isabelle: src/Doc/Corec/Corec.thy@256fc20716f2 (annotated)

62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	1	(* Title: Doc/Corec/Corec.thy
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	2	Author: Jasmin Blanchette, Inria, LORIA, MPII
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	3	Author: Aymeric Bouzy, Ecole polytechnique
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	4	Author: Andreas Lochbihler, ETH Zuerich
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	5	Author: Andrei Popescu, Middlesex University
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	6	Author: Dmitriy Traytel, ETH Zuerich
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	7
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	8	Tutorial for nonprimitively corecursive definitions.
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	9	*)
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	10
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	11	theory Corec
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	12	imports
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	13	GCD
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	14	"../Datatypes/Setup"
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	15	"~~/src/HOL/Library/BNF_Corec"
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	16	"~~/src/HOL/Library/FSet"
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	17	begin
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	18
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	19	section \<open>Introduction
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	20	\label{sec:introduction}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	21
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	22	text \<open>
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	23	Isabelle's (co)datatype package @{cite "isabelle-datatypes"} offers a convenient
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	24	syntax for introducing codatatypes. For example, the type of (infinite) streams
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	25	can be defined as follows (cf. @{file "~~/src/HOL/Library/Stream.thy"}):
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	26	\<close>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	27
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	28	codatatype 'a stream =
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	29	SCons (shd: 'a) (stl: "'a stream")
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	30
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	31	text \<open>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	32	\noindent
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	33	The (co)datatype package also provides two commands, \keyw{primcorec} and
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	34	\keyw{prim\-corec\-ur\-sive}, for defining primitively corecursive functions.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	35
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	36	This tutorial presents a definitional package for functions beyond
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	37	primitive corecursion. It describes @{command corec} and related commands:\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	38	@{command corecursive}, @{command friend_of_corec}, and @{command coinduction_upto}.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	39	It also covers the @{method corec_unique} proof method.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	40	The package is not part of @{theory Main}; it is located in
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	41	@{file "~~/src/HOL/Library/BNF_Corec.thy"}.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	42
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	43	The @{command corec} command generalizes \keyw{primcorec} in three main
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	44	respects. First, it allows multiple constructors around corecursive calls, where
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	45	\keyw{primcorec} expects exactly one. For example:
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	46	\<close>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	47
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	48	corec oneTwos :: "nat stream" where
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	49	"oneTwos = SCons 1 (SCons 2 oneTwos)"
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	50
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	51	text \<open>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	52	Second, @{command corec} allows other functions than constructors to appear in
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	53	the corecursive call context (i.e., around any self-calls on the right-hand side
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	54	of the equation). The requirement on these functions is that they must be
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	55	\emph{friendly}. Intuitively, a function is friendly if it needs to destruct
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	56	at most one constructor of input to produce one constructor of output.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	57	We can register functions as friendly using the @{command friend_of_corec}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	58	command, or by passing the @{text friend} option to @{command corec}. The
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	59	friendliness check relies on an internal syntactic check in combination with
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	60	a parametricity subgoal, which must be discharged manually (typically using
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	61	@{method transfer_prover}).
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	62
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	63	Third, @{command corec} allows self-calls that are not guarded by a constructor,
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	64	as long as these calls occur in a friendly context (a context consisting
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	65	exclusively of friendly functions) and can be shown to be terminating
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	66	(well founded). The mixture of recursive and corecursive calls in a single
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	67	function can be quite useful in practice.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	68
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	69	Internally, the package synthesizes corecursors that take into account the
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	70	possible call contexts. The corecursor is accompanined by a corresponding,
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	71	equally general coinduction principle. The corecursor and the coinduction
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	72	principle grow in expressiveness as we interact with it. In process algebra
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	73	terminology, corecursion and coinduction take place \emph{up to} friendly
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	74	contexts.
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	75
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	76	The package fully adheres to the LCF philosophy @{cite mgordon79}: The
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	77	characteristic theorems associated with the specified corecursive functions are
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	78	derived rather than introduced axiomatically.%
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	79	\footnote{However, most of the internal proof obligations are omitted if the
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	80	@{text quick_and_dirty} option is enabled.}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	81	The package is described in a pair of scientific papers
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	82	@{cite "blanchette-et-al-2015-fouco" and "blanchette-et-al-2016-fouco2"}. Some
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	83	of the text and examples below originate from there.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	84
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	85	This tutorial is organized as follows:
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	86
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	87	\begin{itemize}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	88	\setlength{\itemsep}{0pt}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	89
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	90	\item Section \ref{sec:introductory-examples}, ``Introductory Examples,''
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	91	describes how to specify corecursive functions and to reason about them.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	92
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	93	\item Section \ref{sec:command-syntax}, ``Command Syntax,'' describes the syntax
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	94	of the commands offered by the package.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	95
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	96	\item Section \ref{sec:generated-theorems}, ``Generated Theorems,'' lists the
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	97	theorems produced by the package's commands.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	98
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	99	\item Section \ref{sec:proof-method}, ``Proof Method,'' briefly describes the
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	100	@{method corec_unique} proof method.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	101
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	102	\item Section \ref{sec:known-bugs-and-limitations}, ``Known Bugs and
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	103	Limitations,'' concludes with known open issues.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	104	\end{itemize}
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	105
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	106	Although it is more powerful than \keyw{primcorec} in many respects,
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	107	@{command corec} suffers from a number of limitations. Most notably, it does
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	108	not support mutually corecursive codatatypes, and it is less efficient than
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	109	\keyw{primcorec} because it needs to dynamically synthesize corecursors and
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	110	corresponding coinduction principles to accommodate the friends.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	111
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	112	\newbox\boxA
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	113	\setbox\boxA=\hbox{\texttt{NOSPAM}}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	114
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	115	\newcommand\authoremaili{\texttt{jasmin.blan{\color{white}NOSPAM}\kern-\wd\boxA{}chette@\allowbreak
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	116	gmail.\allowbreak com}}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	117
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	118	Comments and bug reports concerning either the package or this tutorial should
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	119	be directed to the first author at \authoremaili{} or to the
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	120	\texttt{cl-isabelle-users} mailing list.
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	121	\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	122
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	123
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	124	section \<open>Introductory Examples
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	125	\label{sec:introductory-examples}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	126
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	127	text \<open>
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	128	The package is illustrated through concrete examples featuring different flavors
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	129	of corecursion. More examples can be found in the directory
63669 256fc20716f2 clarified antiquotations; wenzelm parents: 62816 diff changeset	130	@{dir "~~/src/HOL/Corec_Examples"}.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	131	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	132
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	133
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	134	subsection \<open>Simple Corecursion
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	135	\label{ssec:simple-corecursion}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	136
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	137	text \<open>
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	138	The case studies by Rutten~@{cite rutten05} and Hinze~@{cite hinze10} on stream
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	139	calculi serve as our starting point. The following definition of pointwise sum
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	140	can be performed with either \keyw{primcorec} or @{command corec}:
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	141	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	142
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	143	primcorec ssum :: "('a :: plus) stream \<Rightarrow> 'a stream \<Rightarrow> 'a stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	144	"ssum xs ys = SCons (shd xs + shd ys) (ssum (stl xs) (stl ys))"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	145
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	146	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	147	\noindent
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	148	Pointwise sum meets the friendliness criterion. We register it as a friend using
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	149	the @{command friend_of_corec} command. The command requires us to give a
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	150	specification of @{const ssum} where a constructor (@{const SCons}) occurs at
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	151	the outermost position on the right-hand side. Here, we can simply reuse the
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	152	\keyw{primcorec} specification above:
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	153	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	154
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	155	friend_of_corec ssum :: "('a :: plus) stream \<Rightarrow> 'a stream \<Rightarrow> 'a stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	156	"ssum xs ys = SCons (shd xs + shd ys) (ssum (stl xs) (stl ys))"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	157	apply (rule ssum.code)
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	158	by transfer_prover
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	159
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	160	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	161	\noindent
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	162	The command emits two subgoals. The first subgoal corresponds to the equation we
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	163	specified and is trivial to discharge. The second subgoal is a parametricity
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	164	property that captures the the requirement that the function may destruct at
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	165	most one constructor of input to produce one constructor of output. This subgoal
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	166	can usually be discharged using the @{text transfer_prover} proof method.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	167
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	168	After registering @{const ssum} as a friend, we can use it in the corecursive
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	169	call context, either inside or outside the constructor guard:
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	170	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	171
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	172	corec fibA :: "nat stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	173	"fibA = SCons 0 (ssum (SCons 1 fibA) fibA)"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	174
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	175	text \<open>\blankline\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	176
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	177	corec fibB :: "nat stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	178	"fibB = ssum (SCons 0 (SCons 1 fibB)) (SCons 0 fibB)"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	179
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	180	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	181	Using the @{text "friend"} option, we can simultaneously define a function and
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	182	register it as a friend:
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	183	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	184
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	185	corec (friend)
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	186	sprod :: "('a :: {plus,times}) stream \<Rightarrow> 'a stream \<Rightarrow> 'a stream"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	187	where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	188	"sprod xs ys =
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	189	SCons (shd xs * shd ys) (ssum (sprod xs (stl ys)) (sprod (stl xs) ys))"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	190
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	191	text \<open>\blankline\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	192
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	193	corec (friend) sexp :: "nat stream \<Rightarrow> nat stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	194	"sexp xs = SCons (2 ^^ shd xs) (sprod (stl xs) (sexp xs))"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	195
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	196	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	197	\noindent
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	198	The parametricity subgoal is given to @{text transfer_prover}.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	199
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	200	The @{const sprod} and @{const sexp} functions provide shuffle product and
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	201	exponentiation on streams. We can use them to define the stream of factorial
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	202	numbers in two different ways:
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	203	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	204
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	205	corec factA :: "nat stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	206	"factA = (let zs = SCons 1 factA in sprod zs zs)"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	207
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	208	text \<open>\blankline\<close>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	209
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	210	corec factB :: "nat stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	211	"factB = sexp (SCons 0 factB)"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	212
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	213	text \<open>
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	214	The arguments of friendly functions can be of complex types involving the
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	215	target codatatype. The following example defines the supremum of a finite set of
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	216	streams by primitive corecursion and registers it as friendly:
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	217	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	218
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	219	corec (friend) sfsup :: "nat stream fset \<Rightarrow> nat stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	220	"sfsup X = SCons (Sup (fset (fimage shd X))) (sfsup (fimage stl X))"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	221
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	222	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	223	\noindent
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	224	In general, the arguments may be any bounded natural functor (BNF)
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	225	@{cite "isabelle-datatypes"}, with the restriction that the target codatatype
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	226	(@{typ "nat stream"}) may occur only in a \emph{live} position of the BNF. For
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	227	this reason, the following function, on unbounded sets, cannot be registered as
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	228	a friend:
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	229	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	230
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	231	primcorec ssup :: "nat stream set \<Rightarrow> nat stream" where
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	232	"ssup X = SCons (Sup (image shd X)) (ssup (image stl X))"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	233
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	234
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	235	subsection \<open>Nested Corecursion
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	236	\label{ssec:nested-corecursion}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	237
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	238	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	239	The package generally supports arbitrary codatatypes with multiple constructors
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	240	and nesting through other type constructors (BNFs). Consider the following type
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	241	of finitely branching Rose trees of potentially infinite depth:
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	242	\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	243
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	244	codatatype 'a tree =
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	245	Node (lab: 'a) (sub: "'a tree list")
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	246
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	247	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	248	We first define the pointwise sum of two trees analogously to @{const ssum}:
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	249	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	250
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	251	corec (friend) tsum :: "('a :: plus) tree \<Rightarrow> 'a tree \<Rightarrow> 'a tree" where
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	252	"tsum t u =
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	253	Node (lab t + lab u) (map (\<lambda>(t', u'). tsum t' u') (zip (sub t) (sub u)))"
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	254
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	255	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	256	\noindent
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	257	Here, @{const map} is the standard map function on lists, and @{const zip}
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	258	converts two parallel lists into a list of pairs. The @{const tsum} function is
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	259	primitively corecursive. Instead of @{text "corec (friend)"}, we could also have
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	260	used \keyw{primcorec} and @{command friend_of_corec}, as we did for
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	261	@{const ssum}.
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	262
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	263	Once @{const tsum} is registered as friendly, we can use it in the corecursive
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	264	call context of another function:
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	265	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	266
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	267	corec (friend) ttimes :: "('a :: {plus,times}) tree \<Rightarrow> 'a tree \<Rightarrow> 'a tree" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	268	"ttimes t u = Node (lab t * lab u)
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	269	(map (\<lambda>(t', u'). tsum (ttimes t u') (ttimes t' u)) (zip (sub t) (sub u)))"
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	270
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	271	text \<open>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	272	All the syntactic convenience provided by \keyw{primcorec} is also supported by
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	273	@{command corec}, @{command corecursive}, and @{command friend_of_corec}. In
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	274	particular, nesting through the function type can be expressed using
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	275	@{text \<lambda>}-abstractions and function applications rather than through composition
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	276	(@{term "op \<circ>"}, the map function for @{text \<Rightarrow>}). For example:
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	277	\<close>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	278
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	279	codatatype 'a language =
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	280	Lang (\<oo>: bool) (\<dd>: "'a \<Rightarrow> 'a language")
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	281
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	282	text \<open>\blankline\<close>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	283
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	284	corec (friend) Plus :: "'a language \<Rightarrow> 'a language \<Rightarrow> 'a language" where
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	285	"Plus r s = Lang (\<oo> r \<or> \<oo> s) (\<lambda>a. Plus (\<dd> r a) (\<dd> s a))"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	286
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	287	text \<open>\blankline\<close>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	288
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	289	corec (friend) Times :: "'a language \<Rightarrow> 'a language \<Rightarrow> 'a language" where
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	290	"Times r s = Lang (\<oo> r \<and> \<oo> s)
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	291	(\<lambda>a. if \<oo> r then Plus (Times (\<dd> r a) s) (\<dd> s a) else Times (\<dd> r a) s)"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	292
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	293	text \<open>\blankline\<close>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	294
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	295	corec (friend) Star :: "'a language \<Rightarrow> 'a language" where
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	296	"Star r = Lang True (\<lambda>a. Times (\<dd> r a) (Star r))"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	297
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	298	text \<open>\blankline\<close>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	299
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	300	corec (friend) Inter :: "'a language \<Rightarrow> 'a language \<Rightarrow> 'a language" where
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	301	"Inter r s = Lang (\<oo> r \<and> \<oo> s) (\<lambda>a. Inter (\<dd> r a) (\<dd> s a))"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	302
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	303	text \<open>\blankline\<close>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	304
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	305	corec (friend) PLUS :: "'a language list \<Rightarrow> 'a language" where
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	306	"PLUS xs = Lang (\<exists>x \<in> set xs. \<oo> x) (\<lambda>a. PLUS (map (\<lambda>r. \<dd> r a) xs))"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	307
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	308
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	309	subsection \<open>Mixed Recursion--Corecursion
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	310	\label{ssec:mixed-recursion-corecursion}\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	311
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	312	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	313	It is often convenient to let a corecursive function perform some finite
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	314	computation before producing a constructor. With mixed recursion--corecursion, a
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	315	finite number of unguarded recursive calls perform this calculation before
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	316	reaching a guarded corecursive call. Intuitively, the unguarded recursive call
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	317	can be unfolded to arbitrary finite depth, ultimately yielding a purely
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	318	corecursive definition. An example is the @{term primes} function from Di
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	319	Gianantonio and Miculan @{cite "di-gianantonio-miculan-2003"}:
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	320	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	321
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	322	corecursive primes :: "nat \<Rightarrow> nat \<Rightarrow> nat stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	323	"primes m n =
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	324	(if (m = 0 \<and> n > 1) \<or> coprime m n then
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	325	SCons n (primes (m * n) (n + 1))
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	326	else
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	327	primes m (n + 1))"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	328	apply (relation "measure (\<lambda>(m, n).
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	329	if n = 0 then 1 else if coprime m n then 0 else m - n mod m)")
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	330	apply (auto simp: mod_Suc intro: Suc_lessI)
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	331	apply (metis One_nat_def coprime_Suc_nat gcd.commute gcd_red_nat)
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	332	by (metis diff_less_mono2 lessI mod_less_divisor)
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	333
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	334	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	335	\noindent
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	336	The @{command corecursive} command is a variant of @{command corec} that allows
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	337	us to specify a termination argument for any unguarded self-call.
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	338
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	339	When called with @{text "m = 1"} and @{text "n = 2"}, the @{const primes}
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	340	function computes the stream of prime numbers. The unguarded call in the
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	341	@{text else} branch increments @{term n} until it is coprime to the first
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	342	argument @{term m} (i.e., the greatest common divisor of @{term m} and
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	343	@{term n} is @{text 1}).
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	344
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	345	For any positive integers @{term m} and @{term n}, the numbers @{term m} and
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	346	@{text "m * n + 1"} are coprime, yielding an upper bound on the number of times
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	347	@{term n} is increased. Hence, the function will take the @{text else} branch at
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	348	most finitely often before taking the then branch and producing one constructor.
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	349	There is a slight complication when @{text "m = 0 \<and> n > 1"}: Without the first
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	350	disjunct in the @{text "if"} condition, the function could stall. (This corner
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	351	case was overlooked in the original example
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	352	@{cite "di-gianantonio-miculan-2003"}.)
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	353
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	354	In the following examples, termination is discharged automatically by
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	355	@{command corec} by invoking @{method lexicographic_order}:
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	356	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	357
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	358	corec catalan :: "nat \<Rightarrow> nat stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	359	"catalan n =
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	360	(if n > 0 then ssum (catalan (n - 1)) (SCons 0 (catalan (n + 1)))
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	361	else SCons 1 (catalan 1))"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	362
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	363	text \<open>\blankline\<close>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	364
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	365	corec collatz :: "nat \<Rightarrow> nat stream" where
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	366	"collatz n = (if even n \<and> n > 0 then collatz (n div 2)
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	367	else SCons n (collatz (3 * n + 1)))"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	368
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	369	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	370	A more elaborate case study, revolving around the filter function on lazy lists,
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	371	is presented in @{file "~~/src/HOL/Corec_Examples/LFilter.thy"}.
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	372	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	373
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	374
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	375	subsection \<open>Self-Friendship
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	376	\label{ssec:self-friendship}\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	377
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	378	text \<open>
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	379	The package allows us to simultaneously define a function and use it as its own
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	380	friend, as in the following definition of a ``skewed product'':
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	381	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	382
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	383	corec (friend)
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	384	sskew :: "('a :: {plus,times}) stream \<Rightarrow> 'a stream \<Rightarrow> 'a stream"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	385	where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	386	"sskew xs ys =
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	387	SCons (shd xs * shd ys) (sskew (sskew xs (stl ys)) (sskew (stl xs) ys))"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	388
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	389	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	390	\noindent
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	391	Such definitions, with nested self-calls on the right-hand side, cannot be
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	392	separated into a @{command corec} part and a @{command friend_of_corec} part.
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	393	\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	394
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	395
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	396	subsection \<open>Coinduction
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	397	\label{ssec:coinduction}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	398
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	399	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	400	Once a corecursive specification has been accepted, we normally want to reason
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	401	about it. The @{text codatatype} command generates a structural coinduction
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	402	principle that matches primitively corecursive functions. For nonprimitive
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	403	specifications, our package provides the more advanced proof principle of
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	404	\emph{coinduction up to congruence}---or simply \emph{coinduction up-to}.
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	405
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	406	The structural coinduction principle for @{typ "'a stream"}, called
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	407	@{thm [source] stream.coinduct}, is as follows:
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	408	%
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	409	\begin{indentblock}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	410	@{thm stream.coinduct[no_vars]}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	411	\end{indentblock}
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	412	%
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	413	Coinduction allows us to prove an equality @{text "l = r"} on streams by
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	414	providing a relation @{text R} that relates @{text l} and @{text r} (first
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	415	premise) and that constitutes a bisimulation (second premise). Streams that are
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	416	related by a bisimulation cannot be distinguished by taking observations (via
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	417	the selectors @{const shd} and @{const stl}); hence they must be equal.
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	418
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	419	The coinduction up-to principle after registering @{const sskew} as friendly is
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	420	available as @{thm [source] sskew.coinduct} and as one of the components of
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	421	the theorem collection @{thm [source] stream.coinduct_upto}:
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	422	%
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	423	\begin{indentblock}
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	424	@{thm sskew.coinduct[no_vars]}
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	425	\end{indentblock}
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	426	%
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	427	This rule is almost identical to structural coinduction, except that the
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	428	corecursive application of @{term R} is generalized to
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	429	@{term "stream.v5.congclp R"}.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	430
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	431	The @{const stream.v5.congclp} predicate is equipped with the following
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	432	introduction rules:
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	433
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	434	\begin{indentblock}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	435	\begin{description}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	436
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	437	\item[@{thm [source] sskew.cong_base}\rm:] ~ \\
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	438	@{thm sskew.cong_base[no_vars]}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	439
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	440	\item[@{thm [source] sskew.cong_refl}\rm:] ~ \\
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	441	@{thm sskew.cong_refl[no_vars]}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	442
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	443	\item[@{thm [source] sskew.cong_sym}\rm:] ~ \\
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	444	@{thm sskew.cong_sym[no_vars]}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	445
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	446	\item[@{thm [source] sskew.cong_trans}\rm:] ~ \\
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	447	@{thm sskew.cong_trans[no_vars]}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	448
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	449	\item[@{thm [source] sskew.cong_SCons}\rm:] ~ \\
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	450	@{thm sskew.cong_SCons[no_vars]}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	451
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	452	\item[@{thm [source] sskew.cong_ssum}\rm:] ~ \\
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	453	@{thm sskew.cong_ssum[no_vars]}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	454
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	455	\item[@{thm [source] sskew.cong_sprod}\rm:] ~ \\
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	456	@{thm sskew.cong_sprod[no_vars]}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	457
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	458	\item[@{thm [source] sskew.cong_sskew}\rm:] ~ \\
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	459	@{thm sskew.cong_sskew[no_vars]}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	460
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	461	\end{description}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	462	\end{indentblock}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	463	%
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	464	The introduction rules are also available as
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	465	@{thm [source] sskew.cong_intros}.
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	466
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	467	Notice that there is no introduction rule corresponding to @{const sexp},
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	468	because @{const sexp} has a more restrictive result type than @{const sskew}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	469	(@{typ "nat stream"} vs. @{typ "('a :: {plus,times}) stream"}.
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	470
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	471	The version numbers, here @{text v5}, distinguish the different congruence
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	472	closures generated for a given codatatype as more friends are registered. As
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	473	much as possible, it is recommended to avoid referring to them in proof
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	474	documents.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	475
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	476	Since the package maintains a set of incomparable corecursors, there is also a
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	477	set of associated coinduction principles and a set of sets of introduction
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	478	rules. A technically subtle point is to make Isabelle choose the right rules in
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	479	most situations. For this purpose, the package maintains the collection
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	480	@{thm [source] stream.coinduct_upto} of coinduction principles ordered by
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	481	increasing generality, which works well with Isabelle's philosophy of applying
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	482	the first rule that matches. For example, after registering @{const ssum} as a
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	483	friend, proving the equality @{term "l = r"} on @{typ "nat stream"} might
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	484	require coinduction principle for @{term "nat stream"}, which is up to
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	485	@{const ssum}.
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	486
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	487	The collection @{thm [source] stream.coinduct_upto} is guaranteed to be complete
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	488	and up to date with respect to the type instances of definitions considered so
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	489	far, but occasionally it may be necessary to take the union of two incomparable
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	490	coinduction principles. This can be done using the @{command coinduction_upto}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	491	command. Consider the following definitions:
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	492	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	493
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	494	codatatype ('a, 'b) tllist =
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	495	TNil (terminal: 'b)
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	496	\| TCons (thd: 'a) (ttl: "('a, 'b) tllist")
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	497
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	498	text \<open>\blankline\<close>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	499
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	500	corec (friend) square_elems :: "(nat, 'b) tllist \<Rightarrow> (nat, 'b) tllist" where
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	501	"square_elems xs =
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	502	(case xs of
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	503	TNil z \<Rightarrow> TNil z
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	504	\| TCons y ys \<Rightarrow> TCons (y ^^ 2) (square_elems ys))"
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	505
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	506	text \<open>\blankline\<close>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	507
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	508	corec (friend) square_terminal :: "('a, int) tllist \<Rightarrow> ('a, int) tllist" where
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	509	"square_terminal xs =
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	510	(case xs of
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	511	TNil z \<Rightarrow> TNil (z ^^ 2)
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	512	\| TCons y ys \<Rightarrow> TCons y (square_terminal ys))"
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	513
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	514	text \<open>
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	515	At this point, @{thm [source] tllist.coinduct_upto} contains three variants of the
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	516	coinduction principles:
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	517	%
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	518	\begin{itemize}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	519	\item @{typ "('a, int) tllist"} up to @{const TNil}, @{const TCons}, and
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	520	@{const square_terminal};
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	521	\item @{typ "(nat, 'b) tllist"} up to @{const TNil}, @{const TCons}, and
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	522	@{const square_elems};
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	523	\item @{typ "('a, 'b) tllist"} up to @{const TNil} and @{const TCons}.
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	524	\end{itemize}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	525	%
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	526	The following variant is missing:
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	527	%
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	528	\begin{itemize}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	529	\item @{typ "(nat, int) tllist"} up to @{const TNil}, @{const TCons},
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	530	@{const square_elems}, and @{const square_terminal}.
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	531	\end{itemize}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	532	%
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	533	To generate it without having to define a new function with @{command corec},
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	534	we can use the following command:
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	535	\<close>
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	536
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	537	coinduction_upto nat_int_tllist: "(nat, int) tllist"
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	538
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	539	text \<open>
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	540	\noindent
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	541	This produces the theorems
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	542	%
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	543	\begin{indentblock}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	544	@{thm [source] nat_int_tllist.coinduct_upto} \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	545	@{thm [source] nat_int_tllist.cong_intros}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	546	\end{indentblock}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	547	%
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	548	(as well as the individually named introduction rules) and extends
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	549	the dynamic collections @{thm [source] tllist.coinduct_upto} and
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	550	@{thm [source] tllist.cong_intros}.
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	551	\<close>
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	552
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	553
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	554	subsection \<open>Uniqueness Reasoning
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	555	\label{ssec:uniqueness-reasoning}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	556
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	557	text \<open>
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	558	It is sometimes possible to achieve better automation by using a more
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	559	specialized proof method than coinduction. Uniqueness principles maintain a good
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	560	balance between expressiveness and automation. They exploit the property that a
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	561	corecursive definition is the unique solution to a fixpoint equation.
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	562
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	563	The @{command corec}, @{command corecursive}, and @{command friend_of_corec}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	564	commands generate a property @{text f.unique} about the function of interest
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	565	@{term f} that can be used to prove that any function that satisfies
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	566	@{term f}'s corecursive specification must be equal to~@{term f}. For example:
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	567	\[@{thm ssum.unique[no_vars]}\]
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	568
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	569	The uniqueness principles are not restricted to functions defined using
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	570	@{command corec} or @{command corecursive} or registered with
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	571	@{command friend_of_corec}. Suppose @{term "t x"} is an arbitrary term
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	572	depending on @{term x}. The @{method corec_unique} proof method, provided by our
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	573	tool, transforms subgoals of the form
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	574	\[@{term "(\<forall>x. f x = H x f) \<Longrightarrow> f x = t x"}\]
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	575	into
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	576	\[@{term "\<forall>x. t x = H x t"}\]
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	577	The higher-order functional @{term H} must be such that @{term "f x = H x f"}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	578	would be a valid @{command corec} specification, but without nested self-calls
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	579	or unguarded (recursive) calls. Thus, @{method corec_unique} proves uniqueness
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	580	of @{term t} with respect to the given corecursive equation regardless of how
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	581	@{term t} was defined. For example:
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	582	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	583
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	584	lemma
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	585	fixes f :: "nat stream \<Rightarrow> nat stream \<Rightarrow> nat stream"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	586	assumes "\<forall>xs ys. f xs ys =
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	587	SCons (shd ys * shd xs) (ssum (f xs (stl ys)) (f (stl xs) ys))"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	588	shows "f = sprod"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	589	using assms
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	590	proof corec_unique
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	591	show "sprod = (\<lambda>xs ys :: nat stream.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	592	SCons (shd ys * shd xs) (ssum (sprod xs (stl ys)) (sprod (stl xs) ys)))"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	593	apply (rule ext)+
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	594	apply (subst sprod.code)
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	595	by simp
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	596	qed
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	597
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	598	text \<open>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	599	The proof method relies on some theorems generated by the package. If no function
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	600	over a given codatatype has been defined using @{command corec} or
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	601	@{command corecursive} or registered as friendly using @{command friend_of_corec},
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	602	the theorems will not be available yet. In such cases, the theorems can be
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	603	explicitly generated using the command
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	604	\<close>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	605
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	606	coinduction_upto stream: "'a stream"
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	607
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	608
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	609	section \<open>Command Syntax
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	610	\label{sec:command-syntax}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	611
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	612	subsection \<open>\keyw{corec} and \keyw{corecursive}
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	613	\label{ssec:corec-and-corecursive-syntax}\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	614
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	615	text \<open>
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	616	\begin{matharray}{rcl}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	617	@{command_def "corec"} & : & @{text "local_theory \<rightarrow> local_theory"} \\
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	618	@{command_def "corecursive"} & : & @{text "local_theory \<rightarrow> proof(prove)"}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	619	\end{matharray}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	620
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	621	@{rail \<open>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	622	(@@{command corec} \| @@{command corecursive}) target? \<newline>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	623	@{syntax cr_options}? fix @'where' prop
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	624	;
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	625	@{syntax_def cr_options}: '(' ((@{syntax plugins} \| 'friend' \| 'transfer') + ',') ')'
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	626	\<close>}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	627
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	628	\medskip
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	629
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	630	\noindent
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	631	The @{command corec} and @{command corecursive} commands introduce a corecursive
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	632	function over a codatatype.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	633
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	634	The syntactic entity \synt{target} can be used to specify a local context,
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	635	\synt{fix} denotes name with an optional type signature, and \synt{prop} denotes
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	636	a HOL proposition @{cite "isabelle-isar-ref"}.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	637
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	638	The optional target is optionally followed by a combination of the following
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	639	options:
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	640
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	641	\begin{itemize}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	642	\setlength{\itemsep}{0pt}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	643
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	644	\item
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	645	The @{text plugins} option indicates which plugins should be enabled
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	646	(@{text only}) or disabled (@{text del}). By default, all plugins are enabled.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	647
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	648	\item
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	649	The @{text friend} option indicates that the defined function should be
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	650	registered as a friend. This gives rise to additional proof obligations.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	651
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	652	\item
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	653	The @{text transfer} option indicates that an unconditional transfer rule
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	654	should be generated and proved @{text "by transfer_prover"}. The
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	655	@{text "[transfer_rule]"} attribute is set on the generated theorem.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	656	\end{itemize}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	657
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	658	The @{command corec} command is an abbreviation for @{command corecursive}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	659	with appropriate applications of @{method transfer_prover} and
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	660	@{method lexicographic_order} to discharge any emerging proof obligations.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	661	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	662
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	663
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	664	subsection \<open>\keyw{friend_of_corec}
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	665	\label{ssec:friend-of-corec-syntax}\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	666
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	667	text \<open>
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	668	\begin{matharray}{rcl}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	669	@{command_def "friend_of_corec"} & : & @{text "local_theory \<rightarrow> proof(prove)"}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	670	\end{matharray}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	671
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	672	@{rail \<open>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	673	@@{command friend_of_corec} target? \<newline>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	674	@{syntax foc_options}? fix @'where' prop
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	675	;
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	676	@{syntax_def foc_options}: '(' ((@{syntax plugins} \| 'transfer') + ',') ')'
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	677	\<close>}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	678
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	679	\medskip
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	680
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	681	\noindent
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	682	The @{command friend_of_corec} command registers a corecursive function as
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	683	friendly.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	684
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	685	The syntactic entity \synt{target} can be used to specify a local context,
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	686	\synt{fix} denotes name with an optional type signature, and \synt{prop} denotes
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	687	a HOL proposition @{cite "isabelle-isar-ref"}.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	688
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	689	The optional target is optionally followed by a combination of the following
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	690	options:
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	691
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	692	\begin{itemize}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	693	\setlength{\itemsep}{0pt}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	694
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	695	\item
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	696	The @{text plugins} option indicates which plugins should be enabled
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	697	(@{text only}) or disabled (@{text del}). By default, all plugins are enabled.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	698
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	699	\item
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	700	The @{text transfer} option indicates that an unconditional transfer rule
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	701	should be generated and proved @{text "by transfer_prover"}. The
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	702	@{text "[transfer_rule]"} attribute is set on the generated theorem.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	703	\end{itemize}
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	704	\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	705
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	706
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	707	subsection \<open>\keyw{coinduction_upto}
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	708	\label{ssec:coinduction-upto-syntax}\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	709
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	710	text \<open>
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	711	\begin{matharray}{rcl}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	712	@{command_def "coinduction_upto"} & : & @{text "local_theory \<rightarrow> local_theory"}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	713	\end{matharray}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	714
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	715	@{rail \<open>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	716	@@{command coinduction_upto} target? name ':' type
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	717	\<close>}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	718
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	719	\medskip
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	720
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	721	\noindent
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	722	The @{command coinduction_upto} generates a coinduction up-to rule for a given
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	723	instance of a (possibly polymorphic) codatatype and notes the result with the
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	724	specified prefix.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	725
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	726	The syntactic entity \synt{name} denotes an identifier and \synt{type} denotes a
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	727	type @{cite "isabelle-isar-ref"}.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	728	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	729
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	730
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	731	section \<open>Generated Theorems
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	732	\label{sec:generated-theorems}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	733
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	734	text \<open>
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	735	The full list of named theorems generated by the package can be obtained by
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	736	issuing the command \keyw{print_theorems} immediately after the datatype definition.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	737	This list excludes low-level theorems that reveal internal constructions. To
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	738	make these accessible, add the line
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	739	\<close>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	740
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	741	declare [[bnf_internals]]
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	742	(<)
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	743	declare [[bnf_internals = false]]
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	744	(>)
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	745
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	746	text \<open>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	747	In addition to the theorem listed below for each command provided by the
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	748	package, all commands update the dynamic theorem collections
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	749
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	750	\begin{indentblock}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	751	\begin{description}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	752
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	753	\item[@{text "t."}\hthm{coinduct_upto}]
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	754
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	755	\item[@{text "t."}\hthm{cong_intros}]
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	756
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	757	\end{description}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	758	\end{indentblock}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	759	%
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	760	for the corresponding codatatype @{text t} so that they always contain the most
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	761	powerful coinduction up-to principles derived so far.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	762	\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	763
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	764
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	765	subsection \<open>\keyw{corec} and \keyw{corecursive}
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	766	\label{ssec:corec-and-corecursive-theorems}\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	767
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	768	text \<open>
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	769	For a function @{term f} over codatatype @{text t}, the @{command corec} and
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	770	@{command corecursive} commands generate the following properties (listed for
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	771	@{const sexp}, cf. Section~\ref{ssec:simple-corecursion}):
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	772
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	773	\begin{indentblock}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	774	\begin{description}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	775
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	776	\item[@{text "f."}\hthm{code} @{text "[code]"}\rm:] ~ \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	777	@{thm sexp.code[no_vars]} \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	778	The @{text "[code]"} attribute is set by the @{text code} plugin
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	779	@{cite "isabelle-datatypes"}.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	780
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	781	\item[@{text "f."}\hthm{coinduct} @{text "[consumes 1, case_names t, case_conclusion D\<^sub>1 \<dots>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	782	D\<^sub>n]"}\rm:] ~ \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	783	@{thm sexp.coinduct[no_vars]}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	784
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	785	\item[@{text "f."}\hthm{cong_intros}\rm:] ~ \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	786	@{thm sexp.cong_intros[no_vars]}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	787
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	788	\item[@{text "f."}\hthm{unique}\rm:] ~ \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	789	@{thm sexp.unique[no_vars]} \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	790	This property is not generated for mixed recursive--corecursive definitions.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	791
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	792	\item[@{text "f."}\hthm{inner_induct}\rm:] ~ \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	793	This property is only generated for mixed recursive--corecursive definitions.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	794	For @{const primes} (Section~\ref{ssec:mixed-recursion-corecursion}, it reads as
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	795	follows: \\[\jot]
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	796	@{thm primes.inner_induct[no_vars]}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	797
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	798	\end{description}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	799	\end{indentblock}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	800
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	801	\noindent
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	802	The individual rules making up @{text "f.cong_intros"} are available as
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	803
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	804	\begin{indentblock}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	805	\begin{description}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	806
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	807	\item[@{text "f."}\hthm{cong_base}]
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	808
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	809	\item[@{text "f."}\hthm{cong_refl}]
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	810
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	811	\item[@{text "f."}\hthm{cong_sym}]
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	812
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	813	\item[@{text "f."}\hthm{cong_trans}]
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	814
62816 19387866eace tuned LaTeX blanchet parents: 62756 diff changeset	815	\item[@{text "f."}\hthm{cong_C}@{text "\<^sub>1"}, \ldots, @{text "f."}\hthm{cong_C}@{text "\<^sub>n"}] ~ \\
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	816	where @{text "C\<^sub>1"}, @{text "\<dots>"}, @{text "C\<^sub>n"} are @{text t}'s
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	817	constructors
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	818
62816 19387866eace tuned LaTeX blanchet parents: 62756 diff changeset	819	\item[@{text "f."}\hthm{cong_f}@{text "\<^sub>1"}, \ldots, @{text "f."}\hthm{cong_f}@{text "\<^sub>m"}] ~ \\
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	820	where @{text "f\<^sub>1"}, @{text "\<dots>"}, @{text "f\<^sub>m"} are the available
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	821	friends for @{text t}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	822
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	823	\end{description}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	824	\end{indentblock}
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	825	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	826
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	827
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	828	subsection \<open>\keyw{friend_of_corec}
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	829	\label{ssec:friend-of-corec-theorems}\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	830
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	831	text \<open>
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	832	The @{command friend_of_corec} command generates the same theorems as
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	833	@{command corec} and @{command corecursive}, except that it adds an optional
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	834	@{text "friend."} component to the names to prevent potential clashes (e.g.,
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	835	@{text "f.friend.code"}).
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	836	\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	837
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	838
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	839	subsection \<open>\keyw{coinduction_upto}
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	840	\label{ssec:coinduction-upto-theorems}\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	841
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	842	text \<open>
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	843	The @{command coinduction_upto} command generates the following properties
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	844	(listed for @{text nat_int_tllist}):
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	845
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	846	\begin{indentblock}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	847	\begin{description}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	848
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	849	\item[\begin{tabular}{@ {}l@ {}}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	850	@{text "t."}\hthm{coinduct_upto} @{text "[consumes 1, case_names t,"} \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	851	\phantom{@{text "t."}\hthm{coinduct_upto} @{text "["}}@{text "case_conclusion D\<^sub>1 \<dots>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	852	D\<^sub>n]"}\rm:
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	853	\end{tabular}] ~ \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	854	@{thm nat_int_tllist.coinduct_upto[no_vars]}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	855
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	856	\item[@{text "t."}\hthm{cong_intros}\rm:] ~ \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	857	@{thm nat_int_tllist.cong_intros[no_vars]}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	858
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	859	\end{description}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	860	\end{indentblock}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	861
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	862	\noindent
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	863	The individual rules making up @{text "t.cong_intros"} are available
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	864	separately as @{text "t.cong_base"}, @{text "t.cong_refl"}, etc.\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	865	(Section~\ref{ssec:corec-and-corecursive-theorems}).
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	866	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	867
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	868
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	869	section \<open>Proof Method
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	870	\label{sec:proof-method}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	871
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	872	subsection \<open>\textit{corec_unique}
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	873	\label{ssec:corec-unique}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	874
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	875	text \<open>
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	876	The @{method corec_unique} proof method can be used to prove the uniqueness of
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	877	a corecursive specification. See Section~\ref{ssec:uniqueness-reasoning} for
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	878	details.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	879	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	880
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	881
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	882	section \<open>Known Bugs and Limitations
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	883	\label{sec:known-bugs-and-limitations}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	884
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	885	text \<open>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	886	This section lists the known bugs and limitations of the corecursion package at
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	887	the time of this writing.
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	888
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	889	\begin{enumerate}
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	890	\setlength{\itemsep}{0pt}
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	891
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	892	\item
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	893	\emph{Mutually corecursive codatatypes are not supported.}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	894
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	895	\item
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	896	\emph{The signature of friend functions may not depend on type variables beyond
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	897	those that appear in the codatatype.}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	898
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	899	\item
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	900	\emph{The internal tactics may fail on legal inputs.}
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	901
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	902	\item
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	903	\emph{The @{text transfer} option is not implemented yet.}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	904
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	905	\item
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	906	\emph{The constructor and destructor views offered by {\upshape\keyw{primcorec}}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	907	are not supported by @{command corec} and @{command corecursive}.}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	908
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	909	\item
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	910	\emph{There is no mechanism for registering custom plugins.}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	911
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	912	\item
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	913	\emph{The package does not interact well with locales.}
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	914
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	915	\end{enumerate}
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	916	\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	917
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	918	end

author	wenzelm
	Thu, 11 Aug 2016 18:26:44 +0200
changeset 63669	256fc20716f2
parent 62816	19387866eace
child 63680	6e1e8b5abbfa
permissions	-rw-r--r--