|
9422
|
1 |
(* Title: HOL/Lfp.ML
|
|
923
|
2 |
ID: $Id$
|
|
1465
|
3 |
Author: Lawrence C Paulson, Cambridge University Computer Laboratory
|
|
923
|
4 |
Copyright 1992 University of Cambridge
|
|
|
5 |
|
|
9422
|
6 |
The Knaster-Tarski Theorem.
|
|
923
|
7 |
*)
|
|
|
8 |
|
|
|
9 |
(*** Proof of Knaster-Tarski Theorem ***)
|
|
|
10 |
|
|
14169
|
11 |
val lfp_def = thm "lfp_def";
|
|
|
12 |
|
|
923
|
13 |
(* lfp(f) is the greatest lower bound of {u. f(u) <= u} *)
|
|
|
14 |
|
|
5316
|
15 |
Goalw [lfp_def] "f(A) <= A ==> lfp(f) <= A";
|
|
923
|
16 |
by (rtac (CollectI RS Inter_lower) 1);
|
|
5316
|
17 |
by (assume_tac 1);
|
|
923
|
18 |
qed "lfp_lowerbound";
|
|
|
19 |
|
|
5316
|
20 |
val prems = Goalw [lfp_def]
|
|
923
|
21 |
"[| !!u. f(u) <= u ==> A<=u |] ==> A <= lfp(f)";
|
|
|
22 |
by (REPEAT (ares_tac ([Inter_greatest]@prems) 1));
|
|
|
23 |
by (etac CollectD 1);
|
|
|
24 |
qed "lfp_greatest";
|
|
|
25 |
|
|
5316
|
26 |
Goal "mono(f) ==> f(lfp(f)) <= lfp(f)";
|
|
923
|
27 |
by (EVERY1 [rtac lfp_greatest, rtac subset_trans,
|
|
5316
|
28 |
etac monoD, rtac lfp_lowerbound, atac, atac]);
|
|
923
|
29 |
qed "lfp_lemma2";
|
|
|
30 |
|
|
5316
|
31 |
Goal "mono(f) ==> lfp(f) <= f(lfp(f))";
|
|
|
32 |
by (EVERY1 [rtac lfp_lowerbound, rtac monoD, assume_tac,
|
|
|
33 |
etac lfp_lemma2]);
|
|
923
|
34 |
qed "lfp_lemma3";
|
|
|
35 |
|
|
5316
|
36 |
Goal "mono(f) ==> lfp(f) = f(lfp(f))";
|
|
|
37 |
by (REPEAT (ares_tac [equalityI,lfp_lemma2,lfp_lemma3] 1));
|
|
10186
|
38 |
qed "lfp_unfold";
|
|
923
|
39 |
|
|
|
40 |
(*** General induction rule for least fixed points ***)
|
|
|
41 |
|
|
5316
|
42 |
val [lfp,mono,indhyp] = Goal
|
|
1465
|
43 |
"[| a: lfp(f); mono(f); \
|
|
3842
|
44 |
\ !!x. [| x: f(lfp(f) Int {x. P(x)}) |] ==> P(x) \
|
|
923
|
45 |
\ |] ==> P(a)";
|
|
|
46 |
by (res_inst_tac [("a","a")] (Int_lower2 RS subsetD RS CollectD) 1);
|
|
|
47 |
by (rtac (lfp RSN (2, lfp_lowerbound RS subsetD)) 1);
|
|
|
48 |
by (EVERY1 [rtac Int_greatest, rtac subset_trans,
|
|
1465
|
49 |
rtac (Int_lower1 RS (mono RS monoD)),
|
|
|
50 |
rtac (mono RS lfp_lemma2),
|
|
|
51 |
rtac (CollectI RS subsetI), rtac indhyp, atac]);
|
|
10202
|
52 |
qed "lfp_induct";
|
|
923
|
53 |
|
|
10202
|
54 |
bind_thm ("lfp_induct2",
|
|
|
55 |
split_rule (read_instantiate [("a","(a,b)")] lfp_induct));
|
|
1114
|
56 |
|
|
1125
|
57 |
|
|
10202
|
58 |
(** Definition forms of lfp_unfold and lfp_induct, to control unfolding **)
|
|
923
|
59 |
|
|
10067
|
60 |
Goal "[| h==lfp(f); mono(f) |] ==> h = f(h)";
|
|
10186
|
61 |
by (auto_tac (claset() addSIs [lfp_unfold], simpset()));
|
|
|
62 |
qed "def_lfp_unfold";
|
|
923
|
63 |
|
|
5316
|
64 |
val rew::prems = Goal
|
|
1465
|
65 |
"[| A == lfp(f); mono(f); a:A; \
|
|
3842
|
66 |
\ !!x. [| x: f(A Int {x. P(x)}) |] ==> P(x) \
|
|
923
|
67 |
\ |] ==> P(a)";
|
|
10202
|
68 |
by (EVERY1 [rtac lfp_induct, (*backtracking to force correct induction*)
|
|
1465
|
69 |
REPEAT1 o (ares_tac (map (rewrite_rule [rew]) prems))]);
|
|
10202
|
70 |
qed "def_lfp_induct";
|
|
923
|
71 |
|
|
|
72 |
(*Monotonicity of lfp!*)
|
|
5316
|
73 |
val [prem] = Goal "[| !!Z. f(Z)<=g(Z) |] ==> lfp(f) <= lfp(g)";
|
|
1465
|
74 |
by (rtac (lfp_lowerbound RS lfp_greatest) 1);
|
|
|
75 |
by (etac (prem RS subset_trans) 1);
|
|
923
|
76 |
qed "lfp_mono";
|