| author | paulson <lp15@cam.ac.uk> | 
| Wed, 01 Apr 2015 16:04:21 +0100 | |
| changeset 59872 | db4000b71fdb | 
| parent 59647 | c6f413b660cf | 
| child 60062 | 4c5de5a860ee | 
| permissions | -rw-r--r-- | 
| 40107 | 1 | (* Title: HOL/Partial_Function.thy | 
| 2 | Author: Alexander Krauss, TU Muenchen | |
| 3 | *) | |
| 4 | ||
| 58889 | 5 | section {* Partial Function Definitions *}
 | 
| 40107 | 6 | |
| 7 | theory Partial_Function | |
| 55085 
0e8e4dc55866
moved 'fundef_cong' attribute (and other basic 'fun' stuff) up the dependency chain
 blanchet parents: 
54630diff
changeset | 8 | imports Complete_Partial_Order Fun_Def_Base Option | 
| 46950 
d0181abdbdac
declare command keywords via theory header, including strict checking outside Pure;
 wenzelm parents: 
46041diff
changeset | 9 | keywords "partial_function" :: thy_decl | 
| 40107 | 10 | begin | 
| 11 | ||
| 57959 | 12 | named_theorems partial_function_mono "monotonicity rules for partial function definitions" | 
| 48891 | 13 | ML_file "Tools/Function/partial_function.ML" | 
| 57959 | 14 | |
| 40107 | 15 | |
| 16 | subsection {* Axiomatic setup *}
 | |
| 17 | ||
| 18 | text {* This techical locale constains the requirements for function
 | |
| 42949 
618adb3584e5
separate initializations for different modes of partial_function -- generation of induction rules will be non-uniform
 krauss parents: 
40288diff
changeset | 19 | definitions with ccpo fixed points. *} | 
| 40107 | 20 | |
| 21 | definition "fun_ord ord f g \<longleftrightarrow> (\<forall>x. ord (f x) (g x))" | |
| 22 | definition "fun_lub L A = (\<lambda>x. L {y. \<exists>f\<in>A. y = f x})"
 | |
| 23 | definition "img_ord f ord = (\<lambda>x y. ord (f x) (f y))" | |
| 24 | definition "img_lub f g Lub = (\<lambda>A. g (Lub (f ` A)))" | |
| 25 | ||
| 43081 | 26 | lemma chain_fun: | 
| 27 | assumes A: "chain (fun_ord ord) A" | |
| 28 |   shows "chain ord {y. \<exists>f\<in>A. y = f a}" (is "chain ord ?C")
 | |
| 29 | proof (rule chainI) | |
| 30 | fix x y assume "x \<in> ?C" "y \<in> ?C" | |
| 31 | then obtain f g where fg: "f \<in> A" "g \<in> A" | |
| 32 | and [simp]: "x = f a" "y = g a" by blast | |
| 33 | from chainD[OF A fg] | |
| 34 | show "ord x y \<or> ord y x" unfolding fun_ord_def by auto | |
| 35 | qed | |
| 36 | ||
| 40107 | 37 | lemma call_mono[partial_function_mono]: "monotone (fun_ord ord) ord (\<lambda>f. f t)" | 
| 38 | by (rule monotoneI) (auto simp: fun_ord_def) | |
| 39 | ||
| 40288 | 40 | lemma let_mono[partial_function_mono]: | 
| 41 | "(\<And>x. monotone orda ordb (\<lambda>f. b f x)) | |
| 42 | \<Longrightarrow> monotone orda ordb (\<lambda>f. Let t (b f))" | |
| 43 | by (simp add: Let_def) | |
| 44 | ||
| 40107 | 45 | lemma if_mono[partial_function_mono]: "monotone orda ordb F | 
| 46 | \<Longrightarrow> monotone orda ordb G | |
| 47 | \<Longrightarrow> monotone orda ordb (\<lambda>f. if c then F f else G f)" | |
| 48 | unfolding monotone_def by simp | |
| 49 | ||
| 50 | definition "mk_less R = (\<lambda>x y. R x y \<and> \<not> R y x)" | |
| 51 | ||
| 52 | locale partial_function_definitions = | |
| 53 | fixes leq :: "'a \<Rightarrow> 'a \<Rightarrow> bool" | |
| 54 | fixes lub :: "'a set \<Rightarrow> 'a" | |
| 55 | assumes leq_refl: "leq x x" | |
| 56 | assumes leq_trans: "leq x y \<Longrightarrow> leq y z \<Longrightarrow> leq x z" | |
| 57 | assumes leq_antisym: "leq x y \<Longrightarrow> leq y x \<Longrightarrow> x = y" | |
| 58 | assumes lub_upper: "chain leq A \<Longrightarrow> x \<in> A \<Longrightarrow> leq x (lub A)" | |
| 59 | assumes lub_least: "chain leq A \<Longrightarrow> (\<And>x. x \<in> A \<Longrightarrow> leq x z) \<Longrightarrow> leq (lub A) z" | |
| 60 | ||
| 61 | lemma partial_function_lift: | |
| 62 | assumes "partial_function_definitions ord lb" | |
| 63 | shows "partial_function_definitions (fun_ord ord) (fun_lub lb)" (is "partial_function_definitions ?ordf ?lubf") | |
| 64 | proof - | |
| 65 | interpret partial_function_definitions ord lb by fact | |
| 66 | ||
| 67 | show ?thesis | |
| 68 | proof | |
| 69 | fix x show "?ordf x x" | |
| 70 | unfolding fun_ord_def by (auto simp: leq_refl) | |
| 71 | next | |
| 72 | fix x y z assume "?ordf x y" "?ordf y z" | |
| 73 | thus "?ordf x z" unfolding fun_ord_def | |
| 74 | by (force dest: leq_trans) | |
| 75 | next | |
| 76 | fix x y assume "?ordf x y" "?ordf y x" | |
| 77 | thus "x = y" unfolding fun_ord_def | |
| 43081 | 78 | by (force intro!: dest: leq_antisym) | 
| 40107 | 79 | next | 
| 80 | fix A f assume f: "f \<in> A" and A: "chain ?ordf A" | |
| 81 | thus "?ordf f (?lubf A)" | |
| 82 | unfolding fun_lub_def fun_ord_def | |
| 83 | by (blast intro: lub_upper chain_fun[OF A] f) | |
| 84 | next | |
| 85 |     fix A :: "('b \<Rightarrow> 'a) set" and g :: "'b \<Rightarrow> 'a"
 | |
| 86 | assume A: "chain ?ordf A" and g: "\<And>f. f \<in> A \<Longrightarrow> ?ordf f g" | |
| 87 | show "?ordf (?lubf A) g" unfolding fun_lub_def fun_ord_def | |
| 88 | by (blast intro: lub_least chain_fun[OF A] dest: g[unfolded fun_ord_def]) | |
| 89 | qed | |
| 90 | qed | |
| 91 | ||
| 92 | lemma ccpo: assumes "partial_function_definitions ord lb" | |
| 46041 
1e3ff542e83e
remove constant 'ccpo.lub', re-use constant 'Sup' instead
 huffman parents: 
45297diff
changeset | 93 | shows "class.ccpo lb ord (mk_less ord)" | 
| 40107 | 94 | using assms unfolding partial_function_definitions_def mk_less_def | 
| 95 | by unfold_locales blast+ | |
| 96 | ||
| 97 | lemma partial_function_image: | |
| 98 | assumes "partial_function_definitions ord Lub" | |
| 99 | assumes inj: "\<And>x y. f x = f y \<Longrightarrow> x = y" | |
| 100 | assumes inv: "\<And>x. f (g x) = x" | |
| 101 | shows "partial_function_definitions (img_ord f ord) (img_lub f g Lub)" | |
| 102 | proof - | |
| 103 | let ?iord = "img_ord f ord" | |
| 104 | let ?ilub = "img_lub f g Lub" | |
| 105 | ||
| 106 | interpret partial_function_definitions ord Lub by fact | |
| 107 | show ?thesis | |
| 108 | proof | |
| 109 | fix A x assume "chain ?iord A" "x \<in> A" | |
| 110 | then have "chain ord (f ` A)" "f x \<in> f ` A" | |
| 111 | by (auto simp: img_ord_def intro: chainI dest: chainD) | |
| 112 | thus "?iord x (?ilub A)" | |
| 113 | unfolding inv img_lub_def img_ord_def by (rule lub_upper) | |
| 114 | next | |
| 115 | fix A x assume "chain ?iord A" | |
| 116 | and 1: "\<And>z. z \<in> A \<Longrightarrow> ?iord z x" | |
| 117 | then have "chain ord (f ` A)" | |
| 118 | by (auto simp: img_ord_def intro: chainI dest: chainD) | |
| 119 | thus "?iord (?ilub A) x" | |
| 120 | unfolding inv img_lub_def img_ord_def | |
| 121 | by (rule lub_least) (auto dest: 1[unfolded img_ord_def]) | |
| 122 | qed (auto simp: img_ord_def intro: leq_refl dest: leq_trans leq_antisym inj) | |
| 123 | qed | |
| 124 | ||
| 125 | context partial_function_definitions | |
| 126 | begin | |
| 127 | ||
| 128 | abbreviation "le_fun \<equiv> fun_ord leq" | |
| 129 | abbreviation "lub_fun \<equiv> fun_lub lub" | |
| 46041 
1e3ff542e83e
remove constant 'ccpo.lub', re-use constant 'Sup' instead
 huffman parents: 
45297diff
changeset | 130 | abbreviation "fixp_fun \<equiv> ccpo.fixp lub_fun le_fun" | 
| 40107 | 131 | abbreviation "mono_body \<equiv> monotone le_fun leq" | 
| 46041 
1e3ff542e83e
remove constant 'ccpo.lub', re-use constant 'Sup' instead
 huffman parents: 
45297diff
changeset | 132 | abbreviation "admissible \<equiv> ccpo.admissible lub_fun le_fun" | 
| 40107 | 133 | |
| 134 | text {* Interpret manually, to avoid flooding everything with facts about
 | |
| 135 | orders *} | |
| 136 | ||
| 46041 
1e3ff542e83e
remove constant 'ccpo.lub', re-use constant 'Sup' instead
 huffman parents: 
45297diff
changeset | 137 | lemma ccpo: "class.ccpo lub_fun le_fun (mk_less le_fun)" | 
| 40107 | 138 | apply (rule ccpo) | 
| 139 | apply (rule partial_function_lift) | |
| 140 | apply (rule partial_function_definitions_axioms) | |
| 141 | done | |
| 142 | ||
| 143 | text {* The crucial fixed-point theorem *}
 | |
| 144 | ||
| 145 | lemma mono_body_fixp: | |
| 146 | "(\<And>x. mono_body (\<lambda>f. F f x)) \<Longrightarrow> fixp_fun F = F (fixp_fun F)" | |
| 147 | by (rule ccpo.fixp_unfold[OF ccpo]) (auto simp: monotone_def fun_ord_def) | |
| 148 | ||
| 149 | text {* Version with curry/uncurry combinators, to be used by package *}
 | |
| 150 | ||
| 151 | lemma fixp_rule_uc: | |
| 152 | fixes F :: "'c \<Rightarrow> 'c" and | |
| 153 | U :: "'c \<Rightarrow> 'b \<Rightarrow> 'a" and | |
| 154 |     C :: "('b \<Rightarrow> 'a) \<Rightarrow> 'c"
 | |
| 155 | assumes mono: "\<And>x. mono_body (\<lambda>f. U (F (C f)) x)" | |
| 156 | assumes eq: "f \<equiv> C (fixp_fun (\<lambda>f. U (F (C f))))" | |
| 157 | assumes inverse: "\<And>f. C (U f) = f" | |
| 158 | shows "f = F f" | |
| 159 | proof - | |
| 160 | have "f = C (fixp_fun (\<lambda>f. U (F (C f))))" by (simp add: eq) | |
| 161 | also have "... = C (U (F (C (fixp_fun (\<lambda>f. U (F (C f)))))))" | |
| 162 | by (subst mono_body_fixp[of "%f. U (F (C f))", OF mono]) (rule refl) | |
| 163 | also have "... = F (C (fixp_fun (\<lambda>f. U (F (C f)))))" by (rule inverse) | |
| 164 | also have "... = F f" by (simp add: eq) | |
| 165 | finally show "f = F f" . | |
| 166 | qed | |
| 167 | ||
| 43082 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 168 | text {* Fixpoint induction rule *}
 | 
| 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 169 | |
| 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 170 | lemma fixp_induct_uc: | 
| 59647 
c6f413b660cf
clarified Drule.gen_all: observe context more carefully;
 wenzelm parents: 
59517diff
changeset | 171 | fixes F :: "'c \<Rightarrow> 'c" | 
| 
c6f413b660cf
clarified Drule.gen_all: observe context more carefully;
 wenzelm parents: 
59517diff
changeset | 172 | and U :: "'c \<Rightarrow> 'b \<Rightarrow> 'a" | 
| 
c6f413b660cf
clarified Drule.gen_all: observe context more carefully;
 wenzelm parents: 
59517diff
changeset | 173 |     and C :: "('b \<Rightarrow> 'a) \<Rightarrow> 'c"
 | 
| 
c6f413b660cf
clarified Drule.gen_all: observe context more carefully;
 wenzelm parents: 
59517diff
changeset | 174 |     and P :: "('b \<Rightarrow> 'a) \<Rightarrow> bool"
 | 
| 43082 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 175 | assumes mono: "\<And>x. mono_body (\<lambda>f. U (F (C f)) x)" | 
| 59647 
c6f413b660cf
clarified Drule.gen_all: observe context more carefully;
 wenzelm parents: 
59517diff
changeset | 176 | and eq: "f \<equiv> C (fixp_fun (\<lambda>f. U (F (C f))))" | 
| 
c6f413b660cf
clarified Drule.gen_all: observe context more carefully;
 wenzelm parents: 
59517diff
changeset | 177 | and inverse: "\<And>f. U (C f) = f" | 
| 
c6f413b660cf
clarified Drule.gen_all: observe context more carefully;
 wenzelm parents: 
59517diff
changeset | 178 | and adm: "ccpo.admissible lub_fun le_fun P" | 
| 
c6f413b660cf
clarified Drule.gen_all: observe context more carefully;
 wenzelm parents: 
59517diff
changeset | 179 |     and bot: "P (\<lambda>_. lub {})"
 | 
| 
c6f413b660cf
clarified Drule.gen_all: observe context more carefully;
 wenzelm parents: 
59517diff
changeset | 180 | and step: "\<And>f. P (U f) \<Longrightarrow> P (U (F f))" | 
| 43082 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 181 | shows "P (U f)" | 
| 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 182 | unfolding eq inverse | 
| 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 183 | apply (rule ccpo.fixp_induct[OF ccpo adm]) | 
| 54630 
9061af4d5ebc
restrict admissibility to non-empty chains to allow more syntax-directed proof rules
 Andreas Lochbihler parents: 
53949diff
changeset | 184 | apply (insert mono, auto simp: monotone_def fun_ord_def bot fun_lub_def)[2] | 
| 59647 
c6f413b660cf
clarified Drule.gen_all: observe context more carefully;
 wenzelm parents: 
59517diff
changeset | 185 | apply (rule_tac f5="C x" in step) | 
| 
c6f413b660cf
clarified Drule.gen_all: observe context more carefully;
 wenzelm parents: 
59517diff
changeset | 186 | apply (simp add: inverse) | 
| 
c6f413b660cf
clarified Drule.gen_all: observe context more carefully;
 wenzelm parents: 
59517diff
changeset | 187 | done | 
| 43082 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 188 | |
| 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 189 | |
| 40107 | 190 | text {* Rules for @{term mono_body}: *}
 | 
| 191 | ||
| 192 | lemma const_mono[partial_function_mono]: "monotone ord leq (\<lambda>f. c)" | |
| 193 | by (rule monotoneI) (rule leq_refl) | |
| 194 | ||
| 195 | end | |
| 196 | ||
| 197 | ||
| 198 | subsection {* Flat interpretation: tailrec and option *}
 | |
| 199 | ||
| 200 | definition | |
| 201 | "flat_ord b x y \<longleftrightarrow> x = b \<or> x = y" | |
| 202 | ||
| 203 | definition | |
| 204 |   "flat_lub b A = (if A \<subseteq> {b} then b else (THE x. x \<in> A - {b}))"
 | |
| 205 | ||
| 206 | lemma flat_interpretation: | |
| 207 | "partial_function_definitions (flat_ord b) (flat_lub b)" | |
| 208 | proof | |
| 209 | fix A x assume 1: "chain (flat_ord b) A" "x \<in> A" | |
| 210 | show "flat_ord b x (flat_lub b A)" | |
| 211 | proof cases | |
| 212 | assume "x = b" | |
| 213 | thus ?thesis by (simp add: flat_ord_def) | |
| 214 | next | |
| 215 | assume "x \<noteq> b" | |
| 216 |     with 1 have "A - {b} = {x}"
 | |
| 217 | by (auto elim: chainE simp: flat_ord_def) | |
| 218 | then have "flat_lub b A = x" | |
| 219 | by (auto simp: flat_lub_def) | |
| 220 | thus ?thesis by (auto simp: flat_ord_def) | |
| 221 | qed | |
| 222 | next | |
| 223 | fix A z assume A: "chain (flat_ord b) A" | |
| 224 | and z: "\<And>x. x \<in> A \<Longrightarrow> flat_ord b x z" | |
| 225 | show "flat_ord b (flat_lub b A) z" | |
| 226 | proof cases | |
| 227 |     assume "A \<subseteq> {b}"
 | |
| 228 | thus ?thesis | |
| 229 | by (auto simp: flat_lub_def flat_ord_def) | |
| 230 | next | |
| 231 |     assume nb: "\<not> A \<subseteq> {b}"
 | |
| 232 | then obtain y where y: "y \<in> A" "y \<noteq> b" by auto | |
| 233 |     with A have "A - {b} = {y}"
 | |
| 234 | by (auto elim: chainE simp: flat_ord_def) | |
| 235 | with nb have "flat_lub b A = y" | |
| 236 | by (auto simp: flat_lub_def) | |
| 237 | with z y show ?thesis by auto | |
| 238 | qed | |
| 239 | qed (auto simp: flat_ord_def) | |
| 240 | ||
| 59517 | 241 | lemma flat_ordI: "(x \<noteq> a \<Longrightarrow> x = y) \<Longrightarrow> flat_ord a x y" | 
| 242 | by(auto simp add: flat_ord_def) | |
| 243 | ||
| 244 | lemma flat_ord_antisym: "\<lbrakk> flat_ord a x y; flat_ord a y x \<rbrakk> \<Longrightarrow> x = y" | |
| 245 | by(auto simp add: flat_ord_def) | |
| 246 | ||
| 247 | lemma antisymP_flat_ord: "antisymP (flat_ord a)" | |
| 248 | by(rule antisymI)(auto dest: flat_ord_antisym) | |
| 249 | ||
| 40107 | 250 | interpretation tailrec!: | 
| 251 | partial_function_definitions "flat_ord undefined" "flat_lub undefined" | |
| 54630 
9061af4d5ebc
restrict admissibility to non-empty chains to allow more syntax-directed proof rules
 Andreas Lochbihler parents: 
53949diff
changeset | 252 |   where "flat_lub undefined {} \<equiv> undefined"
 | 
| 
9061af4d5ebc
restrict admissibility to non-empty chains to allow more syntax-directed proof rules
 Andreas Lochbihler parents: 
53949diff
changeset | 253 | by (rule flat_interpretation)(simp add: flat_lub_def) | 
| 40107 | 254 | |
| 255 | interpretation option!: | |
| 256 | partial_function_definitions "flat_ord None" "flat_lub None" | |
| 54630 
9061af4d5ebc
restrict admissibility to non-empty chains to allow more syntax-directed proof rules
 Andreas Lochbihler parents: 
53949diff
changeset | 257 |   where "flat_lub None {} \<equiv> None"
 | 
| 
9061af4d5ebc
restrict admissibility to non-empty chains to allow more syntax-directed proof rules
 Andreas Lochbihler parents: 
53949diff
changeset | 258 | by (rule flat_interpretation)(simp add: flat_lub_def) | 
| 40107 | 259 | |
| 42949 
618adb3584e5
separate initializations for different modes of partial_function -- generation of induction rules will be non-uniform
 krauss parents: 
40288diff
changeset | 260 | |
| 51459 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 261 | abbreviation "tailrec_ord \<equiv> flat_ord undefined" | 
| 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 262 | abbreviation "mono_tailrec \<equiv> monotone (fun_ord tailrec_ord) tailrec_ord" | 
| 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 263 | |
| 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 264 | lemma tailrec_admissible: | 
| 53949 | 265 | "ccpo.admissible (fun_lub (flat_lub c)) (fun_ord (flat_ord c)) | 
| 266 | (\<lambda>a. \<forall>x. a x \<noteq> c \<longrightarrow> P x (a x))" | |
| 53361 
1cb7d3c0cf31
move admissible out of class ccpo to avoid unnecessary class predicate in foundational theorems
 Andreas Lochbihler parents: 
52728diff
changeset | 267 | proof(intro ccpo.admissibleI strip) | 
| 51459 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 268 | fix A x | 
| 53949 | 269 | assume chain: "Complete_Partial_Order.chain (fun_ord (flat_ord c)) A" | 
| 270 | and P [rule_format]: "\<forall>f\<in>A. \<forall>x. f x \<noteq> c \<longrightarrow> P x (f x)" | |
| 271 | and defined: "fun_lub (flat_lub c) A x \<noteq> c" | |
| 272 | from defined obtain f where f: "f \<in> A" "f x \<noteq> c" | |
| 51459 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 273 | by(auto simp add: fun_lub_def flat_lub_def split: split_if_asm) | 
| 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 274 | hence "P x (f x)" by(rule P) | 
| 53949 | 275 | moreover from chain f have "\<forall>f' \<in> A. f' x = c \<or> f' x = f x" | 
| 51459 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 276 | by(auto 4 4 simp add: Complete_Partial_Order.chain_def flat_ord_def fun_ord_def) | 
| 53949 | 277 | hence "fun_lub (flat_lub c) A x = f x" | 
| 51459 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 278 | using f by(auto simp add: fun_lub_def flat_lub_def) | 
| 53949 | 279 | ultimately show "P x (fun_lub (flat_lub c) A x)" by simp | 
| 51459 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 280 | qed | 
| 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 281 | |
| 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 282 | lemma fixp_induct_tailrec: | 
| 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 283 | fixes F :: "'c \<Rightarrow> 'c" and | 
| 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 284 | U :: "'c \<Rightarrow> 'b \<Rightarrow> 'a" and | 
| 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 285 |     C :: "('b \<Rightarrow> 'a) \<Rightarrow> 'c" and
 | 
| 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 286 | P :: "'b \<Rightarrow> 'a \<Rightarrow> bool" and | 
| 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 287 | x :: "'b" | 
| 53949 | 288 | assumes mono: "\<And>x. monotone (fun_ord (flat_ord c)) (flat_ord c) (\<lambda>f. U (F (C f)) x)" | 
| 289 | assumes eq: "f \<equiv> C (ccpo.fixp (fun_lub (flat_lub c)) (fun_ord (flat_ord c)) (\<lambda>f. U (F (C f))))" | |
| 51459 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 290 | assumes inverse2: "\<And>f. U (C f) = f" | 
| 53949 | 291 | assumes step: "\<And>f x y. (\<And>x y. U f x = y \<Longrightarrow> y \<noteq> c \<Longrightarrow> P x y) \<Longrightarrow> U (F f) x = y \<Longrightarrow> y \<noteq> c \<Longrightarrow> P x y" | 
| 51459 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 292 | assumes result: "U f x = y" | 
| 53949 | 293 | assumes defined: "y \<noteq> c" | 
| 51459 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 294 | shows "P x y" | 
| 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 295 | proof - | 
| 53949 | 296 | have "\<forall>x y. U f x = y \<longrightarrow> y \<noteq> c \<longrightarrow> P x y" | 
| 297 | by(rule partial_function_definitions.fixp_induct_uc[OF flat_interpretation, of _ U F C, OF mono eq inverse2]) | |
| 54630 
9061af4d5ebc
restrict admissibility to non-empty chains to allow more syntax-directed proof rules
 Andreas Lochbihler parents: 
53949diff
changeset | 298 | (auto intro: step tailrec_admissible simp add: fun_lub_def flat_lub_def) | 
| 51459 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 299 | thus ?thesis using result defined by blast | 
| 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 300 | qed | 
| 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 301 | |
| 51485 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 302 | lemma admissible_image: | 
| 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 303 | assumes pfun: "partial_function_definitions le lub" | 
| 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 304 | assumes adm: "ccpo.admissible lub le (P o g)" | 
| 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 305 | assumes inj: "\<And>x y. f x = f y \<Longrightarrow> x = y" | 
| 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 306 | assumes inv: "\<And>x. f (g x) = x" | 
| 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 307 | shows "ccpo.admissible (img_lub f g lub) (img_ord f le) P" | 
| 53361 
1cb7d3c0cf31
move admissible out of class ccpo to avoid unnecessary class predicate in foundational theorems
 Andreas Lochbihler parents: 
52728diff
changeset | 308 | proof (rule ccpo.admissibleI) | 
| 51485 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 309 | fix A assume "chain (img_ord f le) A" | 
| 54630 
9061af4d5ebc
restrict admissibility to non-empty chains to allow more syntax-directed proof rules
 Andreas Lochbihler parents: 
53949diff
changeset | 310 | then have ch': "chain le (f ` A)" | 
| 
9061af4d5ebc
restrict admissibility to non-empty chains to allow more syntax-directed proof rules
 Andreas Lochbihler parents: 
53949diff
changeset | 311 | by (auto simp: img_ord_def intro: chainI dest: chainD) | 
| 
9061af4d5ebc
restrict admissibility to non-empty chains to allow more syntax-directed proof rules
 Andreas Lochbihler parents: 
53949diff
changeset | 312 |   assume "A \<noteq> {}"
 | 
| 51485 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 313 | assume P_A: "\<forall>x\<in>A. P x" | 
| 53361 
1cb7d3c0cf31
move admissible out of class ccpo to avoid unnecessary class predicate in foundational theorems
 Andreas Lochbihler parents: 
52728diff
changeset | 314 | have "(P o g) (lub (f ` A))" using adm ch' | 
| 
1cb7d3c0cf31
move admissible out of class ccpo to avoid unnecessary class predicate in foundational theorems
 Andreas Lochbihler parents: 
52728diff
changeset | 315 | proof (rule ccpo.admissibleD) | 
| 51485 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 316 | fix x assume "x \<in> f ` A" | 
| 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 317 | with P_A show "(P o g) x" by (auto simp: inj[OF inv]) | 
| 54630 
9061af4d5ebc
restrict admissibility to non-empty chains to allow more syntax-directed proof rules
 Andreas Lochbihler parents: 
53949diff
changeset | 318 |   qed(simp add: `A \<noteq> {}`)
 | 
| 51485 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 319 | thus "P (img_lub f g lub A)" unfolding img_lub_def by simp | 
| 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 320 | qed | 
| 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 321 | |
| 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 322 | lemma admissible_fun: | 
| 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 323 | assumes pfun: "partial_function_definitions le lub" | 
| 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 324 | assumes adm: "\<And>x. ccpo.admissible lub le (Q x)" | 
| 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 325 | shows "ccpo.admissible (fun_lub lub) (fun_ord le) (\<lambda>f. \<forall>x. Q x (f x))" | 
| 53361 
1cb7d3c0cf31
move admissible out of class ccpo to avoid unnecessary class predicate in foundational theorems
 Andreas Lochbihler parents: 
52728diff
changeset | 326 | proof (rule ccpo.admissibleI) | 
| 51485 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 327 |   fix A :: "('b \<Rightarrow> 'a) set"
 | 
| 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 328 | assume Q: "\<forall>f\<in>A. \<forall>x. Q x (f x)" | 
| 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 329 | assume ch: "chain (fun_ord le) A" | 
| 54630 
9061af4d5ebc
restrict admissibility to non-empty chains to allow more syntax-directed proof rules
 Andreas Lochbihler parents: 
53949diff
changeset | 330 |   assume "A \<noteq> {}"
 | 
| 
9061af4d5ebc
restrict admissibility to non-empty chains to allow more syntax-directed proof rules
 Andreas Lochbihler parents: 
53949diff
changeset | 331 |   hence non_empty: "\<And>a. {y. \<exists>f\<in>A. y = f a} \<noteq> {}" by auto
 | 
| 51485 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 332 | show "\<forall>x. Q x (fun_lub lub A x)" | 
| 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 333 | unfolding fun_lub_def | 
| 54630 
9061af4d5ebc
restrict admissibility to non-empty chains to allow more syntax-directed proof rules
 Andreas Lochbihler parents: 
53949diff
changeset | 334 | by (rule allI, rule ccpo.admissibleD[OF adm chain_fun[OF ch] non_empty]) | 
| 51485 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 335 | (auto simp: Q) | 
| 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 336 | qed | 
| 
637aa1649ac7
added rudimentary induction rule for partial_function (heap)
 krauss parents: 
51459diff
changeset | 337 | |
| 51459 
bc3651180a09
add induction rule for partial_function (tailrec)
 Andreas Lochbihler parents: 
48891diff
changeset | 338 | |
| 40107 | 339 | abbreviation "option_ord \<equiv> flat_ord None" | 
| 340 | abbreviation "mono_option \<equiv> monotone (fun_ord option_ord) option_ord" | |
| 341 | ||
| 342 | lemma bind_mono[partial_function_mono]: | |
| 343 | assumes mf: "mono_option B" and mg: "\<And>y. mono_option (\<lambda>f. C y f)" | |
| 344 | shows "mono_option (\<lambda>f. Option.bind (B f) (\<lambda>y. C y f))" | |
| 345 | proof (rule monotoneI) | |
| 346 | fix f g :: "'a \<Rightarrow> 'b option" assume fg: "fun_ord option_ord f g" | |
| 347 | with mf | |
| 348 | have "option_ord (B f) (B g)" by (rule monotoneD[of _ _ _ f g]) | |
| 349 | then have "option_ord (Option.bind (B f) (\<lambda>y. C y f)) (Option.bind (B g) (\<lambda>y. C y f))" | |
| 350 | unfolding flat_ord_def by auto | |
| 351 | also from mg | |
| 352 | have "\<And>y'. option_ord (C y' f) (C y' g)" | |
| 353 | by (rule monotoneD) (rule fg) | |
| 354 | then have "option_ord (Option.bind (B g) (\<lambda>y'. C y' f)) (Option.bind (B g) (\<lambda>y'. C y' g))" | |
| 355 | unfolding flat_ord_def by (cases "B g") auto | |
| 356 | finally (option.leq_trans) | |
| 357 | show "option_ord (Option.bind (B f) (\<lambda>y. C y f)) (Option.bind (B g) (\<lambda>y'. C y' g))" . | |
| 358 | qed | |
| 359 | ||
| 43081 | 360 | lemma flat_lub_in_chain: | 
| 361 | assumes ch: "chain (flat_ord b) A " | |
| 362 | assumes lub: "flat_lub b A = a" | |
| 363 | shows "a = b \<or> a \<in> A" | |
| 364 | proof (cases "A \<subseteq> {b}")
 | |
| 365 | case True | |
| 366 | then have "flat_lub b A = b" unfolding flat_lub_def by simp | |
| 367 | with lub show ?thesis by simp | |
| 368 | next | |
| 369 | case False | |
| 370 | then obtain c where "c \<in> A" and "c \<noteq> b" by auto | |
| 371 |   { fix z assume "z \<in> A"
 | |
| 372 | from chainD[OF ch `c \<in> A` this] have "z = c \<or> z = b" | |
| 373 | unfolding flat_ord_def using `c \<noteq> b` by auto } | |
| 374 |   with False have "A - {b} = {c}" by auto
 | |
| 375 | with False have "flat_lub b A = c" by (auto simp: flat_lub_def) | |
| 376 | with `c \<in> A` lub show ?thesis by simp | |
| 377 | qed | |
| 378 | ||
| 379 | lemma option_admissible: "option.admissible (%(f::'a \<Rightarrow> 'b option). | |
| 380 | (\<forall>x y. f x = Some y \<longrightarrow> P x y))" | |
| 53361 
1cb7d3c0cf31
move admissible out of class ccpo to avoid unnecessary class predicate in foundational theorems
 Andreas Lochbihler parents: 
52728diff
changeset | 381 | proof (rule ccpo.admissibleI) | 
| 43081 | 382 |   fix A :: "('a \<Rightarrow> 'b option) set"
 | 
| 383 | assume ch: "chain option.le_fun A" | |
| 384 | and IH: "\<forall>f\<in>A. \<forall>x y. f x = Some y \<longrightarrow> P x y" | |
| 385 |   from ch have ch': "\<And>x. chain option_ord {y. \<exists>f\<in>A. y = f x}" by (rule chain_fun)
 | |
| 386 | show "\<forall>x y. option.lub_fun A x = Some y \<longrightarrow> P x y" | |
| 387 | proof (intro allI impI) | |
| 388 | fix x y assume "option.lub_fun A x = Some y" | |
| 389 | from flat_lub_in_chain[OF ch' this[unfolded fun_lub_def]] | |
| 390 |     have "Some y \<in> {y. \<exists>f\<in>A. y = f x}" by simp
 | |
| 391 | then have "\<exists>f\<in>A. f x = Some y" by auto | |
| 392 | with IH show "P x y" by auto | |
| 393 | qed | |
| 394 | qed | |
| 395 | ||
| 43082 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 396 | lemma fixp_induct_option: | 
| 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 397 | fixes F :: "'c \<Rightarrow> 'c" and | 
| 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 398 | U :: "'c \<Rightarrow> 'b \<Rightarrow> 'a option" and | 
| 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 399 |     C :: "('b \<Rightarrow> 'a option) \<Rightarrow> 'c" and
 | 
| 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 400 | P :: "'b \<Rightarrow> 'a \<Rightarrow> bool" | 
| 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 401 | assumes mono: "\<And>x. mono_option (\<lambda>f. U (F (C f)) x)" | 
| 46041 
1e3ff542e83e
remove constant 'ccpo.lub', re-use constant 'Sup' instead
 huffman parents: 
45297diff
changeset | 402 | assumes eq: "f \<equiv> C (ccpo.fixp (fun_lub (flat_lub None)) (fun_ord option_ord) (\<lambda>f. U (F (C f))))" | 
| 43082 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 403 | assumes inverse2: "\<And>f. U (C f) = f" | 
| 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 404 | assumes step: "\<And>f x y. (\<And>x y. U f x = Some y \<Longrightarrow> P x y) \<Longrightarrow> U (F f) x = Some y \<Longrightarrow> P x y" | 
| 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 405 | assumes defined: "U f x = Some y" | 
| 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 406 | shows "P x y" | 
| 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 407 | using step defined option.fixp_induct_uc[of U F C, OF mono eq inverse2 option_admissible] | 
| 54630 
9061af4d5ebc
restrict admissibility to non-empty chains to allow more syntax-directed proof rules
 Andreas Lochbihler parents: 
53949diff
changeset | 408 | unfolding fun_lub_def flat_lub_def by(auto 9 2) | 
| 43082 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 409 | |
| 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 410 | declaration {* Partial_Function.init "tailrec" @{term tailrec.fixp_fun}
 | 
| 52728 
470b579f35d2
derive specialized version of full fixpoint induction (with admissibility)
 krauss parents: 
51485diff
changeset | 411 |   @{term tailrec.mono_body} @{thm tailrec.fixp_rule_uc} @{thm tailrec.fixp_induct_uc}
 | 
| 53949 | 412 |   (SOME @{thm fixp_induct_tailrec[where c=undefined]}) *}
 | 
| 43082 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 413 | |
| 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 414 | declaration {* Partial_Function.init "option" @{term option.fixp_fun}
 | 
| 52728 
470b579f35d2
derive specialized version of full fixpoint induction (with admissibility)
 krauss parents: 
51485diff
changeset | 415 |   @{term option.mono_body} @{thm option.fixp_rule_uc} @{thm option.fixp_induct_uc}
 | 
| 43082 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 416 |   (SOME @{thm fixp_induct_option}) *}
 | 
| 
8d0c44de9773
generic fixpoint induction (with explicit curry/uncurry predicates) and instance for option type
 krauss parents: 
43081diff
changeset | 417 | |
| 40252 
029400b6c893
hide_const various constants, in particular to avoid ugly qualifiers in HOLCF
 krauss parents: 
40107diff
changeset | 418 | hide_const (open) chain | 
| 40107 | 419 | |
| 420 | end |