isabelle: doc-src/TutorialI/Inductive/document/Star.tex@f11d37d4472d (annotated)

10225 b9fd52525b69 * empty log message * nipkow parents: diff changeset	1	%
b9fd52525b69 * empty log message * nipkow parents: diff changeset	2	\begin{isabellebody}%
b9fd52525b69 * empty log message * nipkow parents: diff changeset	3	\def\isabellecontext{Star}%
b9fd52525b69 * empty log message * nipkow parents: diff changeset	4	%
10237 875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	5	\isamarkupsection{The reflexive transitive closure}
10225 b9fd52525b69 * empty log message * nipkow parents: diff changeset	6	%
b9fd52525b69 * empty log message * nipkow parents: diff changeset	7	\begin{isamarkuptext}%
10242 028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	8	\label{sec:rtc}
10243 f11d37d4472d * empty log message * nipkow parents: 10242 diff changeset	9
10242 028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	10	{\bf Say something about inductive relations as opposed to sets? Or has that
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	11	been said already? If not, explain induction!}
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	12
10237 875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	13	A perfect example of an inductive definition is the reflexive transitive
10225 b9fd52525b69 * empty log message * nipkow parents: diff changeset	14	closure of a relation. This concept was already introduced in
b9fd52525b69 * empty log message * nipkow parents: diff changeset	15	\S\ref{sec:rtrancl}, but it was not shown how it is defined. In fact,
b9fd52525b69 * empty log message * nipkow parents: diff changeset	16	the operator \isa{{\isacharcircum}{\isacharasterisk}} is not defined inductively but via a least
10243 f11d37d4472d * empty log message * nipkow parents: 10242 diff changeset	17	fixpoint because at that point in the theory hierarchy
10225 b9fd52525b69 * empty log message * nipkow parents: diff changeset	18	inductive definitions are not yet available. But now they are:%
b9fd52525b69 * empty log message * nipkow parents: diff changeset	19	\end{isamarkuptext}%
10242 028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	20	\isacommand{consts}\ rtc\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequote}{\isacharparenleft}{\isacharprime}a\ {\isasymtimes}\ {\isacharprime}a{\isacharparenright}set\ {\isasymRightarrow}\ {\isacharparenleft}{\isacharprime}a\ {\isasymtimes}\ {\isacharprime}a{\isacharparenright}set{\isachardoublequote}\ \ \ {\isacharparenleft}{\isachardoublequote}{\isacharunderscore}{\isacharasterisk}{\isachardoublequote}\ {\isacharbrackleft}{\isadigit{1}}{\isadigit{0}}{\isadigit{0}}{\isadigit{0}}{\isacharbrackright}\ {\isadigit{9}}{\isadigit{9}}{\isadigit{9}}{\isacharparenright}\isanewline
10225 b9fd52525b69 * empty log message * nipkow parents: diff changeset	21	\isacommand{inductive}\ {\isachardoublequote}r{\isacharasterisk}{\isachardoublequote}\isanewline
b9fd52525b69 * empty log message * nipkow parents: diff changeset	22	\isakeyword{intros}\isanewline
10242 028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	23	rtc{\isacharunderscore}refl{\isacharbrackleft}iff{\isacharbrackright}{\isacharcolon}\ \ {\isachardoublequote}{\isacharparenleft}x{\isacharcomma}x{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}{\isachardoublequote}\isanewline
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	24	rtc{\isacharunderscore}step{\isacharcolon}\ \ \ \ \ \ \ {\isachardoublequote}{\isasymlbrakk}\ {\isacharparenleft}x{\isacharcomma}y{\isacharparenright}\ {\isasymin}\ r{\isacharsemicolon}\ {\isacharparenleft}y{\isacharcomma}z{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}\ {\isasymrbrakk}\ {\isasymLongrightarrow}\ {\isacharparenleft}x{\isacharcomma}z{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}{\isachardoublequote}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	25	\begin{isamarkuptext}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	26	\noindent
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	27	The function \isa{rtc} is annotated with concrete syntax: instead of
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	28	\isa{rtc\ r} we can read and write {term"r*"}. The actual definition
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	29	consists of two rules. Reflexivity is obvious and is immediately declared an
10243 f11d37d4472d * empty log message * nipkow parents: 10242 diff changeset	30	equivalence. Thus the automatic tools will apply it automatically. The second
f11d37d4472d * empty log message * nipkow parents: 10242 diff changeset	31	rule, \isa{rtc{\isacharunderscore}step}, says that we can always add one more \isa{r}-step to the left. Although we could make \isa{rtc{\isacharunderscore}step} an
10242 028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	32	introduction rule, this is dangerous: the recursion slows down and may
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	33	even kill the automatic tactics.
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	34
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	35	The above definition of the concept of reflexive transitive closure may
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	36	be sufficiently intuitive but it is certainly not the only possible one:
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	37	for a start, it does not even mention transitivity explicitly.
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	38	The rest of this section is devoted to proving that it is equivalent to
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	39	the ``standard'' definition. We start with a simple lemma:%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	40	\end{isamarkuptext}%
10225 b9fd52525b69 * empty log message * nipkow parents: diff changeset	41	\isacommand{lemma}\ {\isacharbrackleft}intro{\isacharbrackright}{\isacharcolon}\ {\isachardoublequote}{\isacharparenleft}x{\isacharcomma}y{\isacharparenright}\ {\isacharcolon}\ r\ {\isasymLongrightarrow}\ {\isacharparenleft}x{\isacharcomma}y{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}{\isachardoublequote}\isanewline
10242 028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	42	\isacommand{by}{\isacharparenleft}blast\ intro{\isacharcolon}\ rtc{\isacharunderscore}step{\isacharparenright}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	43	\begin{isamarkuptext}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	44	\noindent
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	45	Although the lemma itself is an unremarkable consequence of the basic rules,
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	46	it has the advantage that it can be declared an introduction rule without the
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	47	danger of killing the automatic tactics because \isa{r{\isacharasterisk}} occurs only in
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	48	the conclusion and not in the premise. Thus some proofs that would otherwise
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	49	need \isa{rtc{\isacharunderscore}step} can now be found automatically. The proof also
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	50	shows that \isa{blast} is quite able to handle \isa{rtc{\isacharunderscore}step}. But
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	51	some of the other automatic tactics are more sensitive, and even \isa{blast} can be lead astray in the presence of large numbers of rules.
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	52
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	53	Let us now turn to transitivity. It should be a consequence of the definition.%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	54	\end{isamarkuptext}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	55	\isacommand{lemma}\ rtc{\isacharunderscore}trans{\isacharcolon}\isanewline
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	56	\ \ {\isachardoublequote}{\isasymlbrakk}\ {\isacharparenleft}x{\isacharcomma}y{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}{\isacharsemicolon}\ {\isacharparenleft}y{\isacharcomma}z{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}\ {\isasymrbrakk}\ {\isasymLongrightarrow}\ {\isacharparenleft}x{\isacharcomma}z{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}{\isachardoublequote}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	57	\begin{isamarkuptxt}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	58	\noindent
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	59	The proof starts canonically by rule induction:%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	60	\end{isamarkuptxt}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	61	\isacommand{apply}{\isacharparenleft}erule\ rtc{\isachardot}induct{\isacharparenright}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	62	\begin{isamarkuptext}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	63	\noindent
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	64	However, even the resulting base case is a problem
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	65	\begin{isabelle}
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	66	\ {\isadigit{1}}{\isachardot}\ {\isasymAnd}x{\isachardot}\ {\isacharparenleft}y{\isacharcomma}\ z{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}\ {\isasymLongrightarrow}\ {\isacharparenleft}x{\isacharcomma}\ z{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	67	\end{isabelle}
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	68	and maybe not what you had expected. We have to abandon this proof attempt.
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	69	To understand what is going on,
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	70	let us look at the induction rule \isa{rtc{\isachardot}induct}:
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	71	\[ \frac{(x,y) \in r^* \qquad \bigwedge x.~P~x~x \quad \dots}{P~x~y} \]
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	72	When applying this rule, $x$ becomes \isa{x}, $y$ becomes
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	73	\isa{y} and $P~x~y$ becomes \isa{{\isacharparenleft}x{\isacharcomma}\ z{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}}, thus
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	74	yielding the above subgoal. So what went wrong?
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	75
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	76	When looking at the instantiation of $P~x~y$ we see
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	77	that $P$ does not depend on its second parameter at
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	78	all. The reason is that in our original goal, of the pair \isa{{\isacharparenleft}x{\isacharcomma}\ y{\isacharparenright}} only
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	79	\isa{x} appears also in the conclusion, but not \isa{y}. Thus our
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	80	induction statement is too weak. Fortunately, it can easily be strengthened:
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	81	transfer the additional premise \isa{{\isacharparenleft}y{\isacharcomma}\ z{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}} into the conclusion:%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	82	\end{isamarkuptext}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	83	\isacommand{lemma}\ rtc{\isacharunderscore}trans{\isacharbrackleft}rule{\isacharunderscore}format{\isacharbrackright}{\isacharcolon}\isanewline
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	84	\ \ {\isachardoublequote}{\isacharparenleft}x{\isacharcomma}y{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}\ {\isasymLongrightarrow}\ {\isacharparenleft}y{\isacharcomma}z{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}\ {\isasymlongrightarrow}\ {\isacharparenleft}x{\isacharcomma}z{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}{\isachardoublequote}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	85	\begin{isamarkuptxt}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	86	\noindent
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	87	This is not an obscure trick but a generally applicable heuristic:
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	88	\begin{quote}\em
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	89	Whe proving a statement by rule induction on $(x@1,\dots,x@n) \in R$,
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	90	pull all other premises containing any of the $x@i$ into the conclusion
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	91	using $\longrightarrow$.
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	92	\end{quote}
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	93	A similar heuristic for other kinds of inductions is formulated in
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	94	\S\ref{sec:ind-var-in-prems}. The \isa{rule{\isacharunderscore}format} directive turns
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	95	\isa{{\isasymlongrightarrow}} back into \isa{{\isasymLongrightarrow}}. Thus in the end we obtain the original
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	96	statement of our lemma.
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	97
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	98	Now induction produces two subgoals which are both proved automatically:
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	99	\begin{isabelle}
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	100	\ {\isadigit{1}}{\isachardot}\ {\isasymAnd}x{\isachardot}\ {\isacharparenleft}x{\isacharcomma}\ z{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}\ {\isasymlongrightarrow}\ {\isacharparenleft}x{\isacharcomma}\ z{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}\isanewline
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	101	\ {\isadigit{2}}{\isachardot}\ {\isasymAnd}x\ y\ za{\isachardot}\isanewline
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	102	\ \ \ \ \ \ \ {\isasymlbrakk}{\isacharparenleft}x{\isacharcomma}\ y{\isacharparenright}\ {\isasymin}\ r{\isacharsemicolon}\ {\isacharparenleft}y{\isacharcomma}\ za{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}{\isacharsemicolon}\ {\isacharparenleft}za{\isacharcomma}\ z{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}\ {\isasymlongrightarrow}\ {\isacharparenleft}y{\isacharcomma}\ z{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}{\isasymrbrakk}\isanewline
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	103	\ \ \ \ \ \ \ {\isasymLongrightarrow}\ {\isacharparenleft}za{\isacharcomma}\ z{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}\ {\isasymlongrightarrow}\ {\isacharparenleft}x{\isacharcomma}\ z{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	104	\end{isabelle}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	105	\end{isamarkuptxt}%
10237 875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	106	\isacommand{apply}{\isacharparenleft}erule\ rtc{\isachardot}induct{\isacharparenright}\isanewline
10225 b9fd52525b69 * empty log message * nipkow parents: diff changeset	107	\ \isacommand{apply}{\isacharparenleft}blast{\isacharparenright}\isanewline
10237 875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	108	\isacommand{apply}{\isacharparenleft}blast\ intro{\isacharcolon}\ rtc{\isacharunderscore}step{\isacharparenright}\isanewline
10242 028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	109	\isacommand{done}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	110	\begin{isamarkuptext}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	111	Let us now prove that \isa{r{\isacharasterisk}} is really the reflexive transitive closure
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	112	of \isa{r}, i.e.\ the least reflexive and transitive
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	113	relation containing \isa{r}. The latter is easily formalized%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	114	\end{isamarkuptext}%
10237 875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	115	\isacommand{consts}\ rtc{\isadigit{2}}\ {\isacharcolon}{\isacharcolon}\ {\isachardoublequote}{\isacharparenleft}{\isacharprime}a\ {\isasymtimes}\ {\isacharprime}a{\isacharparenright}set\ {\isasymRightarrow}\ {\isacharparenleft}{\isacharprime}a\ {\isasymtimes}\ {\isacharprime}a{\isacharparenright}set{\isachardoublequote}\isanewline
875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	116	\isacommand{inductive}\ {\isachardoublequote}rtc{\isadigit{2}}\ r{\isachardoublequote}\isanewline
10225 b9fd52525b69 * empty log message * nipkow parents: diff changeset	117	\isakeyword{intros}\isanewline
10237 875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	118	{\isachardoublequote}{\isacharparenleft}x{\isacharcomma}y{\isacharparenright}\ {\isasymin}\ r\ {\isasymLongrightarrow}\ {\isacharparenleft}x{\isacharcomma}y{\isacharparenright}\ {\isasymin}\ rtc{\isadigit{2}}\ r{\isachardoublequote}\isanewline
875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	119	{\isachardoublequote}{\isacharparenleft}x{\isacharcomma}x{\isacharparenright}\ {\isasymin}\ rtc{\isadigit{2}}\ r{\isachardoublequote}\isanewline
875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	120	{\isachardoublequote}{\isasymlbrakk}\ {\isacharparenleft}x{\isacharcomma}y{\isacharparenright}\ {\isasymin}\ rtc{\isadigit{2}}\ r{\isacharsemicolon}\ {\isacharparenleft}y{\isacharcomma}z{\isacharparenright}\ {\isasymin}\ rtc{\isadigit{2}}\ r\ {\isasymrbrakk}\ {\isasymLongrightarrow}\ {\isacharparenleft}x{\isacharcomma}z{\isacharparenright}\ {\isasymin}\ rtc{\isadigit{2}}\ r{\isachardoublequote}%
875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	121	\begin{isamarkuptext}%
10242 028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	122	\noindent
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	123	and the equivalence of the two definitions is easily shown by the obvious rule
10237 875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	124	inductions:%
875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	125	\end{isamarkuptext}%
875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	126	\isacommand{lemma}\ {\isachardoublequote}{\isacharparenleft}x{\isacharcomma}y{\isacharparenright}\ {\isasymin}\ rtc{\isadigit{2}}\ r\ {\isasymLongrightarrow}\ {\isacharparenleft}x{\isacharcomma}y{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}{\isachardoublequote}\isanewline
875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	127	\isacommand{apply}{\isacharparenleft}erule\ rtc{\isadigit{2}}{\isachardot}induct{\isacharparenright}\isanewline
875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	128	\ \ \isacommand{apply}{\isacharparenleft}blast{\isacharparenright}\isanewline
875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	129	\ \isacommand{apply}{\isacharparenleft}blast{\isacharparenright}\isanewline
875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	130	\isacommand{apply}{\isacharparenleft}blast\ intro{\isacharcolon}\ rtc{\isacharunderscore}trans{\isacharparenright}\isanewline
875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	131	\isacommand{done}\isanewline
10225 b9fd52525b69 * empty log message * nipkow parents: diff changeset	132	\isanewline
10237 875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	133	\isacommand{lemma}\ {\isachardoublequote}{\isacharparenleft}x{\isacharcomma}y{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}\ {\isasymLongrightarrow}\ {\isacharparenleft}x{\isacharcomma}y{\isacharparenright}\ {\isasymin}\ rtc{\isadigit{2}}\ r{\isachardoublequote}\isanewline
875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	134	\isacommand{apply}{\isacharparenleft}erule\ rtc{\isachardot}induct{\isacharparenright}\isanewline
875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	135	\ \isacommand{apply}{\isacharparenleft}blast\ intro{\isacharcolon}\ rtc{\isadigit{2}}{\isachardot}intros{\isacharparenright}\isanewline
875bf54b5d74 * empty log message * nipkow parents: 10225 diff changeset	136	\isacommand{apply}{\isacharparenleft}blast\ intro{\isacharcolon}\ rtc{\isadigit{2}}{\isachardot}intros{\isacharparenright}\isanewline
10242 028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	137	\isacommand{done}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	138	\begin{isamarkuptext}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	139	So why did we start with the first definition? Because it is simpler. It
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	140	contains only two rules, and the single step rule is simpler than
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	141	transitivity. As a consequence, \isa{rtc{\isachardot}induct} is simpler than
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	142	\isa{rtc{\isadigit{2}}{\isachardot}induct}. Since inductive proofs are hard enough, we should
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	143	certainly pick the simplest induction schema available for any concept.
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	144	Hence \isa{rtc} is the definition of choice.
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	145
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	146	\begin{exercise}
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	147	Show that the converse of \isa{rtc{\isacharunderscore}step} also holds:
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	148	\begin{isabelle}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	149	\ \ \ \ \ {\isasymlbrakk}{\isacharparenleft}x{\isacharcomma}\ y{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}{\isacharsemicolon}\ {\isacharparenleft}y{\isacharcomma}\ z{\isacharparenright}\ {\isasymin}\ r{\isasymrbrakk}\ {\isasymLongrightarrow}\ {\isacharparenleft}x{\isacharcomma}\ z{\isacharparenright}\ {\isasymin}\ r{\isacharasterisk}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	150	\end{isabelle}
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	151	\end{exercise}%
028f54cd2cc9 * empty log message * nipkow parents: 10237 diff changeset	152	\end{isamarkuptext}%
10225 b9fd52525b69 * empty log message * nipkow parents: diff changeset	153	\end{isabellebody}%
b9fd52525b69 * empty log message * nipkow parents: diff changeset	154	%%% Local Variables:
b9fd52525b69 * empty log message * nipkow parents: diff changeset	155	%%% mode: latex
b9fd52525b69 * empty log message * nipkow parents: diff changeset	156	%%% TeX-master: "root"
b9fd52525b69 * empty log message * nipkow parents: diff changeset	157	%%% End:

author	nipkow
	Wed, 18 Oct 2000 17:19:24 +0200
changeset 10243	f11d37d4472d
parent 10242	028f54cd2cc9
child 10363	6e8002c1790e
permissions	-rw-r--r--