isabelle: src/HOL/IMPP/Hoare.ML@470e608d7a74 (annotated)

8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	1	(* Title: HOL/IMPP/Hoare.ML
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	2	ID: $Id$
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	3	Author: David von Oheimb
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	4	Copyright 1999 TUM
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	5
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	6	Soundness and relative completeness of Hoare rules wrt operational semantics
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	7	*)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	8
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	9	Goalw [state_not_singleton_def]
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	10	"state_not_singleton ==> !t. (!s::state. s = t) --> False";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	11	by (Clarify_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	12	by (case_tac "ta = t" 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	13	by (ALLGOALS (blast_tac (HOL_cs addDs [not_sym])));
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	14	qed "single_stateE";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	15
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	16	Addsimps[peek_and_def];
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	17
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	18
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	19	section "validity";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	20
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	21	Goalw [triple_valid_def]
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	22	"\|=n:{P}.c.{Q} = (!Z s. P Z s --> (!s'. <c,s> -n-> s' --> Q Z s'))";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	23	by Auto_tac;
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	24	qed "triple_valid_def2";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	25
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	26	Goal "\|=0:{P}. BODY pn .{Q}";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	27	by (simp_tac (simpset() addsimps [triple_valid_def2]) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	28	by (Clarsimp_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	29	qed "Body_triple_valid_0";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	30
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	31	(* only ==> direction required *)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	32	Goal "\|=n:{P}. the (body pn) .{Q} = \|=Suc n:{P}. BODY pn .{Q}";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	33	by (simp_tac (simpset() addsimps [triple_valid_def2]) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	34	by (Force_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	35	qed "Body_triple_valid_Suc";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	36
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	37	Goalw [triple_valid_def] "\|=Suc n:t --> \|=n:t";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	38	by (induct_tac "t" 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	39	by (Simp_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	40	by (fast_tac (claset() addIs [evaln_Suc]) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	41	qed_spec_mp "triple_valid_Suc";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	42
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	43	Goal "\|\|=Suc n:ts ==> \|\|=n:ts";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	44	by (fast_tac (claset() addIs [triple_valid_Suc]) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	45	qed "triples_valid_Suc";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	46
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	47
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	48	section "derived rules";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	49
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	50	Goal "[\| G\|-{P'}.c.{Q'}; !Z s. P Z s --> \
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	51	\ (!s'. (!Z'. P' Z' s --> Q' Z' s') --> Q Z s') \|] \
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	52	\ ==> G\|-{P}.c.{Q}";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	53	by (rtac hoare_derivs.conseq 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	54	by (Blast_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	55	qed "conseq12";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	56
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	57	Goal "[\| G\|-{P'}.c.{Q}; !Z s. P Z s --> P' Z s \|] ==> G\|-{P}.c.{Q}";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	58	by (etac conseq12 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	59	by (Fast_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	60	qed "conseq1";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	61
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	62	Goal "[\| G\|-{P}.c.{Q'}; !Z s. Q' Z s --> Q Z s \|] ==> G\|-{P}.c.{Q}";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	63	by (etac conseq12 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	64	by (Fast_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	65	qed "conseq2";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	66
10834 a7897aebbffc * empty log message * nipkow parents: 9078 diff changeset	67	Goal "[\| G Un (%p. {P p}. BODY p .{Q p})`Procs \
a7897aebbffc * empty log message * nipkow parents: 9078 diff changeset	68	\ \|\|- (%p. {P p}. the (body p) .{Q p})`Procs; \
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	69	\ pn:Procs \|] ==> G\|-{P pn}. BODY pn .{Q pn}";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	70	by (dtac hoare_derivs.Body 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	71	by (etac hoare_derivs.weaken 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	72	by (Fast_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	73	qed "Body1";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	74
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	75	Goal "(insert ({P}. BODY pn .{Q}) G) \|-{P}. the (body pn) .{Q} ==> \
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	76	\ G\|-{P}. BODY pn .{Q}";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	77	by (rtac Body1 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	78	by (rtac singletonI 2);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	79	by (Clarsimp_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	80	qed "BodyN";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	81
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	82	Goal "[\| !Z s. P Z s --> G\|-{%Z s'. s'=s}.c.{%Z'. Q Z} \|] ==> G\|-{P}.c.{Q}";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	83	by (rtac hoare_derivs.conseq 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	84	by (Fast_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	85	qed "escape";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	86
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	87	Goal "[\| C ==> G\|-{P}.c.{Q} \|] ==> G\|-{%Z s. P Z s & C}.c.{Q}";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	88	by (rtac hoare_derivs.conseq 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	89	by (fast_tac (claset() addDs (premises())) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	90	qed "constant";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	91
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	92	Goal "G\|-{%Z s. P Z s & ~b s}.WHILE b DO c.{P}";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	93	by (rtac (hoare_derivs.Loop RS conseq2) 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	94	by (ALLGOALS Simp_tac);
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	95	by (rtac hoare_derivs.conseq 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	96	by (Fast_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	97	qed "LoopF";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	98
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	99	(*
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	100	Goal "[\| G'\|\|-ts; G' <= G \|] ==> G\|\|-ts";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	101	by (etac hoare_derivs.cut 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	102	by (etac hoare_derivs.asm 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	103	qed "thin";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	104	*)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	105	Goal "G'\|\|-ts ==> !G. G' <= G --> G\|\|-ts";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	106	by (etac hoare_derivs.induct 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	107	by (ALLGOALS (EVERY'[Clarify_tac, REPEAT o smp_tac 1]));
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	108	by (rtac hoare_derivs.empty 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	109	by (eatac hoare_derivs.insert 1 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	110	by (fast_tac (claset() addIs [hoare_derivs.asm]) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	111	by (fast_tac (claset() addIs [hoare_derivs.cut]) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	112	by (fast_tac (claset() addIs [hoare_derivs.weaken]) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	113	by (EVERY'[rtac hoare_derivs.conseq, strip_tac, smp_tac 2,Clarify_tac,
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	114	smp_tac 1,rtac exI, rtac exI, eatac conjI 1] 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	115	by (EVERY'[rtac hoare_derivs.Body,dtac spec,etac mp,Fast_tac] 7);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	116	by (ALLGOALS (resolve_tac ((funpow 5 tl) hoare_derivs.intrs)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	117	THEN_ALL_NEW Fast_tac));
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	118	qed_spec_mp "thin";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	119
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	120	Goal "G\|-{P}. the (body pn) .{Q} ==> G\|-{P}. BODY pn .{Q}";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	121	by (rtac BodyN 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	122	by (etac thin 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	123	by Auto_tac;
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	124	qed "weak_Body";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	125
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	126	Goal "G\|\|-insert t ts ==> G\|-t & G\|\|-ts";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	127	by (fast_tac (claset() addIs [hoare_derivs.weaken]) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	128	qed "derivs_insertD";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	129
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	130	Goal "[\| finite U; \
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	131	\ !p. G \|- {P' p}.c0 p.{Q' p} --> G \|- {P p}.c0 p.{Q p} \|] ==> \
10834 a7897aebbffc * empty log message * nipkow parents: 9078 diff changeset	132	\ G\|\|-(%p. {P' p}.c0 p.{Q' p}) ` U --> G\|\|-(%p. {P p}.c0 p.{Q p}) ` U";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	133	by (etac finite_induct 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	134	by (ALLGOALS Clarsimp_tac);
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	135	by (dtac derivs_insertD 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	136	by (rtac hoare_derivs.insert 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	137	by Auto_tac;
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	138	qed_spec_mp "finite_pointwise";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	139
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	140
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	141	section "soundness";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	142
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	143	Goalw [hoare_valids_def]
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	144	"G\|={P &> b}. c .{P} ==> \
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	145	\ G\|={P}. WHILE b DO c .{P &> (Not o b)}";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	146	by (full_simp_tac (simpset() addsimps [triple_valid_def2]) 1);
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	147	by (rtac allI 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	148	by (subgoal_tac "!d s s'. <d,s> -n-> s' --> \
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	149	\ d = WHILE b DO c --> \|\|=n:G --> (!Z. P Z s --> P Z s' & ~b s')" 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	150	by (EVERY'[etac thin_rl, Fast_tac] 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	151	by (EVERY'[REPEAT o rtac allI, rtac impI] 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	152	by ((etac evaln.induct THEN_ALL_NEW Simp_tac) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	153	by (ALLGOALS Fast_tac);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	154	qed "Loop_sound_lemma";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	155
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	156	Goalw [hoare_valids_def]
10834 a7897aebbffc * empty log message * nipkow parents: 9078 diff changeset	157	"[\| G Un (%pn. {P pn}. BODY pn .{Q pn})`Procs \
a7897aebbffc * empty log message * nipkow parents: 9078 diff changeset	158	\ \|\|=(%pn. {P pn}. the (body pn) .{Q pn})`Procs \|] ==> \
a7897aebbffc * empty log message * nipkow parents: 9078 diff changeset	159	\ G\|\|=(%pn. {P pn}. BODY pn .{Q pn})`Procs";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	160	by (rtac allI 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	161	by (induct_tac "n" 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	162	by (fast_tac (claset() addIs [Body_triple_valid_0]) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	163	by (Clarsimp_tac 1);
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	164	by (dtac triples_valid_Suc 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	165	by (mp_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	166	by (asm_full_simp_tac (simpset() addsimps [ball_Un]) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	167	by (EVERY'[dtac spec, etac impE, etac conjI, atac] 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	168	by (fast_tac (claset() addSIs [Body_triple_valid_Suc RS iffD1]) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	169	qed "Body_sound_lemma";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	170
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	171	Goal "G\|\|-ts ==> G\|\|=ts";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	172	by (etac hoare_derivs.induct 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	173	by (TRYALL (eresolve_tac [Loop_sound_lemma, Body_sound_lemma]
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	174	THEN_ALL_NEW atac));
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	175	by (rewtac hoare_valids_def);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	176	by (Blast_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	177	by (Blast_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	178	by (Blast_tac 1); (* asm *)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	179	by (Blast_tac 1); (* cut *)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	180	by (Blast_tac 1); (* weaken *)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	181	by (ALLGOALS (EVERY'[REPEAT o thin_tac "?x : hoare_derivs",
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	182	Clarsimp_tac, REPEAT o smp_tac 1]));
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	183	by (ALLGOALS (full_simp_tac (simpset() addsimps [triple_valid_def2])));
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	184	by (EVERY'[strip_tac, smp_tac 2, Blast_tac] 1); (* conseq *)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	185	by (ALLGOALS Clarsimp_tac); (* Skip, Ass, Local *)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	186	by (Force_tac 3); (* Call *)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	187	by (eresolve_tac evaln_elim_cases 2); (* If *)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	188	by (TRYALL Blast_tac);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	189	qed "hoare_sound";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	190
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	191
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	192	section "completeness";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	193
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	194	(* Both versions *)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	195
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	196	(unused)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	197	Goalw [MGT_def] "G\|-MGT c ==> \
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	198	\ G\|-{%Z s0. !s1. <c,s0> -c-> s1 --> Z=s1}. c .{%Z s1. Z=s1}";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	199	by (etac conseq12 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	200	by Auto_tac;
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	201	qed "MGT_alternI";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	202
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	203	(* requires com_det *)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	204	Goalw [MGT_def] "state_not_singleton ==> \
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	205	\ G\|-{%Z s0. !s1. <c,s0> -c-> s1 --> Z=s1}. c .{%Z s1. Z=s1} ==> G\|-MGT c";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	206	by (etac conseq12 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	207	by Auto_tac;
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	208	by (case_tac "? t. <c,?s> -c-> t" 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	209	by (fast_tac (claset() addEs [com_det]) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	210	by (Clarsimp_tac 1);
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	211	by (dtac single_stateE 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	212	by (Blast_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	213	qed "MGT_alternD";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	214
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	215	Goalw [MGT_def]
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	216	"{}\|-(MGT c::state triple) ==> {}\|={P}.c.{Q} ==> {}\|-{P}.c.{Q::state assn}";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	217	by (etac conseq12 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	218	by (clarsimp_tac (claset(), simpset() addsimps
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	219	[hoare_valids_def,eval_eq,triple_valid_def2]) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	220	qed "MGF_complete";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	221
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	222	val WTs_elim_cases = map WTs.mk_cases
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	223	["WT SKIP", "WT (X:==a)", "WT (LOCAL Y:=a IN c)",
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	224	"WT (c1;;c2)","WT (IF b THEN c1 ELSE c2)", "WT (WHILE b DO c)",
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	225	"WT (BODY P)", "WT (X:=CALL P(a))"];
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	226
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	227	AddSEs WTs_elim_cases;
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	228	(* requires com_det, escape (i.e. hoare_derivs.conseq) *)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	229	Goal "state_not_singleton ==> \
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	230	\ !pn:dom body. G\|-{=}.BODY pn.{->} ==> WT c --> G\|-{=}.c.{->}";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	231	by (induct_tac "c" 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	232	by (ALLGOALS Clarsimp_tac);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	233	by (fast_tac (claset() addIs [domI]) 7);
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	234	by (etac MGT_alternD 6);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	235	by (rewtac MGT_def);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	236	by (EVERY'[dtac bspec, etac domI] 7);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	237	by (EVERY'[rtac escape, Clarsimp_tac, res_inst_tac
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	238	[("P1","%Z' s. s=(setlocs Z newlocs)[Loc Arg ::= fun Z]")]
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	239	(hoare_derivs.Call RS conseq1), etac conseq12] 7);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	240	by (ALLGOALS (etac thin_rl));
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	241	by (rtac (hoare_derivs.Skip RS conseq2) 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	242	by (rtac (hoare_derivs.Ass RS conseq1) 2);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	243	by (EVERY'[rtac escape, Clarsimp_tac, res_inst_tac
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	244	[("P1","%Z' s. s=(Z[Loc loc::=fun Z])")]
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	245	(hoare_derivs.Local RS conseq1), etac conseq12] 3);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	246	by (EVERY'[etac hoare_derivs.Comp, etac conseq12] 5);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	247	by ((rtac hoare_derivs.If THEN_ALL_NEW etac conseq12) 6);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	248	by (EVERY'[rtac (hoare_derivs.Loop RS conseq2), etac conseq12] 8);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	249	by Auto_tac;
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	250	qed_spec_mp "MGF_lemma1";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	251
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	252	(* Version: nested single recursion *)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	253
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	254	Goal "[\| !!G ts. ts <= G ==> P G ts;\
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	255	\ !!G pn. P (insert (mgt_call pn) G) {mgt(the(body pn))} ==> P G {mgt_call pn};\
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	256	\ !!G c. [\| wt c; !pn:U. P G {mgt_call pn} \|] ==> P G {mgt c}; \
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	257	\ !!pn. pn : U ==> wt (the (body pn)); \
10834 a7897aebbffc * empty log message * nipkow parents: 9078 diff changeset	258	\ finite U; uG = mgt_call`U \|] ==> \
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	259	\ !G. G <= uG --> n <= card uG --> card G = card uG - n --> (!c. wt c --> P G {mgt c})";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	260	by (cut_facts_tac (premises()) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	261	by (induct_tac "n" 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	262	by (ALLGOALS Clarsimp_tac);
10834 a7897aebbffc * empty log message * nipkow parents: 9078 diff changeset	263	by (subgoal_tac "G = mgt_call ` U" 1);
9078 b8780970d0ed tidied for new card_seteq paulson parents: 8177 diff changeset	264	by (asm_simp_tac (simpset() addsimps [card_seteq, finite_imageI]) 2);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	265	by (Asm_full_simp_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	266	by (eresolve_tac (tl(tl(premises()))(MGF_lemma1)) 1);
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	267	by (rtac ballI 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	268	by (resolve_tac (premises()(hoare_derivs.asm)) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	269	by (Fast_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	270	by (eresolve_tac (tl(tl(premises()))(MGF_lemma1)) 1);
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	271	by (rtac ballI 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	272	by (case_tac "mgt_call pn : G" 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	273	by (resolve_tac (premises()(hoare_derivs.asm)) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	274	by (Fast_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	275	by (resolve_tac (tl(premises())(MGT_BodyN)) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	276	byev[dtac spec 1, etac impE 1, etac impE 2, etac impE 3, dtac spec 4,etac mp 4];
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	277	by (eresolve_tac (tl(tl(tl(premises())))) 4);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	278	by (Fast_tac 1);
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	279	by (etac Suc_leD 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	280	by (dtac finite_subset 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	281	by (etac finite_imageI 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	282	by (Asm_simp_tac 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	283	by (arith_tac 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	284	qed_spec_mp "nesting_lemma";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	285
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	286	Goalw [MGT_def] "insert ({=}.BODY pn.{->}) G\|-{=}. the (body pn) .{->} ==> \
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	287	\ G\|-{=}.BODY pn.{->}";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	288	by (rtac BodyN 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	289	by (etac conseq2 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	290	by (Force_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	291	qed "MGT_BodyN";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	292
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	293	(* requires BodyN, com_det *)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	294	Goal "[\| state_not_singleton; WT_bodies; WT c \|] ==> {}\|-MGT c";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	295	by (res_inst_tac [("P","%G ts. G\|\|-ts"),("U","dom body")] nesting_lemma 1);
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	296	by (etac hoare_derivs.asm 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	297	by (etac MGT_BodyN 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	298	by (rtac finite_dom_body 3);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	299	by (etac MGF_lemma1 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	300	by (assume_tac 2);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	301	by (Blast_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	302	by (Clarsimp_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	303	by (eatac WT_bodiesD 1 1);
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	304	by (rtac le_refl 3);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	305	by Auto_tac;
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	306	qed "MGF";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	307
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	308
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	309	(* Version: simultaneous recursion in call rule *)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	310
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	311	(* finiteness not really necessary here *)
10834 a7897aebbffc * empty log message * nipkow parents: 9078 diff changeset	312	Goalw [MGT_def] "[\| G Un (%pn. {=}. BODY pn .{->})`Procs \
a7897aebbffc * empty log message * nipkow parents: 9078 diff changeset	313	\ \|\|-(%pn. {=}. the (body pn) .{->})`Procs; \
a7897aebbffc * empty log message * nipkow parents: 9078 diff changeset	314	\ finite Procs \|] ==> G \|\|-(%pn. {=}. BODY pn .{->})`Procs";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	315	by (rtac hoare_derivs.Body 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	316	by (etac finite_pointwise 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	317	by (assume_tac 2);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	318	by (Clarify_tac 1);
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	319	by (etac conseq2 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	320	by Auto_tac;
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	321	qed "MGT_Body";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	322
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	323	(* requires empty, insert, com_det *)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	324	Goal "[\| state_not_singleton; WT_bodies; \
10834 a7897aebbffc * empty log message * nipkow parents: 9078 diff changeset	325	\ F<=(%pn. {=}.the (body pn).{->})`dom body \|] ==> \
a7897aebbffc * empty log message * nipkow parents: 9078 diff changeset	326	\ (%pn. {=}. BODY pn .{->})`dom body\|\|-F";
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	327	by (ftac finite_subset 1);
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	328	by (rtac (finite_dom_body RS finite_imageI) 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	329	by (rotate_tac 2 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	330	by (make_imp_tac 1);
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	331	by (etac finite_induct 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	332	by (ALLGOALS (clarsimp_tac (
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	333	claset() addSIs [hoare_derivs.empty,hoare_derivs.insert],
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	334	simpset() delsimps [range_composition])));
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	335	by (etac MGF_lemma1 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	336	by (fast_tac (claset() addDs [WT_bodiesD]) 2);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	337	by (Clarsimp_tac 1);
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	338	by (rtac hoare_derivs.asm 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	339	by (fast_tac (claset() addIs [domI]) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	340	qed_spec_mp "MGF_lemma2_simult";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	341
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	342	(* requires Body, empty, insert, com_det *)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	343	Goal "[\| state_not_singleton; WT_bodies; WT c \|] ==> {}\|-MGT c";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	344	by (rtac MGF_lemma1 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	345	by (assume_tac 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	346	by (assume_tac 2);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	347	by (Clarsimp_tac 1);
10834 a7897aebbffc * empty log message * nipkow parents: 9078 diff changeset	348	by (subgoal_tac "{}\|\|-(%pn. {=}. BODY pn .{->})`dom body" 1);
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	349	by (etac hoare_derivs.weaken 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	350	by (fast_tac (claset() addIs [domI]) 1);
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	351	by (rtac (finite_dom_body RSN (2,MGT_Body)) 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	352	by (Simp_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	353	by (eatac MGF_lemma2_simult 1 1);
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	354	by (rtac subset_refl 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	355	qed "MGF";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	356
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	357	(* requires Body+empty+insert / BodyN, com_det *)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	358	bind_thm ("hoare_complete", MGF RS MGF_complete);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	359
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	360	section "unused derived rules";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	361
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	362	Goal "G\|-{%Z s. False}.c.{Q}";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	363	by (rtac hoare_derivs.conseq 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	364	by (Fast_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	365	qed "falseE";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	366
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	367	Goal "G\|-{P}.c.{%Z s. True}";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	368	by (rtac hoare_derivs.conseq 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	369	by (fast_tac (claset() addSIs [falseE]) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	370	qed "trueI";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	371
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	372	Goal "[\| G\|-{P}.c.{Q}; G\|-{P'}.c.{Q'} \|] \
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	373	\ ==> G\|-{%Z s. P Z s \| P' Z s}.c.{%Z s. Q Z s \| Q' Z s}";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	374	by (rtac hoare_derivs.conseq 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	375	by (fast_tac (claset() addEs [conseq12]) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	376	qed "disj"; (* analogue conj non-derivable *)
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	377
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	378	Goal "(!Z s. P Z s --> Q Z s) ==> G\|-{P}. SKIP .{Q}";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	379	by (rtac conseq12 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	380	by (rtac hoare_derivs.Skip 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	381	by (Fast_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	382	qed "hoare_SkipI";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	383
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	384
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	385	section "useful derived rules";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	386
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	387	Goal "{t}\|-t";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	388	by (rtac hoare_derivs.asm 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	389	by (rtac subset_refl 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	390	qed "single_asm";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	391
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	392	Goal "[\| !!s'. G\|-{%Z s. s'=s & P Z s}.c.{Q} \|] ==> G\|-{P}.c.{Q}";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	393	by (rtac hoare_derivs.conseq 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	394	by (Clarsimp_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	395	by (cut_facts_tac (premises()) 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	396	by (Fast_tac 1);
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	397	qed "export_s";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	398
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	399
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	400	Goal "[\| G\|-{P}. c .{Q}; !k Z s. Q Z s --> Q Z (s[Loc Y::=k]) \|] ==> \
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	401	\ G\|-{%Z s. P Z (s[Loc Y::=a s])}. LOCAL Y:=a IN c .{Q}";
10962 cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	402	by (rtac export_s 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	403	by (rtac hoare_derivs.Local 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	404	by (etac conseq2 1);
cda180b1e2e0 deleted several obsolete lemmas from NatArith.ML paulson parents: 10834 diff changeset	405	by (etac spec 1);
8177 e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	406	qed "weak_Local";
e59e93ad85eb added IMPP to HOL oheimb parents: diff changeset	407
11132 09622301ca07 added trial proof oheimb parents: 10962 diff changeset	408	(*
09622301ca07 added trial proof oheimb parents: 10962 diff changeset	409	Goal "!Q. G \|-{%Z s. ~(? s'. <c,s> -c-> s')}. c .{Q}";
09622301ca07 added trial proof oheimb parents: 10962 diff changeset	410	by (induct_tac "c" 1);
09622301ca07 added trial proof oheimb parents: 10962 diff changeset	411	auto();
09622301ca07 added trial proof oheimb parents: 10962 diff changeset	412	br conseq1 1;
09622301ca07 added trial proof oheimb parents: 10962 diff changeset	413	br hoare_derivs.Skip 1;
09622301ca07 added trial proof oheimb parents: 10962 diff changeset	414	force 1;
09622301ca07 added trial proof oheimb parents: 10962 diff changeset	415	br conseq1 1;
09622301ca07 added trial proof oheimb parents: 10962 diff changeset	416	br hoare_derivs.Ass 1;
09622301ca07 added trial proof oheimb parents: 10962 diff changeset	417	force 1;
09622301ca07 added trial proof oheimb parents: 10962 diff changeset	418	by (defer_tac 1);
09622301ca07 added trial proof oheimb parents: 10962 diff changeset	419	###
09622301ca07 added trial proof oheimb parents: 10962 diff changeset	420	br hoare_derivs.Comp 1;
09622301ca07 added trial proof oheimb parents: 10962 diff changeset	421	bd spec 2;
09622301ca07 added trial proof oheimb parents: 10962 diff changeset	422	bd spec 2;
09622301ca07 added trial proof oheimb parents: 10962 diff changeset	423	ba 2;
09622301ca07 added trial proof oheimb parents: 10962 diff changeset	424	be conseq1 2;
09622301ca07 added trial proof oheimb parents: 10962 diff changeset	425	by (Clarsimp_tac 2);
09622301ca07 added trial proof oheimb parents: 10962 diff changeset	426	force 1;
09622301ca07 added trial proof oheimb parents: 10962 diff changeset	427	*)

author	wenzelm
	Sat, 13 Oct 2001 20:32:07 +0200
changeset 11741	470e608d7a74
parent 11132	09622301ca07
child 12486	0ed8bdd883e0
permissions	-rw-r--r--