isabelle: comparison src/HOL/Data_Structures/RBT

equal deleted inserted replaced

-:374caac3d624
+:3e11f35496b3
 fun invc :: "'a rbt \<Rightarrow> bool" where
 "invc Leaf = True" |
 "invc (Node l a c r) =
 (invc l \<and> invc r \<and> (c = Red \<longrightarrow> color l = Black \<and> color r = Black))"
-fun invc2 :: "'a rbt \<Rightarrow> bool" \<comment> \<open>Weaker version\<close> where
+text \<open>Weaker version:\<close>
-"invc2 Leaf = True" |
+abbreviation invc2 :: "'a rbt \<Rightarrow> bool" where
-"invc2 (Node l a c r) = (invc l \<and> invc r)"
+"invc2 t \<equiv> invc(paint Black t)"
 fun invh :: "'a rbt \<Rightarrow> bool" where
 "invh Leaf = True" |
 "invh (Node l x c r) = (invh l \<and> invh r \<and> bheight l = bheight r)"
 "rbt t = (invc t \<and> invh t \<and> color t = Black)"
 lemma color_paint_Black: "color (paint Black t) = Black"
 by (cases t) auto
-lemma paint_invc2: "invc2 t \<Longrightarrow> invc2 (paint c t)"
+lemma paint2: "paint c2 (paint c1 t) = paint c2 t"
-by (cases t) auto
-lemma invc_paint_Black: "invc2 t \<Longrightarrow> invc (paint Black t)"
 by (cases t) auto
 lemma invh_paint: "invh t \<Longrightarrow> invh (paint c t)"
 by (cases t) auto
 lemma invh_baliR:
 "\<lbrakk> invh l; invh r; bheight l = bheight r \<rbrakk> \<Longrightarrow> invh (baliR l a r)"
 by (induct l a r rule: baliR.induct) auto
+text \<open>All in one:\<close>
+lemma inv_baliR: "\<lbrakk> invh l; invh r; invc l; invc2 r; bheight l = bheight r \<rbrakk>
+\<Longrightarrow> invc (baliR l a r) \<and> invh (baliR l a r) \<and> bheight (baliR l a r) = Suc (bheight l)"
+by (induct l a r rule: baliR.induct) auto
+lemma inv_baliL: "\<lbrakk> invh l; invh r; invc2 l; invc r; bheight l = bheight r \<rbrakk>
+\<Longrightarrow> invc (baliL l a r) \<and> invh (baliL l a r) \<and> bheight (baliL l a r) = Suc (bheight l)"
+by (induct l a r rule: baliL.induct) auto
 subsubsection \<open>Insertion\<close>
-lemma invc_ins: assumes "invc t"
+lemma invc_ins: "invc t \<longrightarrow> invc2 (ins x t) \<and> (color t = Black \<longrightarrow> invc (ins x t))"
-shows "color t = Black \<Longrightarrow> invc (ins x t)" "invc2 (ins x t)"
-using assms
 by (induct x t rule: ins.induct) (auto simp: invc_baliL invc_baliR invc2I)
-lemma invh_ins: assumes "invh t"
+lemma invh_ins: "invh t \<Longrightarrow> invh (ins x t) \<and> bheight (ins x t) = bheight t"
-shows "invh (ins x t)" "bheight (ins x t) = bheight t"
-using assms
 by(induct x t rule: ins.induct)
 (auto simp: invh_baliL invh_baliR bheight_baliL bheight_baliR)
 theorem rbt_insert: "rbt t \<Longrightarrow> rbt (insert x t)"
-by (simp add: invc_ins(2) invh_ins(1) color_paint_Black invc_paint_Black invh_paint
+by (simp add: invc_ins invh_ins color_paint_Black invh_paint rbt_def insert_def)
-rbt_def insert_def)
+text \<open>All in one variant:\<close>
+lemma inv_ins: "\<lbrakk> invc t; invh t \<rbrakk> \<Longrightarrow>
+invc2 (ins x t) \<and> (color t = Black \<longrightarrow> invc (ins x t)) \<and>
+invh(ins x t) \<and> bheight (ins x t) = bheight t"
+by (induct x t rule: ins.induct) (auto simp: inv_baliL inv_baliR invc2I)
+theorem rbt_insert2: "rbt t \<Longrightarrow> rbt (insert x t)"
+by (simp add: inv_ins color_paint_Black invh_paint rbt_def insert_def)
 subsubsection \<open>Deletion\<close>
 lemma bheight_paint_Red:
 lemma invc_baldL: "\<lbrakk>invc2 l; invc r; color r = Black\<rbrakk> \<Longrightarrow> invc (baldL l a r)"
 by (induct l a r rule: baldL.induct) (simp_all add: invc_baliR)
 lemma invc2_baldL: "\<lbrakk> invc2 l; invc r \<rbrakk> \<Longrightarrow> invc2 (baldL l a r)"
-by (induct l a r rule: baldL.induct) (auto simp: invc_baliR paint_invc2 invc2I)
+by (induct l a r rule: baldL.induct) (auto simp: invc_baliR paint2 invc2I)
 lemma invh_baldR_invc:
 "\<lbrakk> invh l;  invh r;  bheight l = bheight r + 1;  invc l \<rbrakk>
 \<Longrightarrow> invh (baldR l a r) \<and> bheight (baldR l a r) = bheight l"
 by(induct l a r rule: baldR.induct)
 lemma invc_baldR: "\<lbrakk>invc l; invc2 r; color l = Black\<rbrakk> \<Longrightarrow> invc (baldR l a r)"
 by (induct l a r rule: baldR.induct) (simp_all add: invc_baliL)
 lemma invc2_baldR: "\<lbrakk> invc l; invc2 r \<rbrakk> \<Longrightarrow>invc2 (baldR l a r)"
-by (induct l a r rule: baldR.induct) (auto simp: invc_baliL paint_invc2 invc2I)
+by (induct l a r rule: baldR.induct) (auto simp: invc_baliL paint2 invc2I)
 lemma invh_combine:
 "\<lbrakk> invh l; invh r; bheight l = bheight r \<rbrakk>
 \<Longrightarrow> invh (combine l r) \<and> bheight (combine l r) = bheight l"
 by (induct l r rule: combine.induct)
 (auto simp: invh_baldL_Black split: tree.splits color.splits)
 lemma invc_combine:
-assumes "invc l" "invc r"
+"\<lbrakk> invc l; invc r \<rbrakk> \<Longrightarrow>
-shows "color l = Black \<Longrightarrow> color r = Black \<Longrightarrow> invc (combine l r)"
+(color l = Black \<and> color r = Black \<longrightarrow> invc (combine l r)) \<and> invc2 (combine l r)"
-"invc2 (combine l r)"
-using assms
 by (induct l r rule: combine.induct)
 (auto simp: invc_baldL invc2I split: tree.splits color.splits)
 lemma neq_LeafD: "t \<noteq> Leaf \<Longrightarrow> \<exists>c l x r. t = Node c l x r"
 by(cases t) auto
 (auto simp: invh_baldR_invc invc_baldR invc2_baldR dest: neq_LeafD)
 qed
 qed auto
 theorem rbt_delete: "rbt t \<Longrightarrow> rbt (delete x t)"
-by (metis delete_def rbt_def color_paint_Black del_invc_invh invc_paint_Black invc2I invh_paint)
+by (metis delete_def rbt_def color_paint_Black del_invc_invh invc2I invh_paint)
 text \<open>Overall correctness:\<close>
 interpretation S: Set_by_Ordered
 where empty = empty and isin = isin and insert = insert and delete = delete

changeset 70708	3e11f35496b3
parent 70571	e72daea2aab6
child 70755	3fb16bed5d6c