isabelle: comparison src/HOL/MicroJava/BV/BVSpecTypeSafe.ML

equal deleted inserted replaced

-:69032a618aa9
+:d14c4e9e9c8e
+(*  Title:      HOL/MicroJava/BV/BVSpecTypeSafe.ML
+ID:         $Id$
+Author:     Cornelia Pusch
+Copyright   1999 Technische Universitaet Muenchen
+*)
+val defs1 = exec.rules@[split_def,sup_state_def,correct_state_def,
+		correct_frame_def,wt_instr_def];
+Goalw [correct_state_def,Let_def,correct_frame_def,split_def]
+"\\<lbrakk> wt_jvm_prog G phi; \
+\   cmethd (G,C) sig = Some (C,rT,maxl,ins); \
+\   correct_state G phi (None, hp, (stk,loc,C,sig,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> wt_instr (ins!pc) G rT (phi C sig) (length ins) pc";
+by (Asm_full_simp_tac 1);
+by(blast_tac (claset() addIs [wt_jvm_prog_impl_wt_instr]) 1);
+qed "wt_jvm_prog_impl_wt_instr_cor";
+Delsimps [split_paired_All];
+(******* LS *******)
+Goal
+"\\<lbrakk> wf_prog wt G; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins!pc = LS(Load idx); \
+\  wt_instr (ins!pc) G rT (phi C ml) (length ins) pc; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs); \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by (fast_tac (claset() addIs [approx_stk_imp_approx_stk_sup,approx_loc_imp_approx_val_sup,
+	approx_loc_imp_approx_loc_sup]
+	addss (simpset() addsimps [approx_stk_Cons,sup_loc_Cons,map_eq_Cons]@defs1)) 1);
+qed "Load_correct";
+Goal
+"\\<lbrakk> wf_prog wt G; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins!pc = LS(Store idx); \
+\  wt_instr (ins!pc) G rT (phi C ml) (length ins) pc; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs) ; \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by (fast_tac (claset() addDs [approx_stk_Cons_lemma]
+	addIs [approx_stk_imp_approx_stk_sup,approx_loc_imp_approx_loc_subst RSN(2, approx_loc_imp_approx_loc_sup)]
+	addss (simpset() addsimps [sup_loc_Cons,map_eq_Cons]@defs1)) 1);
+qed "Store_correct";
+Goalw [conf_def] "G,h \\<turnstile> Intg i \\<Colon>\\<preceq> PrimT Integer";
+by(Simp_tac 1);
+qed "conf_Intg_Integer";
+AddIffs [conf_Intg_Integer];
+Goal
+"\\<lbrakk> wf_prog wt G; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins!pc = LS(Bipush i); \
+\  wt_instr (ins!pc) G rT (phi C ml) (length ins) pc; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs) ; \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by (fast_tac (claset()addIs [approx_stk_imp_approx_stk_sup,approx_loc_imp_approx_loc_sup]
+	addss (simpset() addsimps [approx_val_def,sup_PTS_eq,sup_loc_Cons,map_eq_Cons,approx_stk_Cons]@defs1)) 1);
+qed "Bipush_correct";
+Goal "G \\<turnstile> T' \\<preceq> T \\<Longrightarrow> T' = NT \\<longrightarrow> (T=NT | (\\<exists>C. T = Class C))";
+be widen.induct 1;
+by(Auto_tac);
+by(rename_tac "R" 1);
+by(exhaust_tac "R" 1);
+by(Auto_tac);
+val lemma = result();
+Goal "G \\<turnstile> NT \\<preceq> T = (T=NT | (\\<exists>C. T = Class C))";
+by(force_tac (claset() addIs widen.intrs addDs [lemma],simpset()) 1);
+qed "NT_subtype_conv";
+Goal
+"\\<lbrakk> wf_prog wt G; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins!pc = LS Aconst_null; \
+\  wt_instr (ins!pc) G rT (phi C ml) (length ins) pc; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs) ; \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by (fast_tac (claset() addIs [approx_stk_imp_approx_stk_sup,approx_loc_imp_approx_loc_sup]
+	addss (simpset() addsimps [approx_val_Null,NT_subtype_conv,sup_loc_Cons,map_eq_Cons,approx_stk_Cons]@defs1)) 1);
+qed "Aconst_null_correct";
+Goal
+"\\<lbrakk> wt_jvm_prog G phi; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins!pc = LS ls_com; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs) ; \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by(forward_tac [wt_jvm_prog_impl_wt_instr_cor] 1);
+ba 1;
+ba 1;
+by(rewtac wt_jvm_prog_def);
+by (exhaust_tac "ls_com" 1);
+by (ALLGOALS (fast_tac (claset() addIs [Load_correct,Store_correct,Bipush_correct,Aconst_null_correct])));
+qed "LS_correct";
+(**** CH ****)
+Goalw [cast_ok_def]
+"\\<lbrakk> wf_prog ok G; G,h\\<turnstile>v\\<Colon>\\<preceq>RefT rt; cast_ok G (Class C) h v ; G\\<turnstile>(Class C)\\<preceq>T'; is_class G C \\<rbrakk> \
+\ \\<Longrightarrow> G,h\\<turnstile>v\\<Colon>\\<preceq>T'";
+be disjE 1;
+by (Clarify_tac 1);
+by (forward_tac [widen_Class] 1);
+by (Clarify_tac 1);
+be disjE 1;
+by (asm_full_simp_tac (simpset() addsimps [widen.null]) 1);
+by (asm_full_simp_tac (simpset() addsimps [conf_def]) 1);
+by (Clarify_tac 1);
+by (asm_full_simp_tac (simpset() addsimps [obj_ty_def]) 1);
+by (exhaust_tac "v" 1);
+by (ALLGOALS (fast_tac  (claset() addIs [widen_trans] addss (simpset() addsimps [widen.null]))));
+qed "Cast_conf2";
+Goal
+"\\<lbrakk> wf_prog wt G; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins!pc = CH (Checkcast D); \
+\  wt_instr (ins!pc) G rT (phi C ml) (length ins) pc; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs); \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by (asm_full_simp_tac (simpset() addsimps [sup_loc_Cons,map_eq_Cons,approx_stk_Cons,
+		xcpt_update_def,raise_xcpt_def]@defs1 addsplits [option.split]) 1);
+by (fast_tac (claset() addDs [approx_stk_Cons_lemma]
+	addIs [approx_stk_imp_approx_stk_sup,approx_loc_imp_approx_loc_sup,Cast_conf2]
+	addss (simpset() addsimps [sup_loc_Cons,map_eq_Cons,approx_stk_Cons,approx_val_def])) 1);
+qed "Checkcast_correct";
+Goal
+"\\<lbrakk> wt_jvm_prog G phi; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins!pc = CH ch_com; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs) ; \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by(forward_tac [wt_jvm_prog_impl_wt_instr_cor] 1);
+ba 1;
+ba 1;
+by(rewtac wt_jvm_prog_def);
+by (exhaust_tac "ch_com" 1);
+by (ALLGOALS (fast_tac (claset() addIs [Checkcast_correct])));
+qed "CH_correct";
+(******* MO *******)
+Goal
+"\\<lbrakk> wf_prog wt G; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins!pc = MO (Getfield F D); \
+\  wt_instr (ins!pc) G rT (phi C ml) (length ins) pc; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs); \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by (asm_full_simp_tac (simpset() addsimps [xcpt_update_def,raise_xcpt_def]@defs1 addsplits [option.split]) 1);
+by (Clarify_tac 1);
+by (asm_full_simp_tac (simpset() addsimps [sup_state_def,sup_loc_Cons,map_eq_Cons]) 1);
+by (Clarify_tac 1);
+bd approx_stk_Cons_lemma 1;
+by (Clarify_tac 1);
+by (asm_full_simp_tac (simpset() addsimps [approx_val_def]) 1);
+by (forward_tac [conf_widen] 1);
+ba 1;
+ba 1;
+bd conf_RefTD 1;
+by (Clarify_tac 1);
+by (asm_full_simp_tac (simpset() addsimps []) 1);
+(* approx_stk *)
+br conjI 1;
+by  (asm_full_simp_tac (simpset() addsimps [approx_stk_Cons]) 1);
+br  conjI 1;
+by   (fast_tac (claset() addIs [approx_stk_imp_approx_stk_sup]) 1);
+by  (asm_full_simp_tac (simpset() addsimps [approx_val_def]) 1);
+bd  widen_cfs_fields 1;
+ba 1;
+ba 1;
+by  (fast_tac (claset() addIs [conf_widen] addss (simpset() addsimps [hconf_def,oconf_def,lconf_def])) 1);
+(* approx_loc *)
+by (fast_tac (claset() addIs [approx_loc_imp_approx_loc_sup]) 1);
+qed "Getfield_correct";
+Goal
+"\\<lbrakk> wf_prog wt G; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins!pc = MO (Putfield F D); \
+\  wt_instr (ins!pc) G rT (phi C ml) (length ins) pc; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs); \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by (asm_full_simp_tac (simpset() addsimps [xcpt_update_def,raise_xcpt_def]@defs1 addsplits [option.split]) 1);
+by (Clarify_tac 1);
+by (asm_full_simp_tac (simpset() addsimps [sup_state_def,sup_loc_Cons,map_eq_Cons]) 1);
+by (Clarify_tac 1);
+bd approx_stk_Cons_lemma 1;
+by (Clarify_tac 1);
+bd approx_stk_Cons_lemma 1;
+by (Clarify_tac 1);
+by (asm_full_simp_tac (simpset() addsimps [approx_val_def]) 1);
+by (forward_tac [conf_widen] 1);
+ba 2;
+ba 1;
+by (fast_tac (claset() addDs [conf_RefTD,widen_cfs_fields]
+	addIs [sup_heap_update_value,approx_stk_imp_approx_stk_sup_heap RSN(2,approx_stk_imp_approx_stk_sup),
+		approx_loc_imp_approx_loc_sup_heap RSN(2,approx_loc_imp_approx_loc_sup),
+		hconf_imp_hconf_field_update,
+		correct_frames_imp_correct_frames_field_update,conf_widen] addss (simpset())) 1);
+qed "Putfield_correct";
+Goal
+"\\<lbrakk> wt_jvm_prog G phi; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins!pc = MO mo_com; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs) ; \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by(forward_tac [wt_jvm_prog_impl_wt_instr_cor] 1);
+ba 1;
+ba 1;
+by(rewtac wt_jvm_prog_def);
+by (exhaust_tac "mo_com" 1);
+by (ALLGOALS (fast_tac (claset() addIs [Getfield_correct,Putfield_correct])));
+qed "MO_correct";
+(****** CO ******)
+Goal "(\\<forall>x y. P(x,y)) = (\\<forall>z. P z)";
+by(Fast_tac 1);
+qed "collapse_paired_All";
+Goal
+"\\<lbrakk> wf_prog wt G; \
+\  cmethd (G,C) sig = Some (C,rT,maxl,ins); \
+\  ins!pc = CO(New cl_idx); \
+\  wt_instr (ins!pc) G rT (phi C sig) (length ins) pc; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,sig,pc)#frs) ; \
+\  correct_state G phi (None, hp, (stk,loc,C,sig,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by (fast_tac (claset() addSDs [collapse_paired_All RS iffD1]addIs [sup_heap_newref,
+		approx_stk_imp_approx_stk_sup_heap RSN(2,approx_stk_imp_approx_stk_sup),
+		approx_loc_imp_approx_loc_sup_heap RSN(2,approx_loc_imp_approx_loc_sup),
+		hconf_imp_hconf_newref,correct_frames_imp_correct_frames_newref,
+		rewrite_rule [split_def] correct_init_obj]
+	addss (simpset() addsimps [NT_subtype_conv,approx_stk_Cons,approx_val_def,conf_def,
+		fun_upd_apply,sup_loc_Cons,map_eq_Cons,is_class_def,xcpt_update_def,raise_xcpt_def,init_vars_def]@defs1
+	addsplits [option.split])) 1);
+qed "New_correct";
+Goal
+"\\<lbrakk> wt_jvm_prog G phi; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins!pc = CO co_com; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs) ; \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by(forward_tac [wt_jvm_prog_impl_wt_instr_cor] 1);
+ba 1;
+ba 1;
+by(rewtac wt_jvm_prog_def);
+by (exhaust_tac "co_com" 1);
+by (ALLGOALS (fast_tac (claset() addIs [New_correct])));
+qed "CO_correct";
+(****** MI ******)
+Goal
+"\\<lbrakk> wt_jvm_prog G phi; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins ! pc = MI(Invokevirtual mn pTs); \
+\  wt_instr (ins!pc) G rT (phi C ml) (length ins) pc; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs) ; \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by(forward_tac [wt_jvm_progD] 1);
+by(etac exE 1);
+by (asm_full_simp_tac (simpset()addsimps[xcpt_update_def,raise_xcpt_def]@defs1
+	addsplits [option.split]) 1);
+by (Clarify_tac 1);
+by (asm_full_simp_tac (simpset() addsimps []@defs1) 1);
+bd approx_stk_append_lemma 1;
+by (Clarify_tac 1);
+bd approx_stk_Cons_lemma 1;
+by (asm_full_simp_tac (simpset() addsimps []) 1);
+by (Clarify_tac 1);
+by (asm_full_simp_tac (simpset() addsimps [approx_val_def]) 1);
+bd conf_RefTD 1;
+by (Clarify_tac 1);
+by(rename_tac "oloc oT ofs T'" 1);
+by (asm_full_simp_tac (simpset() addsimps []@defs1) 1);
+bd subtype_widen_methd 1;
+ba 1;
+ba 1;
+be exE 1;
+by(rename_tac "oT'" 1);
+by (Clarify_tac 1);
+by(subgoal_tac "G \\<turnstile> Class oT \\<preceq> Class oT'" 1);
+by(forw_inst_tac [("C","oT")](standard(rotate_prems 1 cmethd_wf_mdecl)) 2);
+ba 2;
+by(Blast_tac 2);
+by (asm_full_simp_tac (simpset() addsimps []@defs1) 1);
+by(forward_tac [cmethd_in_md] 1);
+ba 1;
+back();
+back();
+by (Clarify_tac 1);
+by (asm_full_simp_tac (simpset() addsimps []@defs1) 1);
+by (forward_tac [wt_jvm_prog_impl_wt_start] 1);
+ba 1;
+back();
+by (asm_full_simp_tac (simpset() addsimps [wt_start_def,sup_state_def]) 1);
+by (Clarify_tac 1);
+(** approx_stk **)
+br conjI 1;
+by (asm_full_simp_tac (simpset() addsimps [sup_loc_Nil,approx_stk_Nil]) 1);
+(** approx_loc **)
+br conjI 1;
+br approx_loc_imp_approx_loc_sup 1;
+ba 1;
+by (Fast_tac 2);
+by (asm_full_simp_tac (simpset() addsimps [split_def,approx_loc_Cons,approx_val_def,approx_loc_append]) 1);
+br conjI 1;
+br conf_widen 1;
+ba 1;
+by (Fast_tac 2);
+by (asm_full_simp_tac (simpset() addsimps [conf_def]) 1);
+br conjI 1;
+by (fast_tac (claset() addIs [approx_stk_rev RS iffD2 RSN(4,assConv_approx_stk_imp_approx_loc)]
+	addss (simpset() addsimps [split_def,approx_loc_Cons,approx_val_def])) 1);
+by (asm_simp_tac (simpset() addsimps [split_def,approx_loc_def,zip_replicate,approx_val_None,set_replicate_conv_if]) 1);
+br conjI 1;
+by (asm_simp_tac (simpset() addsimps [min_def]) 1);
+br exI 1;
+br exI 1;
+br conjI 1;
+by(Blast_tac 1);
+by (fast_tac (claset()
+addIs [approx_stk_imp_approx_stk_sup,approx_loc_imp_approx_loc_sup]
+addss (simpset()addsimps [map_eq_Cons,sup_loc_Cons])) 1);
+qed "Invokevirtual_correct";
+Goal
+"\\<lbrakk> wt_jvm_prog G phi; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins!pc = MI mi_com; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs) ; \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by(forward_tac [wt_jvm_prog_impl_wt_instr_cor] 1);
+ba 1;
+ba 1;
+by (exhaust_tac "mi_com" 1);
+by (ALLGOALS (fast_tac (claset() addIs [Invokevirtual_correct])));
+qed "MI_correct";
+(****** MR ******)
+Goal
+"\\<forall>zs. (xs@ys = zs) = (xs = take (length xs) zs \\<and> ys = drop (length xs) zs)";
+by(induct_tac "xs" 1);
+by(Simp_tac 1);
+by(Asm_full_simp_tac 1);
+by(Clarify_tac 1);
+by(exhaust_tac "zs" 1);
+by(Auto_tac);
+qed_spec_mp "append_eq_conv_conj";
+Delsimps [map_append];
+Goal
+"\\<lbrakk> wt_jvm_prog G phi; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins ! pc = MR; \
+\  wt_instr (ins!pc) G rT (phi C ml) (length ins) pc; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs) ; \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by (asm_full_simp_tac (simpset() addsimps defs1) 1);
+by (Clarify_tac 1);
+by (asm_full_simp_tac (simpset() addsimps defs1) 1);
+by (exhaust_tac "frs" 1);
+by (asm_full_simp_tac (simpset() addsimps defs1) 1);
+by (Clarify_tac 1);
+by (asm_full_simp_tac (simpset() addsimps [sup_loc_Cons,map_eq_Cons]@defs1) 1);
+by (Clarify_tac 1);
+by (asm_full_simp_tac (simpset() addsimps defs1) 1);
+by (forward_tac [wt_jvm_prog_impl_wt_instr] 1);
+by(EVERY1[atac, etac Suc_lessD]);
+by(rewtac wt_jvm_prog_def);
+by (fast_tac (claset()
+addDs [approx_stk_Cons_lemma,subcls_widen_methd]
+addEs [rotate_prems 1 widen_trans]
+addIs [conf_widen]
+	addss (simpset()
+addsimps [approx_val_def,append_eq_conv_conj,sup_loc_Cons,map_eq_Cons,approx_stk_Cons]@defs1)) 1);
+qed "Return_correct";
+Addsimps [map_append];
+Goal
+"\\<lbrakk> wt_jvm_prog G phi; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins!pc = MR; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs) ; \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by(forward_tac [wt_jvm_prog_impl_wt_instr_cor] 1);
+ba 1;
+ba 1;
+by (ALLGOALS (fast_tac (claset() addIs [Return_correct])));
+qed "MR_correct";
+(****** BR ******)
+Goal
+"\\<lbrakk> wf_prog wt G; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins ! pc = BR(Goto branch); \
+\  wt_instr (ins!pc) G rT (phi C ml) (length ins) pc; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs) ; \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by (fast_tac (claset() addIs [approx_loc_imp_approx_loc_sup,approx_stk_imp_approx_stk_sup]
+	addss (simpset() addsimps defs1)) 1);
+qed "Goto_correct";
+Goal
+"\\<lbrakk> wf_prog wt G; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins!pc = BR(Ifcmpeq branch); \
+\  wt_instr (ins!pc) G rT (phi C ml) (length ins) pc; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs) ; \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by (fast_tac (claset() addDs [approx_stk_Cons_lemma]
+	addIs [approx_stk_imp_approx_stk_sup,approx_loc_imp_approx_loc_sup] addss (simpset() addsimps defs1)) 1);
+qed "Ifiacmpeq_correct";
+Goal
+"\\<lbrakk> wt_jvm_prog G phi; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins!pc = BR br_com; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs) ; \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by(forward_tac [wt_jvm_prog_impl_wt_instr_cor] 1);
+ba 1;
+ba 1;
+by(rewtac wt_jvm_prog_def);
+by (exhaust_tac "br_com" 1);
+by (ALLGOALS (fast_tac (claset() addIs [Goto_correct,Ifiacmpeq_correct])));
+qed "BR_correct";
+(****** OS ******)
+Goal
+"\\<lbrakk> wf_prog wt G; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins ! pc = OS Pop; \
+\  wt_instr (ins!pc) G rT (phi C ml) (length ins) pc; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs); \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by (fast_tac (claset() addDs [approx_stk_Cons_lemma]
+	addIs [approx_stk_imp_approx_stk_sup,approx_loc_imp_approx_loc_sup] addss (simpset() addsimps defs1)) 1);
+qed "Pop_correct";
+Goal
+"\\<lbrakk> wf_prog wt G; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins ! pc = OS Dup; \
+\  wt_instr (ins!pc) G rT (phi C ml) (length ins) pc; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs); \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by (fast_tac (claset() addDs [approx_stk_Cons_lemma]
+	addIs [approx_stk_imp_approx_stk_sup,approx_val_imp_approx_val_sup,approx_loc_imp_approx_loc_sup]
+	addss (simpset() addsimps [approx_stk_Cons,sup_loc_Cons,map_eq_Cons]@defs1)) 1);
+qed "Dup_correct";
+Goal
+"\\<lbrakk> wf_prog wt G; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins ! pc = OS Dup_x1; \
+\  wt_instr (ins!pc) G rT (phi C ml) (length ins) pc; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs); \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by (fast_tac (claset() addDs [approx_stk_Cons_lemma]
+	addIs [approx_stk_imp_approx_stk_sup,approx_val_imp_approx_val_sup,approx_loc_imp_approx_loc_sup]
+	addss (simpset() addsimps [approx_stk_Cons,sup_loc_Cons,map_eq_Cons]@defs1)) 1);
+qed "Dup_x1_correct";
+Goal
+"\\<lbrakk> wf_prog wt G; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins ! pc = OS Dup_x2; \
+\  wt_instr (ins!pc) G rT (phi C ml) (length ins) pc; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs); \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by (fast_tac (claset() addDs [approx_stk_Cons_lemma]
+	addIs [approx_stk_imp_approx_stk_sup,approx_val_imp_approx_val_sup,approx_loc_imp_approx_loc_sup]
+	addss (simpset() addsimps [approx_stk_Cons,sup_loc_Cons,map_eq_Cons]@defs1)) 1);
+qed "Dup_x2_correct";
+Goal
+"\\<lbrakk> wf_prog wt G; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins ! pc = OS Swap; \
+\  wt_instr (ins!pc) G rT (phi C ml) (length ins) pc; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs); \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by (fast_tac (claset() addDs [approx_stk_Cons_lemma]
+	addIs [approx_stk_imp_approx_stk_sup,approx_val_imp_approx_val_sup,approx_loc_imp_approx_loc_sup]
+	addss (simpset() addsimps [approx_stk_Cons,sup_loc_Cons,map_eq_Cons]@defs1)) 1);
+qed "Swap_correct";
+Goal
+"\\<lbrakk> wt_jvm_prog G phi; \
+\  cmethd (G,C) ml = Some (C,rT,maxl,ins); \
+\  ins!pc = OS os_com; \
+\  Some (xp',hp',frs') = exec (G, None, hp, (stk,loc,C,ml,pc)#frs) ; \
+\  correct_state G phi (None, hp, (stk,loc,C,ml,pc)#frs) \\<rbrakk> \
+\\\<Longrightarrow> correct_state G phi (xp',hp',frs')";
+by(forward_tac [wt_jvm_prog_impl_wt_instr_cor] 1);
+ba 1;
+ba 1;
+by(rewtac wt_jvm_prog_def);
+by (exhaust_tac "os_com" 1);
+by (ALLGOALS (fast_tac (claset() addIs [Pop_correct,Dup_correct,Dup_x1_correct,Dup_x2_correct,Swap_correct])));
+qed "OS_correct";
+(** Main **)
+Goalw [correct_state_def,Let_def]
+"correct_state G phi (None,hp,(stk,loc,C,sig,pc)#fs) \
+\ \\<Longrightarrow> \\<exists>meth. cmethd (G,C) sig = Some(C,meth)";
+by(Asm_full_simp_tac 1);
+by(Blast_tac 1);
+qed "correct_state_impl_Some_cmethd";
+Goal
+"\\<And>state. \\<lbrakk> wt_jvm_prog G phi; correct_state G phi state\\<rbrakk> \
+\ \\<Longrightarrow> exec (G,state) = Some state' \\<longrightarrow> correct_state G phi state'";
+by(split_all_tac 1);
+by(rename_tac "xp hp frs" 1);
+by (exhaust_tac "xp" 1);
+by (exhaust_tac "frs" 1);
+by (asm_full_simp_tac (simpset() addsimps exec.rules) 1);
+by(split_all_tac 1);
+by(hyp_subst_tac 1);
+by(forward_tac [correct_state_impl_Some_cmethd] 1);
+by (force_tac (claset() addIs [LS_correct,CO_correct,MO_correct,CH_correct,MI_correct,MR_correct,OS_correct,
+	BR_correct], simpset() addsplits [instr.split,instr.split_asm] addsimps exec.rules@[split_def]) 1);
+by (exhaust_tac "frs" 1);
+by (asm_full_simp_tac (simpset() addsimps exec.rules) 1);
+by (force_tac (claset(), simpset() addsimps exec.rules@[correct_state_def]) 1);
+qed_spec_mp "BV_correct_1";
+(*******)
+Goal
+"xp=None \\<longrightarrow> frs\\<noteq>[] \\<longrightarrow> (\\<exists>xp' hp' frs'. exec (G,xp,hp,frs) = Some (xp',hp',frs'))";
+by (fast_tac (claset() addIs [BV_correct_1]
+	addss (simpset() addsplits [instr.split] addsimps [neq_Nil_conv]@defs1)) 1);
+qed_spec_mp "exec_lemma";
+Goal
+"\\<lbrakk> wt_jvm_prog G phi; \
+\  correct_state G phi (xp,hp,frs); xp=None; frs\\<noteq>[] \\<rbrakk> \
+\ \\<Longrightarrow> \\<exists>xp' hp' frs'. exec (G,xp,hp,frs) = Some (xp',hp',frs') \\<and> correct_state G phi (xp',hp',frs')";
+by (dres_inst_tac [("G","G"),("hp","hp")]  exec_lemma 1);
+ba 1;
+by (fast_tac (claset() addIs [BV_correct_1]) 1);
+qed "L1";
+(*******)
+Goalw [exec_all_def]
+"\\<lbrakk> wt_jvm_prog G phi; G \\<turnstile> s -jvm\\<rightarrow> t \\<rbrakk> \
+\ \\<Longrightarrow> correct_state G phi s \\<longrightarrow> correct_state G phi t";
+be rtrancl_induct 1;
+by (Simp_tac 1);
+by (fast_tac (claset() addIs [BV_correct_1] addss (simpset())) 1);
+qed_spec_mp "BV_correct";
+Goal
+"\\<lbrakk> wt_jvm_prog G phi; G \\<turnstile> s0 -jvm\\<rightarrow> (None,hp,(stk,loc,cn,ml,pc)#frs); correct_state G phi s0 \\<rbrakk> \
+\ \\<Longrightarrow>  approx_stk G hp stk (fst (((phi  cn)  ml) ! pc)) \\<and> approx_loc G hp loc (snd (((phi  cn)  ml) ! pc)) ";
+bd BV_correct 1;
+ba 1;
+ba 1;
+by (asm_full_simp_tac (simpset() addsimps [correct_state_def,correct_frame_def,split_def]
+	addsplits [option.split_asm]) 1);
+qed_spec_mp "BV_correct_initial";

changeset 8011	d14c4e9e9c8e
child 8032	1eaae1a2f8ff