isabelle: src/HOL/Bali/AxExample.thy@0eff7d113549 (annotated)

12857 a4386cc9b1c3 tuned header; wenzelm parents: 12854 diff changeset	1	(* Title: HOL/Bali/AxExample.thy
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	2	Author: David von Oheimb
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	3	*)
12925 99131847fb93 Added check for field/method access to operational semantics and proved the acesses valid. schirmer parents: 12859 diff changeset	4
62042 6c6ccf573479 isabelle update_cartouches -c -t; wenzelm parents: 60754 diff changeset	5	subsection \<open>Example of a proof based on the Bali axiomatic semantics\<close>
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	6
33965 f57c11db4ad4 Inl and Inr now with authentic syntax haftmann parents: 29258 diff changeset	7	theory AxExample
f57c11db4ad4 Inl and Inr now with authentic syntax haftmann parents: 29258 diff changeset	8	imports AxSem Example
f57c11db4ad4 Inl and Inr now with authentic syntax haftmann parents: 29258 diff changeset	9	begin
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	10
37956 ee939247b2fb modernized/unified some specifications; wenzelm parents: 37138 diff changeset	11	definition
ee939247b2fb modernized/unified some specifications; wenzelm parents: 37138 diff changeset	12	arr_inv :: "st \<Rightarrow> bool" where
ee939247b2fb modernized/unified some specifications; wenzelm parents: 37138 diff changeset	13	"arr_inv = (\<lambda>s. \<exists>obj a T el. globs s (Stat Base) = Some obj \<and>
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	14	values obj (Inl (arr, Base)) = Some (Addr a) \<and>
37956 ee939247b2fb modernized/unified some specifications; wenzelm parents: 37138 diff changeset	15	heap s a = Some \<lparr>tag=Arr T 2,values=el\<rparr>)"
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	16
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	17	lemma arr_inv_new_obj:
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	18	"\<And>a. \<lbrakk>arr_inv s; new_Addr (heap s)=Some a\<rbrakk> \<Longrightarrow> arr_inv (gupd(Inl a\<mapsto>x) s)"
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	19	apply (unfold arr_inv_def)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	20	apply (force dest!: new_AddrD2)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	21	done
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	22
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	23	lemma arr_inv_set_locals [simp]: "arr_inv (set_locals l s) = arr_inv s"
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	24	apply (unfold arr_inv_def)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	25	apply (simp (no_asm))
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	26	done
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	27
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	28	lemma arr_inv_gupd_Stat [simp]:
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	29	"Base \<noteq> C \<Longrightarrow> arr_inv (gupd(Stat C\<mapsto>obj) s) = arr_inv s"
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	30	apply (unfold arr_inv_def)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	31	apply (simp (no_asm_simp))
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	32	done
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	33
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	34	lemma ax_inv_lupd [simp]: "arr_inv (lupd(x\<mapsto>y) s) = arr_inv s"
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	35	apply (unfold arr_inv_def)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	36	apply (simp (no_asm))
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	37	done
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	38
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	39
62390 842917225d56 more canonical names nipkow parents: 62042 diff changeset	40	declare if_split_asm [split del]
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	41	declare lvar_def [simp]
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	42
62042 6c6ccf573479 isabelle update_cartouches -c -t; wenzelm parents: 60754 diff changeset	43	ML \<open>
55143 04448228381d explicit eigen-context for attributes "where", "of", and corresponding read_instantiate, instantiate_tac; wenzelm parents: 51717 diff changeset	44	fun inst1_tac ctxt s t xs st =
67405 e9ab4ad7bd15 uniform use of Standard ML op-infix -- eliminated warnings; wenzelm parents: 67399 diff changeset	45	(case AList.lookup (op =) (rev (Term.add_var_names (Thm.prop_of st) [])) s of
59761 558acf0426f1 tuned signature; wenzelm parents: 59755 diff changeset	46	SOME i => PRIMITIVE (Rule_Insts.read_instantiate ctxt [(((s, i), Position.none), t)] xs) st
55151 f331472f1027 tuned signature; wenzelm parents: 55143 diff changeset	47	\| NONE => Seq.empty);
20195 ae79b9ad7224 tuned ML code; wenzelm parents: 17374 diff changeset	48
59498 50b60f501b05 proper context for resolve_tac, eresolve_tac, dresolve_tac, forward_tac etc.; wenzelm parents: 58887 diff changeset	49	fun ax_tac ctxt =
60754 02924903a6fd prefer tactics with explicit context; wenzelm parents: 59807 diff changeset	50	REPEAT o resolve_tac ctxt [allI] THEN'
59762 df377a6fdd90 tuned; wenzelm parents: 59761 diff changeset	51	resolve_tac ctxt
df377a6fdd90 tuned; wenzelm parents: 59761 diff changeset	52	@{thms ax_Skip ax_StatRef ax_MethdN ax_Alloc ax_Alloc_Arr ax_SXAlloc_Normal ax_derivs.intros(8-)};
62042 6c6ccf573479 isabelle update_cartouches -c -t; wenzelm parents: 60754 diff changeset	53	\<close>
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	54
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	55
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	56	theorem ax_test: "tprg,({}::'a triple set)\<turnstile>
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	57	{Normal (\<lambda>Y s Z::'a. heap_free four s \<and> \<not>initd Base s \<and> \<not> initd Ext s)}
13688 a0b16d42d489 "Definite Assignment Analysis" included, with proof of correctness. Large adjustments of type safety proof and soundness proof of the axiomatic semantics were necessary. Completeness proof of the loop rule of the axiomatic semantic was altered. So the additional polymorphic variants of some rules could be removed. schirmer parents: 12925 diff changeset	58	.test [Class Base].
a0b16d42d489 "Definite Assignment Analysis" included, with proof of correctness. Large adjustments of type safety proof and soundness proof of the axiomatic semantics were necessary. Completeness proof of the loop rule of the axiomatic semantic was altered. So the additional polymorphic variants of some rules could be removed. schirmer parents: 12925 diff changeset	59	{\<lambda>Y s Z. abrupt s = Some (Xcpt (Std IndOutBound))}"
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	60	apply (unfold test_def arr_viewed_from_def)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	61	apply (tactic "ax_tac \<^context> 1" (;;))
13688 a0b16d42d489 "Definite Assignment Analysis" included, with proof of correctness. Large adjustments of type safety proof and soundness proof of the axiomatic semantics were necessary. Completeness proof of the loop rule of the axiomatic semantic was altered. So the additional polymorphic variants of some rules could be removed. schirmer parents: 12925 diff changeset	62	defer (* We begin with the last assertion, to synthesise the intermediate
a0b16d42d489 "Definite Assignment Analysis" included, with proof of correctness. Large adjustments of type safety proof and soundness proof of the axiomatic semantics were necessary. Completeness proof of the loop rule of the axiomatic semantic was altered. So the additional polymorphic variants of some rules could be removed. schirmer parents: 12925 diff changeset	63	assertions, like in the fashion of the weakest
a0b16d42d489 "Definite Assignment Analysis" included, with proof of correctness. Large adjustments of type safety proof and soundness proof of the axiomatic semantics were necessary. Completeness proof of the loop rule of the axiomatic semantic was altered. So the additional polymorphic variants of some rules could be removed. schirmer parents: 12925 diff changeset	64	precondition. *)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	65	apply (tactic "ax_tac \<^context> 1" (* Try *))
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	66	defer
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	67	apply (tactic \<open>inst1_tac \<^context> "Q"
62042 6c6ccf573479 isabelle update_cartouches -c -t; wenzelm parents: 60754 diff changeset	68	"\<lambda>Y s Z. arr_inv (snd s) \<and> tprg,s\<turnstile>catch SXcpt NullPointer" []\<close>)
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	69	prefer 2
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	70	apply simp
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	71	apply (rule_tac P' = "Normal (\<lambda>Y s Z. arr_inv (snd s))" in conseq1)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	72	prefer 2
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	73	apply clarsimp
59807 22bc39064290 prefer local fixes; wenzelm parents: 59762 diff changeset	74	apply (rule_tac Q' = "(\<lambda>Y s Z. Q Y s Z)\<leftarrow>=False\<down>=\<diamondsuit>" and Q = Q for Q in conseq2)
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	75	prefer 2
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	76	apply simp
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	77	apply (tactic "ax_tac \<^context> 1" (* While *))
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	78	prefer 2
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	79	apply (rule ax_impossible [THEN conseq1], clarsimp)
59807 22bc39064290 prefer local fixes; wenzelm parents: 59762 diff changeset	80	apply (rule_tac P' = "Normal P" and P = P for P in conseq1)
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	81	prefer 2
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	82	apply clarsimp
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	83	apply (tactic "ax_tac \<^context> 1")
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	84	apply (tactic "ax_tac \<^context> 1" (* AVar *))
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	85	prefer 2
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	86	apply (rule ax_subst_Val_allI)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	87	apply (tactic \<open>inst1_tac \<^context> "P'" "\<lambda>a. Normal (PP a\<leftarrow>x)" ["PP", "x"]\<close>)
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	88	apply (simp del: avar_def2 peek_and_def2)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	89	apply (tactic "ax_tac \<^context> 1")
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	90	apply (tactic "ax_tac \<^context> 1")
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	91	(* just for clarification: *)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	92	apply (rule_tac Q' = "Normal (\<lambda>Var:(v, f) u ua. fst (snd (avar tprg (Intg 2) v u)) = Some (Xcpt (Std IndOutBound)))" in conseq2)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	93	prefer 2
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	94	apply (clarsimp simp add: split_beta)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	95	apply (tactic "ax_tac \<^context> 1" (* FVar *))
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	96	apply (tactic "ax_tac \<^context> 2" (* StatRef *))
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	97	apply (rule ax_derivs.Done [THEN conseq1])
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	98	apply (clarsimp simp add: arr_inv_def inited_def in_bounds_def)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	99	defer
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	100	apply (rule ax_SXAlloc_catch_SXcpt)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	101	apply (rule_tac Q' = "(\<lambda>Y (x, s) Z. x = Some (Xcpt (Std NullPointer)) \<and> arr_inv s) \<and>. heap_free two" in conseq2)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	102	prefer 2
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	103	apply (simp add: arr_inv_new_obj)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	104	apply (tactic "ax_tac \<^context> 1")
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	105	apply (rule_tac C = "Ext" in ax_Call_known_DynT)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	106	apply (unfold DynT_prop_def)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	107	apply (simp (no_asm))
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	108	apply (intro strip)
59807 22bc39064290 prefer local fixes; wenzelm parents: 59762 diff changeset	109	apply (rule_tac P' = "Normal P" and P = P for P in conseq1)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	110	apply (tactic "ax_tac \<^context> 1" (* Methd *))
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	111	apply (rule ax_thin [OF _ empty_subsetI])
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	112	apply (simp (no_asm) add: body_def2)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	113	apply (tactic "ax_tac \<^context> 1" (* Body *))
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	114	(* apply (rule_tac [2] ax_derivs.Abrupt) *)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	115	defer
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	116	apply (simp (no_asm))
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	117	apply (tactic "ax_tac \<^context> 1") (* Comp *)
13688 a0b16d42d489 "Definite Assignment Analysis" included, with proof of correctness. Large adjustments of type safety proof and soundness proof of the axiomatic semantics were necessary. Completeness proof of the loop rule of the axiomatic semantic was altered. So the additional polymorphic variants of some rules could be removed. schirmer parents: 12925 diff changeset	118	(* The first statement in the composition
a0b16d42d489 "Definite Assignment Analysis" included, with proof of correctness. Large adjustments of type safety proof and soundness proof of the axiomatic semantics were necessary. Completeness proof of the loop rule of the axiomatic semantic was altered. So the additional polymorphic variants of some rules could be removed. schirmer parents: 12925 diff changeset	119	((Ext)z).vee = 1; Return Null
a0b16d42d489 "Definite Assignment Analysis" included, with proof of correctness. Large adjustments of type safety proof and soundness proof of the axiomatic semantics were necessary. Completeness proof of the loop rule of the axiomatic semantic was altered. So the additional polymorphic variants of some rules could be removed. schirmer parents: 12925 diff changeset	120	will throw an exception (since z is null). So we can handle
a0b16d42d489 "Definite Assignment Analysis" included, with proof of correctness. Large adjustments of type safety proof and soundness proof of the axiomatic semantics were necessary. Completeness proof of the loop rule of the axiomatic semantic was altered. So the additional polymorphic variants of some rules could be removed. schirmer parents: 12925 diff changeset	121	Return Null with the Abrupt rule *)
a0b16d42d489 "Definite Assignment Analysis" included, with proof of correctness. Large adjustments of type safety proof and soundness proof of the axiomatic semantics were necessary. Completeness proof of the loop rule of the axiomatic semantic was altered. So the additional polymorphic variants of some rules could be removed. schirmer parents: 12925 diff changeset	122	apply (rule_tac [2] ax_derivs.Abrupt)
a0b16d42d489 "Definite Assignment Analysis" included, with proof of correctness. Large adjustments of type safety proof and soundness proof of the axiomatic semantics were necessary. Completeness proof of the loop rule of the axiomatic semantic was altered. So the additional polymorphic variants of some rules could be removed. schirmer parents: 12925 diff changeset	123
a0b16d42d489 "Definite Assignment Analysis" included, with proof of correctness. Large adjustments of type safety proof and soundness proof of the axiomatic semantics were necessary. Completeness proof of the loop rule of the axiomatic semantic was altered. So the additional polymorphic variants of some rules could be removed. schirmer parents: 12925 diff changeset	124	apply (rule ax_derivs.Expr) (* Expr *)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	125	apply (tactic "ax_tac \<^context> 1") (* Ass *)
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	126	prefer 2
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	127	apply (rule ax_subst_Var_allI)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	128	apply (tactic \<open>inst1_tac \<^context> "P'" "\<lambda>a vs l vf. PP a vs l vf\<leftarrow>x \<and>. p" ["PP", "x", "p"]\<close>)
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	129	apply (rule allI)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	130	apply (tactic \<open>simp_tac (\<^context> delloop "split_all_tac" delsimps [@{thm peek_and_def2}, @{thm heap_def2}, @{thm subst_res_def2}, @{thm normal_def2}]) 1\<close>)
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	131	apply (rule ax_derivs.Abrupt)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	132	apply (simp (no_asm))
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	133	apply (tactic "ax_tac \<^context> 1" (* FVar *))
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	134	apply (tactic "ax_tac \<^context> 2", tactic "ax_tac \<^context> 2", tactic "ax_tac \<^context> 2")
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	135	apply (tactic "ax_tac \<^context> 1")
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	136	apply (tactic \<open>inst1_tac \<^context> "R" "\<lambda>a'. Normal ((\<lambda>Vals:vs (x, s) Z. arr_inv s \<and> inited Ext (globs s) \<and> a' \<noteq> Null \<and> vs = [Null]) \<and>. heap_free two)" []\<close>)
44890 22f665a2e91c new fastforce replacing fastsimp - less confusing name nipkow parents: 37956 diff changeset	137	apply fastforce
13688 a0b16d42d489 "Definite Assignment Analysis" included, with proof of correctness. Large adjustments of type safety proof and soundness proof of the axiomatic semantics were necessary. Completeness proof of the loop rule of the axiomatic semantic was altered. So the additional polymorphic variants of some rules could be removed. schirmer parents: 12925 diff changeset	138	prefer 4
a0b16d42d489 "Definite Assignment Analysis" included, with proof of correctness. Large adjustments of type safety proof and soundness proof of the axiomatic semantics were necessary. Completeness proof of the loop rule of the axiomatic semantic was altered. So the additional polymorphic variants of some rules could be removed. schirmer parents: 12925 diff changeset	139	apply (rule ax_derivs.Done [THEN conseq1],force)
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	140	apply (rule ax_subst_Val_allI)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	141	apply (tactic \<open>inst1_tac \<^context> "P'" "\<lambda>a. Normal (PP a\<leftarrow>x)" ["PP", "x"]\<close>)
26810 255a347eae43 Locally deleted some definitions that were applied too eagerly because berghofe parents: 26342 diff changeset	142	apply (simp (no_asm) del: peek_and_def2 heap_free_def2 normal_def2 o_apply)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	143	apply (tactic "ax_tac \<^context> 1")
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	144	prefer 2
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	145	apply (rule ax_subst_Val_allI)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	146	apply (tactic \<open>inst1_tac \<^context> "P'" "\<lambda>aa v. Normal (QQ aa v\<leftarrow>y)" ["QQ", "y"]\<close>)
26810 255a347eae43 Locally deleted some definitions that were applied too eagerly because berghofe parents: 26342 diff changeset	147	apply (simp del: peek_and_def2 heap_free_def2 normal_def2)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	148	apply (tactic "ax_tac \<^context> 1")
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	149	apply (tactic "ax_tac \<^context> 1")
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	150	apply (tactic "ax_tac \<^context> 1")
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	151	apply (tactic "ax_tac \<^context> 1")
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	152	(* end method call *)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	153	apply (simp (no_asm))
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	154	(* just for clarification: *)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	155	apply (rule_tac Q' = "Normal ((\<lambda>Y (x, s) Z. arr_inv s \<and> (\<exists>a. the (locals s (VName e)) = Addr a \<and> obj_class (the (globs s (Inl a))) = Ext \<and>
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	156	invocation_declclass tprg IntVir s (the (locals s (VName e))) (ClassT Base)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	157	\<lparr>name = foo, parTs = [Class Base]\<rparr> = Ext)) \<and>. initd Ext \<and>. heap_free two)"
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	158	in conseq2)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	159	prefer 2
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	160	apply clarsimp
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	161	apply (tactic "ax_tac \<^context> 1")
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	162	apply (tactic "ax_tac \<^context> 1")
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	163	defer
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	164	apply (rule ax_subst_Var_allI)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	165	apply (tactic \<open>inst1_tac \<^context> "P'" "\<lambda>vf. Normal (PP vf \<and>. p)" ["PP", "p"]\<close>)
26810 255a347eae43 Locally deleted some definitions that were applied too eagerly because berghofe parents: 26342 diff changeset	166	apply (simp (no_asm) del: split_paired_All peek_and_def2 initd_def2 heap_free_def2 normal_def2)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	167	apply (tactic "ax_tac \<^context> 1" (* NewC *))
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	168	apply (tactic "ax_tac \<^context> 1" (* ax_Alloc *))
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	169	(* just for clarification: *)
35067 af4c18c30593 modernized syntax translations, using mostly abbreviation/notation; wenzelm parents: 33965 diff changeset	170	apply (rule_tac Q' = "Normal ((\<lambda>Y s Z. arr_inv (store s) \<and> vf=lvar (VName e) (store s)) \<and>. heap_free three \<and>. initd Ext)" in conseq2)
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	171	prefer 2
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	172	apply (simp add: invocation_declclass_def dynmethd_def)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	173	apply (unfold dynlookup_def)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	174	apply (simp add: dynmethd_Ext_foo)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	175	apply (force elim!: arr_inv_new_obj atleast_free_SucD atleast_free_weaken)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	176	(* begin init *)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	177	apply (rule ax_InitS)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	178	apply force
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	179	apply (simp (no_asm))
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	180	apply (tactic \<open>simp_tac (\<^context> delloop "split_all_tac") 1\<close>)
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	181	apply (rule ax_Init_Skip_lemma)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	182	apply (tactic \<open>simp_tac (\<^context> delloop "split_all_tac") 1\<close>)
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	183	apply (rule ax_InitS [THEN conseq1] (* init Base *))
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	184	apply force
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	185	apply (simp (no_asm))
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	186	apply (unfold arr_viewed_from_def)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	187	apply (rule allI)
59807 22bc39064290 prefer local fixes; wenzelm parents: 59762 diff changeset	188	apply (rule_tac P' = "Normal P" and P = P for P in conseq1)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	189	apply (tactic \<open>simp_tac (\<^context> delloop "split_all_tac") 1\<close>)
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	190	apply (tactic "ax_tac \<^context> 1")
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	191	apply (tactic "ax_tac \<^context> 1")
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	192	apply (rule_tac [2] ax_subst_Var_allI)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	193	apply (tactic \<open>inst1_tac \<^context> "P'" "\<lambda>vf l vfa. Normal (P vf l vfa)" ["P"]\<close>)
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	194	apply (tactic \<open>simp_tac (\<^context> delloop "split_all_tac" delsimps [@{thm split_paired_All}, @{thm peek_and_def2}, @{thm heap_free_def2}, @{thm initd_def2}, @{thm normal_def2}, @{thm supd_lupd}]) 2\<close>)
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	195	apply (tactic "ax_tac \<^context> 2" (* NewA *))
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	196	apply (tactic "ax_tac \<^context> 3" (* ax_Alloc_Arr *))
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	197	apply (tactic "ax_tac \<^context> 3")
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	198	apply (tactic \<open>inst1_tac \<^context> "P" "\<lambda>vf l vfa. Normal (P vf l vfa\<leftarrow>\<diamondsuit>)" ["P"]\<close>)
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	199	apply (tactic \<open>simp_tac (\<^context> delloop "split_all_tac") 2\<close>)
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	200	apply (tactic "ax_tac \<^context> 2")
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	201	apply (tactic "ax_tac \<^context> 1" (* FVar *))
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	202	apply (tactic "ax_tac \<^context> 2" (* StatRef *))
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	203	apply (rule ax_derivs.Done [THEN conseq1])
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	204	apply (tactic \<open>inst1_tac \<^context> "Q" "\<lambda>vf. Normal ((\<lambda>Y s Z. vf=lvar (VName e) (snd s)) \<and>. heap_free four \<and>. initd Base \<and>. initd Ext)" []\<close>)
62390 842917225d56 more canonical names nipkow parents: 62042 diff changeset	205	apply (clarsimp split del: if_split)
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	206	apply (frule atleast_free_weaken [THEN atleast_free_weaken])
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	207	apply (drule initedD)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	208	apply (clarsimp elim!: atleast_free_SucD simp add: arr_inv_def)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	209	apply force
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	210	apply (tactic \<open>simp_tac (\<^context> delloop "split_all_tac") 1\<close>)
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	211	apply (rule ax_triv_Init_Object [THEN peek_and_forget2, THEN conseq1])
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	212	apply (rule wf_tprg)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	213	apply clarsimp
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	214	apply (tactic \<open>inst1_tac \<^context> "P" "\<lambda>vf. Normal ((\<lambda>Y s Z. vf = lvar (VName e) (snd s)) \<and>. heap_free four \<and>. initd Ext)" []\<close>)
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	215	apply clarsimp
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	216	apply (tactic \<open>inst1_tac \<^context> "PP" "\<lambda>vf. Normal ((\<lambda>Y s Z. vf = lvar (VName e) (snd s)) \<and>. heap_free four \<and>. Not \<circ> initd Base)" []\<close>)
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	217	apply clarsimp
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	218	(* end init *)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	219	apply (rule conseq1)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	220	apply (tactic "ax_tac \<^context> 1")
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	221	apply clarsimp
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	222	done
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	223
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	224	(*
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	225	while (true) {
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	226	if (i) {throw xcpt;}
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	227	else i=j
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	228	}
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	229	*)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	230	lemma Loop_Xcpt_benchmark:
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	231	"Q = (\<lambda>Y (x,s) Z. x \<noteq> None \<longrightarrow> the_Bool (the (locals s i))) \<Longrightarrow>
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	232	G,({}::'a triple set)\<turnstile>{Normal (\<lambda>Y s Z::'a. True)}
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	233	.lab1\<bullet> While(Lit (Bool True)) (If(Acc (LVar i)) (Throw (Acc (LVar xcpt))) Else
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	234	(Expr (Ass (LVar i) (Acc (LVar j))))). {Q}"
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	235	apply (rule_tac P' = "Q" and Q' = "Q\<leftarrow>=False\<down>=\<diamondsuit>" in conseq12)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	236	apply safe
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	237	apply (tactic "ax_tac \<^context> 1" (* Loop *))
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	238	apply (rule ax_Normal_cases)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	239	prefer 2
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	240	apply (rule ax_derivs.Abrupt [THEN conseq1], clarsimp simp add: Let_def)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	241	apply (rule conseq1)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	242	apply (tactic "ax_tac \<^context> 1")
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	243	apply clarsimp
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	244	prefer 2
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	245	apply clarsimp
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	246	apply (tactic "ax_tac \<^context> 1" (* If *))
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	247	apply (tactic
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	248	\<open>inst1_tac \<^context> "P'" "Normal (\<lambda>s.. (\<lambda>Y s Z. True)\<down>=Val (the (locals s i)))" []\<close>)
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	249	apply (tactic "ax_tac \<^context> 1")
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	250	apply (rule conseq1)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	251	apply (tactic "ax_tac \<^context> 1")
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	252	apply clarsimp
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	253	apply (rule allI)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	254	apply (rule ax_escape)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	255	apply auto
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	256	apply (rule conseq1)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	257	apply (tactic "ax_tac \<^context> 1" (* Throw *))
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	258	apply (tactic "ax_tac \<^context> 1")
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	259	apply (tactic "ax_tac \<^context> 1")
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	260	apply clarsimp
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	261	apply (rule_tac Q' = "Normal (\<lambda>Y s Z. True)" in conseq2)
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	262	prefer 2
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	263	apply clarsimp
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	264	apply (rule conseq1)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	265	apply (tactic "ax_tac \<^context> 1")
ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	266	apply (tactic "ax_tac \<^context> 1")
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	267	prefer 2
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	268	apply (rule ax_subst_Var_allI)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	269	apply (tactic \<open>inst1_tac \<^context> "P'" "\<lambda>b Y ba Z vf. \<lambda>Y (x,s) Z. x=None \<and> snd vf = snd (lvar i s)" []\<close>)
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	270	apply (rule allI)
59807 22bc39064290 prefer local fixes; wenzelm parents: 59762 diff changeset	271	apply (rule_tac P' = "Normal P" and P = P for P in conseq1)
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	272	prefer 2
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	273	apply clarsimp
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	274	apply (tactic "ax_tac \<^context> 1")
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	275	apply (rule conseq1)
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	276	apply (tactic "ax_tac \<^context> 1")
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	277	apply clarsimp
69597 ff784d5a5bfb isabelle update -u control_cartouches; wenzelm parents: 67405 diff changeset	278	apply (tactic "ax_tac \<^context> 1")
12854 00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	279	apply clarsimp
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	280	done
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	281
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	282	end
00d4a435777f Isabelle/Bali sources; schirmer parents: diff changeset	283

author	wenzelm
	Tue, 23 Apr 2024 15:57:03 +0200
changeset 80145	0eff7d113549
parent 69597	ff784d5a5bfb
permissions	-rw-r--r--