isabelle: doc-src/Codegen/Thy/document/Refinement.tex@d9c247f7afa3 (annotated)

38406 bbb02b67caac sketch of new outline haftmann parents: diff changeset	1	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	2	\begin{isabellebody}%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	3	\def\isabellecontext{Refinement}%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	4	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	5	\isadelimtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	6	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	7	\endisadelimtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	8	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	9	\isatagtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	10	\isacommand{theory}\isamarkupfalse%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	11	\ Refinement\isanewline
bbb02b67caac sketch of new outline haftmann parents: diff changeset	12	\isakeyword{imports}\ Setup\isanewline
bbb02b67caac sketch of new outline haftmann parents: diff changeset	13	\isakeyword{begin}%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	14	\endisatagtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	15	{\isafoldtheory}%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	16	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	17	\isadelimtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	18	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	19	\endisadelimtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	20	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	21	\isamarkupsection{Program and datatype refinement \label{sec:refinement}%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	22	}
bbb02b67caac sketch of new outline haftmann parents: diff changeset	23	\isamarkuptrue%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	24	%
38451 4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	25	\begin{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	26	Code generation by shallow embedding (cf.~\secref{sec:principle})
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	27	allows to choose code equations and datatype constructors freely,
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	28	given that some very basic syntactic properties are met; this
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	29	flexibility opens up mechanisms for refinement which allow to extend
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	30	the scope and quality of generated code dramatically.%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	31	\end{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	32	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	33	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	34	\isamarkupsubsection{Program refinement%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	35	}
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	36	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	37	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	38	\begin{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	39	Program refinement works by choosing appropriate code equations
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	40	explicitly (cf.~\label{sec:equations}); as example, we use Fibonacci
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	41	numbers:%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	42	\end{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	43	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	44	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	45	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	46	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	47	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	48	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	49	\isatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	50	\isacommand{fun}\isamarkupfalse%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	51	\ fib\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequoteopen}nat\ {\isasymRightarrow}\ nat{\isachardoublequoteclose}\ \isakeyword{where}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	52	\ \ \ \ {\isachardoublequoteopen}fib\ {\isadigit{0}}\ {\isacharequal}\ {\isadigit{0}}{\isachardoublequoteclose}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	53	\ \ {\isacharbar}\ {\isachardoublequoteopen}fib\ {\isacharparenleft}Suc\ {\isadigit{0}}{\isacharparenright}\ {\isacharequal}\ Suc\ {\isadigit{0}}{\isachardoublequoteclose}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	54	\ \ {\isacharbar}\ {\isachardoublequoteopen}fib\ {\isacharparenleft}Suc\ {\isacharparenleft}Suc\ n{\isacharparenright}{\isacharparenright}\ {\isacharequal}\ fib\ n\ {\isacharplus}\ fib\ {\isacharparenleft}Suc\ n{\isacharparenright}{\isachardoublequoteclose}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	55	\endisatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	56	{\isafoldquote}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	57	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	58	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	59	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	60	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	61	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	62	\begin{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	63	\noindent The runtime of the corresponding code grows exponential due
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	64	to two recursive calls:%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	65	\end{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	66	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	67	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	68	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	69	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	70	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	71	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	72	\isatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	73	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	74	\begin{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	75	\isatypewriter%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	76	\noindent%
39210 985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	77	\hspace*{0pt}fib ::~Nat -> Nat;\\
985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	78	\hspace*{0pt}fib Zero{\char95}nat = Zero{\char95}nat;\\
985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	79	\hspace*{0pt}fib (Suc Zero{\char95}nat) = Suc Zero{\char95}nat;\\
985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	80	\hspace*{0pt}fib (Suc (Suc n)) = plus{\char95}nat (fib n) (fib (Suc n));%
38451 4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	81	\end{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	82	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	83	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	84	\endisatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	85	{\isafoldquote}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	86	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	87	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	88	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	89	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	90	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	91	\begin{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	92	\noindent A more efficient implementation would use dynamic
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	93	programming, e.g.~sharing of common intermediate results between
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	94	recursive calls. This idea is expressed by an auxiliary operation
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	95	which computes a Fibonacci number and its successor simultaneously:%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	96	\end{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	97	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	98	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	99	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	100	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	101	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	102	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	103	\isatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	104	\isacommand{definition}\isamarkupfalse%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	105	\ fib{\isacharunderscore}step\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequoteopen}nat\ {\isasymRightarrow}\ nat\ {\isasymtimes}\ nat{\isachardoublequoteclose}\ \isakeyword{where}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	106	\ \ {\isachardoublequoteopen}fib{\isacharunderscore}step\ n\ {\isacharequal}\ {\isacharparenleft}fib\ {\isacharparenleft}Suc\ n{\isacharparenright}{\isacharcomma}\ fib\ n{\isacharparenright}{\isachardoublequoteclose}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	107	\endisatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	108	{\isafoldquote}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	109	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	110	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	111	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	112	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	113	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	114	\begin{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	115	\noindent This operation can be implemented by recursion using
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	116	dynamic programming:%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	117	\end{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	118	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	119	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	120	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	121	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	122	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	123	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	124	\isatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	125	\isacommand{lemma}\isamarkupfalse%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	126	\ {\isacharbrackleft}code{\isacharbrackright}{\isacharcolon}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	127	\ \ {\isachardoublequoteopen}fib{\isacharunderscore}step\ {\isadigit{0}}\ {\isacharequal}\ {\isacharparenleft}Suc\ {\isadigit{0}}{\isacharcomma}\ {\isadigit{0}}{\isacharparenright}{\isachardoublequoteclose}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	128	\ \ {\isachardoublequoteopen}fib{\isacharunderscore}step\ {\isacharparenleft}Suc\ n{\isacharparenright}\ {\isacharequal}\ {\isacharparenleft}let\ {\isacharparenleft}m{\isacharcomma}\ q{\isacharparenright}\ {\isacharequal}\ fib{\isacharunderscore}step\ n\ in\ {\isacharparenleft}m\ {\isacharplus}\ q{\isacharcomma}\ m{\isacharparenright}{\isacharparenright}{\isachardoublequoteclose}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	129	\ \ \isacommand{by}\isamarkupfalse%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	130	\ {\isacharparenleft}simp{\isacharunderscore}all\ add{\isacharcolon}\ fib{\isacharunderscore}step{\isacharunderscore}def{\isacharparenright}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	131	\endisatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	132	{\isafoldquote}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	133	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	134	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	135	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	136	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	137	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	138	\begin{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	139	\noindent What remains is to implement \isa{fib} by \isa{fib{\isacharunderscore}step} as follows:%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	140	\end{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	141	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	142	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	143	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	144	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	145	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	146	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	147	\isatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	148	\isacommand{lemma}\isamarkupfalse%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	149	\ {\isacharbrackleft}code{\isacharbrackright}{\isacharcolon}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	150	\ \ {\isachardoublequoteopen}fib\ {\isadigit{0}}\ {\isacharequal}\ {\isadigit{0}}{\isachardoublequoteclose}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	151	\ \ {\isachardoublequoteopen}fib\ {\isacharparenleft}Suc\ n{\isacharparenright}\ {\isacharequal}\ fst\ {\isacharparenleft}fib{\isacharunderscore}step\ n{\isacharparenright}{\isachardoublequoteclose}\isanewline
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	152	\ \ \isacommand{by}\isamarkupfalse%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	153	\ {\isacharparenleft}simp{\isacharunderscore}all\ add{\isacharcolon}\ fib{\isacharunderscore}step{\isacharunderscore}def{\isacharparenright}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	154	\endisatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	155	{\isafoldquote}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	156	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	157	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	158	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	159	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	160	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	161	\begin{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	162	\noindent The resulting code shows only linear growth of runtime:%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	163	\end{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	164	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	165	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	166	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	167	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	168	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	169	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	170	\isatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	171	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	172	\begin{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	173	\isatypewriter%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	174	\noindent%
39210 985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	175	\hspace*{0pt}fib{\char95}step ::~Nat -> (Nat,~Nat);\\
985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	176	\hspace*{0pt}fib{\char95}step (Suc n) = let {\char123}\\
985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	177	\hspace*{0pt} ~~~~~~~~~~~~~~~~~~~~(m,~q) = fib{\char95}step n;\\
985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	178	\hspace*{0pt} ~~~~~~~~~~~~~~~~~~{\char125}~in (plus{\char95}nat m q,~m);\\
985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	179	\hspace*{0pt}fib{\char95}step Zero{\char95}nat = (Suc Zero{\char95}nat,~Zero{\char95}nat);\\
38451 4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	180	\hspace*{0pt}\\
39210 985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	181	\hspace*{0pt}fib ::~Nat -> Nat;\\
985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	182	\hspace*{0pt}fib (Suc n) = fst (fib{\char95}step n);\\
985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	183	\hspace*{0pt}fib Zero{\char95}nat = Zero{\char95}nat;%
38451 4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	184	\end{isamarkuptext}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	185	\isamarkuptrue%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	186	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	187	\endisatagquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	188	{\isafoldquote}%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	189	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	190	\isadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	191	%
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	192	\endisadelimquote
4c065e97ecee added section on program refinement haftmann parents: 38437 diff changeset	193	%
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	194	\isamarkupsubsection{Datatype refinement%
38437 ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	195	}
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	196	\isamarkuptrue%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	197	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	198	\begin{isamarkuptext}%
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	199	Selecting specific code equations \emph{and} datatype constructors
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	200	leads to datatype refinement. As an example, we will develop an
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	201	alternative representation of the queue example given in
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	202	\secref{sec:queue_example}. The amortised representation is
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	203	convenient for generating code but exposes its \qt{implementation}
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	204	details, which may be cumbersome when proving theorems about it.
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	205	Therefore, here is a simple, straightforward representation of
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	206	queues:%
38437 ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	207	\end{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	208	\isamarkuptrue%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	209	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	210	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	211	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	212	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	213	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	214	\isatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	215	\isacommand{datatype}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	216	\ {\isacharprime}a\ queue\ {\isacharequal}\ Queue\ {\isachardoublequoteopen}{\isacharprime}a\ list{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	217	\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	218	\isacommand{definition}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	219	\ empty\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequoteopen}{\isacharprime}a\ queue{\isachardoublequoteclose}\ \isakeyword{where}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	220	\ \ {\isachardoublequoteopen}empty\ {\isacharequal}\ Queue\ {\isacharbrackleft}{\isacharbrackright}{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	221	\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	222	\isacommand{primrec}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	223	\ enqueue\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequoteopen}{\isacharprime}a\ {\isasymRightarrow}\ {\isacharprime}a\ queue\ {\isasymRightarrow}\ {\isacharprime}a\ queue{\isachardoublequoteclose}\ \isakeyword{where}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	224	\ \ {\isachardoublequoteopen}enqueue\ x\ {\isacharparenleft}Queue\ xs{\isacharparenright}\ {\isacharequal}\ Queue\ {\isacharparenleft}xs\ {\isacharat}\ {\isacharbrackleft}x{\isacharbrackright}{\isacharparenright}{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	225	\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	226	\isacommand{fun}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	227	\ dequeue\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequoteopen}{\isacharprime}a\ queue\ {\isasymRightarrow}\ {\isacharprime}a\ option\ {\isasymtimes}\ {\isacharprime}a\ queue{\isachardoublequoteclose}\ \isakeyword{where}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	228	\ \ \ \ {\isachardoublequoteopen}dequeue\ {\isacharparenleft}Queue\ {\isacharbrackleft}{\isacharbrackright}{\isacharparenright}\ {\isacharequal}\ {\isacharparenleft}None{\isacharcomma}\ Queue\ {\isacharbrackleft}{\isacharbrackright}{\isacharparenright}{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	229	\ \ {\isacharbar}\ {\isachardoublequoteopen}dequeue\ {\isacharparenleft}Queue\ {\isacharparenleft}x\ {\isacharhash}\ xs{\isacharparenright}{\isacharparenright}\ {\isacharequal}\ {\isacharparenleft}Some\ x{\isacharcomma}\ Queue\ xs{\isacharparenright}{\isachardoublequoteclose}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	230	\endisatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	231	{\isafoldquote}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	232	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	233	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	234	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	235	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	236	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	237	\begin{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	238	\noindent This we can use directly for proving; for executing,
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	239	we provide an alternative characterisation:%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	240	\end{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	241	\isamarkuptrue%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	242	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	243	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	244	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	245	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	246	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	247	\isatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	248	\isacommand{definition}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	249	\ AQueue\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequoteopen}{\isacharprime}a\ list\ {\isasymRightarrow}\ {\isacharprime}a\ list\ {\isasymRightarrow}\ {\isacharprime}a\ queue{\isachardoublequoteclose}\ \isakeyword{where}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	250	\ \ {\isachardoublequoteopen}AQueue\ xs\ ys\ {\isacharequal}\ Queue\ {\isacharparenleft}ys\ {\isacharat}\ rev\ xs{\isacharparenright}{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	251	\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	252	\isacommand{code{\isacharunderscore}datatype}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	253	\ AQueue%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	254	\endisatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	255	{\isafoldquote}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	256	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	257	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	258	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	259	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	260	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	261	\begin{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	262	\noindent Here we define a \qt{constructor} \isa{AQueue} which
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	263	is defined in terms of \isa{Queue} and interprets its arguments
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	264	according to what the \emph{content} of an amortised queue is supposed
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	265	to be.
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	266
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	267	The prerequisite for datatype constructors is only syntactical: a
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	268	constructor must be of type \isa{{\isasymtau}\ {\isacharequal}\ {\isasymdots}\ {\isasymRightarrow}\ {\isasymkappa}\ {\isasymalpha}\isactrlisub {\isadigit{1}}\ {\isasymdots}\ {\isasymalpha}\isactrlisub n} where \isa{{\isacharbraceleft}{\isasymalpha}\isactrlisub {\isadigit{1}}{\isacharcomma}\ {\isasymdots}{\isacharcomma}\ {\isasymalpha}\isactrlisub n{\isacharbraceright}} is exactly the set of \emph{all} type variables in
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	269	\isa{{\isasymtau}}; then \isa{{\isasymkappa}} is its corresponding datatype. The
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	270	HOL datatype package by default registers any new datatype with its
38511 abf95b39d65c use command_def more consciously haftmann parents: 38502 diff changeset	271	constructors, but this may be changed using \indexdef{}{command}{code\_datatype}\hypertarget{command.code-datatype}{\hyperlink{command.code-datatype}{\mbox{\isa{\isacommand{code{\isacharunderscore}datatype}}}}}; the currently chosen constructors can be inspected
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	272	using the \hyperlink{command.print-codesetup}{\mbox{\isa{\isacommand{print{\isacharunderscore}codesetup}}}} command.
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	273
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	274	Equipped with this, we are able to prove the following equations
38437 ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	275	for our primitive queue operations which \qt{implement} the simple
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	276	queues in an amortised fashion:%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	277	\end{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	278	\isamarkuptrue%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	279	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	280	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	281	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	282	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	283	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	284	\isatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	285	\isacommand{lemma}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	286	\ empty{\isacharunderscore}AQueue\ {\isacharbrackleft}code{\isacharbrackright}{\isacharcolon}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	287	\ \ {\isachardoublequoteopen}empty\ {\isacharequal}\ AQueue\ {\isacharbrackleft}{\isacharbrackright}\ {\isacharbrackleft}{\isacharbrackright}{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	288	\ \ \isacommand{unfolding}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	289	\ AQueue{\isacharunderscore}def\ empty{\isacharunderscore}def\ \isacommand{by}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	290	\ simp\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	291	\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	292	\isacommand{lemma}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	293	\ enqueue{\isacharunderscore}AQueue\ {\isacharbrackleft}code{\isacharbrackright}{\isacharcolon}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	294	\ \ {\isachardoublequoteopen}enqueue\ x\ {\isacharparenleft}AQueue\ xs\ ys{\isacharparenright}\ {\isacharequal}\ AQueue\ {\isacharparenleft}x\ {\isacharhash}\ xs{\isacharparenright}\ ys{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	295	\ \ \isacommand{unfolding}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	296	\ AQueue{\isacharunderscore}def\ \isacommand{by}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	297	\ simp\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	298	\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	299	\isacommand{lemma}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	300	\ dequeue{\isacharunderscore}AQueue\ {\isacharbrackleft}code{\isacharbrackright}{\isacharcolon}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	301	\ \ {\isachardoublequoteopen}dequeue\ {\isacharparenleft}AQueue\ xs\ {\isacharbrackleft}{\isacharbrackright}{\isacharparenright}\ {\isacharequal}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	302	\ \ \ \ {\isacharparenleft}if\ xs\ {\isacharequal}\ {\isacharbrackleft}{\isacharbrackright}\ then\ {\isacharparenleft}None{\isacharcomma}\ AQueue\ {\isacharbrackleft}{\isacharbrackright}\ {\isacharbrackleft}{\isacharbrackright}{\isacharparenright}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	303	\ \ \ \ else\ dequeue\ {\isacharparenleft}AQueue\ {\isacharbrackleft}{\isacharbrackright}\ {\isacharparenleft}rev\ xs{\isacharparenright}{\isacharparenright}{\isacharparenright}{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	304	\ \ {\isachardoublequoteopen}dequeue\ {\isacharparenleft}AQueue\ xs\ {\isacharparenleft}y\ {\isacharhash}\ ys{\isacharparenright}{\isacharparenright}\ {\isacharequal}\ {\isacharparenleft}Some\ y{\isacharcomma}\ AQueue\ xs\ ys{\isacharparenright}{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	305	\ \ \isacommand{unfolding}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	306	\ AQueue{\isacharunderscore}def\ \isacommand{by}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	307	\ simp{\isacharunderscore}all%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	308	\endisatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	309	{\isafoldquote}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	310	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	311	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	312	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	313	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	314	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	315	\begin{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	316	\noindent For completeness, we provide a substitute for the
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	317	\isa{case} combinator on queues:%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	318	\end{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	319	\isamarkuptrue%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	320	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	321	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	322	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	323	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	324	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	325	\isatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	326	\isacommand{lemma}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	327	\ queue{\isacharunderscore}case{\isacharunderscore}AQueue\ {\isacharbrackleft}code{\isacharbrackright}{\isacharcolon}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	328	\ \ {\isachardoublequoteopen}queue{\isacharunderscore}case\ f\ {\isacharparenleft}AQueue\ xs\ ys{\isacharparenright}\ {\isacharequal}\ f\ {\isacharparenleft}ys\ {\isacharat}\ rev\ xs{\isacharparenright}{\isachardoublequoteclose}\isanewline
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	329	\ \ \isacommand{unfolding}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	330	\ AQueue{\isacharunderscore}def\ \isacommand{by}\isamarkupfalse%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	331	\ simp%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	332	\endisatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	333	{\isafoldquote}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	334	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	335	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	336	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	337	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	338	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	339	\begin{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	340	\noindent The resulting code looks as expected:%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	341	\end{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	342	\isamarkuptrue%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	343	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	344	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	345	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	346	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	347	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	348	\isatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	349	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	350	\begin{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	351	\isatypewriter%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	352	\noindent%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	353	\hspace*{0pt}structure Example :~sig\\
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	354	\hspace*{0pt} ~val id :~'a -> 'a\\
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	355	\hspace*{0pt} ~val fold :~('a -> 'b -> 'b) -> 'a list -> 'b -> 'b\\
38437 ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	356	\hspace*{0pt} ~val rev :~'a list -> 'a list\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	357	\hspace*{0pt} ~val null :~'a list -> bool\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	358	\hspace{0pt} ~datatype 'a queue = AQueue of 'a list 'a list\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	359	\hspace*{0pt} ~val empty :~'a queue\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	360	\hspace{0pt} ~val dequeue :~'a queue -> 'a option 'a queue\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	361	\hspace*{0pt} ~val enqueue :~'a -> 'a queue -> 'a queue\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	362	\hspace*{0pt}end = struct\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	363	\hspace*{0pt}\\
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	364	\hspace*{0pt}fun id x = (fn xa => xa) x;\\
38437 ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	365	\hspace*{0pt}\\
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	366	\hspace*{0pt}fun fold f [] = id\\
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	367	\hspace*{0pt} ~\| fold f (x ::~xs) = fold f xs o f x;\\
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	368	\hspace*{0pt}\\
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	369	\hspace*{0pt}fun rev xs = fold (fn a => fn b => a ::~b) xs [];\\
38437 ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	370	\hspace*{0pt}\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	371	\hspace*{0pt}fun null [] = true\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	372	\hspace*{0pt} ~\| null (x ::~xs) = false;\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	373	\hspace*{0pt}\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	374	\hspace{0pt}datatype 'a queue = AQueue of 'a list 'a list;\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	375	\hspace*{0pt}\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	376	\hspace*{0pt}val empty :~'a queue = AQueue ([],~[]);\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	377	\hspace*{0pt}\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	378	\hspace*{0pt}fun dequeue (AQueue (xs,~y ::~ys)) = (SOME y,~AQueue (xs,~ys))\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	379	\hspace*{0pt} ~\| dequeue (AQueue (xs,~[])) =\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	380	\hspace*{0pt} ~~~(if null xs then (NONE,~AQueue ([],~[]))\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	381	\hspace*{0pt} ~~~~~else dequeue (AQueue ([],~rev xs)));\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	382	\hspace*{0pt}\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	383	\hspace*{0pt}fun enqueue x (AQueue (xs,~ys)) = AQueue (x ::~xs,~ys);\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	384	\hspace*{0pt}\\
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	385	\hspace{0pt}end;~(struct Example*)%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	386	\end{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	387	\isamarkuptrue%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	388	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	389	\endisatagquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	390	{\isafoldquote}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	391	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	392	\isadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	393	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	394	\endisadelimquote
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	395	%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	396	\begin{isamarkuptext}%
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	397	The same techniques can also be applied to types which are not
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	398	specified as datatypes, e.g.~type \isa{int} is originally specified
38511 abf95b39d65c use command_def more consciously haftmann parents: 38502 diff changeset	399	as quotient type by means of \indexdef{}{command}{typedef}\hypertarget{command.typedef}{\hyperlink{command.typedef}{\mbox{\isa{\isacommand{typedef}}}}}, but for code
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	400	generation constants allowing construction of binary numeral values
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	401	are used as constructors for \isa{int}.
38437 ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	402
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	403	This approach however fails if the representation of a type demands
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	404	invariants; this issue is discussed in the next section.%
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	405	\end{isamarkuptext}%
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	406	\isamarkuptrue%
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	407	%
39599 d9c247f7afa3 continued section abut evaluation haftmann parents: 39210 diff changeset	408	\isamarkupsubsection{Datatype refinement involving invariants \label{sec:invariant}%
38459 cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	409	}
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	410	\isamarkuptrue%
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	411	%
cfe74b0eecb1 reworked section on simple datatype refinement haftmann parents: 38451 diff changeset	412	\begin{isamarkuptext}%
38502 c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	413	Datatype representation involving invariants require a dedicated
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	414	setup for the type and its primitive operations. As a running
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	415	example, we implement a type \isa{{\isacharprime}a\ dlist} of list consisting
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	416	of distinct elements.
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	417
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	418	The first step is to decide on which representation the abstract
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	419	type (in our example \isa{{\isacharprime}a\ dlist}) should be implemented.
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	420	Here we choose \isa{{\isacharprime}a\ list}. Then a conversion from the concrete
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	421	type to the abstract type must be specified, here:%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	422	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	423	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	424	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	425	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	426	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	427	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	428	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	429	\isatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	430	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	431	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	432	\isa{Dlist\ {\isasymColon}\ {\isacharprime}a\ list\ {\isasymRightarrow}\ {\isacharprime}a\ dlist}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	433	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	434	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	435	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	436	\endisatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	437	{\isafoldquote}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	438	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	439	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	440	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	441	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	442	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	443	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	444	\noindent Next follows the specification of a suitable \emph{projection},
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	445	i.e.~a conversion from abstract to concrete type:%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	446	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	447	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	448	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	449	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	450	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	451	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	452	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	453	\isatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	454	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	455	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	456	\isa{list{\isacharunderscore}of{\isacharunderscore}dlist\ {\isasymColon}\ {\isacharprime}a\ dlist\ {\isasymRightarrow}\ {\isacharprime}a\ list}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	457	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	458	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	459	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	460	\endisatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	461	{\isafoldquote}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	462	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	463	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	464	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	465	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	466	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	467	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	468	\noindent This projection must be specified such that the following
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	469	\emph{abstract datatype certificate} can be proven:%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	470	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	471	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	472	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	473	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	474	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	475	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	476	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	477	\isatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	478	\isacommand{lemma}\isamarkupfalse%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	479	\ {\isacharbrackleft}code\ abstype{\isacharbrackright}{\isacharcolon}\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	480	\ \ {\isachardoublequoteopen}Dlist\ {\isacharparenleft}list{\isacharunderscore}of{\isacharunderscore}dlist\ dxs{\isacharparenright}\ {\isacharequal}\ dxs{\isachardoublequoteclose}\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	481	\ \ \isacommand{by}\isamarkupfalse%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	482	\ {\isacharparenleft}fact\ Dlist{\isacharunderscore}list{\isacharunderscore}of{\isacharunderscore}dlist{\isacharparenright}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	483	\endisatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	484	{\isafoldquote}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	485	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	486	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	487	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	488	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	489	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	490	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	491	\noindent Note that so far the invariant on representations
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	492	(\isa{distinct\ {\isasymColon}\ {\isacharprime}a\ list\ {\isasymRightarrow}\ bool}) has never been mentioned explicitly:
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	493	the invariant is only referred to implicitly: all values in
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	494	set \isa{{\isacharbraceleft}xs{\isachardot}\ list{\isacharunderscore}of{\isacharunderscore}dlist\ {\isacharparenleft}Dlist\ xs{\isacharparenright}\ {\isacharequal}\ xs{\isacharbraceright}} are invariant,
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	495	and in our example this is exactly \isa{{\isacharbraceleft}xs{\isachardot}\ distinct\ xs{\isacharbraceright}}.
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	496
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	497	The primitive operations on \isa{{\isacharprime}a\ dlist} are specified
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	498	indirectly using the projection \isa{list{\isacharunderscore}of{\isacharunderscore}dlist}. For
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	499	the empty \isa{dlist}, \isa{Dlist{\isachardot}empty}, we finally want
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	500	the code equation%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	501	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	502	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	503	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	504	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	505	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	506	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	507	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	508	\isatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	509	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	510	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	511	\isa{Dlist{\isachardot}empty\ {\isacharequal}\ Dlist\ {\isacharbrackleft}{\isacharbrackright}}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	512	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	513	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	514	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	515	\endisatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	516	{\isafoldquote}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	517	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	518	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	519	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	520	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	521	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	522	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	523	\noindent This we have to prove indirectly as follows:%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	524	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	525	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	526	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	527	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	528	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	529	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	530	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	531	\isatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	532	\isacommand{lemma}\isamarkupfalse%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	533	\ {\isacharbrackleft}code\ abstract{\isacharbrackright}{\isacharcolon}\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	534	\ \ {\isachardoublequoteopen}list{\isacharunderscore}of{\isacharunderscore}dlist\ Dlist{\isachardot}empty\ {\isacharequal}\ {\isacharbrackleft}{\isacharbrackright}{\isachardoublequoteclose}\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	535	\ \ \isacommand{by}\isamarkupfalse%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	536	\ {\isacharparenleft}fact\ list{\isacharunderscore}of{\isacharunderscore}dlist{\isacharunderscore}empty{\isacharparenright}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	537	\endisatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	538	{\isafoldquote}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	539	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	540	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	541	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	542	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	543	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	544	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	545	\noindent This equation logically encodes both the desired code
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	546	equation and that the expression \isa{Dlist} is applied to obeys
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	547	the implicit invariant. Equations for insertion and removal are
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	548	similar:%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	549	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	550	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	551	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	552	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	553	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	554	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	555	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	556	\isatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	557	\isacommand{lemma}\isamarkupfalse%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	558	\ {\isacharbrackleft}code\ abstract{\isacharbrackright}{\isacharcolon}\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	559	\ \ {\isachardoublequoteopen}list{\isacharunderscore}of{\isacharunderscore}dlist\ {\isacharparenleft}Dlist{\isachardot}insert\ x\ dxs{\isacharparenright}\ {\isacharequal}\ List{\isachardot}insert\ x\ {\isacharparenleft}list{\isacharunderscore}of{\isacharunderscore}dlist\ dxs{\isacharparenright}{\isachardoublequoteclose}\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	560	\ \ \isacommand{by}\isamarkupfalse%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	561	\ {\isacharparenleft}fact\ list{\isacharunderscore}of{\isacharunderscore}dlist{\isacharunderscore}insert{\isacharparenright}\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	562	\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	563	\isacommand{lemma}\isamarkupfalse%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	564	\ {\isacharbrackleft}code\ abstract{\isacharbrackright}{\isacharcolon}\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	565	\ \ {\isachardoublequoteopen}list{\isacharunderscore}of{\isacharunderscore}dlist\ {\isacharparenleft}Dlist{\isachardot}remove\ x\ dxs{\isacharparenright}\ {\isacharequal}\ remove{\isadigit{1}}\ x\ {\isacharparenleft}list{\isacharunderscore}of{\isacharunderscore}dlist\ dxs{\isacharparenright}{\isachardoublequoteclose}\isanewline
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	566	\ \ \isacommand{by}\isamarkupfalse%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	567	\ {\isacharparenleft}fact\ list{\isacharunderscore}of{\isacharunderscore}dlist{\isacharunderscore}remove{\isacharparenright}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	568	\endisatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	569	{\isafoldquote}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	570	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	571	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	572	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	573	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	574	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	575	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	576	\noindent Then the corresponding code is as follows:%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	577	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	578	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	579	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	580	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	581	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	582	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	583	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	584	\isatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	585	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	586	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	587	\isatypewriter%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	588	\noindent%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	589	\hspace*{0pt}module Example where {\char123}\\
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	590	\hspace*{0pt}\\
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	591	\hspace*{0pt}newtype Dlist a = Dlist [a];\\
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	592	\hspace*{0pt}\\
39210 985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	593	\hspace*{0pt}empty ::~forall a.~Dlist a;\\
985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	594	\hspace*{0pt}empty = Dlist [];\\
38502 c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	595	\hspace*{0pt}\\
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	596	\hspace*{0pt}member ::~forall a.~(Eq a) => [a] -> a -> Bool;\\
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	597	\hspace*{0pt}member [] y = False;\\
39210 985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	598	\hspace*{0pt}member (x :~xs) y = x == y \|\| member xs y;\\
38502 c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	599	\hspace*{0pt}\\
39210 985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	600	\hspace*{0pt}insert ::~forall a.~(Eq a) => a -> [a] -> [a];\\
985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	601	\hspace*{0pt}insert x xs = (if member xs x then xs else x :~xs);\\
38502 c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	602	\hspace*{0pt}\\
39210 985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	603	\hspace*{0pt}list{\char95}of{\char95}dlist ::~forall a.~Dlist a -> [a];\\
985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	604	\hspace*{0pt}list{\char95}of{\char95}dlist (Dlist x) = x;\\
38502 c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	605	\hspace*{0pt}\\
39210 985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	606	\hspace*{0pt}inserta ::~forall a.~(Eq a) => a -> Dlist a -> Dlist a;\\
985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	607	\hspace*{0pt}inserta x dxs = Dlist (insert x (list{\char95}of{\char95}dlist dxs));\\
38502 c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	608	\hspace*{0pt}\\
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	609	\hspace*{0pt}remove1 ::~forall a.~(Eq a) => a -> [a] -> [a];\\
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	610	\hspace*{0pt}remove1 x [] = [];\\
39210 985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	611	\hspace*{0pt}remove1 x (y :~xs) = (if x == y then xs else y :~remove1 x xs);\\
38502 c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	612	\hspace*{0pt}\\
39210 985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	613	\hspace*{0pt}remove ::~forall a.~(Eq a) => a -> Dlist a -> Dlist a;\\
985b13c5a61d updated generated document haftmann parents: 39070 diff changeset	614	\hspace*{0pt}remove x dxs = Dlist (remove1 x (list{\char95}of{\char95}dlist dxs));\\
38502 c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	615	\hspace*{0pt}\\
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	616	\hspace*{0pt}{\char125}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	617	\end{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	618	\isamarkuptrue%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	619	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	620	\endisatagquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	621	{\isafoldquote}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	622	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	623	\isadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	624	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	625	\endisadelimquote
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	626	%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	627	\begin{isamarkuptext}%
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	628	Typical data structures implemented by representations involving
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	629	invariants are available in the library, e.g.~theories \hyperlink{theory.Fset}{\mbox{\isa{Fset}}} and \hyperlink{theory.Mapping}{\mbox{\isa{Mapping}}} specify sets (type \isa{{\isacharprime}a\ fset}) and
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	630	key-value-mappings (type \isa{{\isacharparenleft}{\isacharprime}a{\isacharcomma}\ {\isacharprime}b{\isacharparenright}\ mapping}) respectively;
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	631	these can be implemented by distinct lists as presented here as
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	632	example (theory \hyperlink{theory.Dlist}{\mbox{\isa{Dlist}}}) and red-black-trees respectively
c4b7ae8ea82e added quick and dirty section on invariants haftmann parents: 38459 diff changeset	633	(theory \hyperlink{theory.RBT}{\mbox{\isa{RBT}}}).%
38437 ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	634	\end{isamarkuptext}%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	635	\isamarkuptrue%
ffb1c5bf0425 adaptation to new outline haftmann parents: 38406 diff changeset	636	%
38406 bbb02b67caac sketch of new outline haftmann parents: diff changeset	637	\isadelimtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	638	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	639	\endisadelimtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	640	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	641	\isatagtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	642	\isacommand{end}\isamarkupfalse%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	643	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	644	\endisatagtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	645	{\isafoldtheory}%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	646	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	647	\isadelimtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	648	%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	649	\endisadelimtheory
bbb02b67caac sketch of new outline haftmann parents: diff changeset	650	\isanewline
bbb02b67caac sketch of new outline haftmann parents: diff changeset	651	\end{isabellebody}%
bbb02b67caac sketch of new outline haftmann parents: diff changeset	652	%%% Local Variables:
bbb02b67caac sketch of new outline haftmann parents: diff changeset	653	%%% mode: latex
bbb02b67caac sketch of new outline haftmann parents: diff changeset	654	%%% TeX-master: "root"
bbb02b67caac sketch of new outline haftmann parents: diff changeset	655	%%% End:

author	haftmann
	Tue, 21 Sep 2010 14:36:13 +0200
changeset 39599	d9c247f7afa3
parent 39210	985b13c5a61d
child 39664	0afaf89ab591
permissions	-rw-r--r--