10762
|
1 |
%
|
|
2 |
\begin{isabellebody}%
|
|
3 |
\def\isabellecontext{Mutual}%
|
17056
|
4 |
%
|
|
5 |
\isadelimtheory
|
|
6 |
%
|
|
7 |
\endisadelimtheory
|
|
8 |
%
|
|
9 |
\isatagtheory
|
|
10 |
%
|
|
11 |
\endisatagtheory
|
|
12 |
{\isafoldtheory}%
|
|
13 |
%
|
|
14 |
\isadelimtheory
|
|
15 |
%
|
|
16 |
\endisadelimtheory
|
10762
|
17 |
%
|
10878
|
18 |
\isamarkupsubsection{Mutually Inductive Definitions%
|
10762
|
19 |
}
|
11866
|
20 |
\isamarkuptrue%
|
10762
|
21 |
%
|
|
22 |
\begin{isamarkuptext}%
|
|
23 |
Just as there are datatypes defined by mutual recursion, there are sets defined
|
10790
|
24 |
by mutual induction. As a trivial example we consider the even and odd
|
|
25 |
natural numbers:%
|
10762
|
26 |
\end{isamarkuptext}%
|
17175
|
27 |
\isamarkuptrue%
|
40406
|
28 |
\isacommand{inductive{\isaliteral{5F}{\isacharunderscore}}set}\isamarkupfalse%
|
10762
|
29 |
\isanewline
|
40406
|
30 |
\ \ Even\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}nat\ set{\isaliteral{22}{\isachardoublequoteclose}}\ \isakeyword{and}\isanewline
|
|
31 |
\ \ Odd\ \ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}nat\ set{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
|
23733
|
32 |
\isakeyword{where}\isanewline
|
40406
|
33 |
\ \ zero{\isaliteral{3A}{\isacharcolon}}\ \ {\isaliteral{22}{\isachardoublequoteopen}}{\isadigit{0}}\ {\isaliteral{5C3C696E3E}{\isasymin}}\ Even{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
|
|
34 |
{\isaliteral{7C}{\isacharbar}}\ EvenI{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}n\ {\isaliteral{5C3C696E3E}{\isasymin}}\ Odd\ {\isaliteral{5C3C4C6F6E6772696768746172726F773E}{\isasymLongrightarrow}}\ Suc\ n\ {\isaliteral{5C3C696E3E}{\isasymin}}\ Even{\isaliteral{22}{\isachardoublequoteclose}}\isanewline
|
|
35 |
{\isaliteral{7C}{\isacharbar}}\ OddI{\isaliteral{3A}{\isacharcolon}}\ \ {\isaliteral{22}{\isachardoublequoteopen}}n\ {\isaliteral{5C3C696E3E}{\isasymin}}\ Even\ {\isaliteral{5C3C4C6F6E6772696768746172726F773E}{\isasymLongrightarrow}}\ Suc\ n\ {\isaliteral{5C3C696E3E}{\isasymin}}\ Odd{\isaliteral{22}{\isachardoublequoteclose}}%
|
10762
|
36 |
\begin{isamarkuptext}%
|
|
37 |
\noindent
|
10790
|
38 |
The mutually inductive definition of multiple sets is no different from
|
|
39 |
that of a single set, except for induction: just as for mutually recursive
|
|
40 |
datatypes, induction needs to involve all the simultaneously defined sets. In
|
40406
|
41 |
the above case, the induction rule is called \isa{Even{\isaliteral{5F}{\isacharunderscore}}Odd{\isaliteral{2E}{\isachardot}}induct}
|
10790
|
42 |
(simply concatenate the names of the sets involved) and has the conclusion
|
10762
|
43 |
\begin{isabelle}%
|
40406
|
44 |
\ \ \ \ \ {\isaliteral{28}{\isacharparenleft}}{\isaliteral{3F}{\isacharquery}}x\ {\isaliteral{5C3C696E3E}{\isasymin}}\ Even\ {\isaliteral{5C3C6C6F6E6772696768746172726F773E}{\isasymlongrightarrow}}\ {\isaliteral{3F}{\isacharquery}}P\ {\isaliteral{3F}{\isacharquery}}x{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{5C3C616E643E}{\isasymand}}\ {\isaliteral{28}{\isacharparenleft}}{\isaliteral{3F}{\isacharquery}}y\ {\isaliteral{5C3C696E3E}{\isasymin}}\ Odd\ {\isaliteral{5C3C6C6F6E6772696768746172726F773E}{\isasymlongrightarrow}}\ {\isaliteral{3F}{\isacharquery}}Q\ {\isaliteral{3F}{\isacharquery}}y{\isaliteral{29}{\isacharparenright}}%
|
10762
|
45 |
\end{isabelle}
|
|
46 |
|
11494
|
47 |
If we want to prove that all even numbers are divisible by two, we have to
|
10790
|
48 |
generalize the statement as follows:%
|
10762
|
49 |
\end{isamarkuptext}%
|
17175
|
50 |
\isamarkuptrue%
|
|
51 |
\isacommand{lemma}\isamarkupfalse%
|
40406
|
52 |
\ {\isaliteral{22}{\isachardoublequoteopen}}{\isaliteral{28}{\isacharparenleft}}m\ {\isaliteral{5C3C696E3E}{\isasymin}}\ Even\ {\isaliteral{5C3C6C6F6E6772696768746172726F773E}{\isasymlongrightarrow}}\ {\isadigit{2}}\ dvd\ m{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{5C3C616E643E}{\isasymand}}\ {\isaliteral{28}{\isacharparenleft}}n\ {\isaliteral{5C3C696E3E}{\isasymin}}\ Odd\ {\isaliteral{5C3C6C6F6E6772696768746172726F773E}{\isasymlongrightarrow}}\ {\isadigit{2}}\ dvd\ {\isaliteral{28}{\isacharparenleft}}Suc\ n{\isaliteral{29}{\isacharparenright}}{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}%
|
17056
|
53 |
\isadelimproof
|
|
54 |
%
|
|
55 |
\endisadelimproof
|
|
56 |
%
|
|
57 |
\isatagproof
|
16069
|
58 |
%
|
|
59 |
\begin{isamarkuptxt}%
|
|
60 |
\noindent
|
|
61 |
The proof is by rule induction. Because of the form of the induction theorem,
|
|
62 |
it is applied by \isa{rule} rather than \isa{erule} as for ordinary
|
|
63 |
inductive definitions:%
|
|
64 |
\end{isamarkuptxt}%
|
17175
|
65 |
\isamarkuptrue%
|
|
66 |
\isacommand{apply}\isamarkupfalse%
|
40406
|
67 |
{\isaliteral{28}{\isacharparenleft}}rule\ Even{\isaliteral{5F}{\isacharunderscore}}Odd{\isaliteral{2E}{\isachardot}}induct{\isaliteral{29}{\isacharparenright}}%
|
16069
|
68 |
\begin{isamarkuptxt}%
|
|
69 |
\begin{isabelle}%
|
40406
|
70 |
\ {\isadigit{1}}{\isaliteral{2E}{\isachardot}}\ {\isadigit{2}}\ dvd\ {\isadigit{0}}\isanewline
|
|
71 |
\ {\isadigit{2}}{\isaliteral{2E}{\isachardot}}\ {\isaliteral{5C3C416E643E}{\isasymAnd}}n{\isaliteral{2E}{\isachardot}}\ {\isaliteral{5C3C6C6272616B6B3E}{\isasymlbrakk}}n\ {\isaliteral{5C3C696E3E}{\isasymin}}\ Odd{\isaliteral{3B}{\isacharsemicolon}}\ {\isadigit{2}}\ dvd\ Suc\ n{\isaliteral{5C3C726272616B6B3E}{\isasymrbrakk}}\ {\isaliteral{5C3C4C6F6E6772696768746172726F773E}{\isasymLongrightarrow}}\ {\isadigit{2}}\ dvd\ Suc\ n\isanewline
|
|
72 |
\ {\isadigit{3}}{\isaliteral{2E}{\isachardot}}\ {\isaliteral{5C3C416E643E}{\isasymAnd}}n{\isaliteral{2E}{\isachardot}}\ {\isaliteral{5C3C6C6272616B6B3E}{\isasymlbrakk}}n\ {\isaliteral{5C3C696E3E}{\isasymin}}\ Even{\isaliteral{3B}{\isacharsemicolon}}\ {\isadigit{2}}\ dvd\ n{\isaliteral{5C3C726272616B6B3E}{\isasymrbrakk}}\ {\isaliteral{5C3C4C6F6E6772696768746172726F773E}{\isasymLongrightarrow}}\ {\isadigit{2}}\ dvd\ Suc\ {\isaliteral{28}{\isacharparenleft}}Suc\ n{\isaliteral{29}{\isacharparenright}}%
|
16069
|
73 |
\end{isabelle}
|
|
74 |
The first two subgoals are proved by simplification and the final one can be
|
|
75 |
proved in the same manner as in \S\ref{sec:rule-induction}
|
|
76 |
where the same subgoal was encountered before.
|
|
77 |
We do not show the proof script.%
|
|
78 |
\end{isamarkuptxt}%
|
17175
|
79 |
\isamarkuptrue%
|
17056
|
80 |
%
|
|
81 |
\endisatagproof
|
|
82 |
{\isafoldproof}%
|
|
83 |
%
|
|
84 |
\isadelimproof
|
|
85 |
%
|
|
86 |
\endisadelimproof
|
|
87 |
%
|
25330
|
88 |
\isamarkupsubsection{Inductively Defined Predicates\label{sec:ind-predicates}%
|
|
89 |
}
|
|
90 |
\isamarkuptrue%
|
|
91 |
%
|
|
92 |
\begin{isamarkuptext}%
|
|
93 |
\index{inductive predicates|(}
|
|
94 |
Instead of a set of even numbers one can also define a predicate on \isa{nat}:%
|
|
95 |
\end{isamarkuptext}%
|
|
96 |
\isamarkuptrue%
|
|
97 |
\isacommand{inductive}\isamarkupfalse%
|
40406
|
98 |
\ evn\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}nat\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ bool{\isaliteral{22}{\isachardoublequoteclose}}\ \isakeyword{where}\isanewline
|
|
99 |
zero{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}evn\ {\isadigit{0}}{\isaliteral{22}{\isachardoublequoteclose}}\ {\isaliteral{7C}{\isacharbar}}\isanewline
|
|
100 |
step{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{22}{\isachardoublequoteopen}}evn\ n\ {\isaliteral{5C3C4C6F6E6772696768746172726F773E}{\isasymLongrightarrow}}\ evn{\isaliteral{28}{\isacharparenleft}}Suc{\isaliteral{28}{\isacharparenleft}}Suc\ n{\isaliteral{29}{\isacharparenright}}{\isaliteral{29}{\isacharparenright}}{\isaliteral{22}{\isachardoublequoteclose}}%
|
25330
|
101 |
\begin{isamarkuptext}%
|
|
102 |
\noindent Everything works as before, except that
|
|
103 |
you write \commdx{inductive} instead of \isacommand{inductive\_set} and
|
40406
|
104 |
\isa{evn\ n} instead of \isa{n\ {\isaliteral{5C3C696E3E}{\isasymin}}\ even}.
|
35103
|
105 |
When defining an n-ary relation as a predicate, it is recommended to curry
|
40406
|
106 |
the predicate: its type should be \mbox{\isa{{\isaliteral{5C3C7461753E}{\isasymtau}}\isaliteral{5C3C5E697375623E}{}\isactrlisub {\isadigit{1}}\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ {\isaliteral{5C3C646F74733E}{\isasymdots}}\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ {\isaliteral{5C3C7461753E}{\isasymtau}}\isaliteral{5C3C5E697375623E}{}\isactrlisub n\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ bool}}
|
35103
|
107 |
rather than
|
40406
|
108 |
\isa{{\isaliteral{5C3C7461753E}{\isasymtau}}\isaliteral{5C3C5E697375623E}{}\isactrlisub {\isadigit{1}}\ {\isaliteral{5C3C74696D65733E}{\isasymtimes}}\ {\isaliteral{5C3C646F74733E}{\isasymdots}}\ {\isaliteral{5C3C74696D65733E}{\isasymtimes}}\ {\isaliteral{5C3C7461753E}{\isasymtau}}\isaliteral{5C3C5E697375623E}{}\isactrlisub n\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ bool}. The curried version facilitates inductions.
|
25330
|
109 |
|
40406
|
110 |
When should you choose sets and when predicates? If you intend to combine your notion with set theoretic notation, define it as an inductive set. If not, define it as an inductive predicate, thus avoiding the \isa{{\isaliteral{5C3C696E3E}{\isasymin}}} notation. But note that predicates of more than one argument cannot be combined with the usual set theoretic operators: \isa{P\ {\isaliteral{5C3C756E696F6E3E}{\isasymunion}}\ Q} is not well-typed if \isa{P{\isaliteral{2C}{\isacharcomma}}\ Q\ {\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}\ {\isaliteral{5C3C7461753E}{\isasymtau}}\isaliteral{5C3C5E697375623E}{}\isactrlisub {\isadigit{1}}\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ {\isaliteral{5C3C7461753E}{\isasymtau}}\isaliteral{5C3C5E697375623E}{}\isactrlisub {\isadigit{2}}\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ bool}, you have to write \isa{{\isaliteral{5C3C6C616D6264613E}{\isasymlambda}}x\ y{\isaliteral{2E}{\isachardot}}\ P\ x\ y\ {\isaliteral{5C3C616E643E}{\isasymand}}\ Q\ x\ y} instead.
|
25330
|
111 |
\index{inductive predicates|)}%
|
|
112 |
\end{isamarkuptext}%
|
|
113 |
\isamarkuptrue%
|
|
114 |
%
|
17056
|
115 |
\isadelimtheory
|
|
116 |
%
|
|
117 |
\endisadelimtheory
|
|
118 |
%
|
|
119 |
\isatagtheory
|
|
120 |
%
|
|
121 |
\endisatagtheory
|
|
122 |
{\isafoldtheory}%
|
|
123 |
%
|
|
124 |
\isadelimtheory
|
|
125 |
%
|
|
126 |
\endisadelimtheory
|
10762
|
127 |
\end{isabellebody}%
|
|
128 |
%%% Local Variables:
|
|
129 |
%%% mode: latex
|
|
130 |
%%% TeX-master: "root"
|
|
131 |
%%% End:
|