isabelle: doc-src/TutorialI/Recdef/Nested1.thy@689868b99bde (annotated)

9645 20ae97cd2a16 * empty log message * nipkow parents: diff changeset	1	(<)
11626 0dbfb578bf75 recdef (permissive); wenzelm parents: 11494 diff changeset	2	theory Nested1 = Nested0:
9645 20ae97cd2a16 * empty log message * nipkow parents: diff changeset	3	(>)
20ae97cd2a16 * empty log message * nipkow parents: diff changeset	4
20ae97cd2a16 * empty log message * nipkow parents: diff changeset	5	text{*\noindent
11277 a2bff98d6e5d * empty log message * nipkow parents: 10885 diff changeset	6	Although the definition of @{term trev} below is quite natural, we will have
10885 90695f46440b lcp's pass over the book, chapters 1-8 paulson parents: 10242 diff changeset	7	to overcome a minor difficulty in convincing Isabelle of its termination.
9754 a123a64cadeb * empty log message * nipkow parents: 9689 diff changeset	8	It is precisely this difficulty that is the \textit{raison d'\^etre} of
9645 20ae97cd2a16 * empty log message * nipkow parents: diff changeset	9	this subsection.
20ae97cd2a16 * empty log message * nipkow parents: diff changeset	10
10171 59d6633835fa * empty log message * nipkow parents: 9933 diff changeset	11	Defining @{term trev} by \isacommand{recdef} rather than \isacommand{primrec}
9645 20ae97cd2a16 * empty log message * nipkow parents: diff changeset	12	simplifies matters because we are now free to use the recursion equation
20ae97cd2a16 * empty log message * nipkow parents: diff changeset	13	suggested at the end of \S\ref{sec:nested-datatype}:
11626 0dbfb578bf75 recdef (permissive); wenzelm parents: 11494 diff changeset	14	*}
9645 20ae97cd2a16 * empty log message * nipkow parents: diff changeset	15
11636 0bec857c9871 oops; wenzelm parents: 11626 diff changeset	16	recdef (<)(permissive)(>)trev "measure size"
9754 a123a64cadeb * empty log message * nipkow parents: 9689 diff changeset	17	"trev (Var x) = Var x"
11626 0dbfb578bf75 recdef (permissive); wenzelm parents: 11494 diff changeset	18	"trev (App f ts) = App f (rev(map trev ts))"
9689 751fde5307e4 * empty log message * nipkow parents: 9645 diff changeset	19
9754 a123a64cadeb * empty log message * nipkow parents: 9689 diff changeset	20	text{*\noindent
10171 59d6633835fa * empty log message * nipkow parents: 9933 diff changeset	21	Remember that function @{term size} is defined for each \isacommand{datatype}.
9754 a123a64cadeb * empty log message * nipkow parents: 9689 diff changeset	22	However, the definition does not succeed. Isabelle complains about an
a123a64cadeb * empty log message * nipkow parents: 9689 diff changeset	23	unproved termination condition
10242 028f54cd2cc9 * empty log message * nipkow parents: 10186 diff changeset	24	@{prop[display]"t : set ts --> size t < Suc (term_list_size ts)"}
10171 59d6633835fa * empty log message * nipkow parents: 9933 diff changeset	25	where @{term set} returns the set of elements of a list
9933 9feb1e0c4cb3 * empty log message * nipkow parents: 9834 diff changeset	26	and @{text"term_list_size :: term list \<Rightarrow> nat"} is an auxiliary
9feb1e0c4cb3 * empty log message * nipkow parents: 9834 diff changeset	27	function automatically defined by Isabelle
11494 23a118849801 revisions and indexing paulson parents: 11277 diff changeset	28	(while processing the declaration of @{text term}). Why does the
23a118849801 revisions and indexing paulson parents: 11277 diff changeset	29	recursive call of @{term trev} lead to this
23a118849801 revisions and indexing paulson parents: 11277 diff changeset	30	condition? Because \isacommand{recdef} knows that @{term map}
10885 90695f46440b lcp's pass over the book, chapters 1-8 paulson parents: 10242 diff changeset	31	will apply @{term trev} only to elements of @{term ts}. Thus the
10171 59d6633835fa * empty log message * nipkow parents: 9933 diff changeset	32	condition expresses that the size of the argument @{prop"t : set ts"} of any
10885 90695f46440b lcp's pass over the book, chapters 1-8 paulson parents: 10242 diff changeset	33	recursive call of @{term trev} is strictly less than @{term"size(App f ts)"},
90695f46440b lcp's pass over the book, chapters 1-8 paulson parents: 10242 diff changeset	34	which equals @{term"Suc(term_list_size ts)"}. We will now prove the termination condition and
9754 a123a64cadeb * empty log message * nipkow parents: 9689 diff changeset	35	continue with our definition. Below we return to the question of how
11494 23a118849801 revisions and indexing paulson parents: 11277 diff changeset	36	\isacommand{recdef} knows about @{term map}.
12491 e28870d8b223 * empty log message * nipkow parents: 11636 diff changeset	37
e28870d8b223 * empty log message * nipkow parents: 11636 diff changeset	38	The termination condition is easily proved by induction:
11626 0dbfb578bf75 recdef (permissive); wenzelm parents: 11494 diff changeset	39	*}
9645 20ae97cd2a16 * empty log message * nipkow parents: diff changeset	40
20ae97cd2a16 * empty log message * nipkow parents: diff changeset	41	(<)
11626 0dbfb578bf75 recdef (permissive); wenzelm parents: 11494 diff changeset	42	end
9754 a123a64cadeb * empty log message * nipkow parents: 9689 diff changeset	43	(>)

author	kleing
	Wed, 07 May 2003 16:38:55 +0200
changeset 13968	689868b99bde
parent 12491	e28870d8b223
child 15905	0a4cc9b113c7
permissions	-rw-r--r--