Old_HOL: IOA/example/Impl.thy@fd1be45b64bf (annotated)

156 fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	1	Impl = Sender + Receiver + Channels +
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	2
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	3	types
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	4
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	5	'm impl_state
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	6	= "'m sender_state * 'm receiver_state * 'm packet multiset * bool multiset"
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	7	(* sender_state * receiver_state * srch_state * rsch_state *)
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	8
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	9
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	10	consts
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	11	impl_ioa :: "('m action, 'm impl_state)ioa"
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	12	sen :: "'m impl_state => 'm sender_state"
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	13	rec :: "'m impl_state => 'm receiver_state"
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	14	srch :: "'m impl_state => 'm packet multiset"
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	15	rsch :: "'m impl_state => bool multiset"
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	16	inv1, inv2,
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	17	inv3, inv4 :: "'m impl_state => bool"
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	18	hdr_sum :: "'m packet multiset => bool => nat"
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	19
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	20	rules
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	21
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	22	impl_def
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	23	"impl_ioa == (sender_ioa \|\| receiver_ioa \|\| srch_ioa \|\| rsch_ioa)"
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	24
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	25	sen_def "sen == fst"
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	26	rec_def "rec == fst o snd"
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	27	srch_def "srch == fst o snd o snd"
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	28	rsch_def "rsch == snd o snd o snd"
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	29
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	30	hdr_sum_def
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	31	"hdr_sum(M,b) == countm(M,%pkt.hdr(pkt) = b)"
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	32
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	33	(* Lemma 5.1 *)
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	34	inv1_def
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	35	"inv1(s) == \
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	36	\ (!b. count(rsent(rec(s)),b) = count(srcvd(sen(s)),b) + count(rsch(s),b)) \
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	37	\ & (!b. count(ssent(sen(s)),b) \
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	38	\ = hdr_sum(rrcvd(rec(s)),b) + hdr_sum(srch(s),b))"
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	39
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	40	(* Lemma 5.2 *)
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	41	inv2_def "inv2(s) == \
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	42	\ (rbit(rec(s)) = sbit(sen(s)) & \
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	43	\ ssending(sen(s)) & \
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	44	\ count(rsent(rec(s)),~sbit(sen(s))) <= count(ssent(sen(s)),~sbit(sen(s))) &\
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	45	\ count(ssent(sen(s)),~sbit(sen(s))) <= count(rsent(rec(s)),sbit(sen(s)))) \
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	46	\ \| \
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	47	\ (rbit(rec(s)) = (~sbit(sen(s))) & \
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	48	\ rsending(rec(s)) & \
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	49	\ count(ssent(sen(s)),~sbit(sen(s))) <= count(rsent(rec(s)),sbit(sen(s))) & \
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	50	\ count(rsent(rec(s)),sbit(sen(s))) <= count(ssent(sen(s)),sbit(sen(s))))"
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	51
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	52	(* Lemma 5.3 *)
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	53	inv3_def "inv3(s) == \
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	54	\ rbit(rec(s)) = sbit(sen(s)) \
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	55	\ --> (!m. sq(sen(s))=[] \| m ~= hd(sq(sen(s))) \
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	56	\ --> count(rrcvd(rec(s)),<sbit(sen(s)),m>) \
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	57	\ + count(srch(s),<sbit(sen(s)),m>) \
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	58	\ <= count(rsent(rec(s)),~sbit(sen(s))))"
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	59
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	60	(* Lemma 5.4 *)
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	61	inv4_def "inv4(s) == rbit(rec(s)) = (~sbit(sen(s))) --> sq(sen(s)) ~= []"
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	62
fd1be45b64bf added IOA to isabelle/HOL clasohm parents: diff changeset	63	end

author	clasohm
	Wed, 02 Nov 1994 11:50:09 +0100
changeset 156	fd1be45b64bf
child 168	44ff2275d44f
permissions	-rw-r--r--