isabelle: doc-src/TutorialI/Trie/document/Trie.tex@7911e78a7122 (annotated)

9722 a5f86aed785b * empty log message * nipkow parents: 9721 diff changeset	1	%
a5f86aed785b * empty log message * nipkow parents: 9721 diff changeset	2	\begin{isabellebody}%
9924 3370f6aa3200 updated; wenzelm parents: 9792 diff changeset	3	\def\isabellecontext{Trie}%
17056 05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	4	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	5	\isadelimtheory
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	6	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	7	\endisadelimtheory
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	8	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	9	\isatagtheory
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	10	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	11	\endisatagtheory
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	12	{\isafoldtheory}%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	13	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	14	\isadelimtheory
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	15	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	16	\endisadelimtheory
8749 2665170f104a Adding generated files nipkow parents: diff changeset	17	%
2665170f104a Adding generated files nipkow parents: diff changeset	18	\begin{isamarkuptext}%
2665170f104a Adding generated files nipkow parents: diff changeset	19	To minimize running time, each node of a trie should contain an array that maps
10795 9e888d60d3e5 minor edits to Chapters 1-3 paulson parents: 10187 diff changeset	20	letters to subtries. We have chosen a
8749 2665170f104a Adding generated files nipkow parents: diff changeset	21	representation where the subtries are held in an association list, i.e.\ a
9792 bbefb6ce5cb2 * empty log message * nipkow parents: 9723 diff changeset	22	list of (letter,trie) pairs. Abstracting over the alphabet \isa{{\isacharprime}a} and the
bbefb6ce5cb2 * empty log message * nipkow parents: 9723 diff changeset	23	values \isa{{\isacharprime}v} we define a trie as follows:%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	24	\end{isamarkuptext}%
17175 1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	25	\isamarkuptrue%
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	26	\isacommand{datatype}\isamarkupfalse%
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	27	\ {\isacharparenleft}{\isacharprime}a{\isacharcomma}{\isacharprime}v{\isacharparenright}trie\ {\isacharequal}\ Trie\ \ {\isachardoublequoteopen}{\isacharprime}v\ option{\isachardoublequoteclose}\ \ {\isachardoublequoteopen}{\isacharparenleft}{\isacharprime}a\ {\isacharasterisk}\ {\isacharparenleft}{\isacharprime}a{\isacharcomma}{\isacharprime}v{\isacharparenright}trie{\isacharparenright}list{\isachardoublequoteclose}%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	28	\begin{isamarkuptext}%
2665170f104a Adding generated files nipkow parents: diff changeset	29	\noindent
11480 0fba0357c04c Getting it working again with 1' instead of 1 paulson parents: 11309 diff changeset	30	\index{datatypes!and nested recursion}%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	31	The first component is the optional value, the second component the
2665170f104a Adding generated files nipkow parents: diff changeset	32	association list of subtries. This is an example of nested recursion involving products,
2665170f104a Adding generated files nipkow parents: diff changeset	33	which is fine because products are datatypes as well.
2665170f104a Adding generated files nipkow parents: diff changeset	34	We define two selector functions:%
2665170f104a Adding generated files nipkow parents: diff changeset	35	\end{isamarkuptext}%
17175 1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	36	\isamarkuptrue%
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	37	\isacommand{primrec}\isamarkupfalse%
27015 f8537d69f514 * empty log message * nipkow parents: 17556 diff changeset	38	\ {\isachardoublequoteopen}value{\isachardoublequoteclose}\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequoteopen}{\isacharparenleft}{\isacharprime}a{\isacharcomma}{\isacharprime}v{\isacharparenright}trie\ {\isasymRightarrow}\ {\isacharprime}v\ option{\isachardoublequoteclose}\ \isakeyword{where}\isanewline
f8537d69f514 * empty log message * nipkow parents: 17556 diff changeset	39	{\isachardoublequoteopen}value{\isacharparenleft}Trie\ ov\ al{\isacharparenright}\ {\isacharequal}\ ov{\isachardoublequoteclose}\isanewline
17175 1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	40	\isacommand{primrec}\isamarkupfalse%
27015 f8537d69f514 * empty log message * nipkow parents: 17556 diff changeset	41	\ alist\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequoteopen}{\isacharparenleft}{\isacharprime}a{\isacharcomma}{\isacharprime}v{\isacharparenright}trie\ {\isasymRightarrow}\ {\isacharparenleft}{\isacharprime}a\ {\isacharasterisk}\ {\isacharparenleft}{\isacharprime}a{\isacharcomma}{\isacharprime}v{\isacharparenright}trie{\isacharparenright}list{\isachardoublequoteclose}\ \isakeyword{where}\isanewline
f8537d69f514 * empty log message * nipkow parents: 17556 diff changeset	42	{\isachardoublequoteopen}alist{\isacharparenleft}Trie\ ov\ al{\isacharparenright}\ {\isacharequal}\ al{\isachardoublequoteclose}%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	43	\begin{isamarkuptext}%
2665170f104a Adding generated files nipkow parents: diff changeset	44	\noindent
11309 d666f11ca2d4 minor suggestions by Tanja Vos paulson parents: 11304 diff changeset	45	Association lists come with a generic lookup function. Its result
d666f11ca2d4 minor suggestions by Tanja Vos paulson parents: 11304 diff changeset	46	involves type \isa{option} because a lookup can fail:%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	47	\end{isamarkuptext}%
17175 1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	48	\isamarkuptrue%
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	49	\isacommand{primrec}\isamarkupfalse%
27015 f8537d69f514 * empty log message * nipkow parents: 17556 diff changeset	50	\ assoc\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequoteopen}{\isacharparenleft}{\isacharprime}key\ {\isacharasterisk}\ {\isacharprime}val{\isacharparenright}list\ {\isasymRightarrow}\ {\isacharprime}key\ {\isasymRightarrow}\ {\isacharprime}val\ option{\isachardoublequoteclose}\ \isakeyword{where}\isanewline
f8537d69f514 * empty log message * nipkow parents: 17556 diff changeset	51	{\isachardoublequoteopen}assoc\ {\isacharbrackleft}{\isacharbrackright}\ x\ {\isacharequal}\ None{\isachardoublequoteclose}\ {\isacharbar}\isanewline
f8537d69f514 * empty log message * nipkow parents: 17556 diff changeset	52	{\isachardoublequoteopen}assoc\ {\isacharparenleft}p{\isacharhash}ps{\isacharparenright}\ x\ {\isacharequal}\isanewline
f8537d69f514 * empty log message * nipkow parents: 17556 diff changeset	53	\ \ \ {\isacharparenleft}let\ {\isacharparenleft}a{\isacharcomma}b{\isacharparenright}\ {\isacharequal}\ p\ in\ if\ a{\isacharequal}x\ then\ Some\ b\ else\ assoc\ ps\ x{\isacharparenright}{\isachardoublequoteclose}%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	54	\begin{isamarkuptext}%
2665170f104a Adding generated files nipkow parents: diff changeset	55	Now we can define the lookup function for tries. It descends into the trie
2665170f104a Adding generated files nipkow parents: diff changeset	56	examining the letters of the search string one by one. As
2665170f104a Adding generated files nipkow parents: diff changeset	57	recursion on lists is simpler than on tries, let us express this as primitive
2665170f104a Adding generated files nipkow parents: diff changeset	58	recursion on the search string argument:%
2665170f104a Adding generated files nipkow parents: diff changeset	59	\end{isamarkuptext}%
17175 1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	60	\isamarkuptrue%
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	61	\isacommand{primrec}\isamarkupfalse%
27015 f8537d69f514 * empty log message * nipkow parents: 17556 diff changeset	62	\ lookup\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequoteopen}{\isacharparenleft}{\isacharprime}a{\isacharcomma}{\isacharprime}v{\isacharparenright}trie\ {\isasymRightarrow}\ {\isacharprime}a\ list\ {\isasymRightarrow}\ {\isacharprime}v\ option{\isachardoublequoteclose}\ \isakeyword{where}\isanewline
f8537d69f514 * empty log message * nipkow parents: 17556 diff changeset	63	{\isachardoublequoteopen}lookup\ t\ {\isacharbrackleft}{\isacharbrackright}\ {\isacharequal}\ value\ t{\isachardoublequoteclose}\ {\isacharbar}\isanewline
f8537d69f514 * empty log message * nipkow parents: 17556 diff changeset	64	{\isachardoublequoteopen}lookup\ t\ {\isacharparenleft}a{\isacharhash}as{\isacharparenright}\ {\isacharequal}\ {\isacharparenleft}case\ assoc\ {\isacharparenleft}alist\ t{\isacharparenright}\ a\ of\isanewline
f8537d69f514 * empty log message * nipkow parents: 17556 diff changeset	65	\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ None\ {\isasymRightarrow}\ None\isanewline
f8537d69f514 * empty log message * nipkow parents: 17556 diff changeset	66	\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ {\isacharbar}\ Some\ at\ {\isasymRightarrow}\ lookup\ at\ as{\isacharparenright}{\isachardoublequoteclose}%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	67	\begin{isamarkuptext}%
2665170f104a Adding generated files nipkow parents: diff changeset	68	As a first simple property we prove that looking up a string in the empty
9792 bbefb6ce5cb2 * empty log message * nipkow parents: 9723 diff changeset	69	trie \isa{Trie\ None\ {\isacharbrackleft}{\isacharbrackright}} always returns \isa{None}. The proof merely
8749 2665170f104a Adding generated files nipkow parents: diff changeset	70	distinguishes the two cases whether the search string is empty or not:%
2665170f104a Adding generated files nipkow parents: diff changeset	71	\end{isamarkuptext}%
17175 1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	72	\isamarkuptrue%
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	73	\isacommand{lemma}\isamarkupfalse%
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	74	\ {\isacharbrackleft}simp{\isacharbrackright}{\isacharcolon}\ {\isachardoublequoteopen}lookup\ {\isacharparenleft}Trie\ None\ {\isacharbrackleft}{\isacharbrackright}{\isacharparenright}\ as\ {\isacharequal}\ None{\isachardoublequoteclose}\isanewline
17056 05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	75	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	76	\isadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	77	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	78	\endisadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	79	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	80	\isatagproof
17175 1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	81	\isacommand{apply}\isamarkupfalse%
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	82	{\isacharparenleft}case{\isacharunderscore}tac\ as{\isacharcomma}\ simp{\isacharunderscore}all{\isacharparenright}\isanewline
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	83	\isacommand{done}\isamarkupfalse%
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	84	%
17056 05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	85	\endisatagproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	86	{\isafoldproof}%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	87	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	88	\isadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	89	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	90	\endisadelimproof
11866 fbd097aec213 updated; wenzelm parents: 11480 diff changeset	91	%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	92	\begin{isamarkuptext}%
2665170f104a Adding generated files nipkow parents: diff changeset	93	Things begin to get interesting with the definition of an update function
12328 7c4ec77a8715 * empty log message * nipkow parents: 11866 diff changeset	94	that adds a new (string, value) pair to a trie, overwriting the old value
8749 2665170f104a Adding generated files nipkow parents: diff changeset	95	associated with that string:%
2665170f104a Adding generated files nipkow parents: diff changeset	96	\end{isamarkuptext}%
17175 1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	97	\isamarkuptrue%
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	98	\isacommand{primrec}\isamarkupfalse%
27015 f8537d69f514 * empty log message * nipkow parents: 17556 diff changeset	99	\ update{\isacharcolon}{\isacharcolon}\ {\isachardoublequoteopen}{\isacharparenleft}{\isacharprime}a{\isacharcomma}{\isacharprime}v{\isacharparenright}trie\ {\isasymRightarrow}\ {\isacharprime}a\ list\ {\isasymRightarrow}\ {\isacharprime}v\ {\isasymRightarrow}\ {\isacharparenleft}{\isacharprime}a{\isacharcomma}{\isacharprime}v{\isacharparenright}trie{\isachardoublequoteclose}\ \isakeyword{where}\isanewline
f8537d69f514 * empty log message * nipkow parents: 17556 diff changeset	100	{\isachardoublequoteopen}update\ t\ {\isacharbrackleft}{\isacharbrackright}\ \ \ \ \ v\ {\isacharequal}\ Trie\ {\isacharparenleft}Some\ v{\isacharparenright}\ {\isacharparenleft}alist\ t{\isacharparenright}{\isachardoublequoteclose}\ {\isacharbar}\isanewline
f8537d69f514 * empty log message * nipkow parents: 17556 diff changeset	101	{\isachardoublequoteopen}update\ t\ {\isacharparenleft}a{\isacharhash}as{\isacharparenright}\ v\ {\isacharequal}\isanewline
f8537d69f514 * empty log message * nipkow parents: 17556 diff changeset	102	\ \ \ {\isacharparenleft}let\ tt\ {\isacharequal}\ {\isacharparenleft}case\ assoc\ {\isacharparenleft}alist\ t{\isacharparenright}\ a\ of\isanewline
f8537d69f514 * empty log message * nipkow parents: 17556 diff changeset	103	\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ None\ {\isasymRightarrow}\ Trie\ None\ {\isacharbrackleft}{\isacharbrackright}\ {\isacharbar}\ Some\ at\ {\isasymRightarrow}\ at{\isacharparenright}\isanewline
f8537d69f514 * empty log message * nipkow parents: 17556 diff changeset	104	\ \ \ \ in\ Trie\ {\isacharparenleft}value\ t{\isacharparenright}\ {\isacharparenleft}{\isacharparenleft}a{\isacharcomma}update\ tt\ as\ v{\isacharparenright}\ {\isacharhash}\ alist\ t{\isacharparenright}{\isacharparenright}{\isachardoublequoteclose}%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	105	\begin{isamarkuptext}%
2665170f104a Adding generated files nipkow parents: diff changeset	106	\noindent
2665170f104a Adding generated files nipkow parents: diff changeset	107	The base case is obvious. In the recursive case the subtrie
2665170f104a Adding generated files nipkow parents: diff changeset	108	\isa{tt} associated with the first letter \isa{a} is extracted,
2665170f104a Adding generated files nipkow parents: diff changeset	109	recursively updated, and then placed in front of the association list.
2665170f104a Adding generated files nipkow parents: diff changeset	110	The old subtrie associated with \isa{a} is still in the association list
2665170f104a Adding generated files nipkow parents: diff changeset	111	but no longer accessible via \isa{assoc}. Clearly, there is room here for
2665170f104a Adding generated files nipkow parents: diff changeset	112	optimizations!
2665170f104a Adding generated files nipkow parents: diff changeset	113
2665170f104a Adding generated files nipkow parents: diff changeset	114	Before we start on any proofs about \isa{update} we tell the simplifier to
2665170f104a Adding generated files nipkow parents: diff changeset	115	expand all \isa{let}s and to split all \isa{case}-constructs over
2665170f104a Adding generated files nipkow parents: diff changeset	116	options:%
2665170f104a Adding generated files nipkow parents: diff changeset	117	\end{isamarkuptext}%
17175 1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	118	\isamarkuptrue%
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	119	\isacommand{declare}\isamarkupfalse%
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	120	\ Let{\isacharunderscore}def{\isacharbrackleft}simp{\isacharbrackright}\ option{\isachardot}split{\isacharbrackleft}split{\isacharbrackright}%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	121	\begin{isamarkuptext}%
2665170f104a Adding generated files nipkow parents: diff changeset	122	\noindent
2665170f104a Adding generated files nipkow parents: diff changeset	123	The reason becomes clear when looking (probably after a failed proof
2665170f104a Adding generated files nipkow parents: diff changeset	124	attempt) at the body of \isa{update}: it contains both
2665170f104a Adding generated files nipkow parents: diff changeset	125	\isa{let} and a case distinction over type \isa{option}.
2665170f104a Adding generated files nipkow parents: diff changeset	126
2665170f104a Adding generated files nipkow parents: diff changeset	127	Our main goal is to prove the correct interaction of \isa{update} and
2665170f104a Adding generated files nipkow parents: diff changeset	128	\isa{lookup}:%
2665170f104a Adding generated files nipkow parents: diff changeset	129	\end{isamarkuptext}%
17175 1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	130	\isamarkuptrue%
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	131	\isacommand{theorem}\isamarkupfalse%
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	132	\ {\isachardoublequoteopen}{\isasymforall}t\ v\ bs{\isachardot}\ lookup\ {\isacharparenleft}update\ t\ as\ v{\isacharparenright}\ bs\ {\isacharequal}\isanewline
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	133	\ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ {\isacharparenleft}if\ as{\isacharequal}bs\ then\ Some\ v\ else\ lookup\ t\ bs{\isacharparenright}{\isachardoublequoteclose}%
17056 05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	134	\isadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	135	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	136	\endisadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	137	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	138	\isatagproof
16069 3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	139	%
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	140	\begin{isamarkuptxt}%
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	141	\noindent
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	142	Our plan is to induct on \isa{as}; hence the remaining variables are
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	143	quantified. From the definitions it is clear that induction on either
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	144	\isa{as} or \isa{bs} is required. The choice of \isa{as} is
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	145	guided by the intuition that simplification of \isa{lookup} might be easier
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	146	if \isa{update} has already been simplified, which can only happen if
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	147	\isa{as} is instantiated.
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	148	The start of the proof is conventional:%
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	149	\end{isamarkuptxt}%
17175 1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	150	\isamarkuptrue%
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	151	\isacommand{apply}\isamarkupfalse%
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	152	{\isacharparenleft}induct{\isacharunderscore}tac\ as{\isacharcomma}\ auto{\isacharparenright}%
16069 3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	153	\begin{isamarkuptxt}%
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	154	\noindent
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	155	Unfortunately, this time we are left with three intimidating looking subgoals:
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	156	\begin{isabelle}
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	157	~1.~\dots~{\isasymLongrightarrow}~lookup~\dots~bs~=~lookup~t~bs\isanewline
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	158	~2.~\dots~{\isasymLongrightarrow}~lookup~\dots~bs~=~lookup~t~bs\isanewline
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	159	~3.~\dots~{\isasymLongrightarrow}~lookup~\dots~bs~=~lookup~t~bs
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	160	\end{isabelle}
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	161	Clearly, if we want to make headway we have to instantiate \isa{bs} as
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	162	well now. It turns out that instead of induction, case distinction
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	163	suffices:%
3f2a9f400168 * empty log message * nipkow parents: 15614 diff changeset	164	\end{isamarkuptxt}%
17175 1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	165	\isamarkuptrue%
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	166	\isacommand{apply}\isamarkupfalse%
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	167	{\isacharparenleft}case{\isacharunderscore}tac{\isacharbrackleft}{\isacharbang}{\isacharbrackright}\ bs{\isacharcomma}\ auto{\isacharparenright}\isanewline
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	168	\isacommand{done}\isamarkupfalse%
1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	169	%
17056 05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	170	\endisatagproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	171	{\isafoldproof}%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	172	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	173	\isadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	174	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	175	\endisadelimproof
11866 fbd097aec213 updated; wenzelm parents: 11480 diff changeset	176	%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	177	\begin{isamarkuptext}%
2665170f104a Adding generated files nipkow parents: diff changeset	178	\noindent
11480 0fba0357c04c Getting it working again with 1' instead of 1 paulson parents: 11309 diff changeset	179	\index{subgoal numbering}%
9541 d17c0b34d5c8 * empty log message * nipkow parents: 9521 diff changeset	180	All methods ending in \isa{tac} take an optional first argument that
9792 bbefb6ce5cb2 * empty log message * nipkow parents: 9723 diff changeset	181	specifies the range of subgoals they are applied to, where \isa{{\isacharbrackleft}{\isacharbang}{\isacharbrackright}} means
10187 0376cccd9118 * empty log message * nipkow parents: 10171 diff changeset	182	all subgoals, i.e.\ \isa{{\isacharbrackleft}{\isadigit{1}}{\isacharminus}{\isadigit{3}}{\isacharbrackright}} in our case. Individual subgoal numbers,
0376cccd9118 * empty log message * nipkow parents: 10171 diff changeset	183	e.g. \isa{{\isacharbrackleft}{\isadigit{2}}{\isacharbrackright}} are also allowed.
8749 2665170f104a Adding generated files nipkow parents: diff changeset	184
2665170f104a Adding generated files nipkow parents: diff changeset	185	This proof may look surprisingly straightforward. However, note that this
9792 bbefb6ce5cb2 * empty log message * nipkow parents: 9723 diff changeset	186	comes at a cost: the proof script is unreadable because the intermediate
bbefb6ce5cb2 * empty log message * nipkow parents: 9723 diff changeset	187	proof states are invisible, and we rely on the (possibly brittle) magic of
10971 6852682eaf16 * empty log message * nipkow parents: 10795 diff changeset	188	\isa{auto} (\isa{simp{\isacharunderscore}all} will not do --- try it) to split the subgoals
9792 bbefb6ce5cb2 * empty log message * nipkow parents: 9723 diff changeset	189	of the induction up in such a way that case distinction on \isa{bs} makes
11480 0fba0357c04c Getting it working again with 1' instead of 1 paulson parents: 11309 diff changeset	190	sense and solves the proof.
11294 16481a4cc9f3 * empty log message * nipkow parents: 10978 diff changeset	191
16481a4cc9f3 * empty log message * nipkow parents: 10978 diff changeset	192	\begin{exercise}
16481a4cc9f3 * empty log message * nipkow parents: 10978 diff changeset	193	Modify \isa{update} (and its type) such that it allows both insertion and
11304 0db2a02bff99 auto update paulson parents: 11294 diff changeset	194	deletion of entries with a single function. Prove the corresponding version
0db2a02bff99 auto update paulson parents: 11294 diff changeset	195	of the main theorem above.
0db2a02bff99 auto update paulson parents: 11294 diff changeset	196	Optimize your function such that it shrinks tries after
0db2a02bff99 auto update paulson parents: 11294 diff changeset	197	deletion if possible.
11294 16481a4cc9f3 * empty log message * nipkow parents: 10978 diff changeset	198	\end{exercise}
16481a4cc9f3 * empty log message * nipkow parents: 10978 diff changeset	199
16481a4cc9f3 * empty log message * nipkow parents: 10978 diff changeset	200	\begin{exercise}
16481a4cc9f3 * empty log message * nipkow parents: 10978 diff changeset	201	Write an improved version of \isa{update} that does not suffer from the
16481a4cc9f3 * empty log message * nipkow parents: 10978 diff changeset	202	space leak (pointed out above) caused by not deleting overwritten entries
16481a4cc9f3 * empty log message * nipkow parents: 10978 diff changeset	203	from the association list. Prove the main theorem for your improved
16481a4cc9f3 * empty log message * nipkow parents: 10978 diff changeset	204	\isa{update}.
16481a4cc9f3 * empty log message * nipkow parents: 10978 diff changeset	205	\end{exercise}
16481a4cc9f3 * empty log message * nipkow parents: 10978 diff changeset	206
16481a4cc9f3 * empty log message * nipkow parents: 10978 diff changeset	207	\begin{exercise}
16481a4cc9f3 * empty log message * nipkow parents: 10978 diff changeset	208	Conceptually, each node contains a mapping from letters to optional
16481a4cc9f3 * empty log message * nipkow parents: 10978 diff changeset	209	subtries. Above we have implemented this by means of an association
16481a4cc9f3 * empty log message * nipkow parents: 10978 diff changeset	210	list. Replay the development replacing \isa{{\isacharparenleft}{\isacharprime}a\ {\isasymtimes}\ {\isacharparenleft}{\isacharprime}a{\isacharcomma}\ {\isacharprime}v{\isacharparenright}\ trie{\isacharparenright}\ list}
14179 04f905c13502 Corrections due to John Matthews paulson parents: 13778 diff changeset	211	with \isa{{\isacharprime}a\ {\isasymrightharpoonup}\ {\isacharparenleft}{\isacharprime}a{\isacharcomma}\ {\isacharprime}v{\isacharparenright}\ trie}.
11294 16481a4cc9f3 * empty log message * nipkow parents: 10978 diff changeset	212	\end{exercise}%
8749 2665170f104a Adding generated files nipkow parents: diff changeset	213	\end{isamarkuptext}%
17175 1eced27ee0e1 updated; wenzelm parents: 17056 diff changeset	214	\isamarkuptrue%
17056 05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	215	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	216	\isadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	217	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	218	\endisadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	219	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	220	\isatagproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	221	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	222	\endisatagproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	223	{\isafoldproof}%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	224	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	225	\isadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	226	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	227	\endisadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	228	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	229	\isadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	230	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	231	\endisadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	232	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	233	\isatagproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	234	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	235	\endisatagproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	236	{\isafoldproof}%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	237	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	238	\isadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	239	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	240	\endisadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	241	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	242	\isadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	243	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	244	\endisadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	245	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	246	\isatagproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	247	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	248	\endisatagproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	249	{\isafoldproof}%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	250	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	251	\isadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	252	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	253	\endisadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	254	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	255	\isadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	256	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	257	\endisadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	258	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	259	\isatagproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	260	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	261	\endisatagproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	262	{\isafoldproof}%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	263	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	264	\isadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	265	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	266	\endisadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	267	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	268	\isadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	269	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	270	\endisadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	271	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	272	\isatagproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	273	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	274	\endisatagproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	275	{\isafoldproof}%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	276	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	277	\isadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	278	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	279	\endisadelimproof
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	280	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	281	\isadelimtheory
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	282	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	283	\endisadelimtheory
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	284	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	285	\isatagtheory
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	286	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	287	\endisatagtheory
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	288	{\isafoldtheory}%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	289	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	290	\isadelimtheory
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	291	%
05fc32a23b8b updated; wenzelm parents: 16069 diff changeset	292	\endisadelimtheory
9722 a5f86aed785b * empty log message * nipkow parents: 9721 diff changeset	293	\end{isabellebody}%
9145 9f7b8de5bfaf updated; wenzelm parents: 8771 diff changeset	294	%%% Local Variables:
9f7b8de5bfaf updated; wenzelm parents: 8771 diff changeset	295	%%% mode: latex
9f7b8de5bfaf updated; wenzelm parents: 8771 diff changeset	296	%%% TeX-master: "root"
9f7b8de5bfaf updated; wenzelm parents: 8771 diff changeset	297	%%% End:

author	blanchet
	Mon, 26 Jul 2010 11:21:25 +0200
changeset 37992	7911e78a7122
parent 27015	f8537d69f514
child 40403	e2721ac2a258
permissions	-rw-r--r--