isabelle: src/HOL/Library/While_Combinator.thy@71590b7733b7 (annotated)

10251 5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	1	(* Title: HOL/Library/While.thy
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	2	ID: $Id$
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	3	Author: Tobias Nipkow
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	4	Copyright 2000 TU Muenchen
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	5	*)
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	6
14706 71590b7733b7 tuned document; wenzelm parents: 14589 diff changeset	7	header {* A general ``while'' combinator *}
10251 5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	8
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	9	theory While_Combinator = Main:
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	10
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	11	text {*
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	12	We define a while-combinator @{term while} and prove: (a) an
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	13	unrestricted unfolding law (even if while diverges!) (I got this
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	14	idea from Wolfgang Goerigk), and (b) the invariant rule for reasoning
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	15	about @{term while}.
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	16	*}
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	17
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	18	consts while_aux :: "('a => bool) \<times> ('a => 'a) \<times> 'a => 'a"
11626 0dbfb578bf75 recdef (permissive); wenzelm parents: 11549 diff changeset	19	recdef (permissive) while_aux
10251 5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	20	"same_fst (\<lambda>b. True) (\<lambda>b. same_fst (\<lambda>c. True) (\<lambda>c.
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	21	{(t, s). b s \<and> c s = t \<and>
11701 3d51fbf81c17 sane numerals (stage 1): added generic 1, removed 1' and 2 on nat, wenzelm parents: 11626 diff changeset	22	\<not> (\<exists>f. f (0::nat) = s \<and> (\<forall>i. b (f i) \<and> c (f i) = f (i + 1)))}))"
10251 5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	23	"while_aux (b, c, s) =
11701 3d51fbf81c17 sane numerals (stage 1): added generic 1, removed 1' and 2 on nat, wenzelm parents: 11626 diff changeset	24	(if (\<exists>f. f (0::nat) = s \<and> (\<forall>i. b (f i) \<and> c (f i) = f (i + 1)))
10251 5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	25	then arbitrary
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	26	else if b s then while_aux (b, c, c s)
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	27	else s)"
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	28
10774 4de3a0d3ae28 recdef_tc; wenzelm parents: 10673 diff changeset	29	recdef_tc while_aux_tc: while_aux
4de3a0d3ae28 recdef_tc; wenzelm parents: 10673 diff changeset	30	apply (rule wf_same_fst)
4de3a0d3ae28 recdef_tc; wenzelm parents: 10673 diff changeset	31	apply (rule wf_same_fst)
4de3a0d3ae28 recdef_tc; wenzelm parents: 10673 diff changeset	32	apply (simp add: wf_iff_no_infinite_down_chain)
4de3a0d3ae28 recdef_tc; wenzelm parents: 10673 diff changeset	33	apply blast
4de3a0d3ae28 recdef_tc; wenzelm parents: 10673 diff changeset	34	done
4de3a0d3ae28 recdef_tc; wenzelm parents: 10673 diff changeset	35
10251 5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	36	constdefs
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	37	while :: "('a => bool) => ('a => 'a) => 'a => 'a"
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	38	"while b c s == while_aux (b, c, s)"
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	39
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	40	lemma while_aux_unfold:
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	41	"while_aux (b, c, s) =
11701 3d51fbf81c17 sane numerals (stage 1): added generic 1, removed 1' and 2 on nat, wenzelm parents: 11626 diff changeset	42	(if \<exists>f. f (0::nat) = s \<and> (\<forall>i. b (f i) \<and> c (f i) = f (i + 1))
10251 5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	43	then arbitrary
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	44	else if b s then while_aux (b, c, c s)
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	45	else s)"
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	46	apply (rule while_aux_tc [THEN while_aux.simps [THEN trans]])
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	47	apply (rule refl)
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	48	done
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	49
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	50	text {*
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	51	The recursion equation for @{term while}: directly executable!
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	52	*}
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	53
12791 ccc0f45ad2c4 registered directly executable version with the code generator kleing parents: 11914 diff changeset	54	theorem while_unfold [code]:
10251 5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	55	"while b c s = (if b s then while b c (c s) else s)"
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	56	apply (unfold while_def)
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	57	apply (rule while_aux_unfold [THEN trans])
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	58	apply auto
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	59	apply (subst while_aux_unfold)
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	60	apply simp
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	61	apply clarify
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	62	apply (erule_tac x = "\<lambda>i. f (Suc i)" in allE)
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	63	apply blast
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	64	done
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	65
10984 8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	66	hide const while_aux
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	67
14300 bf8b8c9425c3 * empty log message * nipkow parents: 12791 diff changeset	68	lemma def_while_unfold: assumes fdef: "f == while test do"
bf8b8c9425c3 * empty log message * nipkow parents: 12791 diff changeset	69	shows "f x = (if test x then f(do x) else x)"
bf8b8c9425c3 * empty log message * nipkow parents: 12791 diff changeset	70	proof -
bf8b8c9425c3 * empty log message * nipkow parents: 12791 diff changeset	71	have "f x = while test do x" using fdef by simp
bf8b8c9425c3 * empty log message * nipkow parents: 12791 diff changeset	72	also have "\<dots> = (if test x then while test do (do x) else x)"
bf8b8c9425c3 * empty log message * nipkow parents: 12791 diff changeset	73	by(rule while_unfold)
bf8b8c9425c3 * empty log message * nipkow parents: 12791 diff changeset	74	also have "\<dots> = (if test x then f(do x) else x)" by(simp add:fdef[symmetric])
bf8b8c9425c3 * empty log message * nipkow parents: 12791 diff changeset	75	finally show ?thesis .
bf8b8c9425c3 * empty log message * nipkow parents: 12791 diff changeset	76	qed
bf8b8c9425c3 * empty log message * nipkow parents: 12791 diff changeset	77
bf8b8c9425c3 * empty log message * nipkow parents: 12791 diff changeset	78
10251 5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	79	text {*
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	80	The proof rule for @{term while}, where @{term P} is the invariant.
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	81	*}
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	82
10653 55f33da63366 small mods. nipkow parents: 10269 diff changeset	83	theorem while_rule_lemma[rule_format]:
10984 8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	84	"[\| !!s. P s ==> b s ==> P (c s);
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	85	!!s. P s ==> \<not> b s ==> Q s;
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	86	wf {(t, s). P s \<and> b s \<and> t = c s} \|] ==>
10251 5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	87	P s --> Q (while b c s)"
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	88	proof -
11549 e7265e70fd7c renamed "antecedent" case to "rule_context"; wenzelm parents: 11284 diff changeset	89	case rule_context
10251 5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	90	assume wf: "wf {(t, s). P s \<and> b s \<and> t = c s}"
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	91	show ?thesis
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	92	apply (induct s rule: wf [THEN wf_induct])
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	93	apply simp
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	94	apply clarify
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	95	apply (subst while_unfold)
11549 e7265e70fd7c renamed "antecedent" case to "rule_context"; wenzelm parents: 11284 diff changeset	96	apply (simp add: rule_context)
10251 5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	97	done
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	98	qed
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	99
10653 55f33da63366 small mods. nipkow parents: 10269 diff changeset	100	theorem while_rule:
10984 8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	101	"[\| P s;
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	102	!!s. [\| P s; b s \|] ==> P (c s);
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	103	!!s. [\| P s; \<not> b s \|] ==> Q s;
10997 e14029f92770 avoid dead code; wenzelm parents: 10984 diff changeset	104	wf r;
10984 8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	105	!!s. [\| P s; b s \|] ==> (c s, s) \<in> r \|] ==>
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	106	Q (while b c s)"
10653 55f33da63366 small mods. nipkow parents: 10269 diff changeset	107	apply (rule while_rule_lemma)
55f33da63366 small mods. nipkow parents: 10269 diff changeset	108	prefer 4 apply assumption
55f33da63366 small mods. nipkow parents: 10269 diff changeset	109	apply blast
55f33da63366 small mods. nipkow parents: 10269 diff changeset	110	apply blast
55f33da63366 small mods. nipkow parents: 10269 diff changeset	111	apply(erule wf_subset)
55f33da63366 small mods. nipkow parents: 10269 diff changeset	112	apply blast
55f33da63366 small mods. nipkow parents: 10269 diff changeset	113	done
55f33da63366 small mods. nipkow parents: 10269 diff changeset	114
10984 8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	115	text {*
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	116	\medskip An application: computation of the @{term lfp} on finite
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	117	sets via iteration.
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	118	*}
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	119
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	120	theorem lfp_conv_while:
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	121	"[\| mono f; finite U; f U = U \|] ==>
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	122	lfp f = fst (while (\<lambda>(A, fA). A \<noteq> fA) (\<lambda>(A, fA). (fA, f fA)) ({}, f {}))"
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	123	apply (rule_tac P = "\<lambda>(A, B). (A \<subseteq> U \<and> B = f A \<and> A \<subseteq> B \<and> B \<subseteq> lfp f)" and
11047 10c51288b00d tuned; wenzelm parents: 10997 diff changeset	124	r = "((Pow U \<times> UNIV) \<times> (Pow U \<times> UNIV)) \<inter>
10984 8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	125	inv_image finite_psubset (op - U o fst)" in while_rule)
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	126	apply (subst lfp_unfold)
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	127	apply assumption
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	128	apply (simp add: monoD)
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	129	apply (subst lfp_unfold)
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	130	apply assumption
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	131	apply clarsimp
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	132	apply (blast dest: monoD)
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	133	apply (fastsimp intro!: lfp_lowerbound)
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	134	apply (blast intro: wf_finite_psubset Int_lower2 [THEN [2] wf_subset])
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	135	apply (clarsimp simp add: inv_image_def finite_psubset_def order_less_le)
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	136	apply (blast intro!: finite_Diff dest: monoD)
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	137	done
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	138
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	139
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	140	text {*
14589 feae7b5fd425 tuned document; wenzelm parents: 14300 diff changeset	141	An example of using the @{term while} combinator.
10984 8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	142	*}
8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	143
14589 feae7b5fd425 tuned document; wenzelm parents: 14300 diff changeset	144	theorem "P (lfp (\<lambda>N::int set. {0} \<union> {(n + 2) mod 6 \| n. n \<in> N})) =
feae7b5fd425 tuned document; wenzelm parents: 14300 diff changeset	145	P {0, 4, 2}"
10997 e14029f92770 avoid dead code; wenzelm parents: 10984 diff changeset	146	proof -
e14029f92770 avoid dead code; wenzelm parents: 10984 diff changeset	147	have aux: "!!f A B. {f n \| n. A n \<or> B n} = {f n \| n. A n} \<union> {f n \| n. B n}"
10984 8f49dcbec859 Merged Example into While_Combi nipkow parents: 10774 diff changeset	148	apply blast
10997 e14029f92770 avoid dead code; wenzelm parents: 10984 diff changeset	149	done
e14029f92770 avoid dead code; wenzelm parents: 10984 diff changeset	150	show ?thesis
11914 bca734def300 eliminated old numerals; wenzelm parents: 11704 diff changeset	151	apply (subst lfp_conv_while [where ?U = "{0, 1, 2, 3, 4, 5}"])
10997 e14029f92770 avoid dead code; wenzelm parents: 10984 diff changeset	152	apply (rule monoI)
e14029f92770 avoid dead code; wenzelm parents: 10984 diff changeset	153	apply blast
e14029f92770 avoid dead code; wenzelm parents: 10984 diff changeset	154	apply simp
e14029f92770 avoid dead code; wenzelm parents: 10984 diff changeset	155	apply (simp add: aux set_eq_subset)
e14029f92770 avoid dead code; wenzelm parents: 10984 diff changeset	156	txt {* The fixpoint computation is performed purely by rewriting: *}
e14029f92770 avoid dead code; wenzelm parents: 10984 diff changeset	157	apply (simp add: while_unfold aux set_eq_subset del: subset_empty)
e14029f92770 avoid dead code; wenzelm parents: 10984 diff changeset	158	done
e14029f92770 avoid dead code; wenzelm parents: 10984 diff changeset	159	qed
10251 5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	160
5cc44cae9590 A general ``while'' combinator (from main HOL); wenzelm parents: diff changeset	161	end

author	wenzelm
	Thu, 06 May 2004 14:14:18 +0200
changeset 14706	71590b7733b7
parent 14589	feae7b5fd425
child 15131	c69542757a4d
permissions	-rw-r--r--