isabelle: src/HOL/UNITY/WFair.thy@406eb27fe53c (annotated)

4776 1f9362e769c1 New UNITY theory paulson parents: diff changeset	1	(* Title: HOL/UNITY/WFair
1f9362e769c1 New UNITY theory paulson parents: diff changeset	2	ID: $Id$
1f9362e769c1 New UNITY theory paulson parents: diff changeset	3	Author: Lawrence C Paulson, Cambridge University Computer Laboratory
1f9362e769c1 New UNITY theory paulson parents: diff changeset	4	Copyright 1998 University of Cambridge
1f9362e769c1 New UNITY theory paulson parents: diff changeset	5
1f9362e769c1 New UNITY theory paulson parents: diff changeset	6	Weak Fairness versions of transient, ensures, leadsTo.
1f9362e769c1 New UNITY theory paulson parents: diff changeset	7
1f9362e769c1 New UNITY theory paulson parents: diff changeset	8	From Misra, "A Logic for Concurrent Programming", 1994
1f9362e769c1 New UNITY theory paulson parents: diff changeset	9	*)
1f9362e769c1 New UNITY theory paulson parents: diff changeset	10
5277 e4297d03e5d2 A higher-level treatment of LeadsTo, minimizing use of "reachable" paulson parents: 5253 diff changeset	11	WFair = UNITY +
4776 1f9362e769c1 New UNITY theory paulson parents: diff changeset	12
1f9362e769c1 New UNITY theory paulson parents: diff changeset	13	constdefs
1f9362e769c1 New UNITY theory paulson parents: diff changeset	14
5155 21177b8a4d7f added comments paulson parents: 4776 diff changeset	15	(*This definition specifies weak fairness. The rest of the theory
21177b8a4d7f added comments paulson parents: 4776 diff changeset	16	is generic to all forms of fairness.*)
5648 fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	17	transient :: "'a set => 'a program set"
5931 325300576da7 Finally removing "Compl" from HOL paulson parents: 5721 diff changeset	18	"transient A == {F. EX act: Acts F. A <= Domain act & act^^A <= -A}"
4776 1f9362e769c1 New UNITY theory paulson parents: diff changeset	19
5648 fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	20	ensures :: "['a set, 'a set] => 'a program set"
fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	21	"ensures A B == constrains (A-B) (A Un B) Int transient (A-B)"
fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	22
fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	23
fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	24	consts leadsto :: "'a program => ('a set * 'a set) set"
4776 1f9362e769c1 New UNITY theory paulson parents: diff changeset	25
5648 fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	26	inductive "leadsto F"
4776 1f9362e769c1 New UNITY theory paulson parents: diff changeset	27	intrs
1f9362e769c1 New UNITY theory paulson parents: diff changeset	28
5648 fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	29	Basis "F : ensures A B ==> (A,B) : leadsto F"
4776 1f9362e769c1 New UNITY theory paulson parents: diff changeset	30
5648 fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	31	Trans "[\| (A,B) : leadsto F; (B,C) : leadsto F \|]
fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	32	==> (A,C) : leadsto F"
4776 1f9362e769c1 New UNITY theory paulson parents: diff changeset	33
5155 21177b8a4d7f added comments paulson parents: 4776 diff changeset	34	(*Encoding using powerset of the desired axiom
5648 fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	35	(!!A. A : S ==> (A,B) : leadsto F) ==> (Union S, B) : leadsto F
5155 21177b8a4d7f added comments paulson parents: 4776 diff changeset	36	*)
5648 fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	37	Union "(UN A:S. {(A,B)}) : Pow (leadsto F) ==> (Union S, B) : leadsto F"
4776 1f9362e769c1 New UNITY theory paulson parents: diff changeset	38
5721 458a67fd5461 Changed interface of inductive. berghofe parents: 5648 diff changeset	39	monos Pow_mono
4776 1f9362e769c1 New UNITY theory paulson parents: diff changeset	40
5155 21177b8a4d7f added comments paulson parents: 4776 diff changeset	41
5648 fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	42
fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	43	constdefs (visible version of the relation)
fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	44	leadsTo :: "['a set, 'a set] => 'a program set"
fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	45	"leadsTo A B == {F. (A,B) : leadsto F}"
fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	46
fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	47	(wlt F B is the largest set that leads to B)
fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	48	wlt :: "['a program, 'a set] => 'a set"
fe887910e32e specifications as sets of programs paulson parents: 5340 diff changeset	49	"wlt F B == Union {A. F: leadsTo A B}"
4776 1f9362e769c1 New UNITY theory paulson parents: diff changeset	50
1f9362e769c1 New UNITY theory paulson parents: diff changeset	51	end

author	wenzelm
	Thu, 19 Nov 1998 11:47:22 +0100
changeset 5936	406eb27fe53c
parent 5931	325300576da7
child 6536	281d44905cab
permissions	-rw-r--r--