isabelle: doc-src/Codegen/Thy/document/Refinement.tex@8420a873f534 (annotated)

38406 bbb02b67caac sketch of new outline haftmann parents: diff changeset	1	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	2	\begin{isabellebody}%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	3	\def\isabellecontext{Refinement}%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	4	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	5	\isadelimtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	6	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	7	\endisadelimtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	8	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	9	\isatagtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	10	\isacommand{theory}\isamarkupfalse%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	11	\ Refinement\isanewline
bbb02b67caac sketch of new outline haftmann parents: diff changeset	12	\isakeyword{imports}\ Setup\isanewline
bbb02b67caac sketch of new outline haftmann parents: diff changeset	13	\isakeyword{begin}%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	14	\endisatagtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	15	{\isafoldtheory}%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	16	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	17	\isadelimtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	18	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	19	\endisadelimtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	20	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	21	\isamarkupsection{Program and datatype refinement \label{sec:refinement}%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	22	}
bbb02b67caac sketch of new outline haftmann parents: diff changeset	23	\isamarkuptrue%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	24	%
38451 4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	25	\begin{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	26	Code generation by shallow embedding (cf.~\secref{sec:principle})
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	27	allows to choose code equations and datatype constructors freely,
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	28	given that some very basic syntactic properties are met; this
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	29	flexibility opens up mechanisms for refinement which allow to extend
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	30	the scope and quality of generated code dramatically.%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	31	\end{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	32	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	33	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	34	\isamarkupsubsection{Program refinement%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	35	}
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	36	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	37	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	38	\begin{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	39	Program refinement works by choosing appropriate code equations
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	40	explicitly (cf.~\label{sec:equations}); as example, we use Fibonacci
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	41	numbers:%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	42	\end{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	43	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	44	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	45	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	46	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	47	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	48	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	49	\isatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	50	\isacommand{fun}\isamarkupfalse%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	51	\ fib\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequoteopen}nat\ {\isasymRightarrow}\ nat{\isachardoublequoteclose}\ \isakeyword{where}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	52	\ \ \ \ {\isachardoublequoteopen}fib\ {\isadigit{0}}\ {\isacharequal}\ {\isadigit{0}}{\isachardoublequoteclose}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	53	\ \ {\isacharbar}\ {\isachardoublequoteopen}fib\ {\isacharparenleft}Suc\ {\isadigit{0}}{\isacharparenright}\ {\isacharequal}\ Suc\ {\isadigit{0}}{\isachardoublequoteclose}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	54	\ \ {\isacharbar}\ {\isachardoublequoteopen}fib\ {\isacharparenleft}Suc\ {\isacharparenleft}Suc\ n{\isacharparenright}{\isacharparenright}\ {\isacharequal}\ fib\ n\ {\isacharplus}\ fib\ {\isacharparenleft}Suc\ n{\isacharparenright}{\isachardoublequoteclose}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	55	\endisatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	56	{\isafoldquote}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	57	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	58	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	59	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	60	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	61	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	62	\begin{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	63	\noindent The runtime of the corresponding code grows exponential due
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	64	to two recursive calls:%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	65	\end{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	66	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	67	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	68	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	69	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	70	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	71	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	72	\isatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	73	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	74	\begin{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	75	\isatypewriter%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	76	\noindent%
39070 352bcd845998 updated haftmann parents: 38511 diff changeset	77	\hspace*{0pt}fib ::~Example.Nat -> Example.Nat;\\
352bcd845998 updated haftmann parents: 38511 diff changeset	78	\hspace*{0pt}fib Example.Zero{\char95}nat = Example.Zero{\char95}nat;\\
352bcd845998 updated haftmann parents: 38511 diff changeset	79	\hspace*{0pt}fib (Example.Suc Example.Zero{\char95}nat) = Example.Suc Example.Zero{\char95}nat;\\
352bcd845998 updated haftmann parents: 38511 diff changeset	80	\hspace*{0pt}fib (Example.Suc (Example.Suc n)) =\\
352bcd845998 updated haftmann parents: 38511 diff changeset	81	\hspace*{0pt} ~Example.plus{\char95}nat (Example.fib n) (Example.fib (Example.Suc n));%
38451 4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	82	\end{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	83	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	84	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	85	\endisatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	86	{\isafoldquote}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	87	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	88	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	89	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	90	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	91	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	92	\begin{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	93	\noindent A more efficient implementation would use dynamic
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	94	programming, e.g.~sharing of common intermediate results between
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	95	recursive calls. This idea is expressed by an auxiliary operation
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	96	which computes a Fibonacci number and its successor simultaneously:%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	97	\end{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	98	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	99	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	100	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	101	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	102	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	103	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	104	\isatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	105	\isacommand{definition}\isamarkupfalse%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	106	\ fib{\isacharunderscore}step\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequoteopen}nat\ {\isasymRightarrow}\ nat\ {\isasymtimes}\ nat{\isachardoublequoteclose}\ \isakeyword{where}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	107	\ \ {\isachardoublequoteopen}fib{\isacharunderscore}step\ n\ {\isacharequal}\ {\isacharparenleft}fib\ {\isacharparenleft}Suc\ n{\isacharparenright}{\isacharcomma}\ fib\ n{\isacharparenright}{\isachardoublequoteclose}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	108	\endisatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	109	{\isafoldquote}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	110	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	111	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	112	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	113	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	114	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	115	\begin{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	116	\noindent This operation can be implemented by recursion using
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	117	dynamic programming:%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	118	\end{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	119	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	120	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	121	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	122	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	123	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	124	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	125	\isatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	126	\isacommand{lemma}\isamarkupfalse%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	127	\ {\isacharbrackleft}code{\isacharbrackright}{\isacharcolon}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	128	\ \ {\isachardoublequoteopen}fib{\isacharunderscore}step\ {\isadigit{0}}\ {\isacharequal}\ {\isacharparenleft}Suc\ {\isadigit{0}}{\isacharcomma}\ {\isadigit{0}}{\isacharparenright}{\isachardoublequoteclose}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	129	\ \ {\isachardoublequoteopen}fib{\isacharunderscore}step\ {\isacharparenleft}Suc\ n{\isacharparenright}\ {\isacharequal}\ {\isacharparenleft}let\ {\isacharparenleft}m{\isacharcomma}\ q{\isacharparenright}\ {\isacharequal}\ fib{\isacharunderscore}step\ n\ in\ {\isacharparenleft}m\ {\isacharplus}\ q{\isacharcomma}\ m{\isacharparenright}{\isacharparenright}{\isachardoublequoteclose}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	130	\ \ \isacommand{by}\isamarkupfalse%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	131	\ {\isacharparenleft}simp{\isacharunderscore}all\ add{\isacharcolon}\ fib{\isacharunderscore}step{\isacharunderscore}def{\isacharparenright}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	132	\endisatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	133	{\isafoldquote}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	134	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	135	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	136	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	137	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	138	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	139	\begin{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	140	\noindent What remains is to implement \isa{fib} by \isa{fib{\isacharunderscore}step} as follows:%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	141	\end{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	142	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	143	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	144	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	145	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	146	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	147	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	148	\isatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	149	\isacommand{lemma}\isamarkupfalse%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	150	\ {\isacharbrackleft}code{\isacharbrackright}{\isacharcolon}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	151	\ \ {\isachardoublequoteopen}fib\ {\isadigit{0}}\ {\isacharequal}\ {\isadigit{0}}{\isachardoublequoteclose}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	152	\ \ {\isachardoublequoteopen}fib\ {\isacharparenleft}Suc\ n{\isacharparenright}\ {\isacharequal}\ fst\ {\isacharparenleft}fib{\isacharunderscore}step\ n{\isacharparenright}{\isachardoublequoteclose}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	153	\ \ \isacommand{by}\isamarkupfalse%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	154	\ {\isacharparenleft}simp{\isacharunderscore}all\ add{\isacharcolon}\ fib{\isacharunderscore}step{\isacharunderscore}def{\isacharparenright}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	155	\endisatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	156	{\isafoldquote}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	157	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	158	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	159	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	160	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	161	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	162	\begin{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	163	\noindent The resulting code shows only linear growth of runtime:%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	164	\end{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	165	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	166	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	167	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	168	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	169	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	170	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	171	\isatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	172	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	173	\begin{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	174	\isatypewriter%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	175	\noindent%
39070 352bcd845998 updated haftmann parents: 38511 diff changeset	176	\hspace*{0pt}fib{\char95}step ::~Example.Nat -> (Example.Nat,~Example.Nat);\\
352bcd845998 updated haftmann parents: 38511 diff changeset	177	\hspace*{0pt}fib{\char95}step (Example.Suc n) =\\
352bcd845998 updated haftmann parents: 38511 diff changeset	178	\hspace*{0pt} ~let {\char123}\\
352bcd845998 updated haftmann parents: 38511 diff changeset	179	\hspace*{0pt} ~~~(m,~q) = Example.fib{\char95}step n;\\
352bcd845998 updated haftmann parents: 38511 diff changeset	180	\hspace*{0pt} ~{\char125}~in (Example.plus{\char95}nat m q,~m);\\
352bcd845998 updated haftmann parents: 38511 diff changeset	181	\hspace*{0pt}fib{\char95}step Example.Zero{\char95}nat =\\
352bcd845998 updated haftmann parents: 38511 diff changeset	182	\hspace*{0pt} ~(Example.Suc Example.Zero{\char95}nat,~Example.Zero{\char95}nat);\\
38451 4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	183	\hspace*{0pt}\\
39070 352bcd845998 updated haftmann parents: 38511 diff changeset	184	\hspace*{0pt}fib ::~Example.Nat -> Example.Nat;\\
352bcd845998 updated haftmann parents: 38511 diff changeset	185	\hspace*{0pt}fib (Example.Suc n) = fst (Example.fib{\char95}step n);\\
352bcd845998 updated haftmann parents: 38511 diff changeset	186	\hspace*{0pt}fib Example.Zero{\char95}nat = Example.Zero{\char95}nat;%
38451 4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	187	\end{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	188	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	189	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	190	\endisatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	191	{\isafoldquote}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	192	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	193	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	194	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	195	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	196	%
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	197	\isamarkupsubsection{Datatype refinement%
38437 ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	198	}
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	199	\isamarkuptrue%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	200	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	201	\begin{isamarkuptext}%
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	202	Selecting specific code equations \emph{and} datatype constructors
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	203	leads to datatype refinement. As an example, we will develop an
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	204	alternative representation of the queue example given in
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	205	\secref{sec:queue_example}. The amortised representation is
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	206	convenient for generating code but exposes its \qt{implementation}
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	207	details, which may be cumbersome when proving theorems about it.
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	208	Therefore, here is a simple, straightforward representation of
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	209	queues:%
38437 ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	210	\end{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	211	\isamarkuptrue%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	212	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	213	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	214	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	215	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	216	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	217	\isatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	218	\isacommand{datatype}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	219	\ {\isacharprime}a\ queue\ {\isacharequal}\ Queue\ {\isachardoublequoteopen}{\isacharprime}a\ list{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	220	\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	221	\isacommand{definition}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	222	\ empty\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequoteopen}{\isacharprime}a\ queue{\isachardoublequoteclose}\ \isakeyword{where}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	223	\ \ {\isachardoublequoteopen}empty\ {\isacharequal}\ Queue\ {\isacharbrackleft}{\isacharbrackright}{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	224	\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	225	\isacommand{primrec}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	226	\ enqueue\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequoteopen}{\isacharprime}a\ {\isasymRightarrow}\ {\isacharprime}a\ queue\ {\isasymRightarrow}\ {\isacharprime}a\ queue{\isachardoublequoteclose}\ \isakeyword{where}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	227	\ \ {\isachardoublequoteopen}enqueue\ x\ {\isacharparenleft}Queue\ xs{\isacharparenright}\ {\isacharequal}\ Queue\ {\isacharparenleft}xs\ {\isacharat}\ {\isacharbrackleft}x{\isacharbrackright}{\isacharparenright}{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	228	\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	229	\isacommand{fun}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	230	\ dequeue\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequoteopen}{\isacharprime}a\ queue\ {\isasymRightarrow}\ {\isacharprime}a\ option\ {\isasymtimes}\ {\isacharprime}a\ queue{\isachardoublequoteclose}\ \isakeyword{where}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	231	\ \ \ \ {\isachardoublequoteopen}dequeue\ {\isacharparenleft}Queue\ {\isacharbrackleft}{\isacharbrackright}{\isacharparenright}\ {\isacharequal}\ {\isacharparenleft}None{\isacharcomma}\ Queue\ {\isacharbrackleft}{\isacharbrackright}{\isacharparenright}{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	232	\ \ {\isacharbar}\ {\isachardoublequoteopen}dequeue\ {\isacharparenleft}Queue\ {\isacharparenleft}x\ {\isacharhash}\ xs{\isacharparenright}{\isacharparenright}\ {\isacharequal}\ {\isacharparenleft}Some\ x{\isacharcomma}\ Queue\ xs{\isacharparenright}{\isachardoublequoteclose}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	233	\endisatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	234	{\isafoldquote}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	235	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	236	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	237	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	238	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	239	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	240	\begin{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	241	\noindent This we can use directly for proving; for executing,
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	242	we provide an alternative characterisation:%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	243	\end{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	244	\isamarkuptrue%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	245	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	246	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	247	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	248	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	249	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	250	\isatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	251	\isacommand{definition}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	252	\ AQueue\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequoteopen}{\isacharprime}a\ list\ {\isasymRightarrow}\ {\isacharprime}a\ list\ {\isasymRightarrow}\ {\isacharprime}a\ queue{\isachardoublequoteclose}\ \isakeyword{where}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	253	\ \ {\isachardoublequoteopen}AQueue\ xs\ ys\ {\isacharequal}\ Queue\ {\isacharparenleft}ys\ {\isacharat}\ rev\ xs{\isacharparenright}{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	254	\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	255	\isacommand{code{\isacharunderscore}datatype}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	256	\ AQueue%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	257	\endisatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	258	{\isafoldquote}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	259	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	260	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	261	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	262	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	263	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	264	\begin{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	265	\noindent Here we define a \qt{constructor} \isa{AQueue} which
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	266	is defined in terms of \isa{Queue} and interprets its arguments
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	267	according to what the \emph{content} of an amortised queue is supposed
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	268	to be.
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	269
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	270	The prerequisite for datatype constructors is only syntactical: a
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	271	constructor must be of type \isa{{\isasymtau}\ {\isacharequal}\ {\isasymdots}\ {\isasymRightarrow}\ {\isasymkappa}\ {\isasymalpha}\isactrlisub {\isadigit{1}}\ {\isasymdots}\ {\isasymalpha}\isactrlisub n} where \isa{{\isacharbraceleft}{\isasymalpha}\isactrlisub {\isadigit{1}}{\isacharcomma}\ {\isasymdots}{\isacharcomma}\ {\isasymalpha}\isactrlisub n{\isacharbraceright}} is exactly the set of \emph{all} type variables in
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	272	\isa{{\isasymtau}}; then \isa{{\isasymkappa}} is its corresponding datatype. The
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	273	HOL datatype package by default registers any new datatype with its
38511 abf95b39d65c use command_def more consciously haftmann parents: 38502 diff changeset	274	constructors, but this may be changed using \indexdef{}{command}{code\_datatype}\hypertarget{command.code-datatype}{\hyperlink{command.code-datatype}{\mbox{\isa{\isacommand{code{\isacharunderscore}datatype}}}}}; the currently chosen constructors can be inspected
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	275	using the \hyperlink{command.print-codesetup}{\mbox{\isa{\isacommand{print{\isacharunderscore}codesetup}}}} command.
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	276
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	277	Equipped with this, we are able to prove the following equations
38437 ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	278	for our primitive queue operations which \qt{implement} the simple
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	279	queues in an amortised fashion:%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	280	\end{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	281	\isamarkuptrue%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	282	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	283	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	284	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	285	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	286	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	287	\isatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	288	\isacommand{lemma}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	289	\ empty{\isacharunderscore}AQueue\ {\isacharbrackleft}code{\isacharbrackright}{\isacharcolon}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	290	\ \ {\isachardoublequoteopen}empty\ {\isacharequal}\ AQueue\ {\isacharbrackleft}{\isacharbrackright}\ {\isacharbrackleft}{\isacharbrackright}{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	291	\ \ \isacommand{unfolding}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	292	\ AQueue{\isacharunderscore}def\ empty{\isacharunderscore}def\ \isacommand{by}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	293	\ simp\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	294	\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	295	\isacommand{lemma}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	296	\ enqueue{\isacharunderscore}AQueue\ {\isacharbrackleft}code{\isacharbrackright}{\isacharcolon}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	297	\ \ {\isachardoublequoteopen}enqueue\ x\ {\isacharparenleft}AQueue\ xs\ ys{\isacharparenright}\ {\isacharequal}\ AQueue\ {\isacharparenleft}x\ {\isacharhash}\ xs{\isacharparenright}\ ys{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	298	\ \ \isacommand{unfolding}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	299	\ AQueue{\isacharunderscore}def\ \isacommand{by}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	300	\ simp\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	301	\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	302	\isacommand{lemma}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	303	\ dequeue{\isacharunderscore}AQueue\ {\isacharbrackleft}code{\isacharbrackright}{\isacharcolon}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	304	\ \ {\isachardoublequoteopen}dequeue\ {\isacharparenleft}AQueue\ xs\ {\isacharbrackleft}{\isacharbrackright}{\isacharparenright}\ {\isacharequal}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	305	\ \ \ \ {\isacharparenleft}if\ xs\ {\isacharequal}\ {\isacharbrackleft}{\isacharbrackright}\ then\ {\isacharparenleft}None{\isacharcomma}\ AQueue\ {\isacharbrackleft}{\isacharbrackright}\ {\isacharbrackleft}{\isacharbrackright}{\isacharparenright}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	306	\ \ \ \ else\ dequeue\ {\isacharparenleft}AQueue\ {\isacharbrackleft}{\isacharbrackright}\ {\isacharparenleft}rev\ xs{\isacharparenright}{\isacharparenright}{\isacharparenright}{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	307	\ \ {\isachardoublequoteopen}dequeue\ {\isacharparenleft}AQueue\ xs\ {\isacharparenleft}y\ {\isacharhash}\ ys{\isacharparenright}{\isacharparenright}\ {\isacharequal}\ {\isacharparenleft}Some\ y{\isacharcomma}\ AQueue\ xs\ ys{\isacharparenright}{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	308	\ \ \isacommand{unfolding}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	309	\ AQueue{\isacharunderscore}def\ \isacommand{by}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	310	\ simp{\isacharunderscore}all%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	311	\endisatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	312	{\isafoldquote}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	313	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	314	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	315	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	316	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	317	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	318	\begin{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	319	\noindent For completeness, we provide a substitute for the
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	320	\isa{case} combinator on queues:%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	321	\end{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	322	\isamarkuptrue%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	323	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	324	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	325	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	326	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	327	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	328	\isatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	329	\isacommand{lemma}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	330	\ queue{\isacharunderscore}case{\isacharunderscore}AQueue\ {\isacharbrackleft}code{\isacharbrackright}{\isacharcolon}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	331	\ \ {\isachardoublequoteopen}queue{\isacharunderscore}case\ f\ {\isacharparenleft}AQueue\ xs\ ys{\isacharparenright}\ {\isacharequal}\ f\ {\isacharparenleft}ys\ {\isacharat}\ rev\ xs{\isacharparenright}{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	332	\ \ \isacommand{unfolding}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	333	\ AQueue{\isacharunderscore}def\ \isacommand{by}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	334	\ simp%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	335	\endisatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	336	{\isafoldquote}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	337	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	338	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	339	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	340	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	341	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	342	\begin{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	343	\noindent The resulting code looks as expected:%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	344	\end{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	345	\isamarkuptrue%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	346	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	347	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	348	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	349	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	350	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	351	\isatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	352	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	353	\begin{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	354	\isatypewriter%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	355	\noindent%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	356	\hspace*{0pt}structure Example :~sig\\
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	357	\hspace*{0pt} ~val id :~'a -> 'a\\
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	358	\hspace*{0pt} ~val fold :~('a -> 'b -> 'b) -> 'a list -> 'b -> 'b\\
38437 ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	359	\hspace*{0pt} ~val rev :~'a list -> 'a list\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	360	\hspace*{0pt} ~val null :~'a list -> bool\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	361	\hspace{0pt} ~datatype 'a queue = AQueue of 'a list 'a list\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	362	\hspace*{0pt} ~val empty :~'a queue\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	363	\hspace{0pt} ~val dequeue :~'a queue -> 'a option 'a queue\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	364	\hspace*{0pt} ~val enqueue :~'a -> 'a queue -> 'a queue\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	365	\hspace*{0pt}end = struct\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	366	\hspace*{0pt}\\
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	367	\hspace*{0pt}fun id x = (fn xa => xa) x;\\
38437 ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	368	\hspace*{0pt}\\
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	369	\hspace*{0pt}fun fold f [] = id\\
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	370	\hspace*{0pt} ~\| fold f (x ::~xs) = fold f xs o f x;\\
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	371	\hspace*{0pt}\\
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	372	\hspace*{0pt}fun rev xs = fold (fn a => fn b => a ::~b) xs [];\\
38437 ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	373	\hspace*{0pt}\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	374	\hspace*{0pt}fun null [] = true\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	375	\hspace*{0pt} ~\| null (x ::~xs) = false;\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	376	\hspace*{0pt}\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	377	\hspace{0pt}datatype 'a queue = AQueue of 'a list 'a list;\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	378	\hspace*{0pt}\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	379	\hspace*{0pt}val empty :~'a queue = AQueue ([],~[]);\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	380	\hspace*{0pt}\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	381	\hspace*{0pt}fun dequeue (AQueue (xs,~y ::~ys)) = (SOME y,~AQueue (xs,~ys))\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	382	\hspace*{0pt} ~\| dequeue (AQueue (xs,~[])) =\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	383	\hspace*{0pt} ~~~(if null xs then (NONE,~AQueue ([],~[]))\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	384	\hspace*{0pt} ~~~~~else dequeue (AQueue ([],~rev xs)));\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	385	\hspace*{0pt}\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	386	\hspace*{0pt}fun enqueue x (AQueue (xs,~ys)) = AQueue (x ::~xs,~ys);\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	387	\hspace*{0pt}\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	388	\hspace{0pt}end;~(struct Example*)%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	389	\end{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	390	\isamarkuptrue%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	391	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	392	\endisatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	393	{\isafoldquote}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	394	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	395	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	396	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	397	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	398	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	399	\begin{isamarkuptext}%
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	400	The same techniques can also be applied to types which are not
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	401	specified as datatypes, e.g.~type \isa{int} is originally specified
38511 abf95b39d65c use command_def more consciously haftmann parents: 38502 diff changeset	402	as quotient type by means of \indexdef{}{command}{typedef}\hypertarget{command.typedef}{\hyperlink{command.typedef}{\mbox{\isa{\isacommand{typedef}}}}}, but for code
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	403	generation constants allowing construction of binary numeral values
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	404	are used as constructors for \isa{int}.
38437 ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	405
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	406	This approach however fails if the representation of a type demands
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	407	invariants; this issue is discussed in the next section.%
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	408	\end{isamarkuptext}%
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	409	\isamarkuptrue%
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	410	%
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	411	\isamarkupsubsection{Datatype refinement involving invariants%
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	412	}
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	413	\isamarkuptrue%
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	414	%
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	415	\begin{isamarkuptext}%
38502 c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	416	Datatype representation involving invariants require a dedicated
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	417	setup for the type and its primitive operations. As a running
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	418	example, we implement a type \isa{{\isacharprime}a\ dlist} of list consisting
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	419	of distinct elements.
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	420
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	421	The first step is to decide on which representation the abstract
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	422	type (in our example \isa{{\isacharprime}a\ dlist}) should be implemented.
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	423	Here we choose \isa{{\isacharprime}a\ list}. Then a conversion from the concrete
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	424	type to the abstract type must be specified, here:%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	425	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	426	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	427	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	428	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	429	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	430	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	431	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	432	\isatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	433	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	434	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	435	\isa{Dlist\ {\isasymColon}\ {\isacharprime}a\ list\ {\isasymRightarrow}\ {\isacharprime}a\ dlist}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	436	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	437	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	438	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	439	\endisatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	440	{\isafoldquote}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	441	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	442	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	443	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	444	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	445	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	446	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	447	\noindent Next follows the specification of a suitable \emph{projection},
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	448	i.e.~a conversion from abstract to concrete type:%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	449	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	450	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	451	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	452	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	453	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	454	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	455	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	456	\isatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	457	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	458	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	459	\isa{list{\isacharunderscore}of{\isacharunderscore}dlist\ {\isasymColon}\ {\isacharprime}a\ dlist\ {\isasymRightarrow}\ {\isacharprime}a\ list}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	460	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	461	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	462	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	463	\endisatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	464	{\isafoldquote}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	465	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	466	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	467	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	468	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	469	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	470	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	471	\noindent This projection must be specified such that the following
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	472	\emph{abstract datatype certificate} can be proven:%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	473	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	474	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	475	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	476	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	477	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	478	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	479	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	480	\isatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	481	\isacommand{lemma}\isamarkupfalse%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	482	\ {\isacharbrackleft}code\ abstype{\isacharbrackright}{\isacharcolon}\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	483	\ \ {\isachardoublequoteopen}Dlist\ {\isacharparenleft}list{\isacharunderscore}of{\isacharunderscore}dlist\ dxs{\isacharparenright}\ {\isacharequal}\ dxs{\isachardoublequoteclose}\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	484	\ \ \isacommand{by}\isamarkupfalse%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	485	\ {\isacharparenleft}fact\ Dlist{\isacharunderscore}list{\isacharunderscore}of{\isacharunderscore}dlist{\isacharparenright}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	486	\endisatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	487	{\isafoldquote}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	488	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	489	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	490	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	491	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	492	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	493	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	494	\noindent Note that so far the invariant on representations
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	495	(\isa{distinct\ {\isasymColon}\ {\isacharprime}a\ list\ {\isasymRightarrow}\ bool}) has never been mentioned explicitly:
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	496	the invariant is only referred to implicitly: all values in
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	497	set \isa{{\isacharbraceleft}xs{\isachardot}\ list{\isacharunderscore}of{\isacharunderscore}dlist\ {\isacharparenleft}Dlist\ xs{\isacharparenright}\ {\isacharequal}\ xs{\isacharbraceright}} are invariant,
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	498	and in our example this is exactly \isa{{\isacharbraceleft}xs{\isachardot}\ distinct\ xs{\isacharbraceright}}.
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	499
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	500	The primitive operations on \isa{{\isacharprime}a\ dlist} are specified
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	501	indirectly using the projection \isa{list{\isacharunderscore}of{\isacharunderscore}dlist}. For
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	502	the empty \isa{dlist}, \isa{Dlist{\isachardot}empty}, we finally want
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	503	the code equation%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	504	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	505	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	506	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	507	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	508	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	509	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	510	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	511	\isatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	512	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	513	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	514	\isa{Dlist{\isachardot}empty\ {\isacharequal}\ Dlist\ {\isacharbrackleft}{\isacharbrackright}}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	515	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	516	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	517	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	518	\endisatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	519	{\isafoldquote}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	520	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	521	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	522	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	523	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	524	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	525	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	526	\noindent This we have to prove indirectly as follows:%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	527	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	528	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	529	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	530	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	531	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	532	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	533	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	534	\isatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	535	\isacommand{lemma}\isamarkupfalse%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	536	\ {\isacharbrackleft}code\ abstract{\isacharbrackright}{\isacharcolon}\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	537	\ \ {\isachardoublequoteopen}list{\isacharunderscore}of{\isacharunderscore}dlist\ Dlist{\isachardot}empty\ {\isacharequal}\ {\isacharbrackleft}{\isacharbrackright}{\isachardoublequoteclose}\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	538	\ \ \isacommand{by}\isamarkupfalse%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	539	\ {\isacharparenleft}fact\ list{\isacharunderscore}of{\isacharunderscore}dlist{\isacharunderscore}empty{\isacharparenright}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	540	\endisatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	541	{\isafoldquote}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	542	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	543	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	544	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	545	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	546	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	547	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	548	\noindent This equation logically encodes both the desired code
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	549	equation and that the expression \isa{Dlist} is applied to obeys
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	550	the implicit invariant. Equations for insertion and removal are
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	551	similar:%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	552	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	553	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	554	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	555	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	556	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	557	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	558	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	559	\isatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	560	\isacommand{lemma}\isamarkupfalse%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	561	\ {\isacharbrackleft}code\ abstract{\isacharbrackright}{\isacharcolon}\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	562	\ \ {\isachardoublequoteopen}list{\isacharunderscore}of{\isacharunderscore}dlist\ {\isacharparenleft}Dlist{\isachardot}insert\ x\ dxs{\isacharparenright}\ {\isacharequal}\ List{\isachardot}insert\ x\ {\isacharparenleft}list{\isacharunderscore}of{\isacharunderscore}dlist\ dxs{\isacharparenright}{\isachardoublequoteclose}\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	563	\ \ \isacommand{by}\isamarkupfalse%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	564	\ {\isacharparenleft}fact\ list{\isacharunderscore}of{\isacharunderscore}dlist{\isacharunderscore}insert{\isacharparenright}\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	565	\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	566	\isacommand{lemma}\isamarkupfalse%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	567	\ {\isacharbrackleft}code\ abstract{\isacharbrackright}{\isacharcolon}\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	568	\ \ {\isachardoublequoteopen}list{\isacharunderscore}of{\isacharunderscore}dlist\ {\isacharparenleft}Dlist{\isachardot}remove\ x\ dxs{\isacharparenright}\ {\isacharequal}\ remove{\isadigit{1}}\ x\ {\isacharparenleft}list{\isacharunderscore}of{\isacharunderscore}dlist\ dxs{\isacharparenright}{\isachardoublequoteclose}\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	569	\ \ \isacommand{by}\isamarkupfalse%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	570	\ {\isacharparenleft}fact\ list{\isacharunderscore}of{\isacharunderscore}dlist{\isacharunderscore}remove{\isacharparenright}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	571	\endisatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	572	{\isafoldquote}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	573	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	574	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	575	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	576	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	577	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	578	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	579	\noindent Then the corresponding code is as follows:%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	580	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	581	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	582	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	583	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	584	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	585	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	586	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	587	\isatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	588	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	589	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	590	\isatypewriter%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	591	\noindent%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	592	\hspace*{0pt}module Example where {\char123}\\
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	593	\hspace*{0pt}\\
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	594	\hspace*{0pt}newtype Dlist a = Dlist [a];\\
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	595	\hspace*{0pt}\\
39070 352bcd845998 updated haftmann parents: 38511 diff changeset	596	\hspace*{0pt}empty ::~forall a.~Example.Dlist a;\\
352bcd845998 updated haftmann parents: 38511 diff changeset	597	\hspace*{0pt}empty = Example.Dlist [];\\
38502 c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	598	\hspace*{0pt}\\
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	599	\hspace*{0pt}member ::~forall a.~(Eq a) => [a] -> a -> Bool;\\
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	600	\hspace*{0pt}member [] y = False;\\
39070 352bcd845998 updated haftmann parents: 38511 diff changeset	601	\hspace*{0pt}member (x :~xs) y = x == y \|\| Example.member xs y;\\
38502 c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	602	\hspace*{0pt}\\
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	603	\hspace*{0pt}inserta ::~forall a.~(Eq a) => a -> [a] -> [a];\\
39070 352bcd845998 updated haftmann parents: 38511 diff changeset	604	\hspace*{0pt}inserta x xs = (if Example.member xs x then xs else x :~xs);\\
38502 c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	605	\hspace*{0pt}\\
39070 352bcd845998 updated haftmann parents: 38511 diff changeset	606	\hspace*{0pt}list{\char95}of{\char95}dlist ::~forall a.~Example.Dlist a -> [a];\\
352bcd845998 updated haftmann parents: 38511 diff changeset	607	\hspace*{0pt}list{\char95}of{\char95}dlist (Example.Dlist x) = x;\\
38502 c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	608	\hspace*{0pt}\\
39070 352bcd845998 updated haftmann parents: 38511 diff changeset	609	\hspace*{0pt}insert ::~forall a.~(Eq a) => a -> Example.Dlist a -> Example.Dlist a;\\
352bcd845998 updated haftmann parents: 38511 diff changeset	610	\hspace*{0pt}insert x dxs =\\
352bcd845998 updated haftmann parents: 38511 diff changeset	611	\hspace*{0pt} ~Example.Dlist (Example.inserta x (Example.list{\char95}of{\char95}dlist dxs));\\
38502 c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	612	\hspace*{0pt}\\
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	613	\hspace*{0pt}remove1 ::~forall a.~(Eq a) => a -> [a] -> [a];\\
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	614	\hspace*{0pt}remove1 x [] = [];\\
39070 352bcd845998 updated haftmann parents: 38511 diff changeset	615	\hspace*{0pt}remove1 x (y :~xs) = (if x == y then xs else y :~Example.remove1 x xs);\\
38502 c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	616	\hspace*{0pt}\\
39070 352bcd845998 updated haftmann parents: 38511 diff changeset	617	\hspace*{0pt}remove ::~forall a.~(Eq a) => a -> Example.Dlist a -> Example.Dlist a;\\
352bcd845998 updated haftmann parents: 38511 diff changeset	618	\hspace*{0pt}remove x dxs =\\
352bcd845998 updated haftmann parents: 38511 diff changeset	619	\hspace*{0pt} ~Example.Dlist (Example.remove1 x (Example.list{\char95}of{\char95}dlist dxs));\\
38502 c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	620	\hspace*{0pt}\\
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	621	\hspace*{0pt}{\char125}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	622	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	623	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	624	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	625	\endisatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	626	{\isafoldquote}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	627	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	628	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	629	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	630	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	631	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	632	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	633	Typical data structures implemented by representations involving
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	634	invariants are available in the library, e.g.~theories \hyperlink{theory.Fset}{\mbox{\isa{Fset}}} and \hyperlink{theory.Mapping}{\mbox{\isa{Mapping}}} specify sets (type \isa{{\isacharprime}a\ fset}) and
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	635	key-value-mappings (type \isa{{\isacharparenleft}{\isacharprime}a{\isacharcomma}\ {\isacharprime}b{\isacharparenright}\ mapping}) respectively;
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	636	these can be implemented by distinct lists as presented here as
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	637	example (theory \hyperlink{theory.Dlist}{\mbox{\isa{Dlist}}}) and red-black-trees respectively
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	638	(theory \hyperlink{theory.RBT}{\mbox{\isa{RBT}}}).%
38437 ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	639	\end{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	640	\isamarkuptrue%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	641	%
38406 bbb02b67caac sketch of new outline haftmann parents: diff changeset	642	\isadelimtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	643	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	644	\endisadelimtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	645	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	646	\isatagtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	647	\isacommand{end}\isamarkupfalse%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	648	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	649	\endisatagtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	650	{\isafoldtheory}%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	651	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	652	\isadelimtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	653	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	654	\endisadelimtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	655	\isanewline
bbb02b67caac sketch of new outline haftmann parents: diff changeset	656	\end{isabellebody}%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	657	%%% Local Variables:
bbb02b67caac sketch of new outline haftmann parents: diff changeset	658	%%% mode: latex
bbb02b67caac sketch of new outline haftmann parents: diff changeset	659	%%% TeX-master: "root"
bbb02b67caac sketch of new outline haftmann parents: diff changeset	660	%%% End:

author	blanchet
	Mon, 06 Sep 2010 16:50:29 +0200
changeset 39220	8420a873f534
parent 39070	352bcd845998
child 39210	985b13c5a61d
permissions	-rw-r--r--