 
123 
124 

Goal "[ c : A; c ~: B ] ==> c : A  B"; 
127 
qed "DiffI"; 

0  128 

9180  129 
Goal "c : A  B ==> c : A"; 
by (Asm_full_simp_tac 1); 

131 
0  132 

9180  133 
by (Asm_full_simp_tac 1); 

9180  137 
val prems = Goal "[ c : A  B; [ c:A; c~:B ] ==> P ] ==> P"; 
by (REPEAT (ares_tac (prems RL [DiffD1, DiffD2]) 1)) ; 

143 
AddSEs [DiffE]; 

(*** Rules for cons  defined via Un and Upair ***) 

146 

149 
qed "cons_iff"; 

Addsimps [cons_iff]; 

0  152 

9180  153 
Goal "a : cons(a,B)"; 
154 
by (Simp_tac 1); 

155 
qed "consI1"; 

2469  156 

157 
Addsimps [consI1]; 

6153  158 
AddTCs [consI1]; (*risky as a typechecking rule, but solves otherwise 
159 
unconstrained goals of the form x : ?A*) 

0  160 

9180  161 
Goal "a : B ==> a : cons(b,B)"; 
162 
by (Asm_simp_tac 1); 

163 
qed "consI2"; 

2469  164 

9180  165 
val major::prems= Goal 
166 
"[ a : cons(b,A); a=b ==> P; a:A ==> P ] ==> P"; 

167 
by (rtac (major RS (cons_iff RS iffD1 RS disjE)) 1); 

168 
by (REPEAT (eresolve_tac (prems @ [UpairE]) 1)) ; 

169 
qed "consE"; 

0  170 

572  171 
(*Stronger version of the rule above*) 
9180  172 
val major::prems = Goal 
173 
"[ a : cons(b,A); a=b ==> P; [ a:A; a~=b ] ==> P ] ==> P"; 

174 
by (rtac (major RS consE) 1); 

175 
by (eresolve_tac prems 1); 

176 
by (rtac classical 1); 

177 
by (eresolve_tac prems 1); 

178 
by (swap_res_tac prems 1); 

179 
by (etac notnotD 1); 

180 
qed "consE'"; 

572  181 

2469  182 
(*Classical introduction rule*) 
9180  183 
val prems = Goal "(a~:B ==> a=b) ==> a: cons(b,B)"; 
184 
by (Simp_tac 1); 

185 
by (blast_tac (claset() addSIs prems) 1); 

186 
qed "consCI"; 

0  187 

2469  188 
AddSIs [consCI]; 
189 
AddSEs [consE]; 

0  190 

9180  191 
Goal "cons(a,B) ~= 0"; 
192 
by (blast_tac (claset() addEs [equalityE]) 1) ; 

193 
qed "cons_not_0"; 

1609  194 

2469  195 
bind_thm ("cons_neq_0", cons_not_0 RS notE); 
196 

197 
Addsimps [cons_not_0, cons_not_0 RS not_sym]; 

198 

1609  199 

0  200 
(*** Singletons  using cons ***) 
201 

9180  202 
Goal "a : {b} <> a=b"; 
203 
by (Simp_tac 1); 

204 
qed "singleton_iff"; 

2469  205 

9180  206 
Goal "a : {a}"; 
207 
by (rtac consI1 1) ; 

208 
qed "singletonI"; 

0  209 

2469  210 
bind_thm ("singletonE", make_elim (singleton_iff RS iffD1)); 
0  211 

2469  212 
AddSIs [singletonI]; 
213 
AddSEs [singletonE]; 

0  214 

215 
(*** Rules for Descriptions ***) 

216 

9211  217 
val [pa,eq] = Goalw [the_def] 
218 
"[ P(a); !!x. P(x) ==> x=a ] ==> (THE x. P(x)) = a"; 

219 
by (fast_tac (claset() addSIs [pa] addEs [eq RS subst]) 1) ; 

220 
qed "the_equality"; 

0  221 

5506  222 
AddIs [the_equality]; 
223 

0  224 
(* Only use this if you already know EX!x. P(x) *) 
225 
Goal "[ EX! x. P(x); P(a) ] ==> (THE x. P(x)) = a"; 
226 
by (Blast_tac 1); 
0  228 

Goal "EX! x. P(x) ==> P(THE x. P(x))"; 
8183  231 
by (stac the_equality 1); 
435  235 
(*the_cong is no longer necessary: if (ALL y.P(y)<>Q(y)) then 
236 
(THE x.P(x)) rewrites to (THE x. Q(x)) *) 

237 

238 
(*If it's "undefined", it's zero!*) 

9180  239 
Goalw [the_def] "~ (EX! x. P(x)) ==> (THE x. P(x))=0"; 
5506  243 
(*Easier to apply than theI: conclusion has only one occurrence of P*) 
244 
val prems = 

245 
Goal "[ ~ Q(0) ==> EX! x. P(x); !!x. P(x) ==> Q(x) ] ==> Q(THE x. P(x))"; 

246 
by (rtac classical 1); 

247 
by (resolve_tac prems 1); 

248 
by (rtac theI 1); 

249 
by (rtac classical 1); 

250 
by (resolve_tac prems 1); 

6163  251 
by (etac (the_0 RS subst) 1); 
252 
by (assume_tac 1); 

5506  253 
qed "theI2"; 
254 

0  255 
(*** if  a conditional expression for formulae ***) 
256 

6068  257 
Goalw [if_def] "(if True then a else b) = a"; 
5506  258 
by (Blast_tac 1); 
760  259 
qed "if_true"; 
0  260 

6068  261 
Goalw [if_def] "(if False then a else b) = b"; 
5506  262 
by (Blast_tac 1); 
760  263 
qed "if_false"; 
0  264 

(*Never use with case splitting, or if P is known to be true or false*) 
val prems = Goalw [if_def] 
6068  267 
"[ P<>Q; Q ==> a=c; ~Q ==> b=d ] \ 
268 
\ ==> (if P then a else b) = (if Q then c else d)"; 

4091  269 
by (simp_tac (simpset() addsimps prems addcongs [conj_cong]) 1); 
760  270 
qed "if_cong"; 
0  271 

272 
Goal "P<>Q ==> (if P then x else y) = (if Q then x else y)"; 
0  278 
(*Not needed for rewriting, since P would rewrite to True anyway*) 
6068  279 
Goalw [if_def] "P ==> (if P then a else b) = a"; 
5506  280 
by (Blast_tac 1); 
760  281 
qed "if_P"; 
0  282 

283 
(*Not needed for rewriting, since P would rewrite to False anyway*) 

6068  284 
Goalw [if_def] "~P ==> (if P then a else b) = b"; 
5506  285 
by (Blast_tac 1); 
760  286 
qed "if_not_P"; 
0  287 

2469  288 
Addsimps [if_true, if_false]; 
0  289 

9180  290 
Goal "P(if Q then x else y) <> ((Q > P(x)) & (~Q > P(y)))"; 
291 
by (case_tac "Q" 1); 

292 
by (Asm_simp_tac 1); 

293 
by (Asm_simp_tac 1) ; 

294 
qed "split_if"; 

0  295 

3914  296 
(** Rewrite rules for boolean casesplitting: faster than 
5116
8eb343ab5748
Renamed expand_if to split_if and setloop split_tac to addsplits,
paulson
parents:
4091
diff
changeset

297 
addsplits[split_if] 
3914  298 
**) 
299 

8551  300 
bind_thm ("split_if_eq1", inst "P" "%x. x = ?b" split_if); 
301 
bind_thm ("split_if_eq2", inst "P" "%x. ?a = x" split_if); 

3914  302 

8551  303 
bind_thm ("split_if_mem1", inst "P" "%x. x : ?b" split_if); 
304 
bind_thm ("split_if_mem2", inst "P" "%x. ?a : x" split_if); 

3914  305 

9907  306 
bind_thms ("split_ifs", [split_if_eq1, split_if_eq2, split_if_mem1, split_if_mem2]); 
3914  307 

(*Logically equivalent to split_if_mem2*) 
9180  309 
Goal "a: (if P then x else y) <> P & a:x  ~P & a:y"; 
310 
by (simp_tac (simpset() addsplits [split_if]) 1) ; 

311 
qed "if_iff"; 

1017
9180  313 
val prems = Goal 
314 
"[ P ==> a: A; ~P ==> b: A ] ==> (if P then a else b): A"; 

315 
by (simp_tac (simpset() addsimps prems addsplits [split_if]) 1) ; 

316 
qed "if_type"; 

317 

6153  318 
AddTCs [if_type]; 
0  319 

320 
(*** Foundation lemmas ***) 

321 

437  322 
(*was called mem_anti_sym*) 
9180  323 
val prems = Goal "[ a:b; ~P ==> b:a ] ==> P"; 
324 
by (rtac classical 1); 

325 
by (res_inst_tac [("A1","{a,b}")] (foundation RS disjE) 1); 

326 
by (REPEAT (blast_tac (claset() addIs prems addSEs [equalityE]) 1)); 

327 
qed "mem_asym"; 

0  328 

437  329 
(*was called mem_anti_refl*) 
9180  330 
Goal "a:a ==> P"; 
331 
by (blast_tac (claset() addIs [mem_asym]) 1); 

332 
qed "mem_irrefl"; 

0  333 

2469  334 
(*mem_irrefl should NOT be added to default databases: 
335 
it would be tried on most goals, making proofs slower!*) 

336 

9180  337 
Goal "a ~: a"; 
338 
by (rtac notI 1); 

339 
by (etac mem_irrefl 1); 

340 
qed "mem_not_refl"; 

0  341 

435  342 
(*Good for proving inequalities by rewriting*) 
9180  343 
Goal "a:A ==> a ~= A"; 
344 
by (blast_tac (claset() addSEs [mem_irrefl]) 1); 

345 
qed "mem_imp_not_eq"; 

435  346 

0  347 
(*** Rules for succ ***) 
348 

9211  349 
Goalw [succ_def] "i : succ(j) <> i=j  i:j"; 
350 
by (Blast_tac 1); 

351 
qed "succ_iff"; 

2469  352 

9211  353 
Goalw [succ_def] "i : succ(i)"; 
354 
by (rtac consI1 1) ; 

355 
qed "succI1"; 

0  356 

2469  357 
Addsimps [succI1]; 
358 

9211  359 
Goalw [succ_def] "i : j ==> i : succ(j)"; 
360 
by (etac consI2 1) ; 

361 
qed "succI2"; 

0  362 

9211  363 
val major::prems= Goalw [succ_def] 
364 
"[ i : succ(j); i=j ==> P; i:j ==> P ] ==> P"; 

365 
by (rtac (major RS consE) 1); 

366 
by (REPEAT (eresolve_tac prems 1)) ; 

367 
qed "succE"; 

0  368 

14
(*Classical introduction rule*) 
9180  370 
val [prem]= Goal "(i~:j ==> i=j) ==> i: succ(j)"; 
371 
by (rtac (disjCI RS (succ_iff RS iffD2)) 1); 

372 
by (etac prem 1) ; 

373 
qed "succCI"; 

14
2469  375 
AddSIs [succCI]; 
376 
AddSEs [succE]; 

377 

9180  378 
Goal "succ(n) ~= 0"; 
379 
by (blast_tac (claset() addSEs [equalityE]) 1) ; 

380 
qed "succ_not_0"; 

0  381 

2469  382 
bind_thm ("succ_neq_0", succ_not_0 RS notE); 
383 

384 
Addsimps [succ_not_0, succ_not_0 RS not_sym]; 

385 
AddSEs [succ_neq_0, sym RS succ_neq_0]; 

386 

0  387 

388 
(* succ(c) <= B ==> c : B *) 

9907  389 
bind_thm ("succ_subsetD", succI1 RSN (2,subsetD)); 
0  390 

1609  391 
(* succ(b) ~= b *) 
392 
bind_thm ("succ_neq_self", succI1 RS mem_imp_not_eq RS not_sym); 

393 

9180  394 
Goal "succ(m) = succ(n) <> m=n"; 
395 
by (blast_tac (claset() addEs [mem_asym] addSEs [equalityE]) 1) ; 

396 
qed "succ_inject_iff"; 

0  397 

2469  398 
bind_thm ("succ_inject", succ_inject_iff RS iffD1); 
0  399 

2469  400 
Addsimps [succ_inject_iff]; 
401 
AddSDs [succ_inject]; 

0  402 

2877  403 
(*Not needed now that cons is available. Deletion reduces the search space.*) 
404 
Delrules [UpairI1,UpairI2,UpairE]; 