isabelle: src/HOLCF/IOA/meta_theory/RefCorrectness.ML@7c1cb7ce24eb (annotated)

3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	1	(* Title: HOLCF/IOA/meta_theory/RefCorrectness.ML
3275 3f53f2c876f4 changes for release 94-8 mueller parents: 3071 diff changeset	2	ID: $Id$
12218 6597093b77e7 GPLed; wenzelm parents: 10835 diff changeset	3	Author: Olaf M�ller
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	4
12218 6597093b77e7 GPLed; wenzelm parents: 10835 diff changeset	5	Correctness of Refinement Mappings in HOLCF/IOA.
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	6	*)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	7
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	8
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	9
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	10	(* -------------------------------------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	11
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	12	section "corresp_ex";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	13
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	14
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	15	(* ---------------------------------------------------------------- *)
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	16	(* corresp_exC *)
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	17	(* ---------------------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	18
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	19
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	20	Goal "corresp_exC A f = (LAM ex. (%s. case ex of \
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	21	\ nil => nil \
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	22	\ \| x##xs => (flift1 (%pr. (@cex. move A cex (f s) (fst pr) (f (snd pr))) \
10835 f4745d77e620 ` -> $ nipkow parents: 9970 diff changeset	23	\ @@ ((corresp_exC A f $xs) (snd pr))) \
f4745d77e620 ` -> $ nipkow parents: 9970 diff changeset	24	\ $x) ))";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	25	by (rtac trans 1);
3457 a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	26	by (rtac fix_eq2 1);
a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	27	by (rtac corresp_exC_def 1);
a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	28	by (rtac beta_cfun 1);
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	29	by (simp_tac (simpset() addsimps [flift1_def]) 1);
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	30	qed"corresp_exC_unfold";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	31
10835 f4745d77e620 ` -> $ nipkow parents: 9970 diff changeset	32	Goal "(corresp_exC A f$UU) s=UU";
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	33	by (stac corresp_exC_unfold 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	34	by (Simp_tac 1);
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	35	qed"corresp_exC_UU";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	36
10835 f4745d77e620 ` -> $ nipkow parents: 9970 diff changeset	37	Goal "(corresp_exC A f$nil) s = nil";
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	38	by (stac corresp_exC_unfold 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	39	by (Simp_tac 1);
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	40	qed"corresp_exC_nil";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	41
10835 f4745d77e620 ` -> $ nipkow parents: 9970 diff changeset	42	Goal "(corresp_exC A f$(at>>xs)) s = \
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	43	\ (@cex. move A cex (f s) (fst at) (f (snd at))) \
10835 f4745d77e620 ` -> $ nipkow parents: 9970 diff changeset	44	\ @@ ((corresp_exC A f$xs) (snd at))";
3457 a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	45	by (rtac trans 1);
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	46	by (stac corresp_exC_unfold 1);
7229 6773ba0c36d5 renamed Cons to Consq in order to avoid clash with List.Cons; wenzelm parents: 6161 diff changeset	47	by (asm_full_simp_tac (simpset() addsimps [Consq_def,flift1_def]) 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	48	by (Simp_tac 1);
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	49	qed"corresp_exC_cons";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	50
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	51
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	52	Addsimps [corresp_exC_UU,corresp_exC_nil,corresp_exC_cons];
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	53
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	54
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	55
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	56	(* ------------------------------------------------------------------ *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	57	(* The following lemmata describe the definition *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	58	(* of move in more detail *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	59	(* ------------------------------------------------------------------ *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	60
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	61	section"properties of move";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	62
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	63	Goalw [is_ref_map_def]
6161 bc2a76ce1ea3 tidied paulson parents: 5132 diff changeset	64	"[\|is_ref_map f C A; reachable C s; (s,a,t):trans_of C\|] ==>\
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	65	\ move A (@x. move A x (f s) a (f t)) (f s) a (f t)";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	66
3847 d5905b98291f fixed dots; wenzelm parents: 3457 diff changeset	67	by (subgoal_tac "? ex. move A ex (f s) a (f t)" 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	68	by (Asm_full_simp_tac 2);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	69	by (etac exE 1);
9970 dfe4747c8318 the final renaming: selectI -> someI paulson parents: 7229 diff changeset	70	by (rtac someI 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	71	by (assume_tac 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	72	qed"move_is_move";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	73
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	74	Goal
6161 bc2a76ce1ea3 tidied paulson parents: 5132 diff changeset	75	"[\|is_ref_map f C A; reachable C s; (s,a,t):trans_of C\|] ==>\
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	76	\ is_exec_frag A (f s,@x. move A x (f s) a (f t))";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	77	by (cut_inst_tac [] move_is_move 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	78	by (REPEAT (assume_tac 1));
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	79	by (asm_full_simp_tac (simpset() addsimps [move_def]) 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	80	qed"move_subprop1";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	81
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	82	Goal
6161 bc2a76ce1ea3 tidied paulson parents: 5132 diff changeset	83	"[\|is_ref_map f C A; reachable C s; (s,a,t):trans_of C\|] ==>\
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	84	\ Finite ((@x. move A x (f s) a (f t)))";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	85	by (cut_inst_tac [] move_is_move 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	86	by (REPEAT (assume_tac 1));
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	87	by (asm_full_simp_tac (simpset() addsimps [move_def]) 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	88	qed"move_subprop2";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	89
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	90	Goal
6161 bc2a76ce1ea3 tidied paulson parents: 5132 diff changeset	91	"[\|is_ref_map f C A; reachable C s; (s,a,t):trans_of C\|] ==>\
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	92	\ laststate (f s,@x. move A x (f s) a (f t)) = (f t)";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	93	by (cut_inst_tac [] move_is_move 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	94	by (REPEAT (assume_tac 1));
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	95	by (asm_full_simp_tac (simpset() addsimps [move_def]) 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	96	qed"move_subprop3";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	97
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	98	Goal
6161 bc2a76ce1ea3 tidied paulson parents: 5132 diff changeset	99	"[\|is_ref_map f C A; reachable C s; (s,a,t):trans_of C\|] ==>\
10835 f4745d77e620 ` -> $ nipkow parents: 9970 diff changeset	100	\ mk_trace A$((@x. move A x (f s) a (f t))) = \
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	101	\ (if a:ext A then a>>nil else nil)";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	102
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	103	by (cut_inst_tac [] move_is_move 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	104	by (REPEAT (assume_tac 1));
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	105	by (asm_full_simp_tac (simpset() addsimps [move_def]) 1);
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	106	qed"move_subprop4";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	107
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	108
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	109	(* ------------------------------------------------------------------ *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	110	(* The following lemmata contribute to *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	111	(* TRACE INCLUSION Part 1: Traces coincide *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	112	(* ------------------------------------------------------------------ *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	113
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	114	section "Lemmata for <==";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	115
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	116	(* --------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	117	(* Lemma 1.1: Distribution of mk_trace and @@ *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	118	(* --------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	119
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	120
10835 f4745d77e620 ` -> $ nipkow parents: 9970 diff changeset	121	Goal "mk_trace C$(ex1 @@ ex2)= (mk_trace C$ex1) @@ (mk_trace C$ex2)";
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	122	by (simp_tac (simpset() addsimps [mk_trace_def,filter_act_def,
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	123	FilterConc,MapConc]) 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	124	qed"mk_traceConc";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	125
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	126
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	127
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	128	(* ------------------------------------------------------
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	129	Lemma 1 :Traces coincide
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	130	------------------------------------------------------- *)
4833 2e53109d4bc8 Renamed expand_const -> split_const nipkow parents: 4681 diff changeset	131	Delsplits[split_if];
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	132	Goalw [corresp_ex_def]
6161 bc2a76ce1ea3 tidied paulson parents: 5132 diff changeset	133	"[\|is_ref_map f C A; ext C = ext A\|] ==> \
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	134	\ !s. reachable C s & is_exec_frag C (s,xs) --> \
10835 f4745d77e620 ` -> $ nipkow parents: 9970 diff changeset	135	\ mk_trace C$xs = mk_trace A$(snd (corresp_ex A f (s,xs)))";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	136
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	137	by (pair_induct_tac "xs" [is_exec_frag_def] 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	138	(* cons case *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	139	by (safe_tac set_cs);
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	140	by (asm_full_simp_tac (simpset() addsimps [mk_traceConc]) 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	141	by (forward_tac [reachable.reachable_n] 1);
3457 a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	142	by (assume_tac 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	143	by (eres_inst_tac [("x","y")] allE 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	144	by (Asm_full_simp_tac 1);
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	145	by (asm_full_simp_tac (simpset() addsimps [move_subprop4]
4833 2e53109d4bc8 Renamed expand_const -> split_const nipkow parents: 4681 diff changeset	146	addsplits [split_if]) 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	147	qed"lemma_1";
4833 2e53109d4bc8 Renamed expand_const -> split_const nipkow parents: 4681 diff changeset	148	Addsplits[split_if];
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	149
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	150	(* ------------------------------------------------------------------ *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	151	(* The following lemmata contribute to *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	152	(* TRACE INCLUSION Part 2: corresp_ex is execution *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	153	(* ------------------------------------------------------------------ *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	154
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	155	section "Lemmata for ==>";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	156
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	157	(* -------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	158	(* Lemma 2.1 *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	159	(* -------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	160
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	161	Goal
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	162	"Finite xs --> \
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	163	\(!s .is_exec_frag A (s,xs) & is_exec_frag A (t,ys) & \
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	164	\ t = laststate (s,xs) \
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	165	\ --> is_exec_frag A (s,xs @@ ys))";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	166
3457 a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	167	by (rtac impI 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	168	by (Seq_Finite_induct_tac 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	169	(* main case *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	170	by (safe_tac set_cs);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	171	by (pair_tac "a" 1);
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	172	qed_spec_mp"lemma_2_1";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	173
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	174
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	175	(* ----------------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	176	(* Lemma 2 : corresp_ex is execution *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	177	(* ----------------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	178
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	179
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	180
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	181	Goalw [corresp_ex_def]
6161 bc2a76ce1ea3 tidied paulson parents: 5132 diff changeset	182	"[\| is_ref_map f C A \|] ==>\
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	183	\ !s. reachable C s & is_exec_frag C (s,xs) \
2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	184	\ --> is_exec_frag A (corresp_ex A f (s,xs))";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	185
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	186	by (Asm_full_simp_tac 1);
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	187	by (pair_induct_tac "xs" [is_exec_frag_def] 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	188	(* main case *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	189	by (safe_tac set_cs);
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	190	by (res_inst_tac [("t","f y")] lemma_2_1 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	191
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	192	(* Finite *)
3457 a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	193	by (etac move_subprop2 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	194	by (REPEAT (atac 1));
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	195	by (rtac conjI 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	196
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	197	(* is_exec_frag *)
3457 a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	198	by (etac move_subprop1 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	199	by (REPEAT (atac 1));
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	200	by (rtac conjI 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	201
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	202	(* Induction hypothesis *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	203	(* reachable_n looping, therefore apply it manually *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	204	by (eres_inst_tac [("x","y")] allE 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	205	by (Asm_full_simp_tac 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	206	by (forward_tac [reachable.reachable_n] 1);
3457 a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	207	by (assume_tac 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	208	by (Asm_full_simp_tac 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	209	(* laststate *)
3457 a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	210	by (etac (move_subprop3 RS sym) 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	211	by (REPEAT (atac 1));
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	212	qed"lemma_2";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	213
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	214
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	215	(* -------------------------------------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	216
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	217	section "Main Theorem: T R A C E - I N C L U S I O N";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	218
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	219	(* -------------------------------------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	220
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	221
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	222	Goalw [traces_def]
6161 bc2a76ce1ea3 tidied paulson parents: 5132 diff changeset	223	"[\| ext C = ext A; is_ref_map f C A \|] \
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	224	\ ==> traces C <= traces A";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	225
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	226	by (simp_tac(simpset() addsimps [has_trace_def2])1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	227	by (safe_tac set_cs);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	228
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	229	(* give execution of abstract automata *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	230	by (res_inst_tac[("x","corresp_ex A f ex")] bexI 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	231
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	232	(* Traces coincide, Lemma 1 *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	233	by (pair_tac "ex" 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	234	by (etac (lemma_1 RS spec RS mp) 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	235	by (REPEAT (atac 1));
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	236	by (asm_full_simp_tac (simpset() addsimps [executions_def,reachable.reachable_0]) 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	237
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	238	(* corresp_ex is execution, Lemma 2 *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	239	by (pair_tac "ex" 1);
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	240	by (asm_full_simp_tac (simpset() addsimps [executions_def]) 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	241	(* start state *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	242	by (rtac conjI 1);
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	243	by (asm_full_simp_tac (simpset() addsimps [is_ref_map_def,corresp_ex_def]) 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	244	(* is-execution-fragment *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	245	by (etac (lemma_2 RS spec RS mp) 1);
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	246	by (asm_full_simp_tac (simpset() addsimps [reachable.reachable_0]) 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	247	qed"trace_inclusion";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	248
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	249
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	250	(* -------------------------------------------------------------------------------- *)
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	251
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	252	section "Corollary: F A I R T R A C E - I N C L U S I O N";
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	253
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	254	(* -------------------------------------------------------------------------------- *)
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	255
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	256
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	257	Goalw [fin_often_def] "(~inf_often P s) = fin_often P s";
5132 24f992a25adc isatool expandshort; wenzelm parents: 5068 diff changeset	258	by Auto_tac;
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	259	qed"fininf";
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	260
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	261
6161 bc2a76ce1ea3 tidied paulson parents: 5132 diff changeset	262	Goal "is_wfair A W (s,ex) = \
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	263	\ (fin_often (%x. ~Enabled A W (snd x)) ex --> inf_often (%x. fst x :W) ex)";
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	264	by (asm_full_simp_tac (simpset() addsimps [is_wfair_def,fin_often_def])1);
5132 24f992a25adc isatool expandshort; wenzelm parents: 5068 diff changeset	265	by Auto_tac;
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	266	qed"WF_alt";
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	267
6161 bc2a76ce1ea3 tidied paulson parents: 5132 diff changeset	268	Goal "[\|is_wfair A W (s,ex); inf_often (%x. Enabled A W (snd x)) ex; \
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	269	\ en_persistent A W\|] \
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	270	\ ==> inf_often (%x. fst x :W) ex";
5132 24f992a25adc isatool expandshort; wenzelm parents: 5068 diff changeset	271	by (dtac persistent 1);
24f992a25adc isatool expandshort; wenzelm parents: 5068 diff changeset	272	by (assume_tac 1);
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	273	by (asm_full_simp_tac (simpset() addsimps [WF_alt])1);
5132 24f992a25adc isatool expandshort; wenzelm parents: 5068 diff changeset	274	by Auto_tac;
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	275	qed"WF_persistent";
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	276
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	277
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	278	Goal "!! C A. \
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	279	\ [\| is_ref_map f C A; ext C = ext A; \
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	280	\ !! ex. [\| ex:executions C; fair_ex C ex\|] ==> fair_ex A (corresp_ex A f ex) \|] \
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	281	\ ==> fairtraces C <= fairtraces A";
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	282	by (simp_tac (simpset() addsimps [fairtraces_def,
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	283	fairexecutions_def]) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	284	by (safe_tac set_cs);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	285	by (res_inst_tac[("x","corresp_ex A f ex")] exI 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	286	by (safe_tac set_cs);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	287
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	288	(* Traces coincide, Lemma 1 *)
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	289	by (pair_tac "ex" 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	290	by (etac (lemma_1 RS spec RS mp) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	291	by (REPEAT (atac 1));
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	292	by (asm_full_simp_tac (simpset() addsimps [executions_def,reachable.reachable_0]) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	293
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	294	(* corresp_ex is execution, Lemma 2 *)
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	295	by (pair_tac "ex" 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	296	by (asm_full_simp_tac (simpset() addsimps [executions_def]) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	297	(* start state *)
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	298	by (rtac conjI 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	299	by (asm_full_simp_tac (simpset() addsimps [is_ref_map_def,corresp_ex_def]) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	300	(* is-execution-fragment *)
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	301	by (etac (lemma_2 RS spec RS mp) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	302	by (asm_full_simp_tac (simpset() addsimps [reachable.reachable_0]) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	303
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	304	(* Fairness *)
5132 24f992a25adc isatool expandshort; wenzelm parents: 5068 diff changeset	305	by Auto_tac;
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	306	qed"fair_trace_inclusion";
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	307
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	308	Goal "!! C A. \
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	309	\ [\| inp(C) = inp(A); out(C)=out(A); \
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	310	\ is_fair_ref_map f C A \|] \
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	311	\ ==> fair_implements C A";
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	312	by (asm_full_simp_tac (simpset() addsimps [is_fair_ref_map_def, fair_implements_def,
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	313	fairtraces_def, fairexecutions_def]) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	314	by (safe_tac set_cs);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	315	by (res_inst_tac[("x","corresp_ex A f ex")] exI 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	316	by (safe_tac set_cs);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	317	(* Traces coincide, Lemma 1 *)
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	318	by (pair_tac "ex" 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	319	by (etac (lemma_1 RS spec RS mp) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	320	by (simp_tac (simpset() addsimps [externals_def])1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	321	by (SELECT_GOAL (auto_tac (claset(),simpset()))1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	322	by (asm_full_simp_tac (simpset() addsimps [executions_def,reachable.reachable_0]) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	323
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	324	(* corresp_ex is execution, Lemma 2 *)
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	325	by (pair_tac "ex" 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	326	by (asm_full_simp_tac (simpset() addsimps [executions_def]) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	327	(* start state *)
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	328	by (rtac conjI 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	329	by (asm_full_simp_tac (simpset() addsimps [is_ref_map_def,corresp_ex_def]) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	330	(* is-execution-fragment *)
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	331	by (etac (lemma_2 RS spec RS mp) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	332	by (asm_full_simp_tac (simpset() addsimps [reachable.reachable_0]) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	333
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	334	(* Fairness *)
5132 24f992a25adc isatool expandshort; wenzelm parents: 5068 diff changeset	335	by Auto_tac;
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	336	qed"fair_trace_inclusion2";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	337
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	338
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	339
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	340
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	341

author	wenzelm
	Mon, 20 Jun 2005 22:14:19 +0200
changeset 16504	7c1cb7ce24eb
parent 14981	e73f8140af78
child 17233	41eee2e7b465
permissions	-rw-r--r--