isabelle: comparison src/HOL/Bali/WellForm.thy

equal deleted inserted replaced

-:23a8c5ac35f8
+:69916a850301
 \end{itemize}
 *}
 constdefs
 wf_mhead :: "prog \<Rightarrow> pname \<Rightarrow> sig \<Rightarrow> mhead \<Rightarrow> bool"
 "wf_mhead G P \<equiv> \<lambda> sig mh. length (parTs sig) = length (pars mh) \<and>
-			    \<spacespace> ( \<forall>T\<in>set (parTs sig). is_acc_type G P T) \<and>
+\<spacespace> ( \<forall>T\<in>set (parTs sig). is_acc_type G P T) \<and>
 is_acc_type G P (resTy mh) \<and>
-			    \<spacespace> distinct (pars mh)"
+\<spacespace> distinct (pars mh)"
 text {*
 A method declaration is wellformed if:
 \begin{itemize}
 EName e
 \<Rightarrow> (case e of
 VNam v
 \<Rightarrow>(table_of (lcls (mbody m))((pars m)[\<mapsto>](parTs sig))) v
 | Res \<Rightarrow> Some (resTy m))
-	  | This \<Rightarrow> if is_static m then None else Some (Class C))"
+| This \<Rightarrow> if is_static m then None else Some (Class C))"
 constdefs parameters :: "methd \<Rightarrow> lname set"
 "parameters m \<equiv>  set (map (EName \<circ> VNam) (pars m))
 \<union> (if (static m) then {} else {This})"
 constdefs
 wf_mdecl :: "prog \<Rightarrow> qtname \<Rightarrow> mdecl \<Rightarrow> bool"
 "wf_mdecl G C \<equiv>
 \<lambda>(sig,m).
-	  wf_mhead G (pid C) sig (mhead m) \<and>
+wf_mhead G (pid C) sig (mhead m) \<and>
 unique (lcls (mbody m)) \<and>
 (\<forall>(vn,T)\<in>set (lcls (mbody m)). is_acc_type G (pid C) T) \<and>
-	  (\<forall>pn\<in>set (pars m). table_of (lcls (mbody m)) pn = None) \<and>
+(\<forall>pn\<in>set (pars m). table_of (lcls (mbody m)) pn = None) \<and>
 jumpNestingOkS {Ret} (stmt (mbody m)) \<and>
 is_class G C \<and>
 \<lparr>prg=G,cls=C,lcl=callee_lcl C sig m\<rparr>\<turnstile>(stmt (mbody m))\<Colon>\<surd> \<and>
 (\<exists> A. \<lparr>prg=G,cls=C,lcl=callee_lcl C sig m\<rparr>
 \<turnstile> parameters m \<guillemotright>\<langle>stmt (mbody m)\<rangle>\<guillemotright> A
 constdefs
 wf_idecl :: "prog  \<Rightarrow> idecl \<Rightarrow> bool"
 "wf_idecl G \<equiv>
 \<lambda>(I,i).
 ws_idecl G I (isuperIfs i) \<and>
-	\<not>is_class G I \<and>
+\<not>is_class G I \<and>
-	(\<forall>(sig,mh)\<in>set (imethods i). wf_mhead G (pid I) sig mh \<and>
+(\<forall>(sig,mh)\<in>set (imethods i). wf_mhead G (pid I) sig mh \<and>
 \<not>is_static mh \<and>
 accmodi mh = Public) \<and>
-	unique (imethods i) \<and>
+unique (imethods i) \<and>
 (\<forall> J\<in>set (isuperIfs i). is_acc_iface G (pid I) J) \<and>
 (table_of (imethods i)
 hiding (methd G Object)
 under  (\<lambda> new old. accmodi old \<noteq> Private)
 entails (\<lambda>new old. G\<turnstile>resTy new\<preceq>resTy old \<and>
 is_static new = is_static old)) \<and>
 (Option.set \<circ> table_of (imethods i)
 hidings Un_tables((\<lambda>J.(imethds G J))`set (isuperIfs i))
-	       entails (\<lambda>new old. G\<turnstile>resTy new\<preceq>resTy old))"
+entails (\<lambda>new old. G\<turnstile>resTy new\<preceq>resTy old))"
 lemma wf_idecl_mhead: "\<lbrakk>wf_idecl G (I,i); (sig,mh)\<in>set (imethods i)\<rbrakk> \<Longrightarrow>
 wf_mhead G (pid I) sig mh \<and> \<not>is_static mh \<and> accmodi mh = Public"
 apply (unfold wf_idecl_def)
 apply auto
 "wf_cdecl G \<equiv>
 \<lambda>(C,c).
 \<not>is_iface G C \<and>
 (\<forall>I\<in>set (superIfs c). is_acc_iface G (pid C) I \<and>
 (\<forall>s. \<forall> im \<in> imethds G I s.
-	    (\<exists> cm \<in> methd  G C s: G\<turnstile>resTy cm\<preceq>resTy im \<and>
+(\<exists> cm \<in> methd  G C s: G\<turnstile>resTy cm\<preceq>resTy im \<and>
-	                             \<not> is_static cm \<and>
+\<not> is_static cm \<and>
 accmodi im \<le> accmodi cm))) \<and>
 (\<forall>f\<in>set (cfields c). wf_fdecl G (pid C) f) \<and> unique (cfields c) \<and>
 (\<forall>m\<in>set (methods c). wf_mdecl G C m) \<and> unique (methods c) \<and>
 jumpNestingOkS {} (init c) \<and>
 (\<exists> A. \<lparr>prg=G,cls=C,lcl=empty\<rparr>\<turnstile> {} \<guillemotright>\<langle>init c\<rangle>\<guillemotright> A) \<and>
 (table_of (map (\<lambda> (s,m). (s,C,m)) (methods c))
 entails (\<lambda> new. \<forall> old sig.
 (G,sig\<turnstile>new overrides\<^sub>S old
 \<longrightarrow> (G\<turnstile>resTy new\<preceq>resTy old \<and>
 accmodi old \<le> accmodi new \<and>
-	                     \<not>is_static old)) \<and>
+\<not>is_static old)) \<and>
 (G,sig\<turnstile>new hides old
 \<longrightarrow> (accmodi old \<le> accmodi new \<and>
-	                      is_static old))))
+is_static old))))
 ))"
 (*
 constdefs
 wf_cdecl :: "prog \<Rightarrow> cdecl \<Rightarrow> bool"
 "wf_cdecl G \<equiv>
 \<lambda>(C,c).
 \<not>is_iface G C \<and>
 (\<forall>I\<in>set (superIfs c). is_acc_iface G (pid C) I \<and>
 (\<forall>s. \<forall> im \<in> imethds G I s.
-	    (\<exists> cm \<in> methd  G C s: G\<turnstile>resTy (mthd cm)\<preceq>resTy (mthd im) \<and>
+(\<exists> cm \<in> methd  G C s: G\<turnstile>resTy (mthd cm)\<preceq>resTy (mthd im) \<and>
-	                             \<not> is_static cm \<and>
+\<not> is_static cm \<and>
 accmodi im \<le> accmodi cm))) \<and>
 (\<forall>f\<in>set (cfields c). wf_fdecl G (pid C) f) \<and> unique (cfields c) \<and>
 (\<forall>m\<in>set (methods c). wf_mdecl G C m) \<and> unique (methods c) \<and>
 \<lparr>prg=G,cls=C,lcl=empty\<rparr>\<turnstile>(init c)\<Colon>\<surd> \<and> ws_cdecl G C (super c) \<and>
 (C \<noteq> Object \<longrightarrow>
 hiding methd G (super c)
 under (\<lambda> new old. G\<turnstile>new overrides old)
 entails (\<lambda> new old.
 (G\<turnstile>resTy (mthd new)\<preceq>resTy (mthd old) \<and>
 accmodi old \<le> accmodi new \<and>
-	                   \<not> is_static old)))  \<and>
+\<not> is_static old)))  \<and>
 (table_of (map (\<lambda> (s,m). (s,C,m)) (methods c))
 hiding methd G (super c)
 under (\<lambda> new old. G\<turnstile>new hides old)
 entails (\<lambda> new old. is_static old \<and>
 accmodi old \<le> accmodi new))  \<and>
 lemma wf_cdeclE [consumes 1]:
 "\<lbrakk>wf_cdecl G (C,c);
 \<lbrakk>\<not>is_iface G C;
 (\<forall>I\<in>set (superIfs c). is_acc_iface G (pid C) I \<and>
 (\<forall>s. \<forall> im \<in> imethds G I s.
-	    (\<exists> cm \<in> methd  G C s: G\<turnstile>resTy cm\<preceq>resTy im \<and>
+(\<exists> cm \<in> methd  G C s: G\<turnstile>resTy cm\<preceq>resTy im \<and>
-	                             \<not> is_static cm \<and>
+\<not> is_static cm \<and>
 accmodi im \<le> accmodi cm)));
 \<forall>f\<in>set (cfields c). wf_fdecl G (pid C) f; unique (cfields c);
 \<forall>m\<in>set (methods c). wf_mdecl G C m; unique (methods c);
 jumpNestingOkS {} (init c);
 \<exists> A. \<lparr>prg=G,cls=C,lcl=empty\<rparr>\<turnstile> {} \<guillemotright>\<langle>init c\<rangle>\<guillemotright> A;
 (table_of (map (\<lambda> (s,m). (s,C,m)) (methods c))
 entails (\<lambda> new. \<forall> old sig.
 (G,sig\<turnstile>new overrides\<^sub>S old
 \<longrightarrow> (G\<turnstile>resTy new\<preceq>resTy old \<and>
 accmodi old \<le> accmodi new \<and>
-	                     \<not>is_static old)) \<and>
+\<not>is_static old)) \<and>
 (G,sig\<turnstile>new hides old
 \<longrightarrow> (accmodi old \<le> accmodi new \<and>
-	                      is_static old))))
+is_static old))))
 ))\<rbrakk> \<Longrightarrow> P
 \<rbrakk> \<Longrightarrow> P"
 by (unfold wf_cdecl_def) simp
 lemma wf_cdecl_unique:
 \end{itemize}
 *}
 constdefs
 wf_prog  :: "prog \<Rightarrow> bool"
 "wf_prog G \<equiv> let is = ifaces G; cs = classes G in
-	         ObjectC \<in> set cs \<and>
+ObjectC \<in> set cs \<and>
 (\<forall> m\<in>set Object_mdecls. accmodi m \<noteq> Package) \<and>
 (\<forall>xn. SXcptC xn \<in> set cs) \<and>
-		(\<forall>i\<in>set is. wf_idecl G i) \<and> unique is \<and>
+(\<forall>i\<in>set is. wf_idecl G i) \<and> unique is \<and>
-		(\<forall>c\<in>set cs. wf_cdecl G c) \<and> unique cs"
+(\<forall>c\<in>set cs. wf_cdecl G c) \<and> unique cs"
 lemma wf_prog_idecl: "\<lbrakk>iface G I = Some i; wf_prog G\<rbrakk> \<Longrightarrow> wf_idecl G (I,i)"
 apply (unfold wf_prog_def Let_def)
 apply simp
 apply (fast dest: map_of_SomeD)
 apply (unfold wf_prog_def Let_def SXcptC_def)
 apply (fast dest!: map_of_SomeI)
 done
 lemma wf_ObjectC [simp]:
-	"wf_cdecl G ObjectC = (\<not>is_iface G Object \<and> Ball (set Object_mdecls)
+"wf_cdecl G ObjectC = (\<not>is_iface G Object \<and> Ball (set Object_mdecls)
 (wf_mdecl G Object) \<and> unique Object_mdecls)"
 apply (unfold wf_cdecl_def ws_cdecl_def ObjectC_def)
 apply (auto intro: da.Skip)
 done
 show "\<not>is_static im \<and> accmodi im = Public"
 proof -
 let ?inherited = "Un_tables (imethds G ` set (isuperIfs i))"
 let ?new = "(Option.set \<circ> table_of (map (\<lambda>(s, mh). (s, I, mh)) (imethods i)))"
 from if_I wf im have imethds:"im \<in> (?inherited \<oplus>\<oplus> ?new) sig"
-	by (simp add: imethds_rec)
+by (simp add: imethds_rec)
 from wf if_I have
-	wf_supI: "\<forall> J. J \<in> set (isuperIfs i) \<longrightarrow> (\<exists> j. iface G J = Some j)"
+wf_supI: "\<forall> J. J \<in> set (isuperIfs i) \<longrightarrow> (\<exists> j. iface G J = Some j)"
-	by (blast dest: wf_prog_idecl wf_idecl_supD is_acc_ifaceD)
+by (blast dest: wf_prog_idecl wf_idecl_supD is_acc_ifaceD)
 from wf if_I have
-	"\<forall> im \<in> set (imethods i). \<not> is_static im \<and> accmodi im = Public"
+"\<forall> im \<in> set (imethods i). \<not> is_static im \<and> accmodi im = Public"
-	by (auto dest!: wf_prog_idecl wf_idecl_mhead)
+by (auto dest!: wf_prog_idecl wf_idecl_mhead)
 then have new_ok: "\<forall> im. table_of (imethods i) sig = Some im
 \<longrightarrow>  \<not> is_static im \<and> accmodi im = Public"
-	by (auto dest!: table_of_Some_in_set)
+by (auto dest!: table_of_Some_in_set)
 show ?thesis
-	proof (cases "?new sig = {}")
+proof (cases "?new sig = {}")
-	  case True
+case True
-	  from True wf wf_supI if_I imethds hyp
+from True wf wf_supI if_I imethds hyp
-	  show ?thesis by (auto simp del:  split_paired_All)
+show ?thesis by (auto simp del:  split_paired_All)
-	next
+next
-	  case False
+case False
-	  from False wf wf_supI if_I imethds new_ok hyp
+from False wf wf_supI if_I imethds new_ok hyp
-	  show ?thesis by (auto dest: wf_idecl_hidings hidings_entailsD)
+show ?thesis by (auto dest: wf_idecl_hidings hidings_entailsD)
-	qed
+qed
 qed
 qed
 with asm show ?thesis by (auto simp del: split_paired_All)
 qed
 by (auto dest: wf_prog_stat_overridesD)
 have not_private_new: "accmodi new \<noteq> Private"
 proof -
 from stat_override
 have "accmodi old \<noteq> Private"
-	by (rule no_Private_stat_override)
+by (rule no_Private_stat_override)
 moreover
 from stat_override wf
 have "accmodi old \<le> accmodi new"
-	by (auto dest: wf_prog_stat_overridesD)
+by (auto dest: wf_prog_stat_overridesD)
 ultimately
 show ?thesis
-	by (auto dest: acc_modi_bottom)
+by (auto dest: acc_modi_bottom)
 qed
 with Direct resTy_widen not_static_old
 show "?Overrides new old"
 by (auto intro: overridesR.Direct stat_override_declclasses_relation)
 next
 from member_super
 have old_declared: "G\<turnstile>Method old declared_in (declclass old)"
 by (cases old) (auto dest: member_of_declC)
 have "?P C old"
 proof (cases "G\<turnstile>mid (msig old) undeclared_in C")
-	case True
+case True
-	with inheritable super accessible_super member_super
+with inheritable super accessible_super member_super
-	have "G\<turnstile>Method old member_of C"
+have "G\<turnstile>Method old member_of C"
-	  by (cases old) (auto intro: members.Inherited)
+by (cases old) (auto intro: members.Inherited)
-	then show ?thesis
+then show ?thesis
-	  by auto
+by auto
 next
-	case False
+case False
-	then obtain new_member where
+then obtain new_member where
-	     "G\<turnstile>new_member declared_in C" and
+"G\<turnstile>new_member declared_in C" and
 "mid (msig old) = memberid new_member"
 by (auto dest: not_undeclared_declared)
-	then obtain new where
+then obtain new where
-	          new: "G\<turnstile>Method new declared_in C" and
+new: "G\<turnstile>Method new declared_in C" and
 eq_sig: "msig old = msig new" and
-	    declC_new: "declclass new = C"
+declC_new: "declclass new = C"
-	  by (cases new_member) auto
+by (cases new_member) auto
-	then have member_new: "G\<turnstile>Method new member_of C"
+then have member_new: "G\<turnstile>Method new member_of C"
-	  by (cases new) (auto intro: members.Immediate)
+by (cases new) (auto intro: members.Immediate)
-	from declC_new super member_super
+from declC_new super member_super
-	have subcls_new_old: "G\<turnstile>declclass new \<prec>\<^sub>C declclass old"
+have subcls_new_old: "G\<turnstile>declclass new \<prec>\<^sub>C declclass old"
-	  by (auto dest!: member_of_subclseq_declC
+by (auto dest!: member_of_subclseq_declC
-	            dest: r_into_trancl intro: trancl_rtrancl_trancl)
+dest: r_into_trancl intro: trancl_rtrancl_trancl)
-	show ?thesis
+show ?thesis
-	proof (cases "is_static new")
+proof (cases "is_static new")
-	  case False
+case False
-	  with eq_sig declC_new new old_declared inheritable
+with eq_sig declC_new new old_declared inheritable
-	       super member_super subcls_new_old
+super member_super subcls_new_old
-	  have "G\<turnstile>new overrides\<^sub>S old"
+have "G\<turnstile>new overrides\<^sub>S old"
-	    by (auto intro!: stat_overridesR.Direct)
+by (auto intro!: stat_overridesR.Direct)
-	  with member_new show ?thesis
+with member_new show ?thesis
-	    by blast
+by blast
-	next
+next
-	  case True
+case True
-	  with eq_sig declC_new subcls_new_old new old_declared inheritable
+with eq_sig declC_new subcls_new_old new old_declared inheritable
-	  have "G\<turnstile>new hides old"
+have "G\<turnstile>new hides old"
-	    by (auto intro: hidesI)
+by (auto intro: hidesI)
-	  with wf
+with wf
-	  have "is_static old"
+have "is_static old"
-	    by (blast dest: wf_prog_hidesD)
+by (blast dest: wf_prog_hidesD)
-	  with instance_method
+with instance_method
-	  show ?thesis
+show ?thesis
-	    by (contradiction)
+by (contradiction)
-	qed
+qed
 qed
 } note hyp_member_super = this
 from subclsC cls_C
 have "G\<turnstile>(super c)\<preceq>\<^sub>C declclass old"
 by (rule subcls_superD)
 proof (cases rule: subclseq_cases)
 case Eq
 assume "super c = declclass old"
 with old_declared
 have "G\<turnstile>Method old member_of (super c)"
-	by (cases old) (auto intro: members.Immediate)
+by (cases old) (auto intro: members.Immediate)
 with inheritable instance_method
 show ?thesis
-	by (blast dest: hyp_member_super)
+by (blast dest: hyp_member_super)
 next
 case Subcls
 assume "G\<turnstile>super c\<prec>\<^sub>C declclass old"
 moreover
 from inheritable accmodi_old
 have "G \<turnstile>Method old inheritable_in pid (super c)"
-	by (cases "accmodi old") (auto simp add: inheritable_in_def)
+by (cases "accmodi old") (auto simp add: inheritable_in_def)
 ultimately
 have "?P (super c) old"
-	by (blast dest: hyp)
+by (blast dest: hyp)
 then show ?thesis
 proof
-	assume "G \<turnstile>Method old member_of super c"
+assume "G \<turnstile>Method old member_of super c"
-	with inheritable instance_method
+with inheritable instance_method
-	show ?thesis
+show ?thesis
-	  by (blast dest: hyp_member_super)
+by (blast dest: hyp_member_super)
 next
-	assume "\<exists>new. G \<turnstile> new overrides\<^sub>S old \<and> G \<turnstile>Method new member_of super c"
+assume "\<exists>new. G \<turnstile> new overrides\<^sub>S old \<and> G \<turnstile>Method new member_of super c"
-	then obtain super_new where
+then obtain super_new where
-	  super_new_override:  "G \<turnstile> super_new overrides\<^sub>S old" and
+super_new_override:  "G \<turnstile> super_new overrides\<^sub>S old" and
 super_new_member:  "G \<turnstile>Method super_new member_of super c"
-	  by blast
+by blast
-	from super_new_override wf
+from super_new_override wf
-	have "accmodi old \<le> accmodi super_new"
+have "accmodi old \<le> accmodi super_new"
-	  by (auto dest: wf_prog_stat_overridesD)
+by (auto dest: wf_prog_stat_overridesD)
-	with inheritable accmodi_old
+with inheritable accmodi_old
-	have "G \<turnstile>Method super_new inheritable_in pid C"
+have "G \<turnstile>Method super_new inheritable_in pid C"
-	  by (auto simp add: inheritable_in_def
+by (auto simp add: inheritable_in_def
-	              split: acc_modi.splits
+split: acc_modi.splits
 dest: acc_modi_le_Dests)
-	moreover
+moreover
-	from super_new_override
+from super_new_override
-	have "\<not> is_static super_new"
+have "\<not> is_static super_new"
-	  by (auto dest: stat_overrides_commonD)
+by (auto dest: stat_overrides_commonD)
-	moreover
+moreover
-	note super_new_member
+note super_new_member
-	ultimately have "?P C super_new"
+ultimately have "?P C super_new"
-	  by (auto dest: hyp_member_super)
+by (auto dest: hyp_member_super)
-	then show ?thesis
+then show ?thesis
-	proof
+proof
-	  assume "G \<turnstile>Method super_new member_of C"
+assume "G \<turnstile>Method super_new member_of C"
-	  with super_new_override
+with super_new_override
-	  show ?thesis
+show ?thesis
-	    by blast
+by blast
-	next
+next
-	  assume "\<exists>new. G \<turnstile> new overrides\<^sub>S super_new \<and>
+assume "\<exists>new. G \<turnstile> new overrides\<^sub>S super_new \<and>
 G \<turnstile>Method new member_of C"
-	  with super_new_override show ?thesis
+with super_new_override show ?thesis
-	    by (blast intro: stat_overridesR.Indirect)
+by (blast intro: stat_overridesR.Indirect)
-	qed
+qed
 qed
 qed
 qed
 qed
 proof (cases rule: non_Package_instance_method_inheritance_cases)
 case Inheritance
 assume "G \<turnstile>Method old member_of declclass new"
 then have "G\<turnstile>mid (msig old) undeclared_in declclass new"
 proof cases
-	case Immediate
+case Immediate
-	with subcls_new_old wf show ?thesis
+with subcls_new_old wf show ?thesis
-	  by (auto dest: subcls_irrefl)
+by (auto dest: subcls_irrefl)
 next
-	case Inherited
+case Inherited
-	then show ?thesis
+then show ?thesis
-	  by (cases old) auto
+by (cases old) auto
 qed
 with eq_sig_new_old new_declared
 show ?thesis
-	by (cases old,cases new) (auto dest!: declared_not_undeclared)
+by (cases old,cases new) (auto dest!: declared_not_undeclared)
 next
 case (Overriding new')
 assume stat_override_new': "G \<turnstile> new' overrides\<^sub>S old"
 then have "msig new' = msig old"
-	by (auto dest: stat_overrides_commonD)
+by (auto dest: stat_overrides_commonD)
 with eq_sig_new_old have eq_sig_new_new': "msig new=msig new'"
-	by simp
+by simp
 assume "G \<turnstile>Method new' member_of declclass new"
 then show ?thesis
 proof (cases)
-	case Immediate
+case Immediate
-	then have declC_new: "declclass new' = declclass new"
+then have declC_new: "declclass new' = declclass new"
-	  by auto
+by auto
-	from Immediate
+from Immediate
-	have "G\<turnstile>Method new' declared_in declclass new"
+have "G\<turnstile>Method new' declared_in declclass new"
-	  by (cases new') auto
+by (cases new') auto
-	with new_declared eq_sig_new_new' declC_new
+with new_declared eq_sig_new_new' declC_new
-	have "new=new'"
+have "new=new'"
-	  by (cases new, cases new') (auto dest: unique_declared_in)
+by (cases new, cases new') (auto dest: unique_declared_in)
-	with stat_override_new'
+with stat_override_new'
-	show ?thesis
+show ?thesis
-	  by simp
+by simp
 next
-	case Inherited
+case Inherited
-	then have "G\<turnstile>mid (msig new') undeclared_in declclass new"
+then have "G\<turnstile>mid (msig new') undeclared_in declclass new"
-	  by (cases new') (auto)
+by (cases new') (auto)
-	with eq_sig_new_new' new_declared
+with eq_sig_new_new' new_declared
-	show ?thesis
+show ?thesis
-	  by (cases new,cases new') (auto dest!: declared_not_undeclared)
+by (cases new,cases new') (auto dest!: declared_not_undeclared)
 qed
 qed
 next
 case (Indirect new inter old)
 assume accmodi_old: "accmodi old \<noteq> Package"
 moreover
 have "accmodi inter \<noteq> Package"
 proof -
 from stat_override_inter_old wf
 have "accmodi old \<le> accmodi inter"
-	by (auto dest: wf_prog_stat_overridesD)
+by (auto dest: wf_prog_stat_overridesD)
 with stat_override_inter_old accmodi_old
 show ?thesis
-	by (auto dest!: no_Private_stat_override
+by (auto dest!: no_Private_stat_override
 split: acc_modi.splits
-	         dest: acc_modi_le_Dests)
+dest: acc_modi_le_Dests)
 qed
 ultimately show "?Overrides new old"
 by (blast intro: stat_overridesR.Indirect)
 qed
 qed
 proof (cases "pid (declclass old) = pid (declclass inter)")
 case True
 note same_pack_old_inter = this
 show ?thesis
 proof (cases "pid (declclass inter) = pid (declclass new)")
-	case True
+case True
-	with same_pack_old_inter outside_pack
+with same_pack_old_inter outside_pack
-	show ?thesis
+show ?thesis
-	  by auto
+by auto
 next
-	case False
+case False
-	note diff_pack_inter_new = this
+note diff_pack_inter_new = this
-	show ?thesis
+show ?thesis
-	proof (cases "accmodi inter = Package")
+proof (cases "accmodi inter = Package")
-	  case True
+case True
-	  with diff_pack_inter_new hyp_new_inter
+with diff_pack_inter_new hyp_new_inter
-	  obtain newinter where
+obtain newinter where
-	    over_new_newinter: "G \<turnstile> new overrides newinter" and
+over_new_newinter: "G \<turnstile> new overrides newinter" and
 over_newinter_inter: "G \<turnstile> newinter overrides inter" and
 eq_pid: "pid (declclass inter) = pid (declclass newinter)" and
 accmodi_newinter: "Protected \<le> accmodi newinter"
-	    by auto
+by auto
-	  from over_newinter_inter override_inter_old
+from over_newinter_inter override_inter_old
-	  have "G\<turnstile>newinter overrides old"
+have "G\<turnstile>newinter overrides old"
-	    by (rule overridesR.Indirect)
+by (rule overridesR.Indirect)
-	  moreover
+moreover
-	  from eq_pid same_pack_old_inter
+from eq_pid same_pack_old_inter
-	  have "pid (declclass old) = pid (declclass newinter)"
+have "pid (declclass old) = pid (declclass newinter)"
-	    by simp
+by simp
-	  moreover
+moreover
-	  note over_new_newinter accmodi_newinter
+note over_new_newinter accmodi_newinter
-	  ultimately show ?thesis
+ultimately show ?thesis
-	    by blast
+by blast
-	next
+next
-	  case False
+case False
-	  with override_new_inter
+with override_new_inter
-	  have "Protected \<le> accmodi inter"
+have "Protected \<le> accmodi inter"
-	    by (cases "accmodi inter") (auto dest: no_Private_override)
+by (cases "accmodi inter") (auto dest: no_Private_override)
-	  with override_new_inter override_inter_old same_pack_old_inter
+with override_new_inter override_inter_old same_pack_old_inter
-	  show ?thesis
+show ?thesis
-	    by blast
+by blast
-	qed
+qed
 qed
 next
 case False
 with accmodi_old hyp_inter_old
 obtain newinter where
-	over_inter_newinter: "G \<turnstile> inter overrides newinter" and
+over_inter_newinter: "G \<turnstile> inter overrides newinter" and
 over_newinter_old: "G \<turnstile> newinter overrides old" and
 eq_pid: "pid (declclass old) = pid (declclass newinter)" and
-	accmodi_newinter: "Protected \<le> accmodi newinter"
+accmodi_newinter: "Protected \<le> accmodi newinter"
-	by auto
+by auto
 from override_new_inter over_inter_newinter
 have "G \<turnstile> new overrides newinter"
-	by (rule overridesR.Indirect)
+by (rule overridesR.Indirect)
 with eq_pid over_newinter_old accmodi_newinter
 show ?thesis
-	by blast
+by blast
 qed
 qed
 qed
 lemma declclass_widen[rule_format]:
 by (simp add: methd_rec)
 show ?thesis
 proof (cases "?table sig")
 case None
 from this methd_C have "?filter (methd G (super c)) sig = Some m"
-	by simp
+by simp
 moreover
 from wf cls_C False obtain sup where "class G (super c) = Some sup"
-	by (blast dest: wf_prog_cdecl wf_cdecl_supD is_acc_class_is_class)
+by (blast dest: wf_prog_cdecl wf_cdecl_supD is_acc_class_is_class)
 moreover note wf False cls_C
 ultimately have "G\<turnstile>super c \<preceq>\<^sub>C declclass m"
-	by (auto intro: Hyp [rule_format])
+by (auto intro: Hyp [rule_format])
 moreover from cls_C False have  "G\<turnstile>C \<prec>\<^sub>C\<^sub>1 super c" by (rule subcls1I)
 ultimately show ?thesis by - (rule rtrancl_into_rtrancl2)
 next
 case Some
 from this wf False cls_C methd_C show ?thesis by auto
 from methd ws clsC neq_C_Obj
 show "?MemberOf C"
 proof (cases rule: methd_rec_Some_cases)
 case NewMethod
 with clsC show ?thesis
-	by (auto dest: method_declared_inI intro!: members.Immediate)
+by (auto dest: method_declared_inI intro!: members.Immediate)
 next
 case InheritedMethod
 then show "?thesis"
-	by (blast dest: inherits_member)
+by (blast dest: inherits_member)
 qed
 qed
 qed
 lemma current_methd:
 from ws clsC neq_C_Obj
 have is_cls_super: "is_class G (super c)"
 by (auto dest: ws_prog_cdeclD)
 from clsC wf neq_C_Obj
 have superAccessible: "G\<turnstile>(Class (super c)) accessible_in (pid C)" and
-	 subcls1_C_super: "G\<turnstile>C \<prec>\<^sub>C\<^sub>1 super c"
+subcls1_C_super: "G\<turnstile>C \<prec>\<^sub>C\<^sub>1 super c"
 by (auto dest: wf_prog_cdecl wf_cdecl_supD is_acc_classD
 intro: subcls1I)
 show "\<exists>new. ?Constraint C new old"
 proof (cases "G\<turnstile>super c\<preceq>\<^sub>C D")
 case False
 from False Subcls
 have eq_C_D: "C=D"
-	by (auto dest: subclseq_superD)
+by (auto dest: subclseq_superD)
 with old
 have "?Constraint C old old"
-	by auto
+by auto
 with eq_C_D
 show "\<exists> new. ?Constraint C new old" by auto
 next
 case True
 with hyp obtain super_method
-	where super: "?Constraint (super c) super_method old" by blast
+where super: "?Constraint (super c) super_method old" by blast
 from super not_static_old
 have not_static_super: "\<not> is_static super_method"
-	by (auto dest!: stat_overrides_commonD)
+by (auto dest!: stat_overrides_commonD)
 from super old wf accmodi_old
 have accmodi_super_method: "Protected \<le> accmodi super_method"
-	by (auto dest!: wf_prog_stat_overridesD)
+by (auto dest!: wf_prog_stat_overridesD)
 from super accmodi_old wf
 have inheritable: "G\<turnstile>Methd sig super_method inheritable_in (pid C)"
-	by (auto dest!: wf_prog_stat_overridesD
+by (auto dest!: wf_prog_stat_overridesD
 acc_modi_le_Dests
 simp add: inheritable_in_def)
 from super wf is_cls_super
 have member: "G\<turnstile>Methd sig super_method member_of (super c)"
-	by (auto intro: methd_member_of)
+by (auto intro: methd_member_of)
 from member
 have decl_super_method:
 "G\<turnstile>Methd sig super_method declared_in (declclass super_method)"
-	by (auto dest: member_of_declC)
+by (auto dest: member_of_declC)
 from super subcls1_C_super ws is_cls_super
 have subcls_C_super: "G\<turnstile>C \<prec>\<^sub>C (declclass super_method)"
-	by (auto intro: rtrancl_into_trancl2 dest: methd_declC)
+by (auto intro: rtrancl_into_trancl2 dest: methd_declC)
 show "\<exists> new. ?Constraint C new old"
 proof (cases "methd G C sig")
-	case None
+case None
-	have "methd G (super c) sig = None"
+have "methd G (super c) sig = None"
-	proof -
+proof -
-	  from clsC ws None
+from clsC ws None
-	  have no_new: "table_of (methods c) sig = None"
+have no_new: "table_of (methods c) sig = None"
-	    by (auto simp add: methd_rec)
+by (auto simp add: methd_rec)
-	  with clsC
+with clsC
-	  have undeclared: "G\<turnstile>mid sig undeclared_in C"
+have undeclared: "G\<turnstile>mid sig undeclared_in C"
-	    by (auto simp add: undeclared_in_def cdeclaredmethd_def)
+by (auto simp add: undeclared_in_def cdeclaredmethd_def)
-	  with inheritable member superAccessible subcls1_C_super
+with inheritable member superAccessible subcls1_C_super
-	  have inherits: "G\<turnstile>C inherits (method sig super_method)"
+have inherits: "G\<turnstile>C inherits (method sig super_method)"
-	    by (auto simp add: inherits_def)
+by (auto simp add: inherits_def)
-	  with clsC ws no_new super neq_C_Obj
+with clsC ws no_new super neq_C_Obj
-	  have "methd G C sig = Some super_method"
+have "methd G C sig = Some super_method"
-	    by (auto simp add: methd_rec map_add_def intro: filter_tab_SomeI)
+by (auto simp add: methd_rec map_add_def intro: filter_tab_SomeI)
 with None show ?thesis
-	    by simp
+by simp
-	qed
+qed
-	with super show ?thesis by auto
+with super show ?thesis by auto
 next
-	case (Some new)
+case (Some new)
-	from this ws clsC neq_C_Obj
+from this ws clsC neq_C_Obj
-	show ?thesis
+show ?thesis
-	proof (cases rule: methd_rec_Some_cases)
+proof (cases rule: methd_rec_Some_cases)
-	  case InheritedMethod
+case InheritedMethod
-	  with super Some show ?thesis
+with super Some show ?thesis
-	    by auto
+by auto
-	next
+next
-	  case NewMethod
+case NewMethod
-	  assume new: "table_of (map (\<lambda>(s, m). (s, C, m)) (methods c)) sig
+assume new: "table_of (map (\<lambda>(s, m). (s, C, m)) (methods c)) sig
 = Some new"
-	  from new
+from new
-	  have declcls_new: "declclass new = C"
+have declcls_new: "declclass new = C"
-	    by auto
+by auto
-	  from wf clsC neq_C_Obj super new not_static_super accmodi_super_method
+from wf clsC neq_C_Obj super new not_static_super accmodi_super_method
-	  have not_static_new: "\<not> is_static new"
+have not_static_new: "\<not> is_static new"
-	    by (auto dest: wf_prog_staticD)
+by (auto dest: wf_prog_staticD)
-	  from clsC new
+from clsC new
-	  have decl_new: "G\<turnstile>Methd sig new declared_in C"
+have decl_new: "G\<turnstile>Methd sig new declared_in C"
-	    by (auto simp add: declared_in_def cdeclaredmethd_def)
+by (auto simp add: declared_in_def cdeclaredmethd_def)
-	  from not_static_new decl_new decl_super_method
+from not_static_new decl_new decl_super_method
-	       member subcls1_C_super inheritable declcls_new subcls_C_super
+member subcls1_C_super inheritable declcls_new subcls_C_super
-	  have "G,sig\<turnstile> new overrides\<^sub>S super_method"
+have "G,sig\<turnstile> new overrides\<^sub>S super_method"
-	    by (auto intro: stat_overridesR.Direct)
+by (auto intro: stat_overridesR.Direct)
-	  with super Some
+with super Some
-	  show ?thesis
+show ?thesis
-	    by (auto intro: stat_overridesR.Indirect)
+by (auto intro: stat_overridesR.Indirect)
-	qed
+qed
 qed
 qed
 qed
 qed
 with Overriding not_static_old accmodi_old wf
 show ?thesis
 by (auto dest!: wf_prog_stat_overridesD)
 qed
 qed
 (* local lemma *)
 lemma bexI': "x \<in> A \<Longrightarrow> P x \<Longrightarrow> \<exists>x\<in>A. P x" by blast
 lemma ballE': "\<forall>x\<in>A. P x \<Longrightarrow> (x \<notin> A \<Longrightarrow> Q) \<Longrightarrow> (P x \<Longrightarrow> Q) \<Longrightarrow> Q" by blast
 lemma subint_widen_imethds:
 show "?Concl I"
 proof (cases "?newMethods sig = {}")
 case True
 with ifI SI hyp wf jm
 show "?thesis"
-	by (auto simp add: imethds_rec)
+by (auto simp add: imethds_rec)
 next
 case False
 from ifI wf False
 have imethds: "imethds G I sig = ?newMethods sig"
-	by (simp add: imethds_rec)
+by (simp add: imethds_rec)
 from False
 obtain im where
 imdef: "im \<in> ?newMethods sig"
-	by (blast)
+by (blast)
 with imethds
 have im: "im \<in> imethds G I sig"
-	by (blast)
+by (blast)
 with im wf ifI
 obtain
-	 imStatic: "\<not> is_static im" and
+imStatic: "\<not> is_static im" and
 imPublic: "accmodi im = Public"
-	by (auto dest!: imethds_wf_mhead)
+by (auto dest!: imethds_wf_mhead)
 from ifI wf
 have wf_I: "wf_idecl G (I,i)"
-	by (rule wf_prog_idecl)
+by (rule wf_prog_idecl)
 with SI wf
 obtain si where
-	 ifSI: "iface G SI = Some si" and
+ifSI: "iface G SI = Some si" and
-	wf_SI: "wf_idecl G (SI,si)"
+wf_SI: "wf_idecl G (SI,si)"
-	by (auto dest!: wf_idecl_supD is_acc_ifaceD
+by (auto dest!: wf_idecl_supD is_acc_ifaceD
 dest: wf_prog_idecl)
 from jm hyp
 obtain sim::"qtname \<times> mhead"  where
 sim: "sim \<in> imethds G SI sig" and
 eq_static_sim_jm: "is_static sim = is_static jm" and
 eq_access_sim_jm: "accmodi sim = accmodi jm" and
 resTy_widen_sim_jm: "G\<turnstile>resTy sim\<preceq>resTy jm"
-	by blast
+by blast
 with wf_I SI imdef sim
 have "G\<turnstile>resTy im\<preceq>resTy sim"
-	by (auto dest!: wf_idecl_hidings hidings_entailsD)
+by (auto dest!: wf_idecl_hidings hidings_entailsD)
 with wf resTy_widen_sim_jm
 have resTy_widen_im_jm: "G\<turnstile>resTy im\<preceq>resTy jm"
-	by (blast intro: widen_trans)
+by (blast intro: widen_trans)
 from sim wf ifSI
 obtain
-	simStatic: "\<not> is_static sim" and
+simStatic: "\<not> is_static sim" and
 simPublic: "accmodi sim = Public"
-	by (auto dest!: imethds_wf_mhead)
+by (auto dest!: imethds_wf_mhead)
 from im
 imStatic simStatic eq_static_sim_jm
 imPublic simPublic eq_access_sim_jm
 resTy_widen_im_jm
 show ?thesis
-	by auto
+by auto
 qed
 qed
 qed
 (* Tactical version *)
 show "?thesis" by (auto simp add: methd_rec) (rule hyp)
 next
 case Some
 from Some clsC nObj ws m declC
 show "?thesis"
-	by (auto simp add: methd_rec
+by (auto simp add: methd_rec
 dest: wf_prog_cdecl wf_cdecl_supD is_acc_class_is_class)
 qed
 qed
 qed
 show "?P new"
 proof (cases rule: imethds_cases)
 case NewMethod
 with ifI hyp_newmethod
 show ?thesis
-	by auto
+by auto
 next
 case (InheritedMethod J)
 assume "J \<in> set (isuperIfs i)"
 "new \<in> imethds G J sig"
 with hyp
 show "?thesis"
-	by auto
+by auto
 qed
 qed
 qed
 text {*
 show ?thesis
 proof (cases "imethds G I sig = {}")
 case True
 with statI
 have dynlookup: "dynlookup G statT dynC sig = dynmethd G Object dynC sig"
-	 by (simp add: dynlookup_def dynimethd_def)
+by (simp add: dynlookup_def dynimethd_def)
 from wf dynC
 have subclsObj: "G\<turnstile>dynC \<preceq>\<^sub>C Object"
-	 by (auto intro: subcls_ObjectI)
+by (auto intro: subcls_ObjectI)
 from wf dynC dynC_Prop istype sm subclsObj
 obtain dm where
-	 "dynmethd G Object dynC sig = Some dm"
+"dynmethd G Object dynC sig = Some dm"
-	 "is_static dm = is_static sm"
+"is_static dm = is_static sm"
-	 "G\<turnstile>resTy (mthd dm)\<preceq>resTy (mthd sm)"
+"G\<turnstile>resTy (mthd dm)\<preceq>resTy (mthd sm)"
-	 by (auto dest!: ws_dynmethd accmethd_SomeD
+by (auto dest!: ws_dynmethd accmethd_SomeD
 intro: class_Object [OF wf] intro: that)
 with dynlookup eq_mheads
 show ?thesis
-	 by (cases emh type: *) (auto)
+by (cases emh type: *) (auto)
 next
 case False
 with statI
 have dynlookup: "dynlookup G statT dynC sig = methd G dynC sig"
-	 by (simp add: dynlookup_def dynimethd_def)
+by (simp add: dynlookup_def dynimethd_def)
 from istype statI
 have "is_iface G I"
-	 by auto
+by auto
 with wf sm nPriv False
 obtain im where
-	      im: "im \<in> imethds G I sig" and
+im: "im \<in> imethds G I sig" and
-	 eq_stat: "is_static im = is_static sm" and
+eq_stat: "is_static im = is_static sm" and
 resProp: "G\<turnstile>resTy (mthd im)\<preceq>resTy (mthd sm)"
-	 by (auto dest: wf_imethds_hiding_objmethdsD accmethd_SomeD)
+by (auto dest: wf_imethds_hiding_objmethdsD accmethd_SomeD)
 from im wf statI istype eq_stat eq_mheads
 have not_static_sm: "\<not> is_static emh"
-	 by (cases emh) (auto dest: wf_prog_idecl imethds_wf_mhead)
+by (cases emh) (auto dest: wf_prog_idecl imethds_wf_mhead)
 from im wf dynC_Prop dynC istype statI not_static_sm
 obtain dm where
-	 "methd G dynC sig = Some dm"
+"methd G dynC sig = Some dm"
-	 "is_static dm = is_static im"
+"is_static dm = is_static im"
-	 "G\<turnstile>resTy (mthd dm)\<preceq>resTy (mthd im)"
+"G\<turnstile>resTy (mthd dm)\<preceq>resTy (mthd im)"
-	 by (auto dest: implmt_methd)
+by (auto dest: implmt_methd)
 with wf eq_stat resProp dynlookup eq_mheads
 show ?thesis
-	 by (cases emh type: *) (auto intro: widen_trans)
+by (cases emh type: *) (auto intro: widen_trans)
 qed
 next
 case Array_Object_methd
 fix T sm
 assume statArr: "statT = ArrayT T" and
 "\<lbrakk>class G C = Some c; wf_prog G; methd G C sig = Some m\<rbrakk>
 \<Longrightarrow> methd G (declclass m) sig = Some m"
 proof -
 assume asm: "class G C = Some c" "wf_prog G" "methd G C sig = Some m"
 have "wf_prog G  \<longrightarrow>
-	   (\<forall> c m. class G C = Some c \<longrightarrow>  methd G C sig = Some m
+(\<forall> c m. class G C = Some c \<longrightarrow>  methd G C sig = Some m
 \<longrightarrow>  methd G (declclass m) sig = Some m)"      (is "?P G C")
 proof (rule class_rec.induct,intro allI impI)
 fix G C c m
 assume hyp: "\<forall>c. C \<noteq> Object \<and> ws_prog G \<and> class G C = Some c \<longrightarrow>
 ?P G (super c)"
 let ?filter="filter_tab (\<lambda>sig m. G\<turnstile>C inherits method sig m)"
 let ?table = "table_of (map (\<lambda>(s, m). (s, C, m)) (methods c))"
 case False
 with cls_C wf m
 have methd_C: "(?filter (methd G (super c)) ++ ?table) sig = Some m "
-	by (simp add: methd_rec)
+by (simp add: methd_rec)
 show ?thesis
 proof (cases "?table sig")
-	case None
+case None
-	from this methd_C have "?filter (methd G (super c)) sig = Some m"
+from this methd_C have "?filter (methd G (super c)) sig = Some m"
-	  by simp
+by simp
-	moreover
+moreover
-	from wf cls_C False obtain sup where "class G (super c) = Some sup"
+from wf cls_C False obtain sup where "class G (super c) = Some sup"
-	  by (blast dest: wf_prog_cdecl wf_cdecl_supD is_acc_class_is_class)
+by (blast dest: wf_prog_cdecl wf_cdecl_supD is_acc_class_is_class)
-	moreover note wf False cls_C
+moreover note wf False cls_C
-	ultimately show ?thesis by (auto intro: hyp [rule_format])
+ultimately show ?thesis by (auto intro: hyp [rule_format])
 next
-	case Some
+case Some
-	from this methd_C m show ?thesis by auto
+from this methd_C m show ?thesis by auto
 qed
 qed
 qed
 with asm show ?thesis by auto
 qed
 lemma dynmethd_declclass:
 "\<lbrakk>dynmethd G statC dynC sig = Some m;
 proof (cases rule: subclseq_cases)
 case Eq
 assume "dynC=statC"
 moreover
 from is_cls_statC obtain c
-	where "class G statC = Some c"
+where "class G statC = Some c"
-	by auto
+by auto
 moreover
 note statM ws dynmethd
 ultimately
 have "newM=statM"
-	by (auto simp add: dynmethd_C_C)
+by (auto simp add: dynmethd_C_C)
 with neq show ?thesis
-	by (contradiction)
+by (contradiction)
 next
 case Subcls then show ?thesis .
 qed
 moreover
 from stat_acc wf
 show ?thesis
 proof (cases "is_static emh")
 case False
 with statT dynC_prop
 have widen_dynC: "G\<turnstile>Class dynC \<preceq> RefT statT"
-	by simp
+by simp
 from statT widen_dynC
 have implmnt: "G\<turnstile>dynC\<leadsto>I"
-	by auto
+by auto
 from eq_static False
 have not_static_dynM: "\<not> is_static dynM"
-	by simp
+by simp
 from iface_methd implmnt isif_I wf dynM'
 show ?thesis
-	by - (drule implmt_dynimethd_access, auto)
+by - (drule implmt_dynimethd_access, auto)
 next
 case True
 assume "is_static emh"
 moreover
 from wf isT_statT statT im
 have "\<not> is_static im"
-	by (auto dest: accimethdsD wf_prog_idecl imethds_wf_mhead)
+by (auto dest: accimethdsD wf_prog_idecl imethds_wf_mhead)
 moreover note eq_mhds
 ultimately show ?thesis
-	by (cases emh) auto
+by (cases emh) auto
 qed
 next
 case (Iface_Object_methd I statM)
 assume statT: "statT = IfaceT I"
 assume "accmethd G accC Object sig = Some statM"
 show ?thesis
 proof (cases "imethds G I sig = {}")
 case True
 from dynM statT True
 have dynM': "dynmethd G Object dynC sig = Some dynM"
-	by (simp add: dynlookup_def dynimethd_def)
+by (simp add: dynlookup_def dynimethd_def)
 from statT
 have "G\<turnstile>RefT statT \<preceq>Class Object"
-	by auto
+by auto
 with statM statT_acc stat_acc widen_dynC_Obj statT isT_statT
 wf dynM' eq_static dynC_prop
 show ?thesis
-	by - (drule dynmethd_access_prop,force+)
+by - (drule dynmethd_access_prop,force+)
 next
 case False
 then obtain im where
-	im: "im \<in>  imethds G I sig"
+im: "im \<in>  imethds G I sig"
-	by auto
+by auto
 have not_static_emh: "\<not> is_static emh"
 proof -
-	from im statM statT isT_statT wf not_Private_statM
+from im statM statT isT_statT wf not_Private_statM
-	have "is_static im = is_static statM"
+have "is_static im = is_static statM"
-	  by (fastsimp dest: wf_imethds_hiding_objmethdsD)
+by (fastsimp dest: wf_imethds_hiding_objmethdsD)
-	with wf isT_statT statT im
+with wf isT_statT statT im
-	have "\<not> is_static statM"
+have "\<not> is_static statM"
-	  by (auto dest: wf_prog_idecl imethds_wf_mhead)
+by (auto dest: wf_prog_idecl imethds_wf_mhead)
-	with eq_mhds
+with eq_mhds
-	show ?thesis
+show ?thesis
-	  by (cases emh) auto
+by (cases emh) auto
 qed
 with statT dynC_prop
 have implmnt: "G\<turnstile>dynC\<leadsto>I"
-	by simp
+by simp
 with isT_statT statT
 have isif_I: "is_iface G I"
-	by simp
+by simp
 from dynM statT
 have dynM': "dynimethd G I dynC sig = Some dynM"
-	by (simp add: dynlookup_def)
+by (simp add: dynlookup_def)
 from False implmnt isif_I wf dynM'
 show ?thesis
-	by - (drule implmt_dynimethd_access, auto)
+by - (drule implmt_dynimethd_access, auto)
 qed
 next
 case (Array_Object_methd T statM)
 assume statT: "statT = ArrayT T"
 assume "accmethd G accC Object sig = Some statM"

changeset 32960	69916a850301
parent 30235	58d147683393
child 34915	7894c7dab132