isabelle: doc-src/TutorialI/Ifexpr/document/Ifexpr.tex@61272514e3b5 (annotated)

9722 a5f86aed785b * empty log message * nipkow parents: 9721 diff changeset	1	%
a5f86aed785b * empty log message * nipkow parents: 9721 diff changeset	2	\begin{isabellebody}%
9924 3370f6aa3200 updated; wenzelm parents: 9792 diff changeset	3	\def\isabellecontext{Ifexpr}%
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	4	\isamarkupfalse%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	5	%
10878 b254d5ad6dd4 auto update paulson parents: 10795 diff changeset	6	\isamarkupsubsection{Case Study: Boolean Expressions%
10395 7ef380745743 updated; wenzelm parents: 10187 diff changeset	7	}
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	8	\isamarkuptrue%
9933 9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	9	%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	10	\begin{isamarkuptext}%
11456 7eb63f63e6c6 revisions and indexing paulson parents: 10978 diff changeset	11	\label{sec:boolex}\index{boolean expressions example\|(}
9933 9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	12	The aim of this case study is twofold: it shows how to model boolean
9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	13	expressions and some algorithms for manipulating them, and it demonstrates
9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	14	the constructs introduced above.%
9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	15	\end{isamarkuptext}%
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	16	\isamarkuptrue%
9933 9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	17	%
10978 5eebea8f359f * empty log message * nipkow parents: 10971 diff changeset	18	\isamarkupsubsubsection{Modelling Boolean Expressions%
10395 7ef380745743 updated; wenzelm parents: 10187 diff changeset	19	}
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	20	\isamarkuptrue%
9933 9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	21	%
9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	22	\begin{isamarkuptext}%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	23	We want to represent boolean expressions built up from variables and
2665170f104a Adding generated files nipkow parents: diff changeset	24	constants by negation and conjunction. The following datatype serves exactly
2665170f104a Adding generated files nipkow parents: diff changeset	25	that purpose:%
2665170f104a Adding generated files nipkow parents: diff changeset	26	\end{isamarkuptext}%
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	27	\isamarkuptrue%
9673 1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	28	\isacommand{datatype}\ boolex\ {\isacharequal}\ Const\ bool\ {\isacharbar}\ Var\ nat\ {\isacharbar}\ Neg\ boolex\isanewline
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	29	\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ {\isacharbar}\ And\ boolex\ boolex\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	30	%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	31	\begin{isamarkuptext}%
2665170f104a Adding generated files nipkow parents: diff changeset	32	\noindent
9541 d17c0b34d5c8 * empty log message * nipkow parents: 9458 diff changeset	33	The two constants are represented by \isa{Const\ True} and
d17c0b34d5c8 * empty log message * nipkow parents: 9458 diff changeset	34	\isa{Const\ False}. Variables are represented by terms of the form
9792 bbefb6ce5cb2 * empty log message * nipkow parents: 9722 diff changeset	35	\isa{Var\ n}, where \isa{n} is a natural number (type \isa{nat}).
8749 2665170f104a Adding generated files nipkow parents: diff changeset	36	For example, the formula $P@0 \land \neg P@1$ is represented by the term
10187 0376cccd9118 * empty log message * nipkow parents: 10171 diff changeset	37	\isa{And\ {\isacharparenleft}Var\ {\isadigit{0}}{\isacharparenright}\ {\isacharparenleft}Neg\ {\isacharparenleft}Var\ {\isadigit{1}}{\isacharparenright}{\isacharparenright}}.
8749 2665170f104a Adding generated files nipkow parents: diff changeset	38
10978 5eebea8f359f * empty log message * nipkow parents: 10971 diff changeset	39	\subsubsection{The Value of a Boolean Expression}
8749 2665170f104a Adding generated files nipkow parents: diff changeset	40
2665170f104a Adding generated files nipkow parents: diff changeset	41	The value of a boolean expression depends on the value of its variables.
9792 bbefb6ce5cb2 * empty log message * nipkow parents: 9722 diff changeset	42	Hence the function \isa{value} takes an additional parameter, an
bbefb6ce5cb2 * empty log message * nipkow parents: 9722 diff changeset	43	\emph{environment} of type \isa{nat\ {\isasymRightarrow}\ bool}, which maps variables to their
bbefb6ce5cb2 * empty log message * nipkow parents: 9722 diff changeset	44	values:%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	45	\end{isamarkuptext}%
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	46	\isamarkuptrue%
9673 1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	47	\isacommand{consts}\ value\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequote}boolex\ {\isasymRightarrow}\ {\isacharparenleft}nat\ {\isasymRightarrow}\ bool{\isacharparenright}\ {\isasymRightarrow}\ bool{\isachardoublequote}\isanewline
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	48	\isamarkupfalse%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	49	\isacommand{primrec}\isanewline
9673 1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	50	{\isachardoublequote}value\ {\isacharparenleft}Const\ b{\isacharparenright}\ env\ {\isacharequal}\ b{\isachardoublequote}\isanewline
1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	51	{\isachardoublequote}value\ {\isacharparenleft}Var\ x{\isacharparenright}\ \ \ env\ {\isacharequal}\ env\ x{\isachardoublequote}\isanewline
1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	52	{\isachardoublequote}value\ {\isacharparenleft}Neg\ b{\isacharparenright}\ \ \ env\ {\isacharequal}\ {\isacharparenleft}{\isasymnot}\ value\ b\ env{\isacharparenright}{\isachardoublequote}\isanewline
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	53	{\isachardoublequote}value\ {\isacharparenleft}And\ b\ c{\isacharparenright}\ env\ {\isacharequal}\ {\isacharparenleft}value\ b\ env\ {\isasymand}\ value\ c\ env{\isacharparenright}{\isachardoublequote}\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	54	%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	55	\begin{isamarkuptext}%
2665170f104a Adding generated files nipkow parents: diff changeset	56	\noindent
10878 b254d5ad6dd4 auto update paulson parents: 10795 diff changeset	57	\subsubsection{If-Expressions}
8749 2665170f104a Adding generated files nipkow parents: diff changeset	58
2665170f104a Adding generated files nipkow parents: diff changeset	59	An alternative and often more efficient (because in a certain sense
2665170f104a Adding generated files nipkow parents: diff changeset	60	canonical) representation are so-called \emph{If-expressions} built up
2665170f104a Adding generated files nipkow parents: diff changeset	61	from constants (\isa{CIF}), variables (\isa{VIF}) and conditionals
2665170f104a Adding generated files nipkow parents: diff changeset	62	(\isa{IF}):%
2665170f104a Adding generated files nipkow parents: diff changeset	63	\end{isamarkuptext}%
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	64	\isamarkuptrue%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	65	\isacommand{datatype}\ ifex\ {\isacharequal}\ CIF\ bool\ {\isacharbar}\ VIF\ nat\ {\isacharbar}\ IF\ ifex\ ifex\ ifex\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	66	%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	67	\begin{isamarkuptext}%
2665170f104a Adding generated files nipkow parents: diff changeset	68	\noindent
10971 6852682eaf16 * empty log message * nipkow parents: 10878 diff changeset	69	The evaluation of If-expressions proceeds as for \isa{boolex}:%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	70	\end{isamarkuptext}%
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	71	\isamarkuptrue%
9673 1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	72	\isacommand{consts}\ valif\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequote}ifex\ {\isasymRightarrow}\ {\isacharparenleft}nat\ {\isasymRightarrow}\ bool{\isacharparenright}\ {\isasymRightarrow}\ bool{\isachardoublequote}\isanewline
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	73	\isamarkupfalse%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	74	\isacommand{primrec}\isanewline
9673 1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	75	{\isachardoublequote}valif\ {\isacharparenleft}CIF\ b{\isacharparenright}\ \ \ \ env\ {\isacharequal}\ b{\isachardoublequote}\isanewline
1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	76	{\isachardoublequote}valif\ {\isacharparenleft}VIF\ x{\isacharparenright}\ \ \ \ env\ {\isacharequal}\ env\ x{\isachardoublequote}\isanewline
1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	77	{\isachardoublequote}valif\ {\isacharparenleft}IF\ b\ t\ e{\isacharparenright}\ env\ {\isacharequal}\ {\isacharparenleft}if\ valif\ b\ env\ then\ valif\ t\ env\isanewline
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	78	\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ else\ valif\ e\ env{\isacharparenright}{\isachardoublequote}\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	79	%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	80	\begin{isamarkuptext}%
10978 5eebea8f359f * empty log message * nipkow parents: 10971 diff changeset	81	\subsubsection{Converting Boolean and If-Expressions}
8749 2665170f104a Adding generated files nipkow parents: diff changeset	82
2665170f104a Adding generated files nipkow parents: diff changeset	83	The type \isa{boolex} is close to the customary representation of logical
8771 026f37a86ea7 * empty log message * nipkow parents: 8749 diff changeset	84	formulae, whereas \isa{ifex} is designed for efficiency. It is easy to
8749 2665170f104a Adding generated files nipkow parents: diff changeset	85	translate from \isa{boolex} into \isa{ifex}:%
2665170f104a Adding generated files nipkow parents: diff changeset	86	\end{isamarkuptext}%
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	87	\isamarkuptrue%
10187 0376cccd9118 * empty log message * nipkow parents: 10171 diff changeset	88	\isacommand{consts}\ bool{\isadigit{2}}if\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequote}boolex\ {\isasymRightarrow}\ ifex{\isachardoublequote}\isanewline
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	89	\isamarkupfalse%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	90	\isacommand{primrec}\isanewline
10187 0376cccd9118 * empty log message * nipkow parents: 10171 diff changeset	91	{\isachardoublequote}bool{\isadigit{2}}if\ {\isacharparenleft}Const\ b{\isacharparenright}\ {\isacharequal}\ CIF\ b{\isachardoublequote}\isanewline
0376cccd9118 * empty log message * nipkow parents: 10171 diff changeset	92	{\isachardoublequote}bool{\isadigit{2}}if\ {\isacharparenleft}Var\ x{\isacharparenright}\ \ \ {\isacharequal}\ VIF\ x{\isachardoublequote}\isanewline
0376cccd9118 * empty log message * nipkow parents: 10171 diff changeset	93	{\isachardoublequote}bool{\isadigit{2}}if\ {\isacharparenleft}Neg\ b{\isacharparenright}\ \ \ {\isacharequal}\ IF\ {\isacharparenleft}bool{\isadigit{2}}if\ b{\isacharparenright}\ {\isacharparenleft}CIF\ False{\isacharparenright}\ {\isacharparenleft}CIF\ True{\isacharparenright}{\isachardoublequote}\isanewline
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	94	{\isachardoublequote}bool{\isadigit{2}}if\ {\isacharparenleft}And\ b\ c{\isacharparenright}\ {\isacharequal}\ IF\ {\isacharparenleft}bool{\isadigit{2}}if\ b{\isacharparenright}\ {\isacharparenleft}bool{\isadigit{2}}if\ c{\isacharparenright}\ {\isacharparenleft}CIF\ False{\isacharparenright}{\isachardoublequote}\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	95	%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	96	\begin{isamarkuptext}%
2665170f104a Adding generated files nipkow parents: diff changeset	97	\noindent
10187 0376cccd9118 * empty log message * nipkow parents: 10171 diff changeset	98	At last, we have something we can verify: that \isa{bool{\isadigit{2}}if} preserves the
8749 2665170f104a Adding generated files nipkow parents: diff changeset	99	value of its argument:%
2665170f104a Adding generated files nipkow parents: diff changeset	100	\end{isamarkuptext}%
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	101	\isamarkuptrue%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	102	\isacommand{lemma}\ {\isachardoublequote}valif\ {\isacharparenleft}bool{\isadigit{2}}if\ b{\isacharparenright}\ env\ {\isacharequal}\ value\ b\ env{\isachardoublequote}\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	103	%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	104	\begin{isamarkuptxt}%
2665170f104a Adding generated files nipkow parents: diff changeset	105	\noindent
2665170f104a Adding generated files nipkow parents: diff changeset	106	The proof is canonical:%
2665170f104a Adding generated files nipkow parents: diff changeset	107	\end{isamarkuptxt}%
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	108	\isamarkuptrue%
9673 1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	109	\isacommand{apply}{\isacharparenleft}induct{\isacharunderscore}tac\ b{\isacharparenright}\isanewline
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	110	\isamarkupfalse%
10171 59d6633835fa * empty log message * nipkow parents: 9933 diff changeset	111	\isacommand{apply}{\isacharparenleft}auto{\isacharparenright}\isanewline
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	112	\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	113	\isacommand{done}\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	114	%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	115	\begin{isamarkuptext}%
2665170f104a Adding generated files nipkow parents: diff changeset	116	\noindent
2665170f104a Adding generated files nipkow parents: diff changeset	117	In fact, all proofs in this case study look exactly like this. Hence we do
2665170f104a Adding generated files nipkow parents: diff changeset	118	not show them below.
2665170f104a Adding generated files nipkow parents: diff changeset	119
2665170f104a Adding generated files nipkow parents: diff changeset	120	More interesting is the transformation of If-expressions into a normal form
2665170f104a Adding generated files nipkow parents: diff changeset	121	where the first argument of \isa{IF} cannot be another \isa{IF} but
2665170f104a Adding generated files nipkow parents: diff changeset	122	must be a constant or variable. Such a normal form can be computed by
9792 bbefb6ce5cb2 * empty log message * nipkow parents: 9722 diff changeset	123	repeatedly replacing a subterm of the form \isa{IF\ {\isacharparenleft}IF\ b\ x\ y{\isacharparenright}\ z\ u} by
bbefb6ce5cb2 * empty log message * nipkow parents: 9722 diff changeset	124	\isa{IF\ b\ {\isacharparenleft}IF\ x\ z\ u{\isacharparenright}\ {\isacharparenleft}IF\ y\ z\ u{\isacharparenright}}, which has the same value. The following
8749 2665170f104a Adding generated files nipkow parents: diff changeset	125	primitive recursive functions perform this task:%
2665170f104a Adding generated files nipkow parents: diff changeset	126	\end{isamarkuptext}%
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	127	\isamarkuptrue%
9673 1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	128	\isacommand{consts}\ normif\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequote}ifex\ {\isasymRightarrow}\ ifex\ {\isasymRightarrow}\ ifex\ {\isasymRightarrow}\ ifex{\isachardoublequote}\isanewline
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	129	\isamarkupfalse%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	130	\isacommand{primrec}\isanewline
9673 1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	131	{\isachardoublequote}normif\ {\isacharparenleft}CIF\ b{\isacharparenright}\ \ \ \ t\ e\ {\isacharequal}\ IF\ {\isacharparenleft}CIF\ b{\isacharparenright}\ t\ e{\isachardoublequote}\isanewline
1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	132	{\isachardoublequote}normif\ {\isacharparenleft}VIF\ x{\isacharparenright}\ \ \ \ t\ e\ {\isacharequal}\ IF\ {\isacharparenleft}VIF\ x{\isacharparenright}\ t\ e{\isachardoublequote}\isanewline
1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	133	{\isachardoublequote}normif\ {\isacharparenleft}IF\ b\ t\ e{\isacharparenright}\ u\ f\ {\isacharequal}\ normif\ b\ {\isacharparenleft}normif\ t\ u\ f{\isacharparenright}\ {\isacharparenleft}normif\ e\ u\ f{\isacharparenright}{\isachardoublequote}\isanewline
8749 2665170f104a Adding generated files nipkow parents: diff changeset	134	\isanewline
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	135	\isamarkupfalse%
9673 1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	136	\isacommand{consts}\ norm\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequote}ifex\ {\isasymRightarrow}\ ifex{\isachardoublequote}\isanewline
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	137	\isamarkupfalse%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	138	\isacommand{primrec}\isanewline
9673 1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	139	{\isachardoublequote}norm\ {\isacharparenleft}CIF\ b{\isacharparenright}\ \ \ \ {\isacharequal}\ CIF\ b{\isachardoublequote}\isanewline
1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	140	{\isachardoublequote}norm\ {\isacharparenleft}VIF\ x{\isacharparenright}\ \ \ \ {\isacharequal}\ VIF\ x{\isachardoublequote}\isanewline
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	141	{\isachardoublequote}norm\ {\isacharparenleft}IF\ b\ t\ e{\isacharparenright}\ {\isacharequal}\ normif\ b\ {\isacharparenleft}norm\ t{\isacharparenright}\ {\isacharparenleft}norm\ e{\isacharparenright}{\isachardoublequote}\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	142	%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	143	\begin{isamarkuptext}%
2665170f104a Adding generated files nipkow parents: diff changeset	144	\noindent
11456 7eb63f63e6c6 revisions and indexing paulson parents: 10978 diff changeset	145	Their interplay is tricky; we leave it to you to develop an
8749 2665170f104a Adding generated files nipkow parents: diff changeset	146	intuitive understanding. Fortunately, Isabelle can help us to verify that the
2665170f104a Adding generated files nipkow parents: diff changeset	147	transformation preserves the value of the expression:%
2665170f104a Adding generated files nipkow parents: diff changeset	148	\end{isamarkuptext}%
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	149	\isamarkuptrue%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	150	\isacommand{theorem}\ {\isachardoublequote}valif\ {\isacharparenleft}norm\ b{\isacharparenright}\ env\ {\isacharequal}\ valif\ b\ env{\isachardoublequote}\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	151	\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	152	%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	153	\begin{isamarkuptext}%
2665170f104a Adding generated files nipkow parents: diff changeset	154	\noindent
2665170f104a Adding generated files nipkow parents: diff changeset	155	The proof is canonical, provided we first show the following simplification
11456 7eb63f63e6c6 revisions and indexing paulson parents: 10978 diff changeset	156	lemma, which also helps to understand what \isa{normif} does:%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	157	\end{isamarkuptext}%
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	158	\isamarkuptrue%
9673 1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	159	\isacommand{lemma}\ {\isacharbrackleft}simp{\isacharbrackright}{\isacharcolon}\isanewline
13778 61272514e3b5 auto-update paulson parents: 13758 diff changeset	160	\ \ {\isachardoublequote}{\isasymforall}t\ e{\isachardot}\ valif\ {\isacharparenleft}normif\ b\ t\ e{\isacharparenright}\ env\ {\isacharequal}\ valif\ {\isacharparenleft}IF\ b\ t\ e{\isacharparenright}\ env{\isachardoublequote}\isanewline
61272514e3b5 auto-update paulson parents: 13758 diff changeset	161	\isamarkupfalse%
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	162	\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	163	\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	164	\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	165	\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	166	\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	167	%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	168	\begin{isamarkuptext}%
2665170f104a Adding generated files nipkow parents: diff changeset	169	\noindent
2665170f104a Adding generated files nipkow parents: diff changeset	170	Note that the lemma does not have a name, but is implicitly used in the proof
9792 bbefb6ce5cb2 * empty log message * nipkow parents: 9722 diff changeset	171	of the theorem shown above because of the \isa{{\isacharbrackleft}simp{\isacharbrackright}} attribute.
8749 2665170f104a Adding generated files nipkow parents: diff changeset	172
2665170f104a Adding generated files nipkow parents: diff changeset	173	But how can we be sure that \isa{norm} really produces a normal form in
11456 7eb63f63e6c6 revisions and indexing paulson parents: 10978 diff changeset	174	the above sense? We define a function that tests If-expressions for normality:%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	175	\end{isamarkuptext}%
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	176	\isamarkuptrue%
9673 1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	177	\isacommand{consts}\ normal\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequote}ifex\ {\isasymRightarrow}\ bool{\isachardoublequote}\isanewline
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	178	\isamarkupfalse%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	179	\isacommand{primrec}\isanewline
9673 1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	180	{\isachardoublequote}normal{\isacharparenleft}CIF\ b{\isacharparenright}\ {\isacharequal}\ True{\isachardoublequote}\isanewline
1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	181	{\isachardoublequote}normal{\isacharparenleft}VIF\ x{\isacharparenright}\ {\isacharequal}\ True{\isachardoublequote}\isanewline
1b2d4f995b13 updated; wenzelm parents: 9644 diff changeset	182	{\isachardoublequote}normal{\isacharparenleft}IF\ b\ t\ e{\isacharparenright}\ {\isacharequal}\ {\isacharparenleft}normal\ t\ {\isasymand}\ normal\ e\ {\isasymand}\isanewline
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	183	\ \ \ \ \ {\isacharparenleft}case\ b\ of\ CIF\ b\ {\isasymRightarrow}\ True\ {\isacharbar}\ VIF\ x\ {\isasymRightarrow}\ True\ {\isacharbar}\ IF\ x\ y\ z\ {\isasymRightarrow}\ False{\isacharparenright}{\isacharparenright}{\isachardoublequote}\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	184	%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	185	\begin{isamarkuptext}%
2665170f104a Adding generated files nipkow parents: diff changeset	186	\noindent
11456 7eb63f63e6c6 revisions and indexing paulson parents: 10978 diff changeset	187	Now we prove \isa{normal\ {\isacharparenleft}norm\ b{\isacharparenright}}. Of course, this requires a lemma about
8749 2665170f104a Adding generated files nipkow parents: diff changeset	188	normality of \isa{normif}:%
2665170f104a Adding generated files nipkow parents: diff changeset	189	\end{isamarkuptext}%
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	190	\isamarkuptrue%
13778 61272514e3b5 auto-update paulson parents: 13758 diff changeset	191	\isacommand{lemma}\ {\isacharbrackleft}simp{\isacharbrackright}{\isacharcolon}\ {\isachardoublequote}{\isasymforall}t\ e{\isachardot}\ normal{\isacharparenleft}normif\ b\ t\ e{\isacharparenright}\ {\isacharequal}\ {\isacharparenleft}normal\ t\ {\isasymand}\ normal\ e{\isacharparenright}{\isachardoublequote}\isanewline
61272514e3b5 auto-update paulson parents: 13758 diff changeset	192	\isamarkupfalse%
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	193	\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	194	\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	195	\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	196	\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	197	\isamarkupfalse%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	198	%
9933 9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	199	\begin{isamarkuptext}%
9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	200	\medskip
10795 9e888d60d3e5 minor edits to Chapters 1-3 paulson parents: 10395 diff changeset	201	How do we come up with the required lemmas? Try to prove the main theorems
9e888d60d3e5 minor edits to Chapters 1-3 paulson parents: 10395 diff changeset	202	without them and study carefully what \isa{auto} leaves unproved. This
9e888d60d3e5 minor edits to Chapters 1-3 paulson parents: 10395 diff changeset	203	can provide the clue. The necessity of universal quantification
9933 9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	204	(\isa{{\isasymforall}t\ e}) in the two lemmas is explained in
9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	205	\S\ref{sec:InductionHeuristics}
9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	206
9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	207	\begin{exercise}
9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	208	We strengthen the definition of a \isa{normal} If-expression as follows:
9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	209	the first argument of all \isa{IF}s must be a variable. Adapt the above
9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	210	development to this changed requirement. (Hint: you may need to formulate
9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	211	some of the goals as implications (\isa{{\isasymlongrightarrow}}) rather than
9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	212	equalities (\isa{{\isacharequal}}).)
11456 7eb63f63e6c6 revisions and indexing paulson parents: 10978 diff changeset	213	\end{exercise}
7eb63f63e6c6 revisions and indexing paulson parents: 10978 diff changeset	214	\index{boolean expressions example\|)}%
9933 9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	215	\end{isamarkuptext}%
11866 fbd097aec213 updated; wenzelm parents: 11456 diff changeset	216	\isamarkuptrue%
fbd097aec213 updated; wenzelm parents: 11456 diff changeset	217	\isamarkupfalse%
9933 9feb1e0c4cb3 * empty log message * nipkow parents: 9924 diff changeset	218	\end{isabellebody}%
9145 9f7b8de5bfaf updated; wenzelm parents: 8771 diff changeset	219	%%% Local Variables:
9f7b8de5bfaf updated; wenzelm parents: 8771 diff changeset	220	%%% mode: latex
9f7b8de5bfaf updated; wenzelm parents: 8771 diff changeset	221	%%% TeX-master: "root"
9f7b8de5bfaf updated; wenzelm parents: 8771 diff changeset	222	%%% End:

author	paulson
	Wed, 15 Jan 2003 16:43:12 +0100
changeset 13778	61272514e3b5
parent 13758	ee898d32de21
child 13791	3b6ff7ceaf27
permissions	-rw-r--r--