isabelle: src/HOL/TLA/Memory/MemoryImplementation.thy@c43ed29bd197 (annotated)

3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	1	(*
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	2	File: MemoryImplementation.thy
17309 c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	3	ID: $Id$
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	4	Author: Stephan Merz
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	5	Copyright: 1997 University of Munich
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	6
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	7	Theory Name: MemoryImplementation
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	8	Logic Image: TLA
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	9
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	10	RPC-Memory example: Memory implementation
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	11	*)
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	12
17309 c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	13	theory MemoryImplementation
c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	14	imports Memory RPC MemClerk
c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	15	begin
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	16
17309 c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	17	datatype histState = histA \| histB
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	18
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	19	types
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	20	histType = "(PrIds => histState) stfun" (* the type of the history variable *)
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	21
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	22	consts
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	23	(* the specification *)
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	24	(* channel (external) *)
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	25	memCh :: "memChType"
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	26	(* internal variables *)
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	27	mm :: "memType"
17309 c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	28
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	29	(* the state variables of the implementation *)
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	30	(* channels *)
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	31	(* same interface channel memCh *)
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	32	crCh :: "rpcSndChType"
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	33	rmCh :: "rpcRcvChType"
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	34	(* internal variables *)
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	35	(* identity refinement mapping for mm -- simply reused *)
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	36	rst :: "rpcStType"
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	37	cst :: "mClkStType"
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	38	ires :: "resType"
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	39
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	40	constdefs
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	41	(* auxiliary predicates *)
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	42	MVOKBARF :: "Vals => bool"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	43	"MVOKBARF v == (v : MemVal) \| (v = OK) \| (v = BadArg) \| (v = RPCFailure)"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	44	MVOKBA :: "Vals => bool"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	45	"MVOKBA v == (v : MemVal) \| (v = OK) \| (v = BadArg)"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	46	MVNROKBA :: "Vals => bool"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	47	"MVNROKBA v == (v : MemVal) \| (v = NotAResult) \| (v = OK) \| (v = BadArg)"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	48
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	49	(* tuples of state functions changed by the various components *)
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	50	e :: "PrIds => (bit * memOp) stfun"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	51	"e p == PRED (caller memCh!p)"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	52	c :: "PrIds => (mClkState * (bit * Vals) * (bit * rpcOp)) stfun"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	53	"c p == PRED (cst!p, rtrner memCh!p, caller crCh!p)"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	54	r :: "PrIds => (rpcState * (bit * Vals) * (bit * memOp)) stfun"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	55	"r p == PRED (rst!p, rtrner crCh!p, caller rmCh!p)"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	56	m :: "PrIds => ((bit * Vals) * Vals) stfun"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	57	"m p == PRED (rtrner rmCh!p, ires!p)"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	58
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	59	(* the environment action *)
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	60	ENext :: "PrIds => action"
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	61	"ENext p == ACT (? l. #l : #MemLoc & Call memCh p #(read l))"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	62
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	63
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	64	(* specification of the history variable *)
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	65	HInit :: "histType => PrIds => stpred"
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	66	"HInit rmhist p == PRED rmhist!p = #histA"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	67
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	68	HNext :: "histType => PrIds => action"
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	69	"HNext rmhist p == ACT (rmhist!p)$ =
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	70	(if (MemReturn rmCh ires p \| RPCFail crCh rmCh rst p)
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	71	then #histB
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	72	else if (MClkReply memCh crCh cst p)
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	73	then #histA
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	74	else $(rmhist!p))"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	75
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	76	HistP :: "histType => PrIds => temporal"
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	77	"HistP rmhist p == TEMP Init HInit rmhist p
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	78	& [][HNext rmhist p]_(c p,r p,m p, rmhist!p)"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	79
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	80	Hist :: "histType => temporal"
9517 f58863b1406a tuned version by Stephan Merz (unbatchified etc.); wenzelm parents: 6255 diff changeset	81	"Hist rmhist == TEMP (ALL p. HistP rmhist p)"
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	82
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	83	(* the implementation *)
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	84	IPImp :: "PrIds => temporal"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	85	"IPImp p == TEMP ( Init ~Calling memCh p & [][ENext p]_(e p)
17309 c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	86	& MClkIPSpec memCh crCh cst p
c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	87	& RPCIPSpec crCh rmCh rst p
c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	88	& RPSpec rmCh mm ires p
c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	89	& (ALL l. #l : #MemLoc --> MSpec rmCh mm ires l))"
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	90
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	91	ImpInit :: "PrIds => stpred"
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	92	"ImpInit p == PRED ( ~Calling memCh p
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	93	& MClkInit crCh cst p
17309 c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	94	& RPCInit rmCh rst p
c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	95	& PInit ires p)"
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	96
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	97	ImpNext :: "PrIds => action"
17309 c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	98	"ImpNext p == ACT [ENext p]_(e p)
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	99	& [MClkNext memCh crCh cst p]_(c p)
17309 c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	100	& [RPCNext crCh rmCh rst p]_(r p)
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	101	& [RNext rmCh mm ires p]_(m p)"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	102
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	103	ImpLive :: "PrIds => temporal"
17309 c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	104	"ImpLive p == TEMP WF(MClkFwd memCh crCh cst p)_(c p)
c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	105	& SF(MClkReply memCh crCh cst p)_(c p)
c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	106	& WF(RPCNext crCh rmCh rst p)_(r p)
c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	107	& WF(RNext rmCh mm ires p)_(m p)
c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	108	& WF(MemReturn rmCh ires p)_(m p)"
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	109
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	110	Implementation :: "temporal"
9517 f58863b1406a tuned version by Stephan Merz (unbatchified etc.); wenzelm parents: 6255 diff changeset	111	"Implementation == TEMP ( (ALL p. Init (~Calling memCh p) & [][ENext p]_(e p))
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	112	& MClkISpec memCh crCh cst
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	113	& RPCISpec crCh rmCh rst
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	114	& IRSpec rmCh mm ires)"
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	115
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	116	(* the predicate S describes the states of the implementation.
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	117	slight simplification: two "histState" parameters instead of a
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	118	(one- or two-element) set.
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	119	NB: The second conjunct of the definition in the paper is taken care of by
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	120	the type definitions. The last conjunct is asserted separately as the memory
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	121	invariant MemInv, proved in Memory.ML. *)
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	122	S :: "histType => bool => bool => bool => mClkState => rpcState => histState => histState => PrIds => stpred"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	123	"S rmhist ecalling ccalling rcalling cs rs hs1 hs2 p == PRED
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	124	Calling memCh p = #ecalling
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	125	& Calling crCh p = #ccalling
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	126	& (#ccalling --> arg<crCh!p> = MClkRelayArg<arg<memCh!p>>)
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	127	& (~ #ccalling & cst!p = #clkB --> MVOKBARF<res<crCh!p>>)
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	128	& Calling rmCh p = #rcalling
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	129	& (#rcalling --> arg<rmCh!p> = RPCRelayArg<arg<crCh!p>>)
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	130	& (~ #rcalling --> ires!p = #NotAResult)
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	131	& (~ #rcalling & rst!p = #rpcB --> MVOKBA<res<rmCh!p>>)
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	132	& cst!p = #cs
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	133	& rst!p = #rs
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	134	& (rmhist!p = #hs1 \| rmhist!p = #hs2)
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	135	& MVNROKBA<ires!p>"
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	136
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	137	(* predicates S1 -- S6 define special instances of S *)
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	138	S1 :: "histType => PrIds => stpred"
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	139	"S1 rmhist p == S rmhist False False False clkA rpcA histA histA p"
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	140	S2 :: "histType => PrIds => stpred"
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	141	"S2 rmhist p == S rmhist True False False clkA rpcA histA histA p"
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	142	S3 :: "histType => PrIds => stpred"
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	143	"S3 rmhist p == S rmhist True True False clkB rpcA histA histB p"
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	144	S4 :: "histType => PrIds => stpred"
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	145	"S4 rmhist p == S rmhist True True True clkB rpcB histA histB p"
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	146	S5 :: "histType => PrIds => stpred"
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	147	"S5 rmhist p == S rmhist True True False clkB rpcB histB histB p"
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	148	S6 :: "histType => PrIds => stpred"
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	149	"S6 rmhist p == S rmhist True False False clkB rpcA histB histB p"
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	150
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	151	(* The invariant asserts that the system is always in one of S1 - S6, for every p *)
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	152	ImpInv :: "histType => PrIds => stpred"
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	153	"ImpInv rmhist p == PRED ( S1 rmhist p \| S2 rmhist p \| S3 rmhist p
17309 c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	154	\| S4 rmhist p \| S5 rmhist p \| S6 rmhist p)"
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	155
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	156	resbar :: "histType => resType" (* refinement mapping *)
17309 c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	157	"resbar rmhist s p ==
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	158	(if (S1 rmhist p s \| S2 rmhist p s)
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	159	then ires s p
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	160	else if S3 rmhist p s
17309 c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	161	then if rmhist s p = histA
6255 db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	162	then ires s p else MemFailure
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	163	else if S4 rmhist p s
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	164	then if (rmhist s p = histB & ires s p = NotAResult)
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	165	then MemFailure else ires s p
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	166	else if S5 rmhist p s
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	167	then res (rmCh s p)
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	168	else if S6 rmhist p s
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	169	then if res (crCh s p) = RPCFailure
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	170	then MemFailure else res (crCh s p)
db63752140c7 updated (Stephan Merz); wenzelm parents: 3807 diff changeset	171	else NotAResult)" (* dummy value *)
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	172
17309 c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	173	axioms
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	174	(* the "base" variables: everything except resbar and hist (for any index) *)
17309 c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	175	MI_base: "basevars (caller memCh!p,
c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	176	(rtrner memCh!p, caller crCh!p, cst!p),
c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	177	(rtrner crCh!p, caller rmCh!p, rst!p),
c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	178	(mm!l, rtrner rmCh!p, ires!p))"
c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	179
c43ed29bd197 converted to Isar theory format; wenzelm parents: 11703 diff changeset	180	ML {* use_legacy_bindings (the_context ()) *}
3807 82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	181
82a99b090d9d A formalization of TLA in HOL -- by Stephan Merz; wenzelm parents: diff changeset	182	end

author	wenzelm
	Wed, 07 Sep 2005 20:22:39 +0200
changeset 17309	c43ed29bd197
parent 11703	6e5de8d4290a
child 21624	6f79647cf536
permissions	-rw-r--r--