# HG changeset patch # User nipkow # Date 1017748021 -7200 # Node ID 96bf406fd3e5485368f7e0552669c7cd9cf037c2 # Parent cc9d7f403a4b2a2b19e91dfef7ca0e64f284a0aa Started to convert to locales diff -r cc9d7f403a4b -r 96bf406fd3e5 src/HOL/MicroJava/BV/Err.thy --- a/src/HOL/MicroJava/BV/Err.thy Thu Mar 28 16:28:12 2002 +0100 +++ b/src/HOL/MicroJava/BV/Err.thy Tue Apr 02 13:47:01 2002 +0200 @@ -135,20 +135,24 @@ "~(Err <_(le r) x)" by (simp add: lesssub_def lesub_def le_def split: err.split) -lemma semilat_errI [intro]: - "semilat(A,r,f) \ semilat(err A, Err.le r, lift2(%x y. OK(f x y)))" +lemma semilat_errI [intro]: includes semilat +shows "semilat(err A, Err.le r, lift2(%x y. OK(f x y)))" +apply(insert semilat) apply (unfold semilat_Def closed_def plussub_def lesub_def lift2_def Err.le_def err_def) apply (simp split: err.split) done -lemma err_semilat_eslI [intro, simp]: - "\L. semilat L \ err_semilat(esl L)" +lemma err_semilat_eslI_aux: +includes semilat shows "err_semilat(esl(A,r,f))" apply (unfold sl_def esl_def) -apply (simp (no_asm_simp) only: split_tupled_all) -apply (simp add: semilat_errI) +apply (simp add: semilat_errI[OF semilat]) done +lemma err_semilat_eslI [intro, simp]: + "\L. semilat L \ err_semilat(esl L)" +by(simp add: err_semilat_eslI_aux split_tupled_all) + lemma acc_err [simp, intro!]: "acc r \ acc(le r)" apply (unfold acc_def lesub_def le_def lesssub_def) apply (simp add: wf_eq_minimal split: err.split) @@ -222,27 +226,29 @@ lemma semilat_le_err_Err_plus [simp]: "\ x: err A; semilat(err A, le r, f) \ \ Err +_f x = Err" - by (blast intro: le_iff_plus_unchanged [THEN iffD1] le_iff_plus_unchanged2 [THEN iffD1]) + by (blast intro: semilat.le_iff_plus_unchanged [THEN iffD1] + semilat.le_iff_plus_unchanged2 [THEN iffD1]) lemma semilat_le_err_plus_Err [simp]: "\ x: err A; semilat(err A, le r, f) \ \ x +_f Err = Err" - by (blast intro: le_iff_plus_unchanged [THEN iffD1] le_iff_plus_unchanged2 [THEN iffD1]) + by (blast intro: semilat.le_iff_plus_unchanged [THEN iffD1] + semilat.le_iff_plus_unchanged2 [THEN iffD1]) lemma semilat_le_err_OK1: "\ x:A; y:A; semilat(err A, le r, f); OK x +_f OK y = OK z \ \ x <=_r z"; apply (rule OK_le_err_OK [THEN iffD1]) apply (erule subst) -apply simp -done +apply (simp add:semilat.ub1) +done lemma semilat_le_err_OK2: "\ x:A; y:A; semilat(err A, le r, f); OK x +_f OK y = OK z \ \ y <=_r z" apply (rule OK_le_err_OK [THEN iffD1]) apply (erule subst) -apply simp -done +apply (simp add:semilat.ub2) +done lemma eq_order_le: "\ x=y; order r \ \ x <=_r y" @@ -257,14 +263,14 @@ have plus_le_conv3: "\A x y z f r. \ semilat (A,r,f); x +_f y <=_r z; x:A; y:A; z:A \ \ x <=_r z \ y <=_r z" - by (rule plus_le_conv [THEN iffD1]) + by (rule semilat.plus_le_conv [THEN iffD1]) case rule_context thus ?thesis apply (rule_tac iffI) apply clarify apply (drule OK_le_err_OK [THEN iffD2]) apply (drule OK_le_err_OK [THEN iffD2]) - apply (drule semilat_lub) + apply (drule semilat.lub[of _ _ _ "OK x" _ "OK y"]) apply assumption apply assumption apply simp @@ -276,10 +282,10 @@ apply (rename_tac z) apply (subgoal_tac "OK z: err A") apply (drule eq_order_le) - apply blast + apply (erule semilat.orderI) apply (blast dest: plus_le_conv3) apply (erule subst) - apply (blast intro: closedD) + apply (blast intro: semilat.closedI closedD) done qed diff -r cc9d7f403a4b -r 96bf406fd3e5 src/HOL/MicroJava/BV/JType.thy --- a/src/HOL/MicroJava/BV/JType.thy Thu Mar 28 16:28:12 2002 +0100 +++ b/src/HOL/MicroJava/BV/JType.thy Tue Apr 02 13:47:01 2002 +0200 @@ -279,15 +279,15 @@ have "(\x\err (types G). \y\err (types G). x <=_(le (subtype G)) x +_(lift2 (sup G)) y) \ (\x\err (types G). \y\err (types G). y <=_(le (subtype G)) x +_(lift2 (sup G)) y)" - by (auto simp add: lesub_def plussub_def le_def lift2_def sup_subtype_greater split: err.split) + by (auto simp add: lesub_def plussub_def Err.le_def lift2_def sup_subtype_greater split: err.split) - moreover + moreover from wf_prog single_valued acyclic have "\x\err (types G). \y\err (types G). \z\err (types G). x <=_(le (subtype G)) z \ y <=_(le (subtype G)) z \ x +_(lift2 (sup G)) y <=_(le (subtype G)) z" - by (unfold lift2_def plussub_def lesub_def le_def) + by (unfold lift2_def plussub_def lesub_def Err.le_def) (auto intro: sup_subtype_smallest sup_exists split: err.split) ultimately diff -r cc9d7f403a4b -r 96bf406fd3e5 src/HOL/MicroJava/BV/JVM.thy --- a/src/HOL/MicroJava/BV/JVM.thy Thu Mar 28 16:28:12 2002 +0100 +++ b/src/HOL/MicroJava/BV/JVM.thy Tue Apr 02 13:47:01 2002 +0200 @@ -288,8 +288,8 @@ apply (rule err_semilat_upto_esl) apply (rule err_semilat_JType_esl, assumption+) apply (rule err_semilat_eslI) - apply (rule semilat_Listn_sl) - apply (rule err_semilat_JType_esl, assumption+) + apply (rule Listn_sl) + apply (rule err_semilat_JType_esl, assumption+) done lemma sl_triple_conv: diff -r cc9d7f403a4b -r 96bf406fd3e5 src/HOL/MicroJava/BV/Kildall.thy --- a/src/HOL/MicroJava/BV/Kildall.thy Thu Mar 28 16:28:12 2002 +0100 +++ b/src/HOL/MicroJava/BV/Kildall.thy Tue Apr 02 13:47:01 2002 +0200 @@ -43,36 +43,34 @@ "merges f (p'#ps) ss = (let (p,s) = p' in merges f ps (ss[p := s +_f ss!p]))" -lemmas [simp] = Let_def le_iff_plus_unchanged [symmetric] +lemmas [simp] = Let_def semilat.le_iff_plus_unchanged [symmetric] -lemma nth_merges: - "\ss. \ semilat (A, r, f); p < length ss; ss \ list n A; - \(p,t)\set ps. p t\A \ \ +lemma (in semilat) nth_merges: + "\ss. \p < length ss; ss \ list n A; \(p,t)\set ps. p t\A \ \ (merges f ps ss)!p = map snd [(p',t') \ ps. p'=p] ++_f ss!p" - (is "\ss. _ \ _ \ _ \ ?steptype ps \ ?P ss ps") + (is "\ss. \_; _; ?steptype ps\ \ ?P ss ps") proof (induct ps) show "\ss. ?P ss []" by simp fix ss p' ps' - assume sl: "semilat (A, r, f)" assume ss: "ss \ list n A" assume l: "p < length ss" assume "?steptype (p'#ps')" then obtain a b where p': "p'=(a,b)" and ab: "aA" and "?steptype ps'" by (cases p', auto) - assume "\ss. semilat (A,r,f) \ p < length ss \ ss \ list n A \ ?steptype ps' \ ?P ss ps'" + assume "\ss. p< length ss \ ss \ list n A \ ?steptype ps' \ ?P ss ps'" hence IH: "\ss. ss \ list n A \ p < length ss \ ?P ss ps'" . - from sl ss ab + from ss ab have "ss[a := b +_f ss!a] \ list n A" by (simp add: closedD) moreover from calculation have "p < length (ss[a := b +_f ss!a])" by simp ultimately have "?P (ss[a := b +_f ss!a]) ps'" by (rule IH) - with p' l + with p' l show "?P ss (p'#ps')" by simp qed @@ -84,47 +82,43 @@ by (induct_tac ps, auto) -lemma merges_preserves_type_lemma: - "semilat(A,r,f) \ - \xs. xs \ list n A \ (\(p,x) \ set ps. p x\A) - \ merges f ps xs \ list n A" - apply (frule semilatDclosedI) - apply (unfold closed_def) - apply (induct_tac ps) - apply simp - apply clarsimp - done +lemma (in semilat) merges_preserves_type_lemma: +shows "\xs. xs \ list n A \ (\(p,x) \ set ps. p x\A) + \ merges f ps xs \ list n A" +apply (insert closedI) +apply (unfold closed_def) +apply (induct_tac ps) + apply simp +apply clarsimp +done -lemma merges_preserves_type [simp]: - "\ semilat(A,r,f); xs \ list n A; \(p,x) \ set ps. p x\A \ +lemma (in semilat) merges_preserves_type [simp]: + "\ xs \ list n A; \(p,x) \ set ps. p x\A \ \ merges f ps xs \ list n A" - by (simp add: merges_preserves_type_lemma) - -lemma merges_incr_lemma: - "semilat(A,r,f) \ - \xs. xs \ list n A \ (\(p,x)\set ps. p x \ A) \ xs <=[r] merges f ps xs" - apply (induct_tac ps) - apply simp +by (simp add: merges_preserves_type_lemma) + +lemma (in semilat) merges_incr_lemma: + "\xs. xs \ list n A \ (\(p,x)\set ps. p x \ A) \ xs <=[r] merges f ps xs" +apply (induct_tac ps) + apply simp +apply simp +apply clarify +apply (rule order_trans) apply simp - apply clarify - apply (rule order_trans) - apply simp - apply (erule list_update_incr) - apply assumption - apply simp - apply simp - apply (blast intro!: listE_set intro: closedD listE_length [THEN nth_in]) - done + apply (erule list_update_incr) + apply simp + apply simp +apply (blast intro!: listE_set intro: closedD listE_length [THEN nth_in]) +done -lemma merges_incr: - "\ semilat(A,r,f); xs \ list n A; \(p,x)\set ps. p x \ A \ +lemma (in semilat) merges_incr: + "\ xs \ list n A; \(p,x)\set ps. p x \ A \ \ xs <=[r] merges f ps xs" by (simp add: merges_incr_lemma) -lemma merges_same_conv [rule_format]: - "semilat(A,r,f) \ - (\xs. xs \ list n A \ (\(p,x)\set ps. p x\A) \ +lemma (in semilat) merges_same_conv [rule_format]: + "(\xs. xs \ list n A \ (\(p,x)\set ps. p x\A) \ (merges f ps xs = xs) = (\(p,x)\set ps. x <=_r xs!p))" apply (induct_tac ps) apply simp @@ -135,7 +129,6 @@ apply (subgoal_tac "xs[p := x +_f xs!p] <=[r] xs") apply (force dest!: le_listD simp add: nth_list_update) apply (erule subst, rule merges_incr) - apply assumption apply (blast intro!: listE_set intro: closedD listE_length [THEN nth_in]) apply clarify apply (rule conjI) @@ -158,24 +151,22 @@ done -lemma list_update_le_listI [rule_format]: +lemma (in semilat) list_update_le_listI [rule_format]: "set xs <= A \ set ys <= A \ xs <=[r] ys \ p < size xs \ - x <=_r ys!p \ semilat(A,r,f) \ x\A \ - xs[p := x +_f xs!p] <=[r] ys" + x <=_r ys!p \ x\A \ xs[p := x +_f xs!p] <=[r] ys" + apply(insert semilat) apply (unfold Listn.le_def lesub_def semilat_def) apply (simp add: list_all2_conv_all_nth nth_list_update) done -lemma merges_pres_le_ub: - "\ semilat(A,r,f); set ts <= A; set ss <= A; - \(p,t)\set ps. t <=_r ts!p \ t \ A \ p < size ts; - ss <=[r] ts \ +lemma (in semilat) merges_pres_le_ub: +shows "\ set ts <= A; set ss <= A; + \(p,t)\set ps. t <=_r ts!p \ t \ A \ p < size ts; ss <=[r] ts \ \ merges f ps ss <=[r] ts" proof - - { fix A r f t ts ps + { fix t ts ps have - "\qs. \ semilat(A,r,f); set ts <= A; - \(p,t)\set ps. t <=_r ts!p \ t \ A \ p < size ts \ \ + "\qs. \set ts <= A; \(p,t)\set ps. t <=_r ts!p \ t \ A \ p< size ts \ \ set qs <= set ps \ (\ss. set ss <= A \ ss <=[r] ts \ merges f qs ss <=[r] ts)" apply (induct_tac qs) @@ -218,8 +209,8 @@ (** iter **) -lemma stable_pres_lemma: - "\ semilat (A,r,f); pres_type step n A; bounded step n; +lemma (in semilat) stable_pres_lemma: +shows "\pres_type step n A; bounded step n; ss \ list n A; p \ w; \q\w. q < n; \q. q < n \ q \ w \ stable r step ss q; q < n; \s'. (q,s') \ set (step p (ss ! p)) \ s' +_f ss ! q = ss ! q; @@ -237,8 +228,7 @@ apply simp apply simp apply clarify - apply (subst nth_merges) - apply assumption + apply (subst nth_merges) apply simp apply (blast dest: boundedD) apply assumption @@ -248,10 +238,11 @@ apply (erule pres_typeD) prefer 3 apply assumption apply simp - apply simp - apply (frule nth_merges [of _ _ _ q _ _ "step p (ss!p)"]) (* fixme: why does method subst not work?? *) - prefer 2 apply assumption - apply simp + apply simp +apply(subgoal_tac "q < length ss") +prefer 2 apply simp + apply (frule nth_merges [of q _ _ "step p (ss!p)"]) (* fixme: why does method subst not work?? *) +apply assumption apply clarify apply (rule conjI) apply (blast dest: boundedD) @@ -281,8 +272,8 @@ apply (rule order_trans) apply simp defer - apply (rule ub2) - apply assumption + apply (rule pp_ub2)(* + apply assumption*) apply simp apply clarify apply simp @@ -294,16 +285,15 @@ apply (blast intro: listE_nth_in dest: boundedD) apply blast done - - -lemma merges_bounded_lemma: - "\ semilat (A,r,f); mono r step n A; bounded step n; - \(p',s') \ set (step p (ss!p)). s' \ A; ss \ list n A; ts \ list n A; p < n; - ss <=[r] ts; \p. p < n \ stable r step ts p \ + + +lemma (in semilat) merges_bounded_lemma: + "\ mono r step n A; bounded step n; + \(p',s') \ set (step p (ss!p)). s' \ A; ss \ list n A; ts \ list n A; p < n; + ss <=[r] ts; \p. p < n \ stable r step ts p \ \ merges f (step p (ss!p)) ss <=[r] ts" apply (unfold stable_def) apply (rule merges_pres_le_ub) - apply assumption apply simp apply simp prefer 2 apply assumption @@ -326,10 +316,11 @@ apply (blast intro: order_trans) done -lemma termination_lemma: - "\ semilat(A,r,f); ss \ list n A; \(q,t)\set qs. q t\A; p\w \ \ +lemma termination_lemma: includes semilat +shows "\ ss \ list n A; \(q,t)\set qs. q t\A; p\w \ \ ss <[r] merges f qs ss \ merges f qs ss = ss \ {q. \t. (q,t)\set qs \ t +_f ss!q \ ss!q} Un (w-{p}) < w" +apply(insert semilat) apply (unfold lesssub_def) apply (simp (no_asm_simp) add: merges_incr) apply (rule impI) @@ -346,14 +337,15 @@ apply clarsimp done -lemma iter_properties[rule_format]: - "\ semilat(A,r,f); acc r ; pres_type step n A; mono r step n A; +lemma iter_properties[rule_format]: includes semilat +shows "\ acc r ; pres_type step n A; mono r step n A; bounded step n; \p\w0. p < n; ss0 \ list n A; \p w0 \ stable r step ss0 p \ \ iter f step ss0 w0 = (ss',w') \ ss' \ list n A \ stables r step ss' \ ss0 <=[r] ss' \ (\ts\list n A. ss0 <=[r] ts \ stables r step ts \ ss' <=[r] ts)" +apply(insert semilat) apply (unfold iter_def stables_def) apply (rule_tac P = "%(ss,w). ss \ list n A \ (\p w \ stable r step ss p) \ ss0 <=[r] ss \ @@ -363,7 +355,7 @@ in while_rule) -- "Invariant holds initially:" -apply (simp add:stables_def) +apply (simp add:stables_def) -- "Invariant is preserved:" apply(simp add: stables_def split_paired_all) @@ -385,8 +377,8 @@ apply blast apply simp apply (rule conjI) - apply (erule merges_preserves_type) - apply blast + apply (rule merges_preserves_type) + apply blast apply clarify apply (rule conjI) apply(clarsimp, blast dest!: boundedD) @@ -396,10 +388,10 @@ apply (erule listE_nth_in) apply blast apply blast -apply (rule conjI) - apply clarify +apply (rule conjI) + apply clarify apply (blast intro!: stable_pres_lemma) -apply (rule conjI) +apply (rule conjI) apply (blast intro!: merges_incr intro: le_list_trans) apply (rule conjI) apply clarsimp @@ -408,11 +400,11 @@ -- "Postcondition holds upon termination:" -apply(clarsimp simp add: stables_def split_paired_all) +apply(clarsimp simp add: stables_def split_paired_all) -- "Well-foundedness of the termination relation:" apply (rule wf_lex_prod) - apply (drule (1) semilatDorderI [THEN acc_le_listI]) + apply (insert orderI [THEN acc_le_listI]) apply (simp only: acc_def lesssub_def) apply (rule wf_finite_psubset) @@ -434,7 +426,7 @@ apply blast apply (subst decomp_propa) apply blast -apply clarify +apply clarify apply (simp del: listE_length add: lex_prod_def finite_psubset_def bounded_nat_set_is_finite) @@ -444,11 +436,11 @@ apply assumption apply clarsimp apply (blast dest!: boundedD) -done +done -lemma kildall_properties: - "\ semilat(A,r,f); acc r; pres_type step n A; mono r step n A; +lemma kildall_properties: includes semilat +shows "\ acc r; pres_type step n A; mono r step n A; bounded step n; ss0 \ list n A \ \ kildall r f step ss0 \ list n A \ stables r step (kildall r f step ss0) \ @@ -459,16 +451,14 @@ apply(case_tac "iter f step ss0 (unstables r step ss0)") apply(simp) apply (rule iter_properties) -apply (simp_all add: unstables_def stable_def) -done +by (simp_all add: unstables_def stable_def) + -lemma is_bcv_kildall: - "\ semilat(A,r,f); acc r; top r T; - pres_type step n A; bounded step n; - mono r step n A \ +lemma is_bcv_kildall: includes semilat +shows "\ acc r; top r T; pres_type step n A; bounded step n; mono r step n A \ \ is_bcv r T step n A (kildall r f step)" apply(unfold is_bcv_def wt_step_def) -apply(insert kildall_properties[of A]) +apply(insert semilat kildall_properties[of A]) apply(simp add:stables_def) apply clarify apply(subgoal_tac "kildall r f step ss \ list n A") @@ -476,9 +466,9 @@ apply (rule iffI) apply (rule_tac x = "kildall r f step ss" in bexI) apply (rule conjI) - apply blast + apply (blast) apply (simp (no_asm_simp)) - apply assumption + apply(assumption) apply clarify apply(subgoal_tac "kildall r f step ss!p <=_r ts!p") apply simp diff -r cc9d7f403a4b -r 96bf406fd3e5 src/HOL/MicroJava/BV/LBVComplete.thy --- a/src/HOL/MicroJava/BV/LBVComplete.thy Thu Mar 28 16:28:12 2002 +0100 +++ b/src/HOL/MicroJava/BV/LBVComplete.thy Tue Apr 02 13:47:01 2002 +0200 @@ -110,8 +110,8 @@ moreover have mapD: "\x ss. x \ set (?map ss) \ \p. (p,x) \ set ss \ p=pc+1" by auto from eosl x map1 - have "\x \ set (?map ss1). x \|r (?sum ss1)" - by clarify (rule ub1, simp add: Err.sl_def) + have "\x \ set (?map ss1). x \|r (?sum ss1)" + by clarify (rule semilat.pp_ub1, simp add: Err.sl_def) with sum have "\x \ set (?map ss1). x \|r (OK s1)" by simp with less have "\x \ set (?map ss2). x \|r (OK s1)" apply clarify @@ -127,7 +127,7 @@ done moreover from eosl map1 x have "x \|r (?sum ss1)" - by - (rule ub2, simp add: Err.sl_def) + by - (rule semilat.pp_ub2, simp add: Err.sl_def) with sum have "x \|r (OK s1)" by simp moreover { have "set (?map ss2) \ snd`(set ss2)" by auto @@ -135,7 +135,7 @@ finally have "set (?map ss2) \ err (opt A)" . } ultimately have "?sum ss2 \|r (OK s1)" using eosl x - by - (rule lub, simp add: Err.sl_def) + by - (rule semilat.pp_lub, simp add: Err.sl_def) also obtain s2 where sum2: "?sum ss2 = s2" by blast finally have "s2 \|r (OK s1)" . with sum2 have "\s2. ?sum ss2 = s2 \ s2 \|r (OK s1)" by blast @@ -295,7 +295,8 @@ have "OK (cert!Suc pc) \|r OK (phi!Suc pc)" by (cases "cert!Suc pc") (simp, blast dest: fitsD2) ultimately - have "?map ++|f OK (cert!Suc pc) \|r OK (phi!Suc pc)" by (rule lub) + have "?map ++|f OK (cert!Suc pc) \|r OK (phi!Suc pc)" + by (rule semilat.pp_lub) thus ?thesis by auto qed ultimately @@ -386,7 +387,7 @@ have "OK (cert!Suc pc) \|r OK (phi!Suc pc)" by (cases "cert!Suc pc") (simp, blast dest: fitsD2) ultimately - have "?sum \|r OK (phi!Suc pc)" by (rule lub) + have "?sum \|r OK (phi!Suc pc)" by (rule semilat.pp_lub) } finally show ?thesis . qed diff -r cc9d7f403a4b -r 96bf406fd3e5 src/HOL/MicroJava/BV/LBVSpec.thy --- a/src/HOL/MicroJava/BV/LBVSpec.thy Thu Mar 28 16:28:12 2002 +0100 +++ b/src/HOL/MicroJava/BV/LBVSpec.thy Tue Apr 02 13:47:01 2002 +0200 @@ -105,7 +105,7 @@ "err_semilat (A,r,f) \ order r" apply (simp add: Err.sl_def) apply (rule order_le_err [THEN iffD1]) - apply (rule semilatDorderI) + apply (rule semilat.orderI) apply assumption done @@ -175,7 +175,8 @@ also have "\ = ?if ls ?if'" proof - from l have "s' \ err (opt A)" by simp - with x semi have "(s' +|f x) \ err (opt A)" by (fast intro: closedD) + with x semi have "(s' +|f x) \ err (opt A)" + by (fast intro: semilat.closedI closedD) with x have "?if' \ err (opt A)" by auto hence "?P ls ?if'" by (rule IH) thus ?thesis by simp qed diff -r cc9d7f403a4b -r 96bf406fd3e5 src/HOL/MicroJava/BV/Listn.thy --- a/src/HOL/MicroJava/BV/Listn.thy Thu Mar 28 16:28:12 2002 +0100 +++ b/src/HOL/MicroJava/BV/Listn.thy Tue Apr 02 13:47:01 2002 +0200 @@ -283,30 +283,30 @@ done -lemma plus_list_ub1 [rule_format]: - "\ semilat(A,r,f); set xs <= A; set ys <= A; size xs = size ys \ +lemma (in semilat) plus_list_ub1 [rule_format]: + "\ set xs <= A; set ys <= A; size xs = size ys \ \ xs <=[r] xs +[f] ys" apply (unfold unfold_lesub_list) apply (simp add: Listn.le_def list_all2_conv_all_nth) done -lemma plus_list_ub2: - "\ semilat(A,r,f); set xs <= A; set ys <= A; size xs = size ys \ +lemma (in semilat) plus_list_ub2: + "\set xs <= A; set ys <= A; size xs = size ys \ \ ys <=[r] xs +[f] ys" apply (unfold unfold_lesub_list) apply (simp add: Listn.le_def list_all2_conv_all_nth) -done +done -lemma plus_list_lub [rule_format]: - "semilat(A,r,f) \ !xs ys zs. set xs <= A \ set ys <= A \ set zs <= A +lemma (in semilat) plus_list_lub [rule_format]: +shows "!xs ys zs. set xs <= A \ set ys <= A \ set zs <= A \ size xs = n & size ys = n \ xs <=[r] zs & ys <=[r] zs \ xs +[f] ys <=[r] zs" apply (unfold unfold_lesub_list) apply (simp add: Listn.le_def list_all2_conv_all_nth) -done +done -lemma list_update_incr [rule_format]: - "\ semilat(A,r,f); x:A \ \ set xs <= A \ +lemma (in semilat) list_update_incr [rule_format]: + "x:A \ set xs <= A \ (!i. i xs <=[r] xs[i := x +_f xs!i])" apply (unfold unfold_lesub_list) apply (simp add: Listn.le_def list_all2_conv_all_nth) @@ -315,7 +315,7 @@ apply (simp add: in_list_Suc_iff) apply clarify apply (simp add: nth_Cons split: nat.split) -done +done lemma acc_le_listI [intro!]: "\ order r; acc r \ \ acc(Listn.le r)" @@ -376,22 +376,23 @@ apply (simp add: in_list_Suc_iff) apply clarify apply simp -done +done -lemma semilat_Listn_sl: - "\L. semilat L \ semilat (Listn.sl n L)" +lemma Listn_sl_aux: +includes semilat shows "semilat (Listn.sl n (A,r,f))" apply (unfold Listn.sl_def) -apply (simp (no_asm_simp) only: split_tupled_all) apply (simp (no_asm) only: semilat_Def split_conv) apply (rule conjI) apply simp apply (rule conjI) - apply (simp only: semilatDclosedI closed_listI) + apply (simp only: closedI closed_listI) apply (simp (no_asm) only: list_def) apply (simp (no_asm_simp) add: plus_list_ub1 plus_list_ub2 plus_list_lub) -done +done +lemma Listn_sl: "\L. semilat L \ semilat (Listn.sl n L)" + by(simp add: Listn_sl_aux split_tupled_all) lemma coalesce_in_err_list [rule_format]: "!xes. xes : list n (err A) \ coalesce xes : err(list n A)" @@ -443,7 +444,7 @@ apply (erule thin_rl) apply (erule thin_rl) apply force -done +done lemma coalesce_eq_OK_ub_D [rule_format]: "semilat(err A, Err.le r, lift2 f) \ @@ -500,7 +501,7 @@ apply (simp add: in_list_Suc_iff) apply clarify apply (simp add: plussub_def closed_err_lift2_conv) -done +done lemma closed_lift2_sup: "closed (err A) (lift2 f) \ @@ -515,9 +516,9 @@ apply (unfold Err.sl_def) apply (simp only: split_conv) apply (simp (no_asm) only: semilat_Def plussub_def) -apply (simp (no_asm_simp) only: semilatDclosedI closed_lift2_sup) +apply (simp (no_asm_simp) only: semilat.closedI closed_lift2_sup) apply (rule conjI) - apply (drule semilatDorderI) + apply (drule semilat.orderI) apply simp apply (simp (no_asm) only: unfold_lesub_err Err.le_def err_def sup_def lift2_def) apply (simp (no_asm_simp) add: coalesce_eq_OK1_D coalesce_eq_OK2_D split: err.split) diff -r cc9d7f403a4b -r 96bf406fd3e5 src/HOL/MicroJava/BV/Product.thy --- a/src/HOL/MicroJava/BV/Product.thy Thu Mar 28 16:28:12 2002 +0100 +++ b/src/HOL/MicroJava/BV/Product.thy Tue Apr 02 13:47:01 2002 +0200 @@ -78,14 +78,14 @@ have plus_le_conv2: "\r f z. \ z : err A; semilat (err A, r, f); OK x : err A; OK y : err A; OK x +_f OK y <=_r z\ \ OK x <=_r z \ OK y <=_r z" - by (rule plus_le_conv [THEN iffD1]) + by (rule semilat.plus_le_conv [THEN iffD1]) case rule_context thus ?thesis apply (rule_tac iffI) apply clarify apply (drule OK_le_err_OK [THEN iffD2]) apply (drule OK_le_err_OK [THEN iffD2]) - apply (drule semilat_lub) + apply (drule semilat.lub[of _ _ _ "OK x" _ "OK y"]) apply assumption apply assumption apply simp @@ -101,7 +101,7 @@ apply simp apply blast apply simp - apply (blast dest: semilatDorderI order_refl) + apply (blast dest: semilat.orderI order_refl) apply blast apply (erule subst) apply (unfold semilat_def err_def closed_def) @@ -115,15 +115,15 @@ apply (simp (no_asm_simp) only: split_tupled_all) apply simp apply (simp (no_asm) only: semilat_Def) -apply (simp (no_asm_simp) only: semilatDclosedI closed_lift2_sup) +apply (simp (no_asm_simp) only: semilat.closedI closed_lift2_sup) apply (simp (no_asm) only: unfold_lesub_err Err.le_def unfold_plussub_lift2 sup_def) apply (auto elim: semilat_le_err_OK1 semilat_le_err_OK2 simp add: lift2_def split: err.split) -apply (blast dest: semilatDorderI) -apply (blast dest: semilatDorderI) +apply (blast dest: semilat.orderI) +apply (blast dest: semilat.orderI) apply (rule OK_le_err_OK [THEN iffD1]) -apply (erule subst, subst OK_lift2_OK [symmetric], rule semilat_lub) +apply (erule subst, subst OK_lift2_OK [symmetric], rule semilat.lub) apply simp apply simp apply simp @@ -132,7 +132,7 @@ apply simp apply (rule OK_le_err_OK [THEN iffD1]) -apply (erule subst, subst OK_lift2_OK [symmetric], rule semilat_lub) +apply (erule subst, subst OK_lift2_OK [symmetric], rule semilat.lub) apply simp apply simp apply simp diff -r cc9d7f403a4b -r 96bf406fd3e5 src/HOL/MicroJava/BV/Semilat.thy --- a/src/HOL/MicroJava/BV/Semilat.thy Thu Mar 28 16:28:12 2002 +0100 +++ b/src/HOL/MicroJava/BV/Semilat.thy Tue Apr 02 13:47:01 2002 +0200 @@ -61,8 +61,13 @@ "is_lub r x y u == is_ub r x y u & (!z. is_ub r x y z \ (u,z):r)" some_lub :: "('a*'a)set \