isabelle: src/HOL/Hoare_Parallel/OG_Tran.thy@42d902e074e8 (annotated)

59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	1	section \<open>Operational Semantics\<close>
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	2
16417 9bc16273c2d4 migrated theory headers to new format haftmann parents: 13020 diff changeset	3	theory OG_Tran imports OG_Com begin
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	4
42174 d0be2722ce9f modernized specifications; wenzelm parents: 35416 diff changeset	5	type_synonym 'a ann_com_op = "('a ann_com) option"
d0be2722ce9f modernized specifications; wenzelm parents: 35416 diff changeset	6	type_synonym 'a ann_triple_op = "('a ann_com_op \<times> 'a assn)"
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	7
35416 d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 35107 diff changeset	8	primrec com :: "'a ann_triple_op \<Rightarrow> 'a ann_com_op" where
d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 35107 diff changeset	9	"com (c, q) = c"
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	10
35416 d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 35107 diff changeset	11	primrec post :: "'a ann_triple_op \<Rightarrow> 'a assn" where
d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 35107 diff changeset	12	"post (c, q) = q"
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	13
35416 d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 35107 diff changeset	14	definition All_None :: "'a ann_triple_op list \<Rightarrow> bool" where
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	15	"All_None Ts \<equiv> \<forall>(c, q) \<in> set Ts. c = None"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	16
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	17	subsection \<open>The Transition Relation\<close>
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	18
23746 a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	19	inductive_set
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	20	ann_transition :: "(('a ann_com_op \<times> 'a) \<times> ('a ann_com_op \<times> 'a)) set"
23746 a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	21	and transition :: "(('a com \<times> 'a) \<times> ('a com \<times> 'a)) set"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	22	and ann_transition' :: "('a ann_com_op \<times> 'a) \<Rightarrow> ('a ann_com_op \<times> 'a) \<Rightarrow> bool"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	23	("_ -1\<rightarrow> _"[81,81] 100)
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	24	and transition' :: "('a com \<times> 'a) \<Rightarrow> ('a com \<times> 'a) \<Rightarrow> bool"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	25	("_ -P1\<rightarrow> _"[81,81] 100)
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	26	and transitions :: "('a com \<times> 'a) \<Rightarrow> ('a com \<times> 'a) \<Rightarrow> bool"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	27	("_ -P*\<rightarrow> _"[81,81] 100)
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	28	where
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	29	"con_0 -1\<rightarrow> con_1 \<equiv> (con_0, con_1) \<in> ann_transition"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	30	\| "con_0 -P1\<rightarrow> con_1 \<equiv> (con_0, con_1) \<in> transition"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	31	\| "con_0 -P\<rightarrow> con_1 \<equiv> (con_0, con_1) \<in> transition\<^sup>"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	32
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	33	\| AnnBasic: "(Some (AnnBasic r f), s) -1\<rightarrow> (None, f s)"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	34
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	35	\| AnnSeq1: "(Some c0, s) -1\<rightarrow> (None, t) \<Longrightarrow>
23746 a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	36	(Some (AnnSeq c0 c1), s) -1\<rightarrow> (Some c1, t)"
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	37	\| AnnSeq2: "(Some c0, s) -1\<rightarrow> (Some c2, t) \<Longrightarrow>
23746 a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	38	(Some (AnnSeq c0 c1), s) -1\<rightarrow> (Some (AnnSeq c2 c1), t)"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	39
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	40	\| AnnCond1T: "s \<in> b \<Longrightarrow> (Some (AnnCond1 r b c1 c2), s) -1\<rightarrow> (Some c1, s)"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	41	\| AnnCond1F: "s \<notin> b \<Longrightarrow> (Some (AnnCond1 r b c1 c2), s) -1\<rightarrow> (Some c2, s)"
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	42
23746 a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	43	\| AnnCond2T: "s \<in> b \<Longrightarrow> (Some (AnnCond2 r b c), s) -1\<rightarrow> (Some c, s)"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	44	\| AnnCond2F: "s \<notin> b \<Longrightarrow> (Some (AnnCond2 r b c), s) -1\<rightarrow> (None, s)"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	45
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	46	\| AnnWhileF: "s \<notin> b \<Longrightarrow> (Some (AnnWhile r b i c), s) -1\<rightarrow> (None, s)"
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	47	\| AnnWhileT: "s \<in> b \<Longrightarrow> (Some (AnnWhile r b i c), s) -1\<rightarrow>
23746 a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	48	(Some (AnnSeq c (AnnWhile i b i c)), s)"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	49
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	50	\| AnnAwait: "\<lbrakk> s \<in> b; atom_com c; (c, s) -P*\<rightarrow> (Parallel [], t) \<rbrakk> \<Longrightarrow>
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	51	(Some (AnnAwait r b c), s) -1\<rightarrow> (None, t)"
23746 a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	52
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	53	\| Parallel: "\<lbrakk> i<length Ts; Ts!i = (Some c, q); (Some c, s) -1\<rightarrow> (r, t) \<rbrakk>
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	54	\<Longrightarrow> (Parallel Ts, s) -P1\<rightarrow> (Parallel (Ts [i:=(r, q)]), t)"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	55
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	56	\| Basic: "(Basic f, s) -P1\<rightarrow> (Parallel [], f s)"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	57
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	58	\| Seq1: "All_None Ts \<Longrightarrow> (Seq (Parallel Ts) c, s) -P1\<rightarrow> (c, s)"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	59	\| Seq2: "(c0, s) -P1\<rightarrow> (c2, t) \<Longrightarrow> (Seq c0 c1, s) -P1\<rightarrow> (Seq c2 c1, t)"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	60
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	61	\| CondT: "s \<in> b \<Longrightarrow> (Cond b c1 c2, s) -P1\<rightarrow> (c1, s)"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	62	\| CondF: "s \<notin> b \<Longrightarrow> (Cond b c1 c2, s) -P1\<rightarrow> (c2, s)"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	63
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	64	\| WhileF: "s \<notin> b \<Longrightarrow> (While b i c, s) -P1\<rightarrow> (Parallel [], s)"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	65	\| WhileT: "s \<in> b \<Longrightarrow> (While b i c, s) -P1\<rightarrow> (Seq c (While b i c), s)"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	66
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	67	monos "rtrancl_mono"
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	68
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	69	text \<open>The corresponding abbreviations are:\<close>
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	70
23746 a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	71	abbreviation
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	72	ann_transition_n :: "('a ann_com_op \<times> 'a) \<Rightarrow> nat \<Rightarrow> ('a ann_com_op \<times> 'a)
23746 a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	73	\<Rightarrow> bool" ("_ -_\<rightarrow> _"[81,81] 100) where
30952 7ab2716dd93b power operation on functions with syntax o^; power operation on relations with syntax ^^ haftmann parents: 30304 diff changeset	74	"con_0 -n\<rightarrow> con_1 \<equiv> (con_0, con_1) \<in> ann_transition ^^ n"
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	75
23746 a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	76	abbreviation
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	77	ann_transitions :: "('a ann_com_op \<times> 'a) \<Rightarrow> ('a ann_com_op \<times> 'a) \<Rightarrow> bool"
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	78	("_ -*\<rightarrow> _"[81,81] 100) where
a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	79	"con_0 -\<rightarrow> con_1 \<equiv> (con_0, con_1) \<in> ann_transition\<^sup>"
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	80
23746 a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	81	abbreviation
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	82	transition_n :: "('a com \<times> 'a) \<Rightarrow> nat \<Rightarrow> ('a com \<times> 'a) \<Rightarrow> bool"
23746 a455e69c31cc Adapted to new inductive definition package. berghofe parents: 16417 diff changeset	83	("_ -P_\<rightarrow> _"[81,81,81] 100) where
30952 7ab2716dd93b power operation on functions with syntax o^; power operation on relations with syntax ^^ haftmann parents: 30304 diff changeset	84	"con_0 -Pn\<rightarrow> con_1 \<equiv> (con_0, con_1) \<in> transition ^^ n"
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	85
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	86	subsection \<open>Definition of Semantics\<close>
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	87
35416 d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 35107 diff changeset	88	definition ann_sem :: "'a ann_com \<Rightarrow> 'a \<Rightarrow> 'a set" where
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	89	"ann_sem c \<equiv> \<lambda>s. {t. (Some c, s) -*\<rightarrow> (None, t)}"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	90
35416 d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 35107 diff changeset	91	definition ann_SEM :: "'a ann_com \<Rightarrow> 'a set \<Rightarrow> 'a set" where
52141 eff000cab70f weaker precendence of syntax for big intersection and union on sets haftmann parents: 46362 diff changeset	92	"ann_SEM c S \<equiv> \<Union>(ann_sem c ` S)"
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	93
35416 d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 35107 diff changeset	94	definition sem :: "'a com \<Rightarrow> 'a \<Rightarrow> 'a set" where
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	95	"sem c \<equiv> \<lambda>s. {t. \<exists>Ts. (c, s) -P*\<rightarrow> (Parallel Ts, t) \<and> All_None Ts}"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	96
35416 d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 35107 diff changeset	97	definition SEM :: "'a com \<Rightarrow> 'a set \<Rightarrow> 'a set" where
52141 eff000cab70f weaker precendence of syntax for big intersection and union on sets haftmann parents: 46362 diff changeset	98	"SEM c S \<equiv> \<Union>(sem c ` S)"
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	99
35107 bdca9f765ee4 modernized translations; wenzelm parents: 32960 diff changeset	100	abbreviation Omega :: "'a com" ("\<Omega>" 63)
bdca9f765ee4 modernized translations; wenzelm parents: 32960 diff changeset	101	where "\<Omega> \<equiv> While UNIV UNIV (Basic id)"
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	102
35416 d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 35107 diff changeset	103	primrec fwhile :: "'a bexp \<Rightarrow> 'a com \<Rightarrow> nat \<Rightarrow> 'a com" where
d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 35107 diff changeset	104	"fwhile b c 0 = \<Omega>"
d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 35107 diff changeset	105	\| "fwhile b c (Suc n) = Cond b (Seq c (fwhile b c n)) (Basic id)"
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	106
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	107	subsubsection \<open>Proofs\<close>
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	108
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	109	declare ann_transition_transition.intros [intro]
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	110	inductive_cases transition_cases:
ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	111	"(Parallel T,s) -P1\<rightarrow> t"
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	112	"(Basic f, s) -P1\<rightarrow> t"
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	113	"(Seq c1 c2, s) -P1\<rightarrow> t"
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	114	"(Cond b c1 c2, s) -P1\<rightarrow> t"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	115	"(While b i c, s) -P1\<rightarrow> t"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	116
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	117	lemma Parallel_empty_lemma [rule_format (no_asm)]:
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	118	"(Parallel [],s) -Pn\<rightarrow> (Parallel Ts,t) \<longrightarrow> Ts=[] \<and> n=0 \<and> s=t"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	119	apply(induct n)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	120	apply(simp (no_asm))
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	121	apply clarify
46362 b2878f059f91 renaming all lemmas with name rel_pow to relpow bulwahn parents: 42174 diff changeset	122	apply(drule relpow_Suc_D2)
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	123	apply(force elim:transition_cases)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	124	done
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	125
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	126	lemma Parallel_AllNone_lemma [rule_format (no_asm)]:
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	127	"All_None Ss \<longrightarrow> (Parallel Ss,s) -Pn\<rightarrow> (Parallel Ts,t) \<longrightarrow> Ts=Ss \<and> n=0 \<and> s=t"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	128	apply(induct "n")
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	129	apply(simp (no_asm))
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	130	apply clarify
46362 b2878f059f91 renaming all lemmas with name rel_pow to relpow bulwahn parents: 42174 diff changeset	131	apply(drule relpow_Suc_D2)
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	132	apply clarify
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	133	apply(erule transition_cases,simp_all)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	134	apply(force dest:nth_mem simp add:All_None_def)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	135	done
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	136
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	137	lemma Parallel_AllNone: "All_None Ts \<Longrightarrow> (SEM (Parallel Ts) X) = X"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	138	apply (unfold SEM_def sem_def)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	139	apply auto
46362 b2878f059f91 renaming all lemmas with name rel_pow to relpow bulwahn parents: 42174 diff changeset	140	apply(drule rtrancl_imp_UN_relpow)
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	141	apply clarify
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	142	apply(drule Parallel_AllNone_lemma)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	143	apply auto
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	144	done
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	145
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	146	lemma Parallel_empty: "Ts=[] \<Longrightarrow> (SEM (Parallel Ts) X) = X"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	147	apply(rule Parallel_AllNone)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	148	apply(simp add:All_None_def)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	149	done
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	150
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	151	text \<open>Set of lemmas from Apt and Olderog "Verification of sequential
ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	152	and concurrent programs", page 63.\<close>
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	153
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	154	lemma L3_5i: "X\<subseteq>Y \<Longrightarrow> SEM c X \<subseteq> SEM c Y"
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	155	apply (unfold SEM_def)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	156	apply force
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	157	done
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	158
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	159	lemma L3_5ii_lemma1:
ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	160	"\<lbrakk> (c1, s1) -P*\<rightarrow> (Parallel Ts, s2); All_None Ts;
ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	161	(c2, s2) -P*\<rightarrow> (Parallel Ss, s3); All_None Ss \<rbrakk>
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	162	\<Longrightarrow> (Seq c1 c2, s1) -P*\<rightarrow> (Parallel Ss, s3)"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	163	apply(erule converse_rtrancl_induct2)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	164	apply(force intro:converse_rtrancl_into_rtrancl)+
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	165	done
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	166
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	167	lemma L3_5ii_lemma2 [rule_format (no_asm)]:
ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	168	"\<forall>c1 c2 s t. (Seq c1 c2, s) -Pn\<rightarrow> (Parallel Ts, t) \<longrightarrow>
ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	169	(All_None Ts) \<longrightarrow> (\<exists>y m Rs. (c1,s) -P*\<rightarrow> (Parallel Rs, y) \<and>
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	170	(All_None Rs) \<and> (c2, y) -Pm\<rightarrow> (Parallel Ts, t) \<and> m \<le> n)"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	171	apply(induct "n")
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	172	apply(force)
46362 b2878f059f91 renaming all lemmas with name rel_pow to relpow bulwahn parents: 42174 diff changeset	173	apply(safe dest!: relpow_Suc_D2)
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	174	apply(erule transition_cases,simp_all)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	175	apply (fast intro!: le_SucI)
46362 b2878f059f91 renaming all lemmas with name rel_pow to relpow bulwahn parents: 42174 diff changeset	176	apply (fast intro!: le_SucI elim!: relpow_imp_rtrancl converse_rtrancl_into_rtrancl)
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	177	done
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	178
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	179	lemma L3_5ii_lemma3:
ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	180	"\<lbrakk>(Seq c1 c2,s) -P*\<rightarrow> (Parallel Ts,t); All_None Ts\<rbrakk> \<Longrightarrow>
ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	181	(\<exists>y Rs. (c1,s) -P*\<rightarrow> (Parallel Rs,y) \<and> All_None Rs
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	182	\<and> (c2,y) -P*\<rightarrow> (Parallel Ts,t))"
46362 b2878f059f91 renaming all lemmas with name rel_pow to relpow bulwahn parents: 42174 diff changeset	183	apply(drule rtrancl_imp_UN_relpow)
b2878f059f91 renaming all lemmas with name rel_pow to relpow bulwahn parents: 42174 diff changeset	184	apply(fast dest: L3_5ii_lemma2 relpow_imp_rtrancl)
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	185	done
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	186
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	187	lemma L3_5ii: "SEM (Seq c1 c2) X = SEM c2 (SEM c1 X)"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	188	apply (unfold SEM_def sem_def)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	189	apply auto
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	190	apply(fast dest: L3_5ii_lemma3)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	191	apply(fast elim: L3_5ii_lemma1)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	192	done
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	193
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	194	lemma L3_5iii: "SEM (Seq (Seq c1 c2) c3) X = SEM (Seq c1 (Seq c2 c3)) X"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	195	apply (simp (no_asm) add: L3_5ii)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	196	done
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	197
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	198	lemma L3_5iv:
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	199	"SEM (Cond b c1 c2) X = (SEM c1 (X \<inter> b)) Un (SEM c2 (X \<inter> (-b)))"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	200	apply (unfold SEM_def sem_def)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	201	apply auto
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	202	apply(erule converse_rtranclE)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	203	prefer 2
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	204	apply (erule transition_cases,simp_all)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	205	apply(fast intro: converse_rtrancl_into_rtrancl elim: transition_cases)+
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	206	done
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	207
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	208
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	209	lemma L3_5v_lemma1[rule_format]:
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	210	"(S,s) -Pn\<rightarrow> (T,t) \<longrightarrow> S=\<Omega> \<longrightarrow> (\<not>(\<exists>Rs. T=(Parallel Rs) \<and> All_None Rs))"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	211	apply (unfold UNIV_def)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	212	apply(rule nat_less_induct)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	213	apply safe
46362 b2878f059f91 renaming all lemmas with name rel_pow to relpow bulwahn parents: 42174 diff changeset	214	apply(erule relpow_E2)
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	215	apply simp_all
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	216	apply(erule transition_cases)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	217	apply simp_all
46362 b2878f059f91 renaming all lemmas with name rel_pow to relpow bulwahn parents: 42174 diff changeset	218	apply(erule relpow_E2)
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	219	apply(simp add: Id_def)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	220	apply(erule transition_cases,simp_all)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	221	apply clarify
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	222	apply(erule transition_cases,simp_all)
46362 b2878f059f91 renaming all lemmas with name rel_pow to relpow bulwahn parents: 42174 diff changeset	223	apply(erule relpow_E2,simp)
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	224	apply clarify
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	225	apply(erule transition_cases)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	226	apply simp+
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	227	apply clarify
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	228	apply(erule transition_cases)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	229	apply simp_all
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	230	done
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	231
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	232	lemma L3_5v_lemma2: "\<lbrakk>(\<Omega>, s) -P*\<rightarrow> (Parallel Ts, t); All_None Ts \<rbrakk> \<Longrightarrow> False"
46362 b2878f059f91 renaming all lemmas with name rel_pow to relpow bulwahn parents: 42174 diff changeset	233	apply(fast dest: rtrancl_imp_UN_relpow L3_5v_lemma1)
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	234	done
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	235
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	236	lemma L3_5v_lemma3: "SEM (\<Omega>) S = {}"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	237	apply (unfold SEM_def sem_def)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	238	apply(fast dest: L3_5v_lemma2)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	239	done
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	240
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	241	lemma L3_5v_lemma4 [rule_format]:
ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	242	"\<forall>s. (While b i c, s) -Pn\<rightarrow> (Parallel Ts, t) \<longrightarrow> All_None Ts \<longrightarrow>
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	243	(\<exists>k. (fwhile b c k, s) -P*\<rightarrow> (Parallel Ts, t))"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	244	apply(rule nat_less_induct)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	245	apply safe
46362 b2878f059f91 renaming all lemmas with name rel_pow to relpow bulwahn parents: 42174 diff changeset	246	apply(erule relpow_E2)
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	247	apply safe
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	248	apply(erule transition_cases,simp_all)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	249	apply (rule_tac x = "1" in exI)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	250	apply(force dest: Parallel_empty_lemma intro: converse_rtrancl_into_rtrancl simp add: Id_def)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	251	apply safe
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	252	apply(drule L3_5ii_lemma2)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	253	apply safe
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	254	apply(drule le_imp_less_Suc)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	255	apply (erule allE , erule impE,assumption)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	256	apply (erule allE , erule impE, assumption)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	257	apply safe
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	258	apply (rule_tac x = "k+1" in exI)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	259	apply(simp (no_asm))
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	260	apply(rule converse_rtrancl_into_rtrancl)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	261	apply fast
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	262	apply(fast elim: L3_5ii_lemma1)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	263	done
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	264
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	265	lemma L3_5v_lemma5 [rule_format]:
ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	266	"\<forall>s. (fwhile b c k, s) -P*\<rightarrow> (Parallel Ts, t) \<longrightarrow> All_None Ts \<longrightarrow>
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	267	(While b i c, s) -P*\<rightarrow> (Parallel Ts,t)"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	268	apply(induct "k")
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	269	apply(force dest: L3_5v_lemma2)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	270	apply safe
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	271	apply(erule converse_rtranclE)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	272	apply simp_all
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	273	apply(erule transition_cases,simp_all)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	274	apply(rule converse_rtrancl_into_rtrancl)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	275	apply(fast)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	276	apply(fast elim!: L3_5ii_lemma1 dest: L3_5ii_lemma3)
46362 b2878f059f91 renaming all lemmas with name rel_pow to relpow bulwahn parents: 42174 diff changeset	277	apply(drule rtrancl_imp_UN_relpow)
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	278	apply clarify
46362 b2878f059f91 renaming all lemmas with name rel_pow to relpow bulwahn parents: 42174 diff changeset	279	apply(erule relpow_E2)
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	280	apply simp_all
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	281	apply(erule transition_cases,simp_all)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	282	apply(fast dest: Parallel_empty_lemma)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	283	done
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	284
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	285	lemma L3_5v: "SEM (While b i c) = (\<lambda>x. (\<Union>k. SEM (fwhile b c k) x))"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	286	apply(rule ext)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	287	apply (simp add: SEM_def sem_def)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	288	apply safe
46362 b2878f059f91 renaming all lemmas with name rel_pow to relpow bulwahn parents: 42174 diff changeset	289	apply(drule rtrancl_imp_UN_relpow,simp)
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	290	apply clarify
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	291	apply(fast dest:L3_5v_lemma4)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	292	apply(fast intro: L3_5v_lemma5)
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	293	done
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	294
59189 ad8e0a789af6 update_cartouches; wenzelm parents: 58884 diff changeset	295	section \<open>Validity of Correctness Formulas\<close>
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	296
35416 d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 35107 diff changeset	297	definition com_validity :: "'a assn \<Rightarrow> 'a com \<Rightarrow> 'a assn \<Rightarrow> bool" ("(3\<parallel>= _// _//_)" [90,55,90] 50) where
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	298	"\<parallel>= p c q \<equiv> SEM c p \<subseteq> q"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	299
35416 d8d7d1b785af replaced a couple of constsdefs by definitions (also some old primrecs by modern ones) haftmann parents: 35107 diff changeset	300	definition ann_com_validity :: "'a ann_com \<Rightarrow> 'a assn \<Rightarrow> bool" ("\<Turnstile> _ _" [60,90] 45) where
13020 791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	301	"\<Turnstile> c q \<equiv> ann_SEM c (pre c) \<subseteq> q"
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	302
791e3b4c4039 HoareParallel Theories prensani parents: diff changeset	303	end

author	wenzelm
	Mon, 21 Dec 2015 17:20:57 +0100
changeset 61889	42d902e074e8
parent 59189	ad8e0a789af6
child 62390	842917225d56
permissions	-rw-r--r--