isabelle: src/HOL/Hoare/Hoare.thy@4a859d13ef83 (annotated)

1476 608483c2122a expanded tabs; incorporated Konrad's changes clasohm parents: 1384 diff changeset	1	(* Title: HOL/Hoare/Hoare.thy
1335 5e1c0540f285 New directory. nipkow parents: diff changeset	2	ID: $Id$
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	3	Author: Leonor Prensa Nieto & Tobias Nipkow
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	4	Copyright 1998 TUM
1335 5e1c0540f285 New directory. nipkow parents: diff changeset	5
5e1c0540f285 New directory. nipkow parents: diff changeset	6	Sugared semantic embedding of Hoare logic.
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	7	Strictly speaking a shallow embedding (as implemented by Norbert Galm
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	8	following Mike Gordon) would suffice. Maybe the datatype com comes in useful
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	9	later.
1335 5e1c0540f285 New directory. nipkow parents: diff changeset	10	*)
5e1c0540f285 New directory. nipkow parents: diff changeset	11
16417 9bc16273c2d4 migrated theory headers to new format haftmann parents: 15032 diff changeset	12	theory Hoare imports Main
9bc16273c2d4 migrated theory headers to new format haftmann parents: 15032 diff changeset	13	uses ("hoare.ML") begin
1335 5e1c0540f285 New directory. nipkow parents: diff changeset	14
5e1c0540f285 New directory. nipkow parents: diff changeset	15	types
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	16	'a bexp = "'a set"
91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	17	'a assn = "'a set"
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	18
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	19	datatype
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	20	'a com = Basic "'a \<Rightarrow> 'a"
91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	21	\| Seq "'a com" "'a com" ("(_;/ _)" [61,60] 60)
91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	22	\| Cond "'a bexp" "'a com" "'a com" ("(1IF _/ THEN _ / ELSE _/ FI)" [0,0,0] 61)
91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	23	\| While "'a bexp" "'a assn" "'a com" ("(1WHILE _/ INV {_} //DO _ /OD)" [0,0,0] 61)
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	24
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	25	syntax
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	26	"@assign" :: "id => 'b => 'a com" ("(2_ :=/ _)" [70,65] 61)
91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	27	"@annskip" :: "'a com" ("SKIP")
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	28
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	29	translations
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	30	"SKIP" == "Basic id"
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	31
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	32	types 'a sem = "'a => 'a => bool"
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	33
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	34	consts iter :: "nat => 'a bexp => 'a sem => 'a sem"
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	35	primrec
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	36	"iter 0 b S = (%s s'. s ~: b & (s=s'))"
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	37	"iter (Suc n) b S = (%s s'. s : b & (? s''. S s s'' & iter n b S s'' s'))"
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	38
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	39	consts Sem :: "'a com => 'a sem"
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	40	primrec
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	41	"Sem(Basic f) s s' = (s' = f s)"
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	42	"Sem(c1;c2) s s' = (? s''. Sem c1 s s'' & Sem c2 s'' s')"
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	43	"Sem(IF b THEN c1 ELSE c2 FI) s s' = ((s : b --> Sem c1 s s') &
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	44	(s ~: b --> Sem c2 s s'))"
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	45	"Sem(While b x c) s s' = (? n. iter n b (Sem c) s s')"
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	46
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	47	constdefs Valid :: "'a bexp \<Rightarrow> 'a com \<Rightarrow> 'a bexp \<Rightarrow> bool"
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	48	"Valid p c q == !s s'. Sem c s s' --> s : p --> s' : q"
5007 0ebd6c91088a nonterminals prog; wenzelm parents: 3842 diff changeset	49
0ebd6c91088a nonterminals prog; wenzelm parents: 3842 diff changeset	50
1335 5e1c0540f285 New directory. nipkow parents: diff changeset	51	syntax
13764 3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	52	"@hoare_vars" :: "[idts, 'a assn,'a com,'a assn] => bool"
13737 e564c3d2d174 added a few lemmas nipkow parents: 13696 diff changeset	53	("VARS _// {_} // _ // {_}" [0,0,55,0] 50)
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	54	syntax ("" output)
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	55	"@hoare" :: "['a assn,'a com,'a assn] => bool"
13737 e564c3d2d174 added a few lemmas nipkow parents: 13696 diff changeset	56	("{_} // _ // {_}" [0,55,0] 50)
1335 5e1c0540f285 New directory. nipkow parents: diff changeset	57
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	58	( parse translations )
1335 5e1c0540f285 New directory. nipkow parents: diff changeset	59
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	60	ML{*
13764 3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	61
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	62	local
13857 11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	63
13764 3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	64	fun abs((a,T),body) =
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	65	let val a = absfree(a, dummyT, body)
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	66	in if T = Bound 0 then a else Const(Syntax.constrainAbsC,dummyT) $ a $ T end
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	67	in
1335 5e1c0540f285 New directory. nipkow parents: diff changeset	68
13764 3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	69	fun mk_abstuple [x] body = abs (x, body)
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	70	\| mk_abstuple (x::xs) body =
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	71	Syntax.const "split" $ abs (x, mk_abstuple xs body);
1335 5e1c0540f285 New directory. nipkow parents: diff changeset	72
13857 11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	73	fun mk_fbody a e [x as (b,_)] = if a=b then e else Syntax.free b
13764 3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	74	\| mk_fbody a e ((b,_)::xs) =
13857 11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	75	Syntax.const "Pair" $ (if a=b then e else Syntax.free b) $ mk_fbody a e xs;
13764 3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	76
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	77	fun mk_fexp a e xs = mk_abstuple xs (mk_fbody a e xs)
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	78	end
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	79	*}
1335 5e1c0540f285 New directory. nipkow parents: diff changeset	80
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	81	(* bexp_tr & assn_tr *)
9397 358e67410253 Updating of some comments prensani parents: 6055 diff changeset	82	(*all meta-variables for bexp except for TRUE are translated as if they
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	83	were boolean expressions*)
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	84	ML{*
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	85	fun bexp_tr (Const ("TRUE", _)) xs = Syntax.const "TRUE"
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	86	\| bexp_tr b xs = Syntax.const "Collect" $ mk_abstuple xs b;
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	87
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	88	fun assn_tr r xs = Syntax.const "Collect" $ mk_abstuple xs r;
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	89	*}
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	90	(* com_tr *)
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	91	ML{*
13764 3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	92	fun com_tr (Const("@assign",_) $ Free (a,_) $ e) xs =
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	93	Syntax.const "Basic" $ mk_fexp a e xs
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	94	\| com_tr (Const ("Basic",_) $ f) xs = Syntax.const "Basic" $ f
13764 3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	95	\| com_tr (Const ("Seq",_) $ c1 $ c2) xs =
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	96	Syntax.const "Seq" $ com_tr c1 xs $ com_tr c2 xs
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	97	\| com_tr (Const ("Cond",_) $ b $ c1 $ c2) xs =
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	98	Syntax.const "Cond" $ bexp_tr b xs $ com_tr c1 xs $ com_tr c2 xs
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	99	\| com_tr (Const ("While",_) $ b $ I $ c) xs =
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	100	Syntax.const "While" $ bexp_tr b xs $ assn_tr I xs $ com_tr c xs
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	101	\| com_tr t _ = t (* if t is just a Free/Var *)
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	102	*}
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	103
17781 32bb237158a5 print_translation: does not handle _idtdummy; wenzelm parents: 16417 diff changeset	104	(* triple_tr ) ( FIXME does not handle "_idtdummy" *)
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	105	ML{*
13764 3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	106	local
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	107
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	108	fun var_tr(Free(a,_)) = (a,Bound 0) (* Bound 0 = dummy term *)
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	109	\| var_tr(Const ("_constrain", _) $ (Free (a,_)) $ T) = (a,T);
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	110
13764 3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	111	fun vars_tr (Const ("_idts", _) $ idt $ vars) = var_tr idt :: vars_tr vars
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	112	\| vars_tr t = [var_tr t]
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	113
3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	114	in
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	115	fun hoare_vars_tr [vars, pre, prg, post] =
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	116	let val xs = vars_tr vars
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	117	in Syntax.const "Valid" $
13764 3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	118	assn_tr pre xs $ com_tr prg xs $ assn_tr post xs
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	119	end
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	120	\| hoare_vars_tr ts = raise TERM ("hoare_vars_tr", ts);
13764 3e180bf68496 removed some problems with print translations nipkow parents: 13737 diff changeset	121	end
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	122	*}
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	123
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	124	parse_translation {* [("@hoare_vars", hoare_vars_tr)] *}
1335 5e1c0540f285 New directory. nipkow parents: diff changeset	125
5e1c0540f285 New directory. nipkow parents: diff changeset	126
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	127	(*****************************************************************************)
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	128
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	129	(* print translations *)
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	130	ML{*
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	131	fun dest_abstuple (Const ("split",_) $ (Abs(v,_, body))) =
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	132	subst_bound (Syntax.free v, dest_abstuple body)
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	133	\| dest_abstuple (Abs(v,_, body)) = subst_bound (Syntax.free v, body)
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	134	\| dest_abstuple trm = trm;
1335 5e1c0540f285 New directory. nipkow parents: diff changeset	135
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	136	fun abs2list (Const ("split",_) $ (Abs(x,T,t))) = Free (x, T)::abs2list t
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	137	\| abs2list (Abs(x,T,t)) = [Free (x, T)]
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	138	\| abs2list _ = [];
1335 5e1c0540f285 New directory. nipkow parents: diff changeset	139
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	140	fun mk_ts (Const ("split",_) $ (Abs(x,_,t))) = mk_ts t
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	141	\| mk_ts (Abs(x,_,t)) = mk_ts t
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	142	\| mk_ts (Const ("Pair",_) $ a $ b) = a::(mk_ts b)
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	143	\| mk_ts t = [t];
1335 5e1c0540f285 New directory. nipkow parents: diff changeset	144
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	145	fun mk_vts (Const ("split",_) $ (Abs(x,_,t))) =
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	146	((Syntax.free x)::(abs2list t), mk_ts t)
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	147	\| mk_vts (Abs(x,_,t)) = ([Syntax.free x], [t])
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	148	\| mk_vts t = raise Match;
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	149
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	150	fun find_ch [] i xs = (false, (Syntax.free "not_ch",Syntax.free "not_ch" ))
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	151	\| find_ch ((v,t)::vts) i xs = if t=(Bound i) then find_ch vts (i-1) xs
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	152	else (true, (v, subst_bounds (xs,t)));
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	153
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	154	fun is_f (Const ("split",_) $ (Abs(x,_,t))) = true
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	155	\| is_f (Abs(x,_,t)) = true
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	156	\| is_f t = false;
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	157	*}
91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	158
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	159	(* assn_tr' & bexp_tr'*)
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	160	ML{*
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	161	fun assn_tr' (Const ("Collect",_) $ T) = dest_abstuple T
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	162	\| assn_tr' (Const ("op Int",_) $ (Const ("Collect",_) $ T1) $
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	163	(Const ("Collect",_) $ T2)) =
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	164	Syntax.const "op Int" $ dest_abstuple T1 $ dest_abstuple T2
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	165	\| assn_tr' t = t;
1335 5e1c0540f285 New directory. nipkow parents: diff changeset	166
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	167	fun bexp_tr' (Const ("Collect",_) $ T) = dest_abstuple T
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	168	\| bexp_tr' t = t;
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	169	*}
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	170
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	171	(com_tr' )
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	172	ML{*
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	173	fun mk_assign f =
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	174	let val (vs, ts) = mk_vts f;
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	175	val (ch, which) = find_ch (vs~~ts) ((length vs)-1) (rev vs)
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	176	in if ch then Syntax.const "@assign" $ fst(which) $ snd(which)
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	177	else Syntax.const "@skip" end;
1335 5e1c0540f285 New directory. nipkow parents: diff changeset	178
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	179	fun com_tr' (Const ("Basic",_) $ f) = if is_f f then mk_assign f
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	180	else Syntax.const "Basic" $ f
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	181	\| com_tr' (Const ("Seq",_) $ c1 $ c2) = Syntax.const "Seq" $
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	182	com_tr' c1 $ com_tr' c2
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	183	\| com_tr' (Const ("Cond",_) $ b $ c1 $ c2) = Syntax.const "Cond" $
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	184	bexp_tr' b $ com_tr' c1 $ com_tr' c2
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	185	\| com_tr' (Const ("While",_) $ b $ I $ c) = Syntax.const "While" $
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	186	bexp_tr' b $ assn_tr' I $ com_tr' c
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	187	\| com_tr' t = t;
1335 5e1c0540f285 New directory. nipkow parents: diff changeset	188
5e1c0540f285 New directory. nipkow parents: diff changeset	189
5646 7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	190	fun spec_tr' [p, c, q] =
7c2ddbaf8b8c New many-sorted version. nipkow parents: 5565 diff changeset	191	Syntax.const "@hoare" $ assn_tr' p $ com_tr' c $ assn_tr' q
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	192	*}
91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	193
91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	194	print_translation {* [("Valid", spec_tr')] *}
91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	195
13857 11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	196	lemma SkipRule: "p \<subseteq> q \<Longrightarrow> Valid p (Basic id) q"
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	197	by (auto simp:Valid_def)
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	198
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	199	lemma BasicRule: "p \<subseteq> {s. f s \<in> q} \<Longrightarrow> Valid p (Basic f) q"
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	200	by (auto simp:Valid_def)
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	201
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	202	lemma SeqRule: "Valid P c1 Q \<Longrightarrow> Valid Q c2 R \<Longrightarrow> Valid P (c1;c2) R"
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	203	by (auto simp:Valid_def)
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	204
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	205	lemma CondRule:
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	206	"p \<subseteq> {s. (s \<in> b \<longrightarrow> s \<in> w) \<and> (s \<notin> b \<longrightarrow> s \<in> w')}
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	207	\<Longrightarrow> Valid w c1 q \<Longrightarrow> Valid w' c2 q \<Longrightarrow> Valid p (Cond b c1 c2) q"
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	208	by (auto simp:Valid_def)
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	209
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	210	lemma iter_aux: "! s s'. Sem c s s' --> s : I & s : b --> s' : I ==>
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	211	(\<And>s s'. s : I \<Longrightarrow> iter n b (Sem c) s s' \<Longrightarrow> s' : I & s' ~: b)";
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	212	apply(induct n)
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	213	apply clarsimp
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	214	apply(simp (no_asm_use))
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	215	apply blast
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	216	done
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	217
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	218	lemma WhileRule:
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	219	"p \<subseteq> i \<Longrightarrow> Valid (i \<inter> b) c i \<Longrightarrow> i \<inter> (-b) \<subseteq> q \<Longrightarrow> Valid p (While b i c) q"
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	220	apply (clarsimp simp:Valid_def)
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	221	apply(drule iter_aux)
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	222	prefer 2 apply assumption
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	223	apply blast
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	224	apply blast
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	225	done
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	226
11d7c5a8dbb7 * empty log message * nipkow parents: 13764 diff changeset	227
13696 631460c31a1f a new pointer example and some syntactic sugar nipkow parents: 13682 diff changeset	228	use "hoare.ML"
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	229
91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	230	method_setup vcg = {*
21588 cd0dc678a205 simplified method setup; wenzelm parents: 17781 diff changeset	231	Method.no_args (Method.SIMPLE_METHOD' (hoare_tac (K all_tac))) *}
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	232	"verification condition generator"
91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	233
91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	234	method_setup vcg_simp = {*
91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	235	Method.ctxt_args (fn ctxt =>
21588 cd0dc678a205 simplified method setup; wenzelm parents: 17781 diff changeset	236	Method.SIMPLE_METHOD' (hoare_tac (asm_full_simp_tac (local_simpset_of ctxt)))) *}
13682 91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	237	"verification condition generator plus simplification"
91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	238
91674c8a008b conversion ML -> thy nipkow parents: 11606 diff changeset	239	end

author	wenzelm
	Wed, 04 Apr 2007 00:11:21 +0200
changeset 22588	4a859d13ef83
parent 21588	cd0dc678a205
child 24470	41c81e23c08d
permissions	-rw-r--r--