src/HOL/Lattices.thy
(*  Title:      HOL/Lattices.thy
```
ID:         $Id$
```
Author:     Tobias Nipkow
```
*)
```
```     5
```
header {* Lattices via Locales *}
```
```     7
```
theory Lattices
```
imports Orderings
```
begin
```
```    11
```
subsection{* Lattices *}
```
```    13
```
text{* This theory of lattice locales only defines binary sup and inf
```
operations. The extension to finite sets is done in theory @{text
```
Finite_Set}. In the longer term it may be better to define arbitrary
```
sups and infs via @{text THE}. *}
```
```    18
```
locale lower_semilattice = partial_order +
```
fixes inf :: "'a \<Rightarrow> 'a \<Rightarrow> 'a" (infixl "\<sqinter>" 70)
```
assumes inf_le1: "x \<sqinter> y \<sqsubseteq> x" and inf_le2: "x \<sqinter> y \<sqsubseteq> y"
```
and inf_least: "x \<sqsubseteq> y \<Longrightarrow> x \<sqsubseteq> z \<Longrightarrow> x \<sqsubseteq> y \<sqinter> z"
```
```    23
```
locale upper_semilattice = partial_order +
```
fixes sup :: "'a \<Rightarrow> 'a \<Rightarrow> 'a" (infixl "\<squnion>" 65)
```
assumes sup_ge1: "x \<sqsubseteq> x \<squnion> y" and sup_ge2: "y \<sqsubseteq> x \<squnion> y"
```
and sup_greatest: "y \<sqsubseteq> x \<Longrightarrow> z \<sqsubseteq> x \<Longrightarrow> y \<squnion> z \<sqsubseteq> x"
```
```    28
```
locale lattice = lower_semilattice + upper_semilattice
```
```    30
```
lemma (in lower_semilattice) inf_commute: "(x \<sqinter> y) = (y \<sqinter> x)"
```
by(blast intro: antisym inf_le1 inf_le2 inf_least)
```
```    33
```
lemma (in upper_semilattice) sup_commute: "(x \<squnion> y) = (y \<squnion> x)"
```
by(blast intro: antisym sup_ge1 sup_ge2 sup_greatest)
```
```    36
```
lemma (in lower_semilattice) inf_assoc: "(x \<sqinter> y) \<sqinter> z = x \<sqinter> (y \<sqinter> z)"
```
by(blast intro: antisym inf_le1 inf_le2 inf_least trans del:refl)
```
```    39
```
lemma (in upper_semilattice) sup_assoc: "(x \<squnion> y) \<squnion> z = x \<squnion> (y \<squnion> z)"
```
by(blast intro!: antisym sup_ge1 sup_ge2 intro: sup_greatest trans del:refl)
```
```    42
```
lemma (in lower_semilattice) inf_idem[simp]: "x \<sqinter> x = x"
```
by(blast intro: antisym inf_le1 inf_le2 inf_least refl)
```
```    45
```
lemma (in upper_semilattice) sup_idem[simp]: "x \<squnion> x = x"
```
by(blast intro: antisym sup_ge1 sup_ge2 sup_greatest refl)
```
```    48
```
lemma (in lower_semilattice) inf_left_idem[simp]: "x \<sqinter> (x \<sqinter> y) = x \<sqinter> y"
```
by (simp add: inf_assoc[symmetric])
```
```    51
```
lemma (in upper_semilattice) sup_left_idem[simp]: "x \<squnion> (x \<squnion> y) = x \<squnion> y"
```
by (simp add: sup_assoc[symmetric])
```
```    54
```
lemma (in lattice) inf_sup_absorb: "x \<sqinter> (x \<squnion> y) = x"
```
by(blast intro: antisym inf_le1 inf_least sup_ge1)
```
```    57
```
lemma (in lattice) sup_inf_absorb: "x \<squnion> (x \<sqinter> y) = x"
```
by(blast intro: antisym sup_ge1 sup_greatest inf_le1)
```
```    60
```
lemma (in lower_semilattice) inf_absorb: "x \<sqsubseteq> y \<Longrightarrow> x \<sqinter> y = x"
```
by(blast intro: antisym inf_le1 inf_least refl)
```
```    63
```
lemma (in upper_semilattice) sup_absorb: "x \<sqsubseteq> y \<Longrightarrow> x \<squnion> y = y"
```
by(blast intro: antisym sup_ge2 sup_greatest refl)
```
```    66
```
```    67
```
lemma (in lower_semilattice) less_eq_inf_conv [simp]:
```
"x \<sqsubseteq> y \<sqinter> z = (x \<sqsubseteq> y \<and> x \<sqsubseteq> z)"
```
by(blast intro: antisym inf_le1 inf_le2 inf_least refl trans)
```
```    71
```
lemmas (in lower_semilattice) below_inf_conv = less_eq_inf_conv
```
-- {* a duplicate for backward compatibility *}
```
```    74
```
lemma (in upper_semilattice) above_sup_conv[simp]:
```
"x \<squnion> y \<sqsubseteq> z = (x \<sqsubseteq> z \<and> y \<sqsubseteq> z)"
```
by(blast intro: antisym sup_ge1 sup_ge2 sup_greatest refl trans)
```
```    78
```
```    79
```
text{* Towards distributivity: if you have one of them, you have them all. *}
```
```    81
```
lemma (in lattice) distrib_imp1:
```
assumes D: "!!x y z. x \<sqinter> (y \<squnion> z) = (x \<sqinter> y) \<squnion> (x \<sqinter> z)"
```
shows "x \<squnion> (y \<sqinter> z) = (x \<squnion> y) \<sqinter> (x \<squnion> z)"
```
proof-
```
have "x \<squnion> (y \<sqinter> z) = (x \<squnion> (x \<sqinter> z)) \<squnion> (y \<sqinter> z)" by(simp add:sup_inf_absorb)
```
also have "\<dots> = x \<squnion> (z \<sqinter> (x \<squnion> y))" by(simp add:D inf_commute sup_assoc)
```
also have "\<dots> = ((x \<squnion> y) \<sqinter> x) \<squnion> ((x \<squnion> y) \<sqinter> z)"
```
by(simp add:inf_sup_absorb inf_commute)
```
also have "\<dots> = (x \<squnion> y) \<sqinter> (x \<squnion> z)" by(simp add:D)
```
finally show ?thesis .
```
qed
```
```    93
```
lemma (in lattice) distrib_imp2:
```
assumes D: "!!x y z. x \<squnion> (y \<sqinter> z) = (x \<squnion> y) \<sqinter> (x \<squnion> z)"
```
shows "x \<sqinter> (y \<squnion> z) = (x \<sqinter> y) \<squnion> (x \<sqinter> z)"
```
proof-
```
have "x \<sqinter> (y \<squnion> z) = (x \<sqinter> (x \<squnion> z)) \<sqinter> (y \<squnion> z)" by(simp add:inf_sup_absorb)
```
also have "\<dots> = x \<sqinter> (z \<squnion> (x \<sqinter> y))" by(simp add:D sup_commute inf_assoc)
```
also have "\<dots> = ((x \<sqinter> y) \<squnion> x) \<sqinter> ((x \<sqinter> y) \<squnion> z)"
```
by(simp add:sup_inf_absorb sup_commute)
```
also have "\<dots> = (x \<sqinter> y) \<squnion> (x \<sqinter> z)" by(simp add:D)
```
finally show ?thesis .
```
qed
```
```   105
```
text{* A package of rewrite rules for deciding equivalence wrt ACI: *}
```
```   107
```
lemma (in lower_semilattice) inf_left_commute: "x \<sqinter> (y \<sqinter> z) = y \<sqinter> (x \<sqinter> z)"
```
proof -
```
have "x \<sqinter> (y \<sqinter> z) = (y \<sqinter> z) \<sqinter> x" by (simp only: inf_commute)
```
also have "... = y \<sqinter> (z \<sqinter> x)" by (simp only: inf_assoc)
```
also have "z \<sqinter> x = x \<sqinter> z" by (simp only: inf_commute)
```
finally(back_subst) show ?thesis .
```
qed
```
```   115
```
lemma (in upper_semilattice) sup_left_commute: "x \<squnion> (y \<squnion> z) = y \<squnion> (x \<squnion> z)"
```
proof -
```
have "x \<squnion> (y \<squnion> z) = (y \<squnion> z) \<squnion> x" by (simp only: sup_commute)
```
also have "... = y \<squnion> (z \<squnion> x)" by (simp only: sup_assoc)
```
also have "z \<squnion> x = x \<squnion> z" by (simp only: sup_commute)
```
finally(back_subst) show ?thesis .
```
qed
```
```   123
```
lemma (in lower_semilattice) inf_left_idem: "x \<sqinter> (x \<sqinter> y) = x \<sqinter> y"
```
proof -
```
have "x \<sqinter> (x \<sqinter> y) = (x \<sqinter> x) \<sqinter> y" by(simp only:inf_assoc)
```
also have "\<dots> = x \<sqinter> y" by(simp)
```
finally show ?thesis .
```
qed
```
```   130
```
lemma (in upper_semilattice) sup_left_idem: "x \<squnion> (x \<squnion> y) = x \<squnion> y"
```
proof -
```
have "x \<squnion> (x \<squnion> y) = (x \<squnion> x) \<squnion> y" by(simp only:sup_assoc)
```
also have "\<dots> = x \<squnion> y" by(simp)
```
finally show ?thesis .
```
qed
```
```   137
```
```   138
```
lemmas (in lower_semilattice) inf_ACI =
```
inf_commute inf_assoc inf_left_commute inf_left_idem
```
```   141
```
```   142 lemmas (in upper_semilattice) sup_ACI =
```
```   143  sup_commute sup_assoc sup_left_commute sup_left_idem
```
```   144
```
```   145 lemmas (in lattice) ACI = inf_ACI sup_ACI
```
```   146
```
```   147
```
```   148 subsection{* Distributive lattices *}
```
```   149
```
```   150 locale distrib_lattice = lattice +
```
```   151   assumes sup_inf_distrib1: "x \<squnion> (y \<sqinter> z) = (x \<squnion> y) \<sqinter> (x \<squnion> z)"
```
```   152
```
```   153 lemma (in distrib_lattice) sup_inf_distrib2:
```
```   154  "(y \<sqinter> z) \<squnion> x = (y \<squnion> x) \<sqinter> (z \<squnion> x)"
```
```   155 by(simp add:ACI sup_inf_distrib1)
```
```   156
```
```   157 lemma (in distrib_lattice) inf_sup_distrib1:
```
```   158  "x \<sqinter> (y \<squnion> z) = (x \<sqinter> y) \<squnion> (x \<sqinter> z)"
```
```   159 by(rule distrib_imp2[OF sup_inf_distrib1])
```
```   160
```
```   161 lemma (in distrib_lattice) inf_sup_distrib2:
```
```   162  "(y \<squnion> z) \<sqinter> x = (y \<sqinter> x) \<squnion> (z \<sqinter> x)"
```
```   163 by(simp add:ACI inf_sup_distrib1)
```
```   164
```
```   165 lemmas (in distrib_lattice) distrib =
```
```   166   sup_inf_distrib1 sup_inf_distrib2 inf_sup_distrib1 inf_sup_distrib2
```
```   167
```
```   168
```
```   169 subsection {* Least value operator and min/max -- properties *}
```
```   170
```
```   171 (*FIXME: derive more of the min/max laws generically via semilattices*)
```
```   172
```
```   173 lemma LeastI2_order:
```
```   174   "[| P (x::'a::order);
```
```   175       !!y. P y ==> x <= y;
```
```   176       !!x. [| P x; ALL y. P y --> x \<le> y |] ==> Q x |]
```
```   177    ==> Q (Least P)"
```
```   178   apply (unfold Least_def)
```
```   179   apply (rule theI2)
```
```   180     apply (blast intro: order_antisym)+
```
```   181   done
```
```   182
```
```   183 lemma Least_equality:
```
```   184     "[| P (k::'a::order); !!x. P x ==> k <= x |] ==> (LEAST x. P x) = k"
```
```   185   apply (simp add: Least_def)
```
```   186   apply (rule the_equality)
```
```   187   apply (auto intro!: order_antisym)
```
```   188   done
```
```   189
```
```   190 lemma min_leastL: "(!!x. least <= x) ==> min least x = least"
```
```   191   by (simp add: min_def)
```
```   192
```
```   193 lemma max_leastL: "(!!x. least <= x) ==> max least x = x"
```
```   194   by (simp add: max_def)
```
```   195
```
```   196 lemma min_leastR: "(\<And>x\<Colon>'a\<Colon>order. least \<le> x) \<Longrightarrow> min x least = least"
```
```   197   apply (simp add: min_def)
```
```   198   apply (blast intro: order_antisym)
```
```   199   done
```
```   200
```
```   201 lemma max_leastR: "(\<And>x\<Colon>'a\<Colon>order. least \<le> x) \<Longrightarrow> max x least = x"
```
```   202   apply (simp add: max_def)
```
```   203   apply (blast intro: order_antisym)
```
```   204   done
```
```   205
```
```   206 lemma min_of_mono:
```
```   207     "(!!x y. (f x <= f y) = (x <= y)) ==> min (f m) (f n) = f (min m n)"
```
```   208   by (simp add: min_def)
```
```   209
```
```   210 lemma max_of_mono:
```
```   211     "(!!x y. (f x <= f y) = (x <= y)) ==> max (f m) (f n) = f (max m n)"
```
```   212   by (simp add: max_def)
```
```   213
```
```   214 text{* Instantiate locales: *}
```
```   215
```
```   216 interpretation min_max:
```
```   217   lower_semilattice["op \<le>" "op <" "min :: 'a::linorder \<Rightarrow> 'a \<Rightarrow> 'a"]
```
```   218 apply unfold_locales
```
```   219 apply(simp add:min_def linorder_not_le order_less_imp_le)
```
```   220 apply(simp add:min_def linorder_not_le order_less_imp_le)
```
```   221 apply(simp add:min_def linorder_not_le order_less_imp_le)
```
```   222 done
```
```   223
```
```   224 interpretation min_max:
```
```   225   upper_semilattice["op \<le>" "op <" "max :: 'a::linorder \<Rightarrow> 'a \<Rightarrow> 'a"]
```
```   226 apply unfold_locales
```
```   227 apply(simp add: max_def linorder_not_le order_less_imp_le)
```
```   228 apply(simp add: max_def linorder_not_le order_less_imp_le)
```
```   229 apply(simp add: max_def linorder_not_le order_less_imp_le)
```
```   230 done
```
```   231
```
```   232 interpretation min_max:
```
```   233   lattice["op \<le>" "op <" "min :: 'a::linorder \<Rightarrow> 'a \<Rightarrow> 'a" "max"]
```
```   234   by unfold_locales
```
```   235
```
```   236 interpretation min_max:
```
```   237   distrib_lattice["op \<le>" "op <" "min :: 'a::linorder \<Rightarrow> 'a \<Rightarrow> 'a" "max"]
```
```   238 apply unfold_locales
```
```   239 apply(rule_tac x=x and y=y in linorder_le_cases)
```
```   240 apply(rule_tac x=x and y=z in linorder_le_cases)
```
```   241 apply(rule_tac x=y and y=z in linorder_le_cases)
```
```   242 apply(simp add:min_def max_def)
```
```   243 apply(simp add:min_def max_def)
```
```   244 apply(rule_tac x=y and y=z in linorder_le_cases)
```
```   245 apply(simp add:min_def max_def)
```
```   246 apply(simp add:min_def max_def)
```
```   247 apply(rule_tac x=x and y=z in linorder_le_cases)
```
```   248 apply(rule_tac x=y and y=z in linorder_le_cases)
```
```   249 apply(simp add:min_def max_def)
```
```   250 apply(simp add:min_def max_def)
```
```   251 apply(rule_tac x=y and y=z in linorder_le_cases)
```
```   252 apply(simp add:min_def max_def)
```
```   253 apply(simp add:min_def max_def)
```
```   254 done
```
```   255
```
```   256 lemma le_max_iff_disj: "!!z::'a::linorder. (z <= max x y) = (z <= x | z <= y)"
```
```   257   apply(simp add:max_def)
```
```   258   apply (insert linorder_linear)
```
```   259   apply (blast intro: order_trans)
```
```   260   done
```
```   261
```
```   262 lemmas le_maxI1 = min_max.sup_ge1
```
```   263 lemmas le_maxI2 = min_max.sup_ge2
```
```   264
```
```   265 lemma less_max_iff_disj: "!!z::'a::linorder. (z < max x y) = (z < x | z < y)"
```
```   266   apply (simp add: max_def order_le_less)
```
```   267   apply (insert linorder_less_linear)
```
```   268   apply (blast intro: order_less_trans)
```
```   269   done
```
```   270
```
```   271 lemma max_less_iff_conj [simp]:
```
```   272     "!!z::'a::linorder. (max x y < z) = (x < z & y < z)"
```
```   273   apply (simp add: order_le_less max_def)
```
```   274   apply (insert linorder_less_linear)
```
```   275   apply (blast intro: order_less_trans)
```
```   276   done
```
```   277
```
```   278 lemma min_less_iff_conj [simp]:
```
```   279     "!!z::'a::linorder. (z < min x y) = (z < x & z < y)"
```
```   280   apply (simp add: order_le_less min_def)
```
```   281   apply (insert linorder_less_linear)
```
```   282   apply (blast intro: order_less_trans)
```
```   283   done
```
```   284
```
```   285 lemma min_le_iff_disj: "!!z::'a::linorder. (min x y <= z) = (x <= z | y <= z)"
```
```   286   apply (simp add: min_def)
```
```   287   apply (insert linorder_linear)
```
```   288   apply (blast intro: order_trans)
```
```   289   done
```
```   290
```
```   291 lemma min_less_iff_disj: "!!z::'a::linorder. (min x y < z) = (x < z | y < z)"
```
```   292   apply (simp add: min_def order_le_less)
```
```   293   apply (insert linorder_less_linear)
```
```   294   apply (blast intro: order_less_trans)
```
```   295   done
```
```   296
```
```   297 lemmas max_ac = min_max.sup_assoc min_max.sup_commute
```
```   298                mk_left_commute[of max,OF min_max.sup_assoc min_max.sup_commute]
```
```   299
```
```   300 lemmas min_ac = min_max.inf_assoc min_max.inf_commute
```
```   301                mk_left_commute[of min,OF min_max.inf_assoc min_max.inf_commute]
```
```   302
```
```   303 lemma split_min:
```
```   304     "P (min (i::'a::linorder) j) = ((i <= j --> P(i)) & (~ i <= j --> P(j)))"
```
```   305   by (simp add: min_def)
```
```   306
```
```   307 lemma split_max:
```
```   308     "P (max (i::'a::linorder) j) = ((i <= j --> P(j)) & (~ i <= j --> P(i)))"
```
```   309   by (simp add: max_def)
```
```   310
```
```   311 text {* ML legacy bindings *}
```
```   312
```
```   313 ML {*
```
```   314 val Least_def = thm "Least_def";
```
```   315 val Least_equality = thm "Least_equality";
```
```   316 val min_def = thm "min_def";
```
```   317 val min_of_mono = thm "min_of_mono";
```
```   318 val max_def = thm "max_def";
```
```   319 val max_of_mono = thm "max_of_mono";
```
```   320 val min_leastL = thm "min_leastL";
```
```   321 val max_leastL = thm "max_leastL";
```
```   322 val min_leastR = thm "min_leastR";
```
```   323 val max_leastR = thm "max_leastR";
```
```   324 val le_max_iff_disj = thm "le_max_iff_disj";
```
```   325 val le_maxI1 = thm "le_maxI1";
```
```   326 val le_maxI2 = thm "le_maxI2";
```
```   327 val less_max_iff_disj = thm "less_max_iff_disj";
```
```   328 val max_less_iff_conj = thm "max_less_iff_conj";
```
```   329 val min_less_iff_conj = thm "min_less_iff_conj";
```
```   330 val min_le_iff_disj = thm "min_le_iff_disj";
```
```   331 val min_less_iff_disj = thm "min_less_iff_disj";
```
```   332 val split_min = thm "split_min";
```
```   333 val split_max = thm "split_max";
```
```   334 *}
```
```   335
```
```   336 end
```