isabelle: src/Doc/Corec/Corec.thy@b9d4efb43fd9 (annotated)

62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	1	(* Title: Doc/Corec/Corec.thy
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	2	Author: Jasmin Blanchette, Inria, LORIA, MPII
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	3	Author: Aymeric Bouzy, Ecole polytechnique
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	4	Author: Andreas Lochbihler, ETH Zuerich
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	5	Author: Andrei Popescu, Middlesex University
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	6	Author: Dmitriy Traytel, ETH Zuerich
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	7
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	8	Tutorial for nonprimitively corecursive definitions.
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	9	*)
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	10
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	11	theory Corec
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	12	imports
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	13	GCD
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	14	"../Datatypes/Setup"
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	15	"~~/src/HOL/Library/BNF_Corec"
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	16	"~~/src/HOL/Library/FSet"
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	17	begin
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	18
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	19	section \<open>Introduction
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	20	\label{sec:introduction}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	21
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	22	text \<open>
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	23	Isabelle's (co)datatype package @{cite "isabelle-datatypes"} offers a convenient
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	24	syntax for introducing codatatypes. For example, the type of (infinite) streams
63680 6e1e8b5abbfa more symbols; wenzelm parents: 63669 diff changeset	25	can be defined as follows (cf. \<^file>\<open>~~/src/HOL/Library/Stream.thy\<close>):
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	26	\<close>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	27
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	28	codatatype 'a stream =
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	29	SCons (shd: 'a) (stl: "'a stream")
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	30
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	31	text \<open>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	32	\noindent
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	33	The (co)datatype package also provides two commands, \keyw{primcorec} and
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	34	\keyw{prim\-corec\-ur\-sive}, for defining primitively corecursive functions.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	35
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	36	This tutorial presents a definitional package for functions beyond
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	37	primitive corecursion. It describes @{command corec} and related commands:\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	38	@{command corecursive}, @{command friend_of_corec}, and @{command coinduction_upto}.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	39	It also covers the @{method corec_unique} proof method.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	40	The package is not part of @{theory Main}; it is located in
63680 6e1e8b5abbfa more symbols; wenzelm parents: 63669 diff changeset	41	\<^file>\<open>~~/src/HOL/Library/BNF_Corec.thy\<close>.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	42
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	43	The @{command corec} command generalizes \keyw{primcorec} in three main
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	44	respects. First, it allows multiple constructors around corecursive calls, where
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	45	\keyw{primcorec} expects exactly one. For example:
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	46	\<close>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	47
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	48	corec oneTwos :: "nat stream" where
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	49	"oneTwos = SCons 1 (SCons 2 oneTwos)"
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	50
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	51	text \<open>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	52	Second, @{command corec} allows other functions than constructors to appear in
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	53	the corecursive call context (i.e., around any self-calls on the right-hand side
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	54	of the equation). The requirement on these functions is that they must be
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	55	\emph{friendly}. Intuitively, a function is friendly if it needs to destruct
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	56	at most one constructor of input to produce one constructor of output.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	57	We can register functions as friendly using the @{command friend_of_corec}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	58	command, or by passing the @{text friend} option to @{command corec}. The
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	59	friendliness check relies on an internal syntactic check in combination with
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	60	a parametricity subgoal, which must be discharged manually (typically using
64380 4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	61	@{method transfer_prover} or @{method transfer_prover_eq}).
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	62
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	63	Third, @{command corec} allows self-calls that are not guarded by a constructor,
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	64	as long as these calls occur in a friendly context (a context consisting
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	65	exclusively of friendly functions) and can be shown to be terminating
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	66	(well founded). The mixture of recursive and corecursive calls in a single
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	67	function can be quite useful in practice.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	68
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	69	Internally, the package synthesizes corecursors that take into account the
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	70	possible call contexts. The corecursor is accompanined by a corresponding,
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	71	equally general coinduction principle. The corecursor and the coinduction
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	72	principle grow in expressiveness as we interact with it. In process algebra
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	73	terminology, corecursion and coinduction take place \emph{up to} friendly
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	74	contexts.
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	75
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	76	The package fully adheres to the LCF philosophy @{cite mgordon79}: The
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	77	characteristic theorems associated with the specified corecursive functions are
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	78	derived rather than introduced axiomatically.%
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	79	\footnote{However, most of the internal proof obligations are omitted if the
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	80	@{text quick_and_dirty} option is enabled.}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	81	The package is described in a pair of scientific papers
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	82	@{cite "blanchette-et-al-2015-fouco" and "blanchette-et-al-2016-fouco2"}. Some
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	83	of the text and examples below originate from there.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	84
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	85	This tutorial is organized as follows:
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	86
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	87	\begin{itemize}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	88	\setlength{\itemsep}{0pt}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	89
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	90	\item Section \ref{sec:introductory-examples}, ``Introductory Examples,''
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	91	describes how to specify corecursive functions and to reason about them.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	92
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	93	\item Section \ref{sec:command-syntax}, ``Command Syntax,'' describes the syntax
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	94	of the commands offered by the package.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	95
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	96	\item Section \ref{sec:generated-theorems}, ``Generated Theorems,'' lists the
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	97	theorems produced by the package's commands.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	98
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	99	\item Section \ref{sec:proof-method}, ``Proof Method,'' briefly describes the
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	100	@{method corec_unique} proof method.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	101
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	102	\item Section \ref{sec:known-bugs-and-limitations}, ``Known Bugs and
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	103	Limitations,'' concludes with known open issues.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	104	\end{itemize}
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	105
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	106	Although it is more powerful than \keyw{primcorec} in many respects,
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	107	@{command corec} suffers from a number of limitations. Most notably, it does
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	108	not support mutually corecursive codatatypes, and it is less efficient than
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	109	\keyw{primcorec} because it needs to dynamically synthesize corecursors and
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	110	corresponding coinduction principles to accommodate the friends.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	111
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	112	\newbox\boxA
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	113	\setbox\boxA=\hbox{\texttt{NOSPAM}}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	114
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	115	\newcommand\authoremaili{\texttt{jasmin.blan{\color{white}NOSPAM}\kern-\wd\boxA{}chette@\allowbreak
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	116	gmail.\allowbreak com}}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	117
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	118	Comments and bug reports concerning either the package or this tutorial should
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	119	be directed to the first author at \authoremaili{} or to the
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	120	\texttt{cl-isabelle-users} mailing list.
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	121	\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	122
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	123
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	124	section \<open>Introductory Examples
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	125	\label{sec:introductory-examples}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	126
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	127	text \<open>
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	128	The package is illustrated through concrete examples featuring different flavors
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	129	of corecursion. More examples can be found in the directory
63680 6e1e8b5abbfa more symbols; wenzelm parents: 63669 diff changeset	130	\<^dir>\<open>~~/src/HOL/Corec_Examples\<close>.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	131	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	132
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	133
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	134	subsection \<open>Simple Corecursion
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	135	\label{ssec:simple-corecursion}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	136
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	137	text \<open>
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	138	The case studies by Rutten~@{cite rutten05} and Hinze~@{cite hinze10} on stream
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	139	calculi serve as our starting point. The following definition of pointwise sum
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	140	can be performed with either \keyw{primcorec} or @{command corec}:
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	141	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	142
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	143	primcorec ssum :: "('a :: plus) stream \<Rightarrow> 'a stream \<Rightarrow> 'a stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	144	"ssum xs ys = SCons (shd xs + shd ys) (ssum (stl xs) (stl ys))"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	145
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	146	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	147	\noindent
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	148	Pointwise sum meets the friendliness criterion. We register it as a friend using
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	149	the @{command friend_of_corec} command. The command requires us to give a
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	150	specification of @{const ssum} where a constructor (@{const SCons}) occurs at
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	151	the outermost position on the right-hand side. Here, we can simply reuse the
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	152	\keyw{primcorec} specification above:
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	153	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	154
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	155	friend_of_corec ssum :: "('a :: plus) stream \<Rightarrow> 'a stream \<Rightarrow> 'a stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	156	"ssum xs ys = SCons (shd xs + shd ys) (ssum (stl xs) (stl ys))"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	157	apply (rule ssum.code)
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	158	by transfer_prover
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	159
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	160	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	161	\noindent
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	162	The command emits two subgoals. The first subgoal corresponds to the equation we
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	163	specified and is trivial to discharge. The second subgoal is a parametricity
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	164	property that captures the the requirement that the function may destruct at
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	165	most one constructor of input to produce one constructor of output. This subgoal
64380 4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	166	can usually be discharged using the @{text transfer_prover} or
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	167	@{method transfer_prover_eq} proof method. The latter replaces equality relations
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	168	by their relator terms according to the theorem collection @{thm [source] relator_eq}
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	169	before it calles @{method transfer_prover}.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	170
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	171	After registering @{const ssum} as a friend, we can use it in the corecursive
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	172	call context, either inside or outside the constructor guard:
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	173	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	174
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	175	corec fibA :: "nat stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	176	"fibA = SCons 0 (ssum (SCons 1 fibA) fibA)"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	177
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	178	text \<open>\blankline\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	179
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	180	corec fibB :: "nat stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	181	"fibB = ssum (SCons 0 (SCons 1 fibB)) (SCons 0 fibB)"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	182
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	183	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	184	Using the @{text "friend"} option, we can simultaneously define a function and
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	185	register it as a friend:
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	186	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	187
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	188	corec (friend)
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	189	sprod :: "('a :: {plus,times}) stream \<Rightarrow> 'a stream \<Rightarrow> 'a stream"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	190	where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	191	"sprod xs ys =
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	192	SCons (shd xs * shd ys) (ssum (sprod xs (stl ys)) (sprod (stl xs) ys))"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	193
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	194	text \<open>\blankline\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	195
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	196	corec (friend) sexp :: "nat stream \<Rightarrow> nat stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	197	"sexp xs = SCons (2 ^^ shd xs) (sprod (stl xs) (sexp xs))"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	198
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	199	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	200	\noindent
64380 4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	201	The parametricity subgoal is given to @{text transfer_prover_eq}.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	202
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	203	The @{const sprod} and @{const sexp} functions provide shuffle product and
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	204	exponentiation on streams. We can use them to define the stream of factorial
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	205	numbers in two different ways:
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	206	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	207
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	208	corec factA :: "nat stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	209	"factA = (let zs = SCons 1 factA in sprod zs zs)"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	210
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	211	text \<open>\blankline\<close>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	212
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	213	corec factB :: "nat stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	214	"factB = sexp (SCons 0 factB)"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	215
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	216	text \<open>
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	217	The arguments of friendly functions can be of complex types involving the
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	218	target codatatype. The following example defines the supremum of a finite set of
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	219	streams by primitive corecursion and registers it as friendly:
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	220	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	221
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	222	corec (friend) sfsup :: "nat stream fset \<Rightarrow> nat stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	223	"sfsup X = SCons (Sup (fset (fimage shd X))) (sfsup (fimage stl X))"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	224
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	225	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	226	\noindent
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	227	In general, the arguments may be any bounded natural functor (BNF)
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	228	@{cite "isabelle-datatypes"}, with the restriction that the target codatatype
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	229	(@{typ "nat stream"}) may occur only in a \emph{live} position of the BNF. For
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	230	this reason, the following function, on unbounded sets, cannot be registered as
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	231	a friend:
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	232	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	233
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	234	primcorec ssup :: "nat stream set \<Rightarrow> nat stream" where
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	235	"ssup X = SCons (Sup (image shd X)) (ssup (image stl X))"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	236
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	237
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	238	subsection \<open>Nested Corecursion
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	239	\label{ssec:nested-corecursion}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	240
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	241	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	242	The package generally supports arbitrary codatatypes with multiple constructors
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	243	and nesting through other type constructors (BNFs). Consider the following type
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	244	of finitely branching Rose trees of potentially infinite depth:
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	245	\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	246
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	247	codatatype 'a tree =
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	248	Node (lab: 'a) (sub: "'a tree list")
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	249
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	250	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	251	We first define the pointwise sum of two trees analogously to @{const ssum}:
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	252	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	253
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	254	corec (friend) tsum :: "('a :: plus) tree \<Rightarrow> 'a tree \<Rightarrow> 'a tree" where
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	255	"tsum t u =
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	256	Node (lab t + lab u) (map (\<lambda>(t', u'). tsum t' u') (zip (sub t) (sub u)))"
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	257
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	258	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	259	\noindent
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	260	Here, @{const map} is the standard map function on lists, and @{const zip}
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	261	converts two parallel lists into a list of pairs. The @{const tsum} function is
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	262	primitively corecursive. Instead of @{text "corec (friend)"}, we could also have
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	263	used \keyw{primcorec} and @{command friend_of_corec}, as we did for
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	264	@{const ssum}.
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	265
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	266	Once @{const tsum} is registered as friendly, we can use it in the corecursive
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	267	call context of another function:
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	268	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	269
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	270	corec (friend) ttimes :: "('a :: {plus,times}) tree \<Rightarrow> 'a tree \<Rightarrow> 'a tree" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	271	"ttimes t u = Node (lab t * lab u)
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	272	(map (\<lambda>(t', u'). tsum (ttimes t u') (ttimes t' u)) (zip (sub t) (sub u)))"
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	273
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	274	text \<open>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	275	All the syntactic convenience provided by \keyw{primcorec} is also supported by
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	276	@{command corec}, @{command corecursive}, and @{command friend_of_corec}. In
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	277	particular, nesting through the function type can be expressed using
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	278	@{text \<lambda>}-abstractions and function applications rather than through composition
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	279	(@{term "op \<circ>"}, the map function for @{text \<Rightarrow>}). For example:
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	280	\<close>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	281
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	282	codatatype 'a language =
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	283	Lang (\<oo>: bool) (\<dd>: "'a \<Rightarrow> 'a language")
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	284
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	285	text \<open>\blankline\<close>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	286
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	287	corec (friend) Plus :: "'a language \<Rightarrow> 'a language \<Rightarrow> 'a language" where
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	288	"Plus r s = Lang (\<oo> r \<or> \<oo> s) (\<lambda>a. Plus (\<dd> r a) (\<dd> s a))"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	289
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	290	text \<open>\blankline\<close>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	291
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	292	corec (friend) Times :: "'a language \<Rightarrow> 'a language \<Rightarrow> 'a language" where
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	293	"Times r s = Lang (\<oo> r \<and> \<oo> s)
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	294	(\<lambda>a. if \<oo> r then Plus (Times (\<dd> r a) s) (\<dd> s a) else Times (\<dd> r a) s)"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	295
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	296	text \<open>\blankline\<close>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	297
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	298	corec (friend) Star :: "'a language \<Rightarrow> 'a language" where
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	299	"Star r = Lang True (\<lambda>a. Times (\<dd> r a) (Star r))"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	300
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	301	text \<open>\blankline\<close>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	302
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	303	corec (friend) Inter :: "'a language \<Rightarrow> 'a language \<Rightarrow> 'a language" where
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	304	"Inter r s = Lang (\<oo> r \<and> \<oo> s) (\<lambda>a. Inter (\<dd> r a) (\<dd> s a))"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	305
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	306	text \<open>\blankline\<close>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	307
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	308	corec (friend) PLUS :: "'a language list \<Rightarrow> 'a language" where
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	309	"PLUS xs = Lang (\<exists>x \<in> set xs. \<oo> x) (\<lambda>a. PLUS (map (\<lambda>r. \<dd> r a) xs))"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	310
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	311
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	312	subsection \<open>Mixed Recursion--Corecursion
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	313	\label{ssec:mixed-recursion-corecursion}\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	314
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	315	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	316	It is often convenient to let a corecursive function perform some finite
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	317	computation before producing a constructor. With mixed recursion--corecursion, a
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	318	finite number of unguarded recursive calls perform this calculation before
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	319	reaching a guarded corecursive call. Intuitively, the unguarded recursive call
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	320	can be unfolded to arbitrary finite depth, ultimately yielding a purely
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	321	corecursive definition. An example is the @{term primes} function from Di
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	322	Gianantonio and Miculan @{cite "di-gianantonio-miculan-2003"}:
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	323	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	324
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	325	corecursive primes :: "nat \<Rightarrow> nat \<Rightarrow> nat stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	326	"primes m n =
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	327	(if (m = 0 \<and> n > 1) \<or> coprime m n then
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	328	SCons n (primes (m * n) (n + 1))
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	329	else
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	330	primes m (n + 1))"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	331	apply (relation "measure (\<lambda>(m, n).
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	332	if n = 0 then 1 else if coprime m n then 0 else m - n mod m)")
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	333	apply (auto simp: mod_Suc intro: Suc_lessI)
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	334	apply (metis One_nat_def coprime_Suc_nat gcd.commute gcd_red_nat)
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	335	by (metis diff_less_mono2 lessI mod_less_divisor)
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	336
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	337	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	338	\noindent
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	339	The @{command corecursive} command is a variant of @{command corec} that allows
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	340	us to specify a termination argument for any unguarded self-call.
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	341
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	342	When called with @{text "m = 1"} and @{text "n = 2"}, the @{const primes}
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	343	function computes the stream of prime numbers. The unguarded call in the
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	344	@{text else} branch increments @{term n} until it is coprime to the first
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	345	argument @{term m} (i.e., the greatest common divisor of @{term m} and
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	346	@{term n} is @{text 1}).
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	347
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	348	For any positive integers @{term m} and @{term n}, the numbers @{term m} and
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	349	@{text "m * n + 1"} are coprime, yielding an upper bound on the number of times
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	350	@{term n} is increased. Hence, the function will take the @{text else} branch at
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	351	most finitely often before taking the then branch and producing one constructor.
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	352	There is a slight complication when @{text "m = 0 \<and> n > 1"}: Without the first
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	353	disjunct in the @{text "if"} condition, the function could stall. (This corner
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	354	case was overlooked in the original example
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	355	@{cite "di-gianantonio-miculan-2003"}.)
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	356
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	357	In the following examples, termination is discharged automatically by
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	358	@{command corec} by invoking @{method lexicographic_order}:
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	359	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	360
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	361	corec catalan :: "nat \<Rightarrow> nat stream" where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	362	"catalan n =
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	363	(if n > 0 then ssum (catalan (n - 1)) (SCons 0 (catalan (n + 1)))
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	364	else SCons 1 (catalan 1))"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	365
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	366	text \<open>\blankline\<close>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	367
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	368	corec collatz :: "nat \<Rightarrow> nat stream" where
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	369	"collatz n = (if even n \<and> n > 0 then collatz (n div 2)
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	370	else SCons n (collatz (3 * n + 1)))"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	371
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	372	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	373	A more elaborate case study, revolving around the filter function on lazy lists,
63680 6e1e8b5abbfa more symbols; wenzelm parents: 63669 diff changeset	374	is presented in \<^file>\<open>~~/src/HOL/Corec_Examples/LFilter.thy\<close>.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	375	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	376
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	377
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	378	subsection \<open>Self-Friendship
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	379	\label{ssec:self-friendship}\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	380
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	381	text \<open>
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	382	The package allows us to simultaneously define a function and use it as its own
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	383	friend, as in the following definition of a ``skewed product'':
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	384	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	385
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	386	corec (friend)
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	387	sskew :: "('a :: {plus,times}) stream \<Rightarrow> 'a stream \<Rightarrow> 'a stream"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	388	where
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	389	"sskew xs ys =
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	390	SCons (shd xs * shd ys) (sskew (sskew xs (stl ys)) (sskew (stl xs) ys))"
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	391
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	392	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	393	\noindent
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	394	Such definitions, with nested self-calls on the right-hand side, cannot be
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	395	separated into a @{command corec} part and a @{command friend_of_corec} part.
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	396	\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	397
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	398
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	399	subsection \<open>Coinduction
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	400	\label{ssec:coinduction}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	401
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	402	text \<open>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	403	Once a corecursive specification has been accepted, we normally want to reason
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	404	about it. The @{text codatatype} command generates a structural coinduction
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	405	principle that matches primitively corecursive functions. For nonprimitive
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	406	specifications, our package provides the more advanced proof principle of
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	407	\emph{coinduction up to congruence}---or simply \emph{coinduction up-to}.
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	408
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	409	The structural coinduction principle for @{typ "'a stream"}, called
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	410	@{thm [source] stream.coinduct}, is as follows:
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	411	%
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	412	\begin{indentblock}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	413	@{thm stream.coinduct[no_vars]}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	414	\end{indentblock}
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	415	%
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	416	Coinduction allows us to prove an equality @{text "l = r"} on streams by
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	417	providing a relation @{text R} that relates @{text l} and @{text r} (first
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	418	premise) and that constitutes a bisimulation (second premise). Streams that are
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	419	related by a bisimulation cannot be distinguished by taking observations (via
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	420	the selectors @{const shd} and @{const stl}); hence they must be equal.
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	421
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	422	The coinduction up-to principle after registering @{const sskew} as friendly is
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	423	available as @{thm [source] sskew.coinduct} and as one of the components of
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	424	the theorem collection @{thm [source] stream.coinduct_upto}:
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	425	%
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	426	\begin{indentblock}
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	427	@{thm sskew.coinduct[no_vars]}
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	428	\end{indentblock}
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	429	%
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	430	This rule is almost identical to structural coinduction, except that the
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	431	corecursive application of @{term R} is generalized to
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	432	@{term "stream.v5.congclp R"}.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	433
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	434	The @{const stream.v5.congclp} predicate is equipped with the following
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	435	introduction rules:
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	436
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	437	\begin{indentblock}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	438	\begin{description}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	439
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	440	\item[@{thm [source] sskew.cong_base}\rm:] ~ \\
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	441	@{thm sskew.cong_base[no_vars]}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	442
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	443	\item[@{thm [source] sskew.cong_refl}\rm:] ~ \\
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	444	@{thm sskew.cong_refl[no_vars]}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	445
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	446	\item[@{thm [source] sskew.cong_sym}\rm:] ~ \\
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	447	@{thm sskew.cong_sym[no_vars]}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	448
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	449	\item[@{thm [source] sskew.cong_trans}\rm:] ~ \\
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	450	@{thm sskew.cong_trans[no_vars]}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	451
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	452	\item[@{thm [source] sskew.cong_SCons}\rm:] ~ \\
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	453	@{thm sskew.cong_SCons[no_vars]}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	454
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	455	\item[@{thm [source] sskew.cong_ssum}\rm:] ~ \\
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	456	@{thm sskew.cong_ssum[no_vars]}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	457
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	458	\item[@{thm [source] sskew.cong_sprod}\rm:] ~ \\
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	459	@{thm sskew.cong_sprod[no_vars]}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	460
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	461	\item[@{thm [source] sskew.cong_sskew}\rm:] ~ \\
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	462	@{thm sskew.cong_sskew[no_vars]}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	463
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	464	\end{description}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	465	\end{indentblock}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	466	%
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	467	The introduction rules are also available as
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	468	@{thm [source] sskew.cong_intros}.
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	469
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	470	Notice that there is no introduction rule corresponding to @{const sexp},
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	471	because @{const sexp} has a more restrictive result type than @{const sskew}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	472	(@{typ "nat stream"} vs. @{typ "('a :: {plus,times}) stream"}.
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	473
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	474	The version numbers, here @{text v5}, distinguish the different congruence
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	475	closures generated for a given codatatype as more friends are registered. As
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	476	much as possible, it is recommended to avoid referring to them in proof
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	477	documents.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	478
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	479	Since the package maintains a set of incomparable corecursors, there is also a
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	480	set of associated coinduction principles and a set of sets of introduction
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	481	rules. A technically subtle point is to make Isabelle choose the right rules in
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	482	most situations. For this purpose, the package maintains the collection
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	483	@{thm [source] stream.coinduct_upto} of coinduction principles ordered by
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	484	increasing generality, which works well with Isabelle's philosophy of applying
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	485	the first rule that matches. For example, after registering @{const ssum} as a
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	486	friend, proving the equality @{term "l = r"} on @{typ "nat stream"} might
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	487	require coinduction principle for @{term "nat stream"}, which is up to
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	488	@{const ssum}.
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	489
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	490	The collection @{thm [source] stream.coinduct_upto} is guaranteed to be complete
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	491	and up to date with respect to the type instances of definitions considered so
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	492	far, but occasionally it may be necessary to take the union of two incomparable
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	493	coinduction principles. This can be done using the @{command coinduction_upto}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	494	command. Consider the following definitions:
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	495	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	496
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	497	codatatype ('a, 'b) tllist =
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	498	TNil (terminal: 'b)
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	499	\| TCons (thd: 'a) (ttl: "('a, 'b) tllist")
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	500
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	501	text \<open>\blankline\<close>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	502
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	503	corec (friend) square_elems :: "(nat, 'b) tllist \<Rightarrow> (nat, 'b) tllist" where
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	504	"square_elems xs =
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	505	(case xs of
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	506	TNil z \<Rightarrow> TNil z
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	507	\| TCons y ys \<Rightarrow> TCons (y ^^ 2) (square_elems ys))"
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	508
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	509	text \<open>\blankline\<close>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	510
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	511	corec (friend) square_terminal :: "('a, int) tllist \<Rightarrow> ('a, int) tllist" where
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	512	"square_terminal xs =
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	513	(case xs of
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	514	TNil z \<Rightarrow> TNil (z ^^ 2)
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	515	\| TCons y ys \<Rightarrow> TCons y (square_terminal ys))"
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	516
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	517	text \<open>
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	518	At this point, @{thm [source] tllist.coinduct_upto} contains three variants of the
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	519	coinduction principles:
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	520	%
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	521	\begin{itemize}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	522	\item @{typ "('a, int) tllist"} up to @{const TNil}, @{const TCons}, and
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	523	@{const square_terminal};
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	524	\item @{typ "(nat, 'b) tllist"} up to @{const TNil}, @{const TCons}, and
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	525	@{const square_elems};
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	526	\item @{typ "('a, 'b) tllist"} up to @{const TNil} and @{const TCons}.
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	527	\end{itemize}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	528	%
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	529	The following variant is missing:
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	530	%
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	531	\begin{itemize}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	532	\item @{typ "(nat, int) tllist"} up to @{const TNil}, @{const TCons},
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	533	@{const square_elems}, and @{const square_terminal}.
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	534	\end{itemize}
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	535	%
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	536	To generate it without having to define a new function with @{command corec},
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	537	we can use the following command:
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	538	\<close>
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	539
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	540	coinduction_upto nat_int_tllist: "(nat, int) tllist"
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	541
257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	542	text \<open>
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	543	\noindent
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	544	This produces the theorems
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	545	%
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	546	\begin{indentblock}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	547	@{thm [source] nat_int_tllist.coinduct_upto} \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	548	@{thm [source] nat_int_tllist.cong_intros}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	549	\end{indentblock}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	550	%
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	551	(as well as the individually named introduction rules) and extends
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	552	the dynamic collections @{thm [source] tllist.coinduct_upto} and
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	553	@{thm [source] tllist.cong_intros}.
62745 257a022f7e7b more 'corec' docs blanchet parents: 62742 diff changeset	554	\<close>
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	555
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	556
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	557	subsection \<open>Uniqueness Reasoning
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	558	\label{ssec:uniqueness-reasoning}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	559
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	560	text \<open>
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	561	It is sometimes possible to achieve better automation by using a more
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	562	specialized proof method than coinduction. Uniqueness principles maintain a good
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	563	balance between expressiveness and automation. They exploit the property that a
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	564	corecursive definition is the unique solution to a fixpoint equation.
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	565
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	566	The @{command corec}, @{command corecursive}, and @{command friend_of_corec}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	567	commands generate a property @{text f.unique} about the function of interest
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	568	@{term f} that can be used to prove that any function that satisfies
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	569	@{term f}'s corecursive specification must be equal to~@{term f}. For example:
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	570	\[@{thm ssum.unique[no_vars]}\]
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	571
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	572	The uniqueness principles are not restricted to functions defined using
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	573	@{command corec} or @{command corecursive} or registered with
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	574	@{command friend_of_corec}. Suppose @{term "t x"} is an arbitrary term
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	575	depending on @{term x}. The @{method corec_unique} proof method, provided by our
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	576	tool, transforms subgoals of the form
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	577	\[@{term "(\<forall>x. f x = H x f) \<Longrightarrow> f x = t x"}\]
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	578	into
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	579	\[@{term "\<forall>x. t x = H x t"}\]
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	580	The higher-order functional @{term H} must be such that @{term "f x = H x f"}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	581	would be a valid @{command corec} specification, but without nested self-calls
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	582	or unguarded (recursive) calls. Thus, @{method corec_unique} proves uniqueness
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	583	of @{term t} with respect to the given corecursive equation regardless of how
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	584	@{term t} was defined. For example:
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	585	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	586
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	587	lemma
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	588	fixes f :: "nat stream \<Rightarrow> nat stream \<Rightarrow> nat stream"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	589	assumes "\<forall>xs ys. f xs ys =
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	590	SCons (shd ys * shd xs) (ssum (f xs (stl ys)) (f (stl xs) ys))"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	591	shows "f = sprod"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	592	using assms
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	593	proof corec_unique
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	594	show "sprod = (\<lambda>xs ys :: nat stream.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	595	SCons (shd ys * shd xs) (ssum (sprod xs (stl ys)) (sprod (stl xs) ys)))"
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	596	apply (rule ext)+
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	597	apply (subst sprod.code)
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	598	by simp
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	599	qed
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	600
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	601	text \<open>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	602	The proof method relies on some theorems generated by the package. If no function
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	603	over a given codatatype has been defined using @{command corec} or
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	604	@{command corecursive} or registered as friendly using @{command friend_of_corec},
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	605	the theorems will not be available yet. In such cases, the theorems can be
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	606	explicitly generated using the command
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	607	\<close>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	608
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	609	coinduction_upto stream: "'a stream"
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	610
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	611
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	612	section \<open>Command Syntax
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	613	\label{sec:command-syntax}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	614
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	615	subsection \<open>\keyw{corec} and \keyw{corecursive}
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	616	\label{ssec:corec-and-corecursive-syntax}\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	617
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	618	text \<open>
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	619	\begin{matharray}{rcl}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	620	@{command_def "corec"} & : & @{text "local_theory \<rightarrow> local_theory"} \\
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	621	@{command_def "corecursive"} & : & @{text "local_theory \<rightarrow> proof(prove)"}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	622	\end{matharray}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	623
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	624	@{rail \<open>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	625	(@@{command corec} \| @@{command corecursive}) target? \<newline>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	626	@{syntax cr_options}? fix @'where' prop
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	627	;
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	628	@{syntax_def cr_options}: '(' ((@{syntax plugins} \| 'friend' \| 'transfer') + ',') ')'
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	629	\<close>}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	630
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	631	\medskip
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	632
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	633	\noindent
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	634	The @{command corec} and @{command corecursive} commands introduce a corecursive
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	635	function over a codatatype.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	636
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	637	The syntactic entity \synt{target} can be used to specify a local context,
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	638	\synt{fix} denotes name with an optional type signature, and \synt{prop} denotes
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	639	a HOL proposition @{cite "isabelle-isar-ref"}.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	640
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	641	The optional target is optionally followed by a combination of the following
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	642	options:
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	643
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	644	\begin{itemize}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	645	\setlength{\itemsep}{0pt}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	646
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	647	\item
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	648	The @{text plugins} option indicates which plugins should be enabled
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	649	(@{text only}) or disabled (@{text del}). By default, all plugins are enabled.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	650
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	651	\item
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	652	The @{text friend} option indicates that the defined function should be
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	653	registered as a friend. This gives rise to additional proof obligations.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	654
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	655	\item
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	656	The @{text transfer} option indicates that an unconditional transfer rule
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	657	should be generated and proved @{text "by transfer_prover"}. The
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	658	@{text "[transfer_rule]"} attribute is set on the generated theorem.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	659	\end{itemize}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	660
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	661	The @{command corec} command is an abbreviation for @{command corecursive}
64380 4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	662	with appropriate applications of @{method transfer_prover_eq} and
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	663	@{method lexicographic_order} to discharge any emerging proof obligations.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	664	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	665
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	666
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	667	subsection \<open>\keyw{friend_of_corec}
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	668	\label{ssec:friend-of-corec-syntax}\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	669
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	670	text \<open>
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	671	\begin{matharray}{rcl}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	672	@{command_def "friend_of_corec"} & : & @{text "local_theory \<rightarrow> proof(prove)"}
64380 4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	673	\\
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	674	@{attribute_def "friend_of_corec_simps"} & : & @{text "attribute"}
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	675	\end{matharray}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	676
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	677	@{rail \<open>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	678	@@{command friend_of_corec} target? \<newline>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	679	@{syntax foc_options}? fix @'where' prop
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	680	;
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	681	@{syntax_def foc_options}: '(' ((@{syntax plugins} \| 'transfer') + ',') ')'
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	682	\<close>}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	683
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	684	\medskip
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	685
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	686	\noindent
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	687	The @{command friend_of_corec} command registers a corecursive function as
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	688	friendly.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	689
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	690	The syntactic entity \synt{target} can be used to specify a local context,
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	691	\synt{fix} denotes name with an optional type signature, and \synt{prop} denotes
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	692	a HOL proposition @{cite "isabelle-isar-ref"}.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	693
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	694	The optional target is optionally followed by a combination of the following
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	695	options:
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	696
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	697	\begin{itemize}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	698	\setlength{\itemsep}{0pt}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	699
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	700	\item
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	701	The @{text plugins} option indicates which plugins should be enabled
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	702	(@{text only}) or disabled (@{text del}). By default, all plugins are enabled.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	703
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	704	\item
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	705	The @{text transfer} option indicates that an unconditional transfer rule
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	706	should be generated and proved @{text "by transfer_prover"}. The
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	707	@{text "[transfer_rule]"} attribute is set on the generated theorem.
64380 4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	708
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	709	\item
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	710	The attribute @{attribute friend_of_corec_simps} declares naturality theorems
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	711	to be used by @{command friend_of_corec} and @{text "corec (friend)"} in deriving
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	712	the user specification from reduction to primitive corecursion.
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	713	Internally, they derive naturality theorems from the parametricity proof obligations
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	714	dischared by the user or the method @{method transfer_prover_eq}, but this derivation
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	715	fails if in the arguments of a higher-order constant a type variable occurs on both
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	716	sides of the function type constructor. In that case, the required naturality
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	717	theorem can be declared with @{attribute friend_of_corec_simps}. See
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	718	@{file "~~/src/HOL/Corec_Examples/Tests/Iterate_GPV.thy"} for an example.
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	719	\end{itemize}
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	720	\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	721
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	722	subsection \<open>\keyw{coinduction_upto}
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	723	\label{ssec:coinduction-upto-syntax}\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	724
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	725	text \<open>
62747 f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	726	\begin{matharray}{rcl}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	727	@{command_def "coinduction_upto"} & : & @{text "local_theory \<rightarrow> local_theory"}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	728	\end{matharray}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	729
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	730	@{rail \<open>
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	731	@@{command coinduction_upto} target? name ':' type
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	732	\<close>}
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	733
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	734	\medskip
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	735
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	736	\noindent
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	737	The @{command coinduction_upto} generates a coinduction up-to rule for a given
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	738	instance of a (possibly polymorphic) codatatype and notes the result with the
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	739	specified prefix.
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	740
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	741	The syntactic entity \synt{name} denotes an identifier and \synt{type} denotes a
f65ef4723aca more 'corec' docs blanchet parents: 62745 diff changeset	742	type @{cite "isabelle-isar-ref"}.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	743	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	744
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	745
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	746	section \<open>Generated Theorems
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	747	\label{sec:generated-theorems}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	748
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	749	text \<open>
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	750	The full list of named theorems generated by the package can be obtained by
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	751	issuing the command \keyw{print_theorems} immediately after the datatype definition.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	752	This list excludes low-level theorems that reveal internal constructions. To
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	753	make these accessible, add the line
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	754	\<close>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	755
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	756	declare [[bnf_internals]]
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	757	(<)
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	758	declare [[bnf_internals = false]]
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	759	(>)
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	760
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	761	text \<open>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	762	In addition to the theorem listed below for each command provided by the
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	763	package, all commands update the dynamic theorem collections
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	764
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	765	\begin{indentblock}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	766	\begin{description}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	767
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	768	\item[@{text "t."}\hthm{coinduct_upto}]
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	769
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	770	\item[@{text "t."}\hthm{cong_intros}]
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	771
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	772	\end{description}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	773	\end{indentblock}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	774	%
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	775	for the corresponding codatatype @{text t} so that they always contain the most
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	776	powerful coinduction up-to principles derived so far.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	777	\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	778
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	779
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	780	subsection \<open>\keyw{corec} and \keyw{corecursive}
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	781	\label{ssec:corec-and-corecursive-theorems}\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	782
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	783	text \<open>
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	784	For a function @{term f} over codatatype @{text t}, the @{command corec} and
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	785	@{command corecursive} commands generate the following properties (listed for
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	786	@{const sexp}, cf. Section~\ref{ssec:simple-corecursion}):
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	787
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	788	\begin{indentblock}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	789	\begin{description}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	790
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	791	\item[@{text "f."}\hthm{code} @{text "[code]"}\rm:] ~ \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	792	@{thm sexp.code[no_vars]} \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	793	The @{text "[code]"} attribute is set by the @{text code} plugin
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	794	@{cite "isabelle-datatypes"}.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	795
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	796	\item[@{text "f."}\hthm{coinduct} @{text "[consumes 1, case_names t, case_conclusion D\<^sub>1 \<dots>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	797	D\<^sub>n]"}\rm:] ~ \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	798	@{thm sexp.coinduct[no_vars]}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	799
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	800	\item[@{text "f."}\hthm{cong_intros}\rm:] ~ \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	801	@{thm sexp.cong_intros[no_vars]}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	802
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	803	\item[@{text "f."}\hthm{unique}\rm:] ~ \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	804	@{thm sexp.unique[no_vars]} \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	805	This property is not generated for mixed recursive--corecursive definitions.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	806
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	807	\item[@{text "f."}\hthm{inner_induct}\rm:] ~ \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	808	This property is only generated for mixed recursive--corecursive definitions.
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	809	For @{const primes} (Section~\ref{ssec:mixed-recursion-corecursion}, it reads as
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	810	follows: \\[\jot]
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	811	@{thm primes.inner_induct[no_vars]}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	812
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	813	\end{description}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	814	\end{indentblock}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	815
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	816	\noindent
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	817	The individual rules making up @{text "f.cong_intros"} are available as
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	818
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	819	\begin{indentblock}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	820	\begin{description}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	821
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	822	\item[@{text "f."}\hthm{cong_base}]
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	823
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	824	\item[@{text "f."}\hthm{cong_refl}]
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	825
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	826	\item[@{text "f."}\hthm{cong_sym}]
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	827
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	828	\item[@{text "f."}\hthm{cong_trans}]
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	829
62816 19387866eace tuned LaTeX blanchet parents: 62756 diff changeset	830	\item[@{text "f."}\hthm{cong_C}@{text "\<^sub>1"}, \ldots, @{text "f."}\hthm{cong_C}@{text "\<^sub>n"}] ~ \\
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	831	where @{text "C\<^sub>1"}, @{text "\<dots>"}, @{text "C\<^sub>n"} are @{text t}'s
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	832	constructors
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	833
62816 19387866eace tuned LaTeX blanchet parents: 62756 diff changeset	834	\item[@{text "f."}\hthm{cong_f}@{text "\<^sub>1"}, \ldots, @{text "f."}\hthm{cong_f}@{text "\<^sub>m"}] ~ \\
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	835	where @{text "f\<^sub>1"}, @{text "\<dots>"}, @{text "f\<^sub>m"} are the available
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	836	friends for @{text t}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	837
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	838	\end{description}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	839	\end{indentblock}
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	840	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	841
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	842
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	843	subsection \<open>\keyw{friend_of_corec}
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	844	\label{ssec:friend-of-corec-theorems}\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	845
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	846	text \<open>
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	847	The @{command friend_of_corec} command generates the same theorems as
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	848	@{command corec} and @{command corecursive}, except that it adds an optional
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	849	@{text "friend."} component to the names to prevent potential clashes (e.g.,
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	850	@{text "f.friend.code"}).
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	851	\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	852
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	853
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	854	subsection \<open>\keyw{coinduction_upto}
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	855	\label{ssec:coinduction-upto-theorems}\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	856
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	857	text \<open>
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	858	The @{command coinduction_upto} command generates the following properties
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	859	(listed for @{text nat_int_tllist}):
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	860
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	861	\begin{indentblock}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	862	\begin{description}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	863
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	864	\item[\begin{tabular}{@ {}l@ {}}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	865	@{text "t."}\hthm{coinduct_upto} @{text "[consumes 1, case_names t,"} \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	866	\phantom{@{text "t."}\hthm{coinduct_upto} @{text "["}}@{text "case_conclusion D\<^sub>1 \<dots>
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	867	D\<^sub>n]"}\rm:
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	868	\end{tabular}] ~ \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	869	@{thm nat_int_tllist.coinduct_upto[no_vars]}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	870
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	871	\item[@{text "t."}\hthm{cong_intros}\rm:] ~ \\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	872	@{thm nat_int_tllist.cong_intros[no_vars]}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	873
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	874	\end{description}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	875	\end{indentblock}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	876
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	877	\noindent
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	878	The individual rules making up @{text "t.cong_intros"} are available
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	879	separately as @{text "t.cong_base"}, @{text "t.cong_refl"}, etc.\
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	880	(Section~\ref{ssec:corec-and-corecursive-theorems}).
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	881	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	882
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	883
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	884	section \<open>Proof Method
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	885	\label{sec:proof-method}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	886
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	887	subsection \<open>\textit{corec_unique}
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	888	\label{ssec:corec-unique}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	889
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	890	text \<open>
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	891	The @{method corec_unique} proof method can be used to prove the uniqueness of
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	892	a corecursive specification. See Section~\ref{ssec:uniqueness-reasoning} for
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	893	details.
62742 bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	894	\<close>
bfb5a70e4319 more 'corec' documentation blanchet parents: 62739 diff changeset	895
64380 4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	896	subsection \<open>\textit{transfer_prover_eq}
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	897	\label{ssec:transfer-prover-eq}\<close>
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	898
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	899	text \<open>
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	900	The proof method @{method transfer_prover_eq} replaces the equality relation
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	901	@{term "op ="} with compound relator expressions according to
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	902	@{thm [source] relator_eq} before calling @{method transfer_prover} on the
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	903	current subgoal. It works better than plain @{method transfer_prover} on
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	904	the parametricity proof obligations of @{command corecursive} and
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	905	@{command friend_of_corec}, as they often contain equality relations on complex
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	906	types, which @{method transfer_prover} does not like.
4b22e1268779 document transfer_prover_eq and friend_of_corec_simps Andreas Lochbihler parents: 63680 diff changeset	907	\<close>
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	908
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	909	section \<open>Known Bugs and Limitations
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	910	\label{sec:known-bugs-and-limitations}\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	911
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	912	text \<open>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	913	This section lists the known bugs and limitations of the corecursion package at
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	914	the time of this writing.
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	915
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	916	\begin{enumerate}
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	917	\setlength{\itemsep}{0pt}
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	918
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	919	\item
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	920	\emph{Mutually corecursive codatatypes are not supported.}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	921
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	922	\item
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	923	\emph{The signature of friend functions may not depend on type variables beyond
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	924	those that appear in the codatatype.}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	925
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	926	\item
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	927	\emph{The internal tactics may fail on legal inputs.}
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	928
62756 d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	929	\item
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	930	\emph{The @{text transfer} option is not implemented yet.}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	931
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	932	\item
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	933	\emph{The constructor and destructor views offered by {\upshape\keyw{primcorec}}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	934	are not supported by @{command corec} and @{command corecursive}.}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	935
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	936	\item
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	937	\emph{There is no mechanism for registering custom plugins.}
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	938
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	939	\item
d4b7d128ec5a more 'corec' docs blanchet parents: 62747 diff changeset	940	\emph{The package does not interact well with locales.}
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	941
64383 b9d4efb43fd9 document limitations blanchet parents: 64380 diff changeset	942	\item
b9d4efb43fd9 document limitations blanchet parents: 64380 diff changeset	943	\emph{The undocumented @{text corecUU_transfer} theorem is not as polymorphic as
b9d4efb43fd9 document limitations blanchet parents: 64380 diff changeset	944	it could be.}
b9d4efb43fd9 document limitations blanchet parents: 64380 diff changeset	945
b9d4efb43fd9 document limitations blanchet parents: 64380 diff changeset	946	\item
b9d4efb43fd9 document limitations blanchet parents: 64380 diff changeset	947	\emph{All type variables occurring in the arguments of a friendly function must occur
b9d4efb43fd9 document limitations blanchet parents: 64380 diff changeset	948	as direct arguments of the type constructor of the resulting type.}
b9d4efb43fd9 document limitations blanchet parents: 64380 diff changeset	949
62739 628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	950	\end{enumerate}
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	951	\<close>
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	952
628c97d39627 added sketchy 'corec' documentation blanchet parents: diff changeset	953	end

author	blanchet
	Mon, 24 Oct 2016 20:32:02 +0200
changeset 64383	b9d4efb43fd9
parent 64380	4b22e1268779
child 64384	f8c1c12d6af5
permissions	-rw-r--r--