src/HOL/UNITY/Comp.thy
author paulson
Thu, 07 Apr 2005 13:29:41 +0200
changeset 15676 042692b6275d
parent 14047 6123bfc55247
child 16417 9bc16273c2d4
permissions -rw-r--r--
new meta-level rules
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
5597
a12b25c53df1 composition theory
paulson
parents:
diff changeset
     1
(*  Title:      HOL/UNITY/Comp.thy
a12b25c53df1 composition theory
paulson
parents:
diff changeset
     2
    ID:         $Id$
a12b25c53df1 composition theory
paulson
parents:
diff changeset
     3
    Author:     Lawrence C Paulson, Cambridge University Computer Laboratory
a12b25c53df1 composition theory
paulson
parents:
diff changeset
     4
    Copyright   1998  University of Cambridge
a12b25c53df1 composition theory
paulson
parents:
diff changeset
     5
a12b25c53df1 composition theory
paulson
parents:
diff changeset
     6
Composition
11190
44e157622cb2 *** empty log message ***
ehmety
parents: 8128
diff changeset
     7
From Chandy and Sanders, "Reasoning About Program Composition",
44e157622cb2 *** empty log message ***
ehmety
parents: 8128
diff changeset
     8
Technical Report 2000-003, University of Florida, 2000.
5597
a12b25c53df1 composition theory
paulson
parents:
diff changeset
     9
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
    10
Revised by Sidi Ehmety on January  2001
11190
44e157622cb2 *** empty log message ***
ehmety
parents: 8128
diff changeset
    11
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
    12
Added: a strong form of the \<subseteq> relation (component_of) and localize
11190
44e157622cb2 *** empty log message ***
ehmety
parents: 8128
diff changeset
    13
5597
a12b25c53df1 composition theory
paulson
parents:
diff changeset
    14
*)
a12b25c53df1 composition theory
paulson
parents:
diff changeset
    15
13798
4c1a53627500 conversion to new-style theories and tidying
paulson
parents: 13792
diff changeset
    16
header{*Composition: Basic Primitives*}
4c1a53627500 conversion to new-style theories and tidying
paulson
parents: 13792
diff changeset
    17
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    18
theory Comp = Union:
5597
a12b25c53df1 composition theory
paulson
parents:
diff changeset
    19
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    20
instance program :: (type) ord ..
5597
a12b25c53df1 composition theory
paulson
parents:
diff changeset
    21
7399
cf780c2bcccf changed "component" infix in HOL/UNITY/Comp.thy to be overloaded <
paulson
parents: 7364
diff changeset
    22
defs
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
    23
  component_def:          "F \<le> H == \<exists>G. F\<squnion>G = H"
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
    24
  strict_component_def:   "(F < (H::'a program)) == (F \<le> H & F \<noteq> H)"
5612
e981ca6f7332 Finished proofs to end of section 5.1 of Chandy and Sanders
paulson
parents: 5597
diff changeset
    25
11190
44e157622cb2 *** empty log message ***
ehmety
parents: 8128
diff changeset
    26
8055
bb15396278fb abolition of localTo: instead "guarantees" has local vars as extra argument
paulson
parents: 7399
diff changeset
    27
constdefs
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
    28
  component_of :: "'a program =>'a program=> bool"
11190
44e157622cb2 *** empty log message ***
ehmety
parents: 8128
diff changeset
    29
                                    (infixl "component'_of" 50)
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
    30
  "F component_of H == \<exists>G. F ok G & F\<squnion>G = H"
11190
44e157622cb2 *** empty log message ***
ehmety
parents: 8128
diff changeset
    31
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    32
  strict_component_of :: "'a program\<Rightarrow>'a program=> bool"
11190
44e157622cb2 *** empty log message ***
ehmety
parents: 8128
diff changeset
    33
                                    (infixl "strict'_component'_of" 50)
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
    34
  "F strict_component_of H == F component_of H & F\<noteq>H"
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
    35
8055
bb15396278fb abolition of localTo: instead "guarantees" has local vars as extra argument
paulson
parents: 7399
diff changeset
    36
  preserves :: "('a=>'b) => 'a program set"
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
    37
    "preserves v == \<Inter>z. stable {s. v s = z}"
8055
bb15396278fb abolition of localTo: instead "guarantees" has local vars as extra argument
paulson
parents: 7399
diff changeset
    38
11190
44e157622cb2 *** empty log message ***
ehmety
parents: 8128
diff changeset
    39
  localize  :: "('a=>'b) => 'a program => 'a program"
44e157622cb2 *** empty log message ***
ehmety
parents: 8128
diff changeset
    40
  "localize v F == mk_program(Init F, Acts F,
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
    41
			      AllowedActs F \<inter> (\<Union>G \<in> preserves v. Acts G))"
11190
44e157622cb2 *** empty log message ***
ehmety
parents: 8128
diff changeset
    42
8055
bb15396278fb abolition of localTo: instead "guarantees" has local vars as extra argument
paulson
parents: 7399
diff changeset
    43
  funPair      :: "['a => 'b, 'a => 'c, 'a] => 'b * 'c"
11190
44e157622cb2 *** empty log message ***
ehmety
parents: 8128
diff changeset
    44
  "funPair f g == %x. (f x, g x)"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    45
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    46
13798
4c1a53627500 conversion to new-style theories and tidying
paulson
parents: 13792
diff changeset
    47
subsection{*The component relation*}
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
    48
lemma componentI: "H \<le> F | H \<le> G ==> H \<le> (F\<squnion>G)"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    49
apply (unfold component_def, auto)
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
    50
apply (rule_tac x = "G\<squnion>Ga" in exI)
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
    51
apply (rule_tac [2] x = "G\<squnion>F" in exI)
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    52
apply (auto simp add: Join_ac)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    53
done
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    54
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
    55
lemma component_eq_subset:
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
    56
     "(F \<le> G) =
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
    57
      (Init G \<subseteq> Init F & Acts F \<subseteq> Acts G & AllowedActs G \<subseteq> AllowedActs F)"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    58
apply (unfold component_def)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    59
apply (force intro!: exI program_equalityI)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    60
done
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    61
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
    62
lemma component_SKIP [iff]: "SKIP \<le> F"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    63
apply (unfold component_def)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    64
apply (force intro: Join_SKIP_left)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    65
done
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    66
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
    67
lemma component_refl [iff]: "F \<le> (F :: 'a program)"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    68
apply (unfold component_def)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    69
apply (blast intro: Join_SKIP_right)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    70
done
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    71
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
    72
lemma SKIP_minimal: "F \<le> SKIP ==> F = SKIP"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    73
by (auto intro!: program_equalityI simp add: component_eq_subset)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    74
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
    75
lemma component_Join1: "F \<le> (F\<squnion>G)"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    76
by (unfold component_def, blast)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    77
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
    78
lemma component_Join2: "G \<le> (F\<squnion>G)"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    79
apply (unfold component_def)
13798
4c1a53627500 conversion to new-style theories and tidying
paulson
parents: 13792
diff changeset
    80
apply (simp add: Join_commute, blast)
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    81
done
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    82
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
    83
lemma Join_absorb1: "F \<le> G ==> F\<squnion>G = G"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    84
by (auto simp add: component_def Join_left_absorb)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    85
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
    86
lemma Join_absorb2: "G \<le> F ==> F\<squnion>G = F"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    87
by (auto simp add: Join_ac component_def)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    88
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
    89
lemma JN_component_iff: "((JOIN I F) \<le> H) = (\<forall>i \<in> I. F i \<le> H)"
13798
4c1a53627500 conversion to new-style theories and tidying
paulson
parents: 13792
diff changeset
    90
by (simp add: component_eq_subset, blast)
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    91
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
    92
lemma component_JN: "i \<in> I ==> (F i) \<le> (\<Squnion>i \<in> I. (F i))"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    93
apply (unfold component_def)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    94
apply (blast intro: JN_absorb)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    95
done
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    96
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
    97
lemma component_trans: "[| F \<le> G; G \<le> H |] ==> F \<le> (H :: 'a program)"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    98
apply (unfold component_def)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
    99
apply (blast intro: Join_assoc [symmetric])
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   100
done
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   101
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
   102
lemma component_antisym: "[| F \<le> G; G \<le> F |] ==> F = (G :: 'a program)"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   103
apply (simp (no_asm_use) add: component_eq_subset)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   104
apply (blast intro!: program_equalityI)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   105
done
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   106
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
   107
lemma Join_component_iff: "((F\<squnion>G) \<le> H) = (F \<le> H & G \<le> H)"
13798
4c1a53627500 conversion to new-style theories and tidying
paulson
parents: 13792
diff changeset
   108
by (simp add: component_eq_subset, blast)
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   109
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
   110
lemma component_constrains: "[| F \<le> G; G \<in> A co B |] ==> F \<in> A co B"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   111
by (auto simp add: constrains_def component_eq_subset)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   112
13874
0da2141606c6 More on progress sets
paulson
parents: 13819
diff changeset
   113
lemma component_stable: "[| F \<le> G; G \<in> stable A |] ==> F \<in> stable A"
0da2141606c6 More on progress sets
paulson
parents: 13819
diff changeset
   114
by (auto simp add: stable_def component_constrains)
0da2141606c6 More on progress sets
paulson
parents: 13819
diff changeset
   115
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   116
(*Used in Guar.thy to show that programs are partially ordered*)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   117
lemmas program_less_le = strict_component_def [THEN meta_eq_to_obj_eq]
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   118
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   119
13798
4c1a53627500 conversion to new-style theories and tidying
paulson
parents: 13792
diff changeset
   120
subsection{*The preserves property*}
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   121
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
   122
lemma preservesI: "(!!z. F \<in> stable {s. v s = z}) ==> F \<in> preserves v"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   123
by (unfold preserves_def, blast)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   124
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
   125
lemma preserves_imp_eq:
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
   126
     "[| F \<in> preserves v;  act \<in> Acts F;  (s,s') \<in> act |] ==> v s = v s'"
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
   127
by (unfold preserves_def stable_def constrains_def, force)
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   128
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
   129
lemma Join_preserves [iff]:
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
   130
     "(F\<squnion>G \<in> preserves v) = (F \<in> preserves v & G \<in> preserves v)"
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
   131
by (unfold preserves_def, auto)
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   132
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   133
lemma JN_preserves [iff]:
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
   134
     "(JOIN I F \<in> preserves v) = (\<forall>i \<in> I. F i \<in> preserves v)"
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
   135
by (simp add: JN_stable preserves_def, blast)
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   136
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
   137
lemma SKIP_preserves [iff]: "SKIP \<in> preserves v"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   138
by (auto simp add: preserves_def)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   139
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   140
lemma funPair_apply [simp]: "(funPair f g) x = (f x, g x)"
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   141
by (simp add:  funPair_def)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   142
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
   143
lemma preserves_funPair: "preserves (funPair v w) = preserves v \<inter> preserves w"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   144
by (auto simp add: preserves_def stable_def constrains_def, blast)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   145
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
   146
(* (F \<in> preserves (funPair v w)) = (F \<in> preserves v \<inter> preserves w) *)
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   147
declare preserves_funPair [THEN eqset_imp_iff, iff]
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   148
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   149
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   150
lemma funPair_o_distrib: "(funPair f g) o h = funPair (f o h) (g o h)"
13798
4c1a53627500 conversion to new-style theories and tidying
paulson
parents: 13792
diff changeset
   151
by (simp add: funPair_def o_def)
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   152
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   153
lemma fst_o_funPair [simp]: "fst o (funPair f g) = f"
13798
4c1a53627500 conversion to new-style theories and tidying
paulson
parents: 13792
diff changeset
   154
by (simp add: funPair_def o_def)
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   155
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   156
lemma snd_o_funPair [simp]: "snd o (funPair f g) = g"
13798
4c1a53627500 conversion to new-style theories and tidying
paulson
parents: 13792
diff changeset
   157
by (simp add: funPair_def o_def)
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   158
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
   159
lemma subset_preserves_o: "preserves v \<subseteq> preserves (w o v)"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   160
by (force simp add: preserves_def stable_def constrains_def)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   161
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
   162
lemma preserves_subset_stable: "preserves v \<subseteq> stable {s. P (v s)}"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   163
apply (auto simp add: preserves_def stable_def constrains_def)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   164
apply (rename_tac s' s)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   165
apply (subgoal_tac "v s = v s'")
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   166
apply (force+)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   167
done
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   168
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
   169
lemma preserves_subset_increasing: "preserves v \<subseteq> increasing v"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   170
by (auto simp add: preserves_subset_stable [THEN subsetD] increasing_def)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   171
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
   172
lemma preserves_id_subset_stable: "preserves id \<subseteq> stable A"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   173
by (force simp add: preserves_def stable_def constrains_def)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   174
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   175
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   176
(** For use with def_UNION_ok_iff **)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   177
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   178
lemma safety_prop_preserves [iff]: "safety_prop (preserves v)"
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   179
by (auto intro: safety_prop_INTER1 simp add: preserves_def)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   180
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   181
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   182
(** Some lemmas used only in Client.ML **)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   183
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   184
lemma stable_localTo_stable2:
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
   185
     "[| F \<in> stable {s. P (v s) (w s)};
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
   186
         G \<in> preserves v;  G \<in> preserves w |]
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
   187
      ==> F\<squnion>G \<in> stable {s. P (v s) (w s)}"
13812
91713a1915ee converting HOL/UNITY to use unconditional fairness
paulson
parents: 13805
diff changeset
   188
apply simp
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
   189
apply (subgoal_tac "G \<in> preserves (funPair v w) ")
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
   190
 prefer 2 apply simp
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
   191
apply (drule_tac P1 = "split ?Q" in preserves_subset_stable [THEN subsetD], 
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
   192
       auto)
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   193
done
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   194
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   195
lemma Increasing_preserves_Stable:
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
   196
     "[| F \<in> stable {s. v s \<le> w s};  G \<in> preserves v; F\<squnion>G \<in> Increasing w |]
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
   197
      ==> F\<squnion>G \<in> Stable {s. v s \<le> w s}"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   198
apply (auto simp add: stable_def Stable_def Increasing_def Constrains_def all_conj_distrib)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   199
apply (blast intro: constrains_weaken)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   200
(*The G case remains*)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   201
apply (auto simp add: preserves_def stable_def constrains_def)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   202
(*We have a G-action, so delete assumptions about F-actions*)
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
   203
apply (erule_tac V = "\<forall>act \<in> Acts F. ?P act" in thin_rl)
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
   204
apply (erule_tac V = "\<forall>z. \<forall>act \<in> Acts F. ?P z act" in thin_rl)
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   205
apply (subgoal_tac "v x = v xa")
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
   206
 apply auto
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   207
apply (erule order_trans, blast)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   208
done
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   209
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   210
(** component_of **)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   211
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
   212
(*  component_of is stronger than \<le> *)
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
   213
lemma component_of_imp_component: "F component_of H ==> F \<le> H"
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   214
by (unfold component_def component_of_def, blast)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   215
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   216
13805
3786b2fd6808 some x-symbols
paulson
parents: 13798
diff changeset
   217
(* component_of satisfies many of the same properties as \<le> *)
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   218
lemma component_of_refl [simp]: "F component_of F"
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   219
apply (unfold component_of_def)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   220
apply (rule_tac x = SKIP in exI, auto)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   221
done
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   222
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   223
lemma component_of_SKIP [simp]: "SKIP component_of F"
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   224
by (unfold component_of_def, auto)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   225
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
   226
lemma component_of_trans:
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   227
     "[| F component_of G; G component_of H |] ==> F component_of H"
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   228
apply (unfold component_of_def)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   229
apply (blast intro: Join_assoc [symmetric])
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   230
done
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   231
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   232
lemmas strict_component_of_eq =
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   233
    strict_component_of_def [THEN meta_eq_to_obj_eq, standard]
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   234
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   235
(** localize **)
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   236
lemma localize_Init_eq [simp]: "Init (localize v F) = Init F"
13798
4c1a53627500 conversion to new-style theories and tidying
paulson
parents: 13792
diff changeset
   237
by (simp add: localize_def)
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   238
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   239
lemma localize_Acts_eq [simp]: "Acts (localize v F) = Acts F"
13798
4c1a53627500 conversion to new-style theories and tidying
paulson
parents: 13792
diff changeset
   240
by (simp add: localize_def)
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   241
13819
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
   242
lemma localize_AllowedActs_eq [simp]:
78f5885b76a9 minor revisions
paulson
parents: 13812
diff changeset
   243
   "AllowedActs (localize v F) = AllowedActs F \<inter> (\<Union>G \<in> preserves v. Acts G)"
13798
4c1a53627500 conversion to new-style theories and tidying
paulson
parents: 13792
diff changeset
   244
by (unfold localize_def, auto)
13792
d1811693899c converted more UNITY theories to new-style
paulson
parents: 12338
diff changeset
   245
5597
a12b25c53df1 composition theory
paulson
parents:
diff changeset
   246
end