isabelle: src/HOLCF/IOA/meta_theory/RefCorrectness.ML@fc385ce6187d (annotated)

3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	1	(* Title: HOLCF/IOA/meta_theory/RefCorrectness.ML
3275 3f53f2c876f4 changes for release 94-8 mueller parents: 3071 diff changeset	2	ID: $Id$
12218 6597093b77e7 GPLed; wenzelm parents: 10835 diff changeset	3	Author: Olaf M�ller
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	4	*)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	5
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	6
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	7	(* -------------------------------------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	8
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	9	section "corresp_ex";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	10
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	11
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	12	(* ---------------------------------------------------------------- *)
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	13	(* corresp_exC *)
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	14	(* ---------------------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	15
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	16
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	17	Goal "corresp_exC A f = (LAM ex. (%s. case ex of \
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	18	\ nil => nil \
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	19	\ \| x##xs => (flift1 (%pr. (@cex. move A cex (f s) (fst pr) (f (snd pr))) \
10835 f4745d77e620 ` -> $ nipkow parents: 9970 diff changeset	20	\ @@ ((corresp_exC A f $xs) (snd pr))) \
f4745d77e620 ` -> $ nipkow parents: 9970 diff changeset	21	\ $x) ))";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	22	by (rtac trans 1);
3457 a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	23	by (rtac fix_eq2 1);
a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	24	by (rtac corresp_exC_def 1);
a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	25	by (rtac beta_cfun 1);
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	26	by (simp_tac (simpset() addsimps [flift1_def]) 1);
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	27	qed"corresp_exC_unfold";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	28
10835 f4745d77e620 ` -> $ nipkow parents: 9970 diff changeset	29	Goal "(corresp_exC A f$UU) s=UU";
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	30	by (stac corresp_exC_unfold 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	31	by (Simp_tac 1);
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	32	qed"corresp_exC_UU";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	33
10835 f4745d77e620 ` -> $ nipkow parents: 9970 diff changeset	34	Goal "(corresp_exC A f$nil) s = nil";
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	35	by (stac corresp_exC_unfold 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	36	by (Simp_tac 1);
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	37	qed"corresp_exC_nil";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	38
10835 f4745d77e620 ` -> $ nipkow parents: 9970 diff changeset	39	Goal "(corresp_exC A f$(at>>xs)) s = \
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	40	\ (@cex. move A cex (f s) (fst at) (f (snd at))) \
10835 f4745d77e620 ` -> $ nipkow parents: 9970 diff changeset	41	\ @@ ((corresp_exC A f$xs) (snd at))";
3457 a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	42	by (rtac trans 1);
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	43	by (stac corresp_exC_unfold 1);
7229 6773ba0c36d5 renamed Cons to Consq in order to avoid clash with List.Cons; wenzelm parents: 6161 diff changeset	44	by (asm_full_simp_tac (simpset() addsimps [Consq_def,flift1_def]) 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	45	by (Simp_tac 1);
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	46	qed"corresp_exC_cons";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	47
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	48
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	49	Addsimps [corresp_exC_UU,corresp_exC_nil,corresp_exC_cons];
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	50
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	51
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	52
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	53	(* ------------------------------------------------------------------ *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	54	(* The following lemmata describe the definition *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	55	(* of move in more detail *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	56	(* ------------------------------------------------------------------ *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	57
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	58	section"properties of move";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	59
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	60	Goalw [is_ref_map_def]
6161 bc2a76ce1ea3 tidied paulson parents: 5132 diff changeset	61	"[\|is_ref_map f C A; reachable C s; (s,a,t):trans_of C\|] ==>\
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	62	\ move A (@x. move A x (f s) a (f t)) (f s) a (f t)";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	63
3847 d5905b98291f fixed dots; wenzelm parents: 3457 diff changeset	64	by (subgoal_tac "? ex. move A ex (f s) a (f t)" 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	65	by (Asm_full_simp_tac 2);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	66	by (etac exE 1);
9970 dfe4747c8318 the final renaming: selectI -> someI paulson parents: 7229 diff changeset	67	by (rtac someI 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	68	by (assume_tac 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	69	qed"move_is_move";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	70
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	71	Goal
6161 bc2a76ce1ea3 tidied paulson parents: 5132 diff changeset	72	"[\|is_ref_map f C A; reachable C s; (s,a,t):trans_of C\|] ==>\
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	73	\ is_exec_frag A (f s,@x. move A x (f s) a (f t))";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	74	by (cut_inst_tac [] move_is_move 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	75	by (REPEAT (assume_tac 1));
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	76	by (asm_full_simp_tac (simpset() addsimps [move_def]) 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	77	qed"move_subprop1";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	78
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	79	Goal
6161 bc2a76ce1ea3 tidied paulson parents: 5132 diff changeset	80	"[\|is_ref_map f C A; reachable C s; (s,a,t):trans_of C\|] ==>\
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	81	\ Finite ((@x. move A x (f s) a (f t)))";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	82	by (cut_inst_tac [] move_is_move 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	83	by (REPEAT (assume_tac 1));
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	84	by (asm_full_simp_tac (simpset() addsimps [move_def]) 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	85	qed"move_subprop2";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	86
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	87	Goal
6161 bc2a76ce1ea3 tidied paulson parents: 5132 diff changeset	88	"[\|is_ref_map f C A; reachable C s; (s,a,t):trans_of C\|] ==>\
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	89	\ laststate (f s,@x. move A x (f s) a (f t)) = (f t)";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	90	by (cut_inst_tac [] move_is_move 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	91	by (REPEAT (assume_tac 1));
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	92	by (asm_full_simp_tac (simpset() addsimps [move_def]) 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	93	qed"move_subprop3";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	94
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	95	Goal
6161 bc2a76ce1ea3 tidied paulson parents: 5132 diff changeset	96	"[\|is_ref_map f C A; reachable C s; (s,a,t):trans_of C\|] ==>\
10835 f4745d77e620 ` -> $ nipkow parents: 9970 diff changeset	97	\ mk_trace A$((@x. move A x (f s) a (f t))) = \
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	98	\ (if a:ext A then a>>nil else nil)";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	99
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	100	by (cut_inst_tac [] move_is_move 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	101	by (REPEAT (assume_tac 1));
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	102	by (asm_full_simp_tac (simpset() addsimps [move_def]) 1);
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	103	qed"move_subprop4";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	104
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	105
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	106	(* ------------------------------------------------------------------ *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	107	(* The following lemmata contribute to *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	108	(* TRACE INCLUSION Part 1: Traces coincide *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	109	(* ------------------------------------------------------------------ *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	110
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	111	section "Lemmata for <==";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	112
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	113	(* --------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	114	(* Lemma 1.1: Distribution of mk_trace and @@ *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	115	(* --------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	116
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	117
10835 f4745d77e620 ` -> $ nipkow parents: 9970 diff changeset	118	Goal "mk_trace C$(ex1 @@ ex2)= (mk_trace C$ex1) @@ (mk_trace C$ex2)";
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	119	by (simp_tac (simpset() addsimps [mk_trace_def,filter_act_def,
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	120	FilterConc,MapConc]) 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	121	qed"mk_traceConc";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	122
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	123
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	124
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	125	(* ------------------------------------------------------
17233 41eee2e7b465 converted specifications to Isar theories; wenzelm parents: 14981 diff changeset	126	Lemma 1 :Traces coincide
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	127	------------------------------------------------------- *)
4833 2e53109d4bc8 Renamed expand_const -> split_const nipkow parents: 4681 diff changeset	128	Delsplits[split_if];
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	129	Goalw [corresp_ex_def]
17233 41eee2e7b465 converted specifications to Isar theories; wenzelm parents: 14981 diff changeset	130	"[\|is_ref_map f C A; ext C = ext A\|] ==> \
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	131	\ !s. reachable C s & is_exec_frag C (s,xs) --> \
10835 f4745d77e620 ` -> $ nipkow parents: 9970 diff changeset	132	\ mk_trace C$xs = mk_trace A$(snd (corresp_ex A f (s,xs)))";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	133
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	134	by (pair_induct_tac "xs" [is_exec_frag_def] 1);
17233 41eee2e7b465 converted specifications to Isar theories; wenzelm parents: 14981 diff changeset	135	(* cons case *)
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	136	by (safe_tac set_cs);
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	137	by (asm_full_simp_tac (simpset() addsimps [mk_traceConc]) 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	138	by (forward_tac [reachable.reachable_n] 1);
3457 a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	139	by (assume_tac 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	140	by (eres_inst_tac [("x","y")] allE 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	141	by (Asm_full_simp_tac 1);
17233 41eee2e7b465 converted specifications to Isar theories; wenzelm parents: 14981 diff changeset	142	by (asm_full_simp_tac (simpset() addsimps [move_subprop4]
4833 2e53109d4bc8 Renamed expand_const -> split_const nipkow parents: 4681 diff changeset	143	addsplits [split_if]) 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	144	qed"lemma_1";
4833 2e53109d4bc8 Renamed expand_const -> split_const nipkow parents: 4681 diff changeset	145	Addsplits[split_if];
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	146
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	147	(* ------------------------------------------------------------------ *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	148	(* The following lemmata contribute to *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	149	(* TRACE INCLUSION Part 2: corresp_ex is execution *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	150	(* ------------------------------------------------------------------ *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	151
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	152	section "Lemmata for ==>";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	153
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	154	(* -------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	155	(* Lemma 2.1 *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	156	(* -------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	157
17233 41eee2e7b465 converted specifications to Isar theories; wenzelm parents: 14981 diff changeset	158	Goal
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	159	"Finite xs --> \
17233 41eee2e7b465 converted specifications to Isar theories; wenzelm parents: 14981 diff changeset	160	\(!s .is_exec_frag A (s,xs) & is_exec_frag A (t,ys) & \
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	161	\ t = laststate (s,xs) \
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	162	\ --> is_exec_frag A (s,xs @@ ys))";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	163
3457 a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	164	by (rtac impI 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	165	by (Seq_Finite_induct_tac 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	166	(* main case *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	167	by (safe_tac set_cs);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	168	by (pair_tac "a" 1);
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	169	qed_spec_mp"lemma_2_1";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	170
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	171
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	172	(* ----------------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	173	(* Lemma 2 : corresp_ex is execution *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	174	(* ----------------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	175
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	176
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	177
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	178	Goalw [corresp_ex_def]
6161 bc2a76ce1ea3 tidied paulson parents: 5132 diff changeset	179	"[\| is_ref_map f C A \|] ==>\
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	180	\ !s. reachable C s & is_exec_frag C (s,xs) \
17233 41eee2e7b465 converted specifications to Isar theories; wenzelm parents: 14981 diff changeset	181	\ --> is_exec_frag A (corresp_ex A f (s,xs))";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	182
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	183	by (Asm_full_simp_tac 1);
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	184	by (pair_induct_tac "xs" [is_exec_frag_def] 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	185	(* main case *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	186	by (safe_tac set_cs);
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	187	by (res_inst_tac [("t","f y")] lemma_2_1 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	188
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	189	(* Finite *)
3457 a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	190	by (etac move_subprop2 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	191	by (REPEAT (atac 1));
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	192	by (rtac conjI 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	193
3433 2de17c994071 added deadlock freedom, polished definitions and proofs mueller parents: 3275 diff changeset	194	(* is_exec_frag *)
3457 a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	195	by (etac move_subprop1 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	196	by (REPEAT (atac 1));
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	197	by (rtac conjI 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	198
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	199	(* Induction hypothesis *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	200	(* reachable_n looping, therefore apply it manually *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	201	by (eres_inst_tac [("x","y")] allE 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	202	by (Asm_full_simp_tac 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	203	by (forward_tac [reachable.reachable_n] 1);
3457 a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	204	by (assume_tac 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	205	by (Asm_full_simp_tac 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	206	(* laststate *)
3457 a8ab7c64817c Ran expandshort paulson parents: 3433 diff changeset	207	by (etac (move_subprop3 RS sym) 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	208	by (REPEAT (atac 1));
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	209	qed"lemma_2";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	210
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	211
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	212	(* -------------------------------------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	213
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	214	section "Main Theorem: T R A C E - I N C L U S I O N";
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	215
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	216	(* -------------------------------------------------------------------------------- *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	217
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	218
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	219	Goalw [traces_def]
6161 bc2a76ce1ea3 tidied paulson parents: 5132 diff changeset	220	"[\| ext C = ext A; is_ref_map f C A \|] \
17233 41eee2e7b465 converted specifications to Isar theories; wenzelm parents: 14981 diff changeset	221	\ ==> traces C <= traces A";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	222
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	223	by (simp_tac(simpset() addsimps [has_trace_def2])1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	224	by (safe_tac set_cs);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	225
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	226	(* give execution of abstract automata *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	227	by (res_inst_tac[("x","corresp_ex A f ex")] bexI 1);
17233 41eee2e7b465 converted specifications to Isar theories; wenzelm parents: 14981 diff changeset	228
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	229	(* Traces coincide, Lemma 1 *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	230	by (pair_tac "ex" 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	231	by (etac (lemma_1 RS spec RS mp) 1);
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	232	by (REPEAT (atac 1));
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	233	by (asm_full_simp_tac (simpset() addsimps [executions_def,reachable.reachable_0]) 1);
17233 41eee2e7b465 converted specifications to Isar theories; wenzelm parents: 14981 diff changeset	234
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	235	(* corresp_ex is execution, Lemma 2 *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	236	by (pair_tac "ex" 1);
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	237	by (asm_full_simp_tac (simpset() addsimps [executions_def]) 1);
17233 41eee2e7b465 converted specifications to Isar theories; wenzelm parents: 14981 diff changeset	238	(* start state *)
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	239	by (rtac conjI 1);
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	240	by (asm_full_simp_tac (simpset() addsimps [is_ref_map_def,corresp_ex_def]) 1);
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	241	(* is-execution-fragment *)
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	242	by (etac (lemma_2 RS spec RS mp) 1);
4098 71e05eb27fb6 isatool fixclasimp; wenzelm parents: 4034 diff changeset	243	by (asm_full_simp_tac (simpset() addsimps [reachable.reachable_0]) 1);
17233 41eee2e7b465 converted specifications to Isar theories; wenzelm parents: 14981 diff changeset	244	qed"trace_inclusion";
3071 981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	245
981258186b71 New meta theory for IOA based on HOLCF. mueller parents: diff changeset	246
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	247	(* -------------------------------------------------------------------------------- *)
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	248
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	249	section "Corollary: F A I R T R A C E - I N C L U S I O N";
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	250
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	251	(* -------------------------------------------------------------------------------- *)
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	252
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	253
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	254	Goalw [fin_often_def] "(~inf_often P s) = fin_often P s";
5132 24f992a25adc isatool expandshort; wenzelm parents: 5068 diff changeset	255	by Auto_tac;
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	256	qed"fininf";
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	257
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	258
6161 bc2a76ce1ea3 tidied paulson parents: 5132 diff changeset	259	Goal "is_wfair A W (s,ex) = \
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	260	\ (fin_often (%x. ~Enabled A W (snd x)) ex --> inf_often (%x. fst x :W) ex)";
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	261	by (asm_full_simp_tac (simpset() addsimps [is_wfair_def,fin_often_def])1);
5132 24f992a25adc isatool expandshort; wenzelm parents: 5068 diff changeset	262	by Auto_tac;
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	263	qed"WF_alt";
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	264
6161 bc2a76ce1ea3 tidied paulson parents: 5132 diff changeset	265	Goal "[\|is_wfair A W (s,ex); inf_often (%x. Enabled A W (snd x)) ex; \
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	266	\ en_persistent A W\|] \
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	267	\ ==> inf_often (%x. fst x :W) ex";
5132 24f992a25adc isatool expandshort; wenzelm parents: 5068 diff changeset	268	by (dtac persistent 1);
24f992a25adc isatool expandshort; wenzelm parents: 5068 diff changeset	269	by (assume_tac 1);
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	270	by (asm_full_simp_tac (simpset() addsimps [WF_alt])1);
5132 24f992a25adc isatool expandshort; wenzelm parents: 5068 diff changeset	271	by Auto_tac;
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	272	qed"WF_persistent";
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	273
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	274
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	275	Goal "!! C A. \
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	276	\ [\| is_ref_map f C A; ext C = ext A; \
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	277	\ !! ex. [\| ex:executions C; fair_ex C ex\|] ==> fair_ex A (corresp_ex A f ex) \|] \
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	278	\ ==> fairtraces C <= fairtraces A";
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	279	by (simp_tac (simpset() addsimps [fairtraces_def,
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	280	fairexecutions_def]) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	281	by (safe_tac set_cs);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	282	by (res_inst_tac[("x","corresp_ex A f ex")] exI 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	283	by (safe_tac set_cs);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	284
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	285	(* Traces coincide, Lemma 1 *)
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	286	by (pair_tac "ex" 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	287	by (etac (lemma_1 RS spec RS mp) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	288	by (REPEAT (atac 1));
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	289	by (asm_full_simp_tac (simpset() addsimps [executions_def,reachable.reachable_0]) 1);
17233 41eee2e7b465 converted specifications to Isar theories; wenzelm parents: 14981 diff changeset	290
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	291	(* corresp_ex is execution, Lemma 2 *)
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	292	by (pair_tac "ex" 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	293	by (asm_full_simp_tac (simpset() addsimps [executions_def]) 1);
17233 41eee2e7b465 converted specifications to Isar theories; wenzelm parents: 14981 diff changeset	294	(* start state *)
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	295	by (rtac conjI 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	296	by (asm_full_simp_tac (simpset() addsimps [is_ref_map_def,corresp_ex_def]) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	297	(* is-execution-fragment *)
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	298	by (etac (lemma_2 RS spec RS mp) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	299	by (asm_full_simp_tac (simpset() addsimps [reachable.reachable_0]) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	300
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	301	(* Fairness *)
5132 24f992a25adc isatool expandshort; wenzelm parents: 5068 diff changeset	302	by Auto_tac;
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	303	qed"fair_trace_inclusion";
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	304
5068 fb28eaa07e01 isatool fixgoal; wenzelm parents: 4833 diff changeset	305	Goal "!! C A. \
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	306	\ [\| inp(C) = inp(A); out(C)=out(A); \
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	307	\ is_fair_ref_map f C A \|] \
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	308	\ ==> fair_implements C A";
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	309	by (asm_full_simp_tac (simpset() addsimps [is_fair_ref_map_def, fair_implements_def,
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	310	fairtraces_def, fairexecutions_def]) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	311	by (safe_tac set_cs);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	312	by (res_inst_tac[("x","corresp_ex A f ex")] exI 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	313	by (safe_tac set_cs);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	314	(* Traces coincide, Lemma 1 *)
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	315	by (pair_tac "ex" 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	316	by (etac (lemma_1 RS spec RS mp) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	317	by (simp_tac (simpset() addsimps [externals_def])1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	318	by (SELECT_GOAL (auto_tac (claset(),simpset()))1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	319	by (asm_full_simp_tac (simpset() addsimps [executions_def,reachable.reachable_0]) 1);
17233 41eee2e7b465 converted specifications to Isar theories; wenzelm parents: 14981 diff changeset	320
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	321	(* corresp_ex is execution, Lemma 2 *)
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	322	by (pair_tac "ex" 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	323	by (asm_full_simp_tac (simpset() addsimps [executions_def]) 1);
17233 41eee2e7b465 converted specifications to Isar theories; wenzelm parents: 14981 diff changeset	324	(* start state *)
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	325	by (rtac conjI 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	326	by (asm_full_simp_tac (simpset() addsimps [is_ref_map_def,corresp_ex_def]) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	327	(* is-execution-fragment *)
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	328	by (etac (lemma_2 RS spec RS mp) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	329	by (asm_full_simp_tac (simpset() addsimps [reachable.reachable_0]) 1);
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	330
8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	331	(* Fairness *)
5132 24f992a25adc isatool expandshort; wenzelm parents: 5068 diff changeset	332	by Auto_tac;
4559 8e604d885b54 added files containing temproal logic and abstraction; mueller parents: 4098 diff changeset	333	qed"fair_trace_inclusion2";

author	aspinall
	Fri, 30 Sep 2005 18:18:34 +0200
changeset 17740	fc385ce6187d
parent 17233	41eee2e7b465
child 19360	f47412f922ab
permissions	-rw-r--r--