Isabelle NEWS  history of userrelevant changes 
60138  9 

61337  10 
*** General *** 
11 

62017  12 
* Former "xsymbols" syntax with Isabelle symbols is used by default, 
13 
without any special print mode. Important ASCII replacement syntax 

14 
remains available under print mode "ASCII", but less important syntax 

15 
has been removed (see below). 

16 

17 
* Support for more arrow symbols, with rendering in LaTeX and 

18 
Isabelle fonts: \<Lleftarrow> \<Rrightarrow> \<longlongleftarrow> \<longlongrightarrow> \<longlonglongleftarrow> \<longlonglongrightarrow> 

19 

20 
* Syntax for formal comments " text" now also supports the symbolic 

21 
form "\<comment> text". Commandline tool "isabelle update_cartouches c" helps 

22 
to update old sources. 

23 

61337  24 
* Toplevel theorem statements have been simplified as follows: 
25 

26 
theorems ~> lemmas 

27 
schematic_lemma ~> schematic_goal 

28 
schematic_theorem ~> schematic_goal 

29 
schematic_corollary ~> schematic_goal 

30 

31 
Commandline tool "isabelle update_theorems" updates theory sources 

32 
accordingly. 

33 

61338  34 
* Toplevel theorem statement 'proposition' is another alias for 
35 
'theorem'. 

36 

61337  37 

39 

60986  40 
* IDE support for the sourcelevel debugger of Poly/ML, to work with 
60984  41 
Isabelle/ML and official Standard ML. Configuration option "ML_debugger" 
42 
and commands 'ML_file_debug', 'ML_file_no_debug', 'SML_file_debug', 

43 
'SML_file_no_debug' control compilation of sources with debugging 

44 
information. The Debugger panel allows to set breakpoints (via context 

45 
menu), step through stopped threads, evaluate local ML expressions etc. 

46 
At least one Debugger view needs to be active to have any effect on the 

47 
running ML program. 

48 

61804  49 
* The State panel manages explicit proof state output, with dynamic 
50 
autoupdate according to cursor movement. Alternatively, the jEdit 

51 
action "isabelle.updatestate" (shortcut S+ENTER) triggers manual 

52 
update. 

61729  53 

54 
* The Output panel no longer shows proof state output by default, to 

55 
avoid GUI overcrowding. INCOMPATIBILITY, use the State panel instead or 

56 
enable option "editor_output_state". 

61215  57 

61804  58 
* The text overview column (status of errors, warnings etc.) is updated 
59 
asynchronously, leading to much better editor reactivity. Moreover, the 

60 
full document node content is taken into account. The width of the 

61 
column is scaled according to the main text area font, for improved 

62 
visibility. 

63 

64 
* The main text area no longer changes its color hue in outdated 

65 
situations. The text overview column takes over the role to indicate 

66 
unfinished edits in the PIDE pipeline. This avoids flashing text display 

67 
due to adhoc updates by auxiliary GUI components, such as the State 

68 
panel. 

69 

62017  70 
* Improved scheduling for urgent print tasks (e.g. command state output, 
71 
interactive queries) wrt. longrunning background tasks. 

72 

73 
* Completion of symbols via prefix of \<name> or \<^name> or \name is 

74 
always possible, independently of the language context. It is never 

75 
implicit: a popup will show up unconditionally. 

76 

77 
* Additional abbreviations for syntactic completion may be specified in 

78 
$ISABELLE_HOME/etc/abbrevs and $ISABELLE_HOME_USER/etc/abbrevs, with 

79 
support for simple templates using ASCII 007 (bell) as placeholder. 

80 

61483  81 
* Action "isabelleemph" (with keyboard shortcut C+e LEFT) controls 
82 
emphasized text style; the effect is visible in document output, not in 

83 
the editor. 

84 

85 
* Action "isabellereset" now uses keyboard shortcut C+e BACK_SPACE, 

86 
instead of former C+e LEFT. 

87 

92 

62017  93 
* New commandline tool "isabelle jedit_client" allows to connect to an 
94 
already running Isabelle/jEdit process. This achieves the effect of 

95 
singleinstance applications seen on common GUI desktops. 

96 

97 
* The main Isabelle executable is managed as singleinstance Desktop 

98 
application uniformly on all platforms: Linux, Windows, Mac OS X. 

99 

61530
103 

60610
'text' (with antiquotations and control symbols). The key difference is 

112 
the lack of the surrounding isabelle markup environment in output. 

113 

114 
* Text is structured in paragraphs and nested lists, using notation that 

115 
is similar to Markdown. The control symbols for list items are as 

116 
follows: 

117 

118 
\<^item> itemize 

119 
\<^enum> enumerate 

120 
\<^descr> description 

121 

61491
symbols, e.g. "\<^verbatim>", "\<^emph>", "\<^bold>". 

61491
97261e6c1d42
134 
Consequently, \<open>...\<close> without any decoration prints literal quasiformal 
61492  135 
text. Commandline tool "isabelle update_cartouches t" helps to update 
136 
old sources, by approximative patching of the content of string and 

137 
cartouche tokens seen in theory sources. 

141 
surrounding quotes etc. Subtle INCOMPATIBILITY, put quotes into the 
61494  142 
argument where they are really intended, e.g. @{text \<open>"foo"\<close>}. Initial 
143 
or terminal spaces are ignored. 

61491
144 

62017  145 
* Antiquotations @{emph} and @{bold} output LaTeX source recursively, 
146 
adding appropriate text style markup. These may be used in the short 

147 
form \<^emph>\<open>...\<close> and \<^bold>\<open>...\<close>. 

148 

149 
* Document antiquotation @{footnote} outputs LaTeX source recursively, 

150 
marked as \footnote{}. This may be used in the short form \<^footnote>\<open>...\<close>. 

151 

152 
* Antiquotation @{verbatim [display]} supports option "indent". 

153 

154 
* Antiquotation @{theory_text} prints uninterpreted theory source text 

155 
(outer syntax with command keywords etc.). This may be used in the short 

156 
form \<^theory_text>\<open>...\<close>. @{theory_text [display]} supports option "indent". 

157 

158 
* Antiquotation @{doc ENTRY} provides a reference to the given 

159 
documentation, with a hyperlink in the Prover IDE. 

160 

161 
* Antiquotations @{command}, @{method}, @{attribute} print checked 

162 
entities of the Isar language. 

163 

61471  164 
* HTML presentation uses the standard IsabelleText font and Unicode 
165 
rendering of Isabelle symbols like Isabelle/Scala/jEdit. The former 

61488  166 
print mode "HTML" loses its special meaning. 
61471  167 

61405  168 

60406  169 
*** Isar *** 
170 

60414  171 
* Local goals ('have', 'show', 'hence', 'thus') allow structured 
61733  172 
rule statements like fixes/assumes/shows in theorem specifications, but 
173 
the notation is postfix with keywords 'if' (or 'when') and 'for'. For 

174 
example: 
60414  175 

176 
have result: "C x y" 

177 
if "A x" and "B y" 

178 
for x :: 'a and y :: 'a 

179 
<proof> 

180 

60449  181 
The local assumptions are bound to the name "that". The result is 
182 
exported from context of the statement as usual. The above roughly 

60414  183 
corresponds to a raw proof block like this: 
184 

185 
{ 

186 
fix x :: 'a and y :: 'a 

60449  187 
assume that: "A x" "B y" 
60414  188 
have "C x y" <proof> 
189 
} 

190 
note result = this 

60406  191 

60555
194 

61733  195 
* Assumptions ('assume', 'presume') allow structured rule statements 
196 
using 'if' and 'for', similar to 'have' etc. above. For example: 

61658  197 

198 
assume result: "C x y" 

199 
if "A x" and "B y" 

200 
for x :: 'a and y :: 'a 

201 

202 
This assumes "\<And>x y::'a. A x \<Longrightarrow> B y \<Longrightarrow> C x y" and produces a general 

203 
result as usual: "A ?x \<Longrightarrow> B ?y \<Longrightarrow> C ?x ?y". 

204 

205 
Vacuous quantification in assumptions is omitted, i.e. a forcontext 

206 
only effects propositions according to actual use of variables. For 

207 
example: 

208 

209 
assume "A x" and "B y" for x and y 

210 

211 
is equivalent to: 

212 

213 
assume "\<And>x. A x" and "\<And>y. B y" 

214 

60595  215 
* The meaning of 'show' with Pure rule statements has changed: premises 
216 
are treated in the sense of 'assume', instead of 'presume'. This means, 

217 
a goal like "\<And>x. A x \<Longrightarrow> B x \<Longrightarrow> C x" can be solved completely as follows: 

218 

219 
show "\<And>x. A x \<Longrightarrow> B x \<Longrightarrow> C x" 

220 

221 
or: 

222 

223 
show "C x" if "A x" "B x" for x 

224 

225 
Rare INCOMPATIBILITY, the old behaviour may be recovered as follows: 

226 

227 
show "C x" when "A x" "B x" for x 

228 

60459  229 
* New command 'consider' states rules for generalized elimination and 
230 
case splitting. This is like a toplevel statement "theorem obtains" used 

231 
within a proof body; or like a multibranch 'obtain' without activation 

232 
of the local context elements yet. 

233 

60455  234 
* Proof method "cases" allows to specify the rule as first entry of 
235 
chained facts. This is particularly useful with 'consider': 

236 

237 
consider (a) A  (b) B  (c) C <proof> 

238 
then have something 

239 
proof cases 

240 
case a 

241 
then show ?thesis <proof> 

242 
next 

243 
case b 

244 
then show ?thesis <proof> 

245 
next 

246 
case c 

247 
then show ?thesis <proof> 

248 
qed 

249 

60565  250 
* Command 'case' allows fact name and attribute specification like this: 
251 

252 
case a: (c xs) 

253 
case a [attributes]: (c xs) 

254 

255 
Facts that are introduced by invoking the case context are uniformly 

256 
qualified by "a"; the same name is used for the cumulative fact. The old 

257 
form "case (c xs) [attributes]" is no longer supported. Rare 

258 
INCOMPATIBILITY, need to adapt uses of case facts in exotic situations, 

259 
and always put attributes in front. 

260 

60618
4c79543cc376
264 
'..' more accurately as "by standard" instead of "by rule". 
265 

62017  266 
* Nesting of Isar goal structure has been clarified: the context after 
267 
the initial backwards refinement is retained for the whole proof, within 

268 
all its context sections (as indicated via 'next'). This is e.g. 

269 
relevant for 'using', 'including', 'supply': 

270 

271 
have "A \<and> A" if a: A for A 

272 
supply [simp] = a 

273 
proof 

274 
show A by simp 

275 
next 

276 
show A by simp 

277 
qed 

278 

279 
* Command 'obtain' binds term abbreviations (via 'is' patterns) in the 

280 
proof body as well, abstracted over relevant parameters. 

281 

282 
* Improved typeinference for theorem statement 'obtains': separate 

283 
parameter scope for of each clause. 

284 

285 
* Term abbreviations via 'is' patterns also work for schematic 

286 
statements: result is abstracted over unknowns. 

287 

60631  288 
* Command 'subgoal' allows to impose some structure on backward 
289 
refinements, to avoid proof scripts degenerating into long of 'apply' 

290 
sequences. Further explanations and examples are given in the isarref 

291 
manual. 

292 

62017  293 
* Command 'supply' supports fact definitions during goal refinement 
294 
('apply' scripts). 

295 

61166
5976fe402824
renamed method "goals" to "goal_cases" to emphasize its meaning;
wenzelm
parents:
61158
diff
changeset

296 
* Proof method "goal_cases" turns the current subgoals into cases within 
5976fe402824
renamed method "goals" to "goal_cases" to emphasize its meaning;
wenzelm
parents:
61158
diff
changeset

297 
the context; the conclusion is bound to variable ?case in each case. For 
5976fe402824
renamed method "goals" to "goal_cases" to emphasize its meaning;
61158
diff
changeset

302 
proof goal_cases 
60622  303 
case (1 x) 
304 
then show ?case using \<open>A x\<close> \<open>B x\<close> sorry 

305 
next 

306 
case (2 y z) 

307 
then show ?case using \<open>U y\<close> \<open>V z\<close> sorry 

308 
qed 

309 

310 
lemma "\<And>x. A x \<Longrightarrow> B x \<Longrightarrow> C x" 

311 
and "\<And>y z. U y \<Longrightarrow> V z \<Longrightarrow> W y z" 

61166
312 
proof goal_cases 
60617  313 
case prems: 1 
314 
then show ?case using prems sorry 

315 
next 

316 
case prems: 2 

317 
then show ?case using prems sorry 

318 
qed 

60578  319 

60581  320 
* The undocumented feature of implicit cases goal1, goal2, goal3, etc. 
60617  321 
is marked as legacy, and will be removed eventually. The proof method 
322 
"goals" achieves a similar effect within regular Isar; often it can be 

323 
done more adequately by other means (e.g. 'consider'). 

60581  324 

62017  325 
* The vacuous fact "TERM x" may be established "by fact" or as `TERM x` 
326 
as well, not just "by this" or "." as before. 

60551  327 

60554  328 
* Method "sleep" succeeds after a realtime delay (in seconds). This is 
329 
occasionally useful for demonstration and testing purposes. 

330 

60406  331 

60331  332 
*** Pure *** 
333 

changeset

334 
* Qualifiers in locale expressions default to mandatory ('!') regardless 
6d5213bd9709
uniform mandatory qualifier for all locale expressions, including 'statespace' parent;
wenzelm
parents:
61604
diff
changeset

335 
of the command. Previously, for 'locale' and 'sublocale' the default was 
6d5213bd9709
uniform mandatory qualifier for all locale expressions, including 'statespace' parent;
wenzelm
parents:
61604
diff
changeset

336 
optional ('?'). The old synatx '!' has been discontinued. 
6d5213bd9709
uniform mandatory qualifier for all locale expressions, including 'statespace' parent;
wenzelm
parents:
61604
diff
changeset

337 
INCOMPATIBILITY, remove '!' and add '?' as required. 
61565
338 

61566
c3d6e570ccef
Keyword 'rewrites' identifies rewrite morphisms.
ballarin
parents:
61565
diff
changeset

339 
* Keyword 'rewrites' identifies rewrite morphisms in interpretation 
62017  340 
commands. Previously, the keyword was 'where'. INCOMPATIBILITY. 
61566
c3d6e570ccef
Keyword 'rewrites' identifies rewrite morphisms.
ballarin
parents:
61565
diff
changeset

341 

61701
342 
* More gentle suppression of syntax along locale morphisms while 
62017  343 
printing terms. Previously 'abbreviation' and 'notation' declarations 
344 
would be suppressed for morphisms except term identity. Now 

61701
345 
'abbreviation' is also kept for morphims that only change the involved 
62017  346 
parameters, and only 'notation' is suppressed. This can be of great help 
347 
when working with complex locale hierarchies, because proof states are 

348 
displayed much more succinctly. It also means that only notation needs 

349 
to be redeclared if desired, as illustrated by this example: 

61701
350 

e89cfc004f18
Refine the supression of abbreviations for morphisms that are not identities.
ballarin
parents:
61694
352 
begin 
e89cfc004f18
Refine the supression of abbreviations for morphisms that are not identities.
ballarin
parents:
61694
diff
changeset

353 
definition derived (infixl "\<odot>" 65) where ... 
e89cfc004f18
Refine the supression of abbreviations for morphisms that are not identities.
ballarin
parents:
61694
diff
changeset

354 
end 
355 

e89cfc004f18
356 
locale morphism = 
357 
left: struct composition + right: struct composition' 
358 
for composition (infix "\<cdot>" 65) and composition' (infix "\<cdot>''" 65) 
359 
begin 
360 
notation right.derived ("\<odot>''") 
361 
end 
362 

61895  363 
* Command 'global_interpretation' issues interpretations into global 
364 
theories, with optional rewrite definitions following keyword 'defines'. 

365 

366 
* Command 'sublocale' accepts optional rewrite definitions after keyword 

61675  367 
'defines'. 
368 

61895  369 
* Command 'permanent_interpretation' has been discontinued. Use 
370 
'global_interpretation' or 'sublocale' instead. INCOMPATIBILITY. 

371 

61252  372 
* Command 'print_definitions' prints dependencies of definitional 
373 
specifications. This functionality used to be part of 'print_theory'. 

374 

60331  375 
* Configuration option rule_insts_schematic has been discontinued 
62017  376 
(intermediate legacy feature in Isabelle2015). INCOMPATIBILITY. 
60331  377 

60349  378 
* Abbreviations in type classes now carry proper sort constraint. 
379 
Rare INCOMPATIBILITY in situations where the previous misbehaviour 

61228  380 
has been exploited. 
60349  381 

382 
* Refinement of userspace type system in type classes: pseudolocal 

383 
operations behave more similar to abbreviations. Potential 

384 
INCOMPATIBILITY in exotic situations. 

385 

386 

60171  387 
*** HOL *** 
388 

62017  389 
* The 'typedef' command has been upgraded from a partially checked 
390 
"axiomatization", to a full definitional specification that takes the 

391 
global collection of overloaded constant / type definitions into 

392 
account. Type definitions with open dependencies on overloaded 

393 
definitions need to be specified as "typedef (overloaded)". This 

394 
provides extra robustness in theory construction. Rare INCOMPATIBILITY. 

395 

396 
* Qualification of various formal entities in the libraries is done more 

397 
uniformly via "context begin qualified definition ... end" instead of 

398 
oldstyle "hide_const (open) ...". Consequently, both the defined 

399 
constant and its defining fact become qualified, e.g. Option.is_none and 

400 
Option.is_none_def. Occasional INCOMPATIBILITY in applications. 

401 

402 
* Some old and rarely used ASCII replacement syntax has been removed. 

403 
INCOMPATIBILITY, standard syntax with symbols should be used instead. 

404 
The subsequent commands help to reproduce the old forms, e.g. to 

405 
simplify porting old theories: 

406 

407 
notation iff (infixr "<>" 25) 

408 

409 
notation Times (infixr "<*>" 80) 

410 

411 
type_notation Map.map (infixr "~=>" 0) 

412 
notation Map.map_comp (infixl "o'_m" 55) 

413 

414 
type_notation FinFun.finfun ("(_ =>f /_)" [22, 21] 21) 

415 

416 
notation FuncSet.funcset (infixr ">" 60) 

417 
notation FuncSet.extensional_funcset (infixr ">\<^sub>E" 60) 

418 

419 
notation Omega_Words_Fun.conc (infixr "conc" 65) 

420 

421 
notation Preorder.equiv ("op ~~") 

422 
and Preorder.equiv ("(_/ ~~ _)" [51, 51] 50) 

423 

424 
notation (in topological_space) tendsto (infixr ">" 55) 

425 
notation (in topological_space) LIMSEQ ("((_)/ > (_))" [60, 60] 60) 

426 
notation LIM ("((_)/  (_)/ > (_))" [60, 0, 60] 60) 

427 

428 
notation NSA.approx (infixl "@=" 50) 

429 
notation NSLIMSEQ ("((_)/ NS> (_))" [60, 60] 60) 

430 
notation NSLIM ("((_)/  (_)/ NS> (_))" [60, 0, 60] 60) 

431 

432 
* The alternative notation "\<Colon>" for type and sort constraints has been 

433 
removed: in LaTeX document output it looks the same as "::". 

434 
INCOMPATIBILITY, use plain "::" instead. 

435 

436 
* Commands 'inductive' and 'inductive_set' work better when names for 

437 
intro rules are omitted: the "cases" and "induct" rules no longer 

438 
declare empty case_names, but no case_names at all. This allows to use 

439 
numbered cases in proofs, without requiring method "goal_cases". 

440 

441 
* Inductive definitions ('inductive', 'coinductive', etc.) expose 

442 
lowlevel facts of the internal construction only if the option 

443 
"inductive_defs" is enabled. This refers to the internal predicate 

444 
definition and its monotonicity result. Rare INCOMPATIBILITY. 

445 

446 
* Recursive function definitions ('fun', 'function', 'partial_function') 

447 
expose lowlevel facts of the internal construction only if the option 

448 
"function_defs" is enabled. Rare INCOMPATIBILITY. 

449 

450 
* Combinator to represent case distinction on products is named 

451 
"case_prod", uniformly, discontinuing any input aliasses. Very popular 

452 
theorem aliasses have been retained. 

453 

489 
split_curry ~> case_prod_curry 
62017  490 

491 
Changes in structure HOLogic: 
c3658c18b7bc
prod_case as canonical name for product type eliminator
haftmann
parents:
61405
diff
changeset

492 
split_const ~> case_prod_const 
c3658c18b7bc
prod_case as canonical name for product type eliminator
haftmann
parents:
61405
diff
changeset

493 
mk_split ~> mk_case_prod 
c3658c18b7bc
prod_case as canonical name for product type eliminator
haftmann
parents:
61405
diff
changeset

494 
mk_psplits ~> mk_ptupleabs 
c3658c18b7bc
prod_case as canonical name for product type eliminator
haftmann
parents:
61405
diff
changeset

495 
strip_psplits ~> strip_ptupleabs 
62017  496 

497 
INCOMPATIBILITY. 

498 

499 
* The coercions to type 'real' have been reorganised. The function 

500 
'real' is no longer overloaded, but has type 'nat => real' and 

501 
abbreviates of_nat for that type. Also 'real_of_int :: int => real' 

502 
abbreviates of_int for that type. Other overloaded instances of 'real' 

503 
have been replaced by 'real_of_ereal' and 'real_of_float'. 

504 

527 
ceiling_real_of_int ceiling_of_int 
62017  528 

529 
INCOMPATIBILITY. 

61143  530 

60841  531 
* Theory Map: lemma map_of_is_SomeD was a clone of map_of_SomeD and has 
532 
been removed. INCOMPATIBILITY. 

533 

60712
535 

60171  536 
* Discontinued simp_legacy_precond. Potential INCOMPATIBILITY. 
60138  537 

60306
540 
 Proof reconstruction has been improved, to minimize the incidence of 
6b7c64ab8bd2
made Auto Sledgehammer behave more like the real thing
blanchet
parents:
60301
diff
changeset

541 
cases where Sledgehammer gives a proof that does not work. 
6b7c64ab8bd2
made Auto Sledgehammer behave more like the real thing
blanchet
61043  544 
 Eliminated "MASH" environment variable. Use the "MaSh" option in 
545 
Isabelle/jEdit instead. INCOMPATIBILITY. 

61317  546 
 Eliminated obsolete "blocking" option and related subcommands. 
60306
6b7c64ab8bd2
547 

60310  548 
* Nitpick: 
61325
1cfc476198c9
avoid too aggressive optimization of 'finite' predicate
blanchet
parents:
61324
diff
changeset

549 
 Fixed soundness bug in translation of "finite" predicate. 
61324
d4ec7594f558
avoid unsound simplification of (C (s x)) when s is a selector but not C's
 Removed "check_potential" and "check_genuine" options. 
61317  552 
 Eliminated obsolete "blocking" option. 
60310  553 

61345  554 
* New (co)datatype package: 
555 
 New commands "lift_bnf" and "copy_bnf" for lifting (copying) a BNF 

556 
structure on the raw type to an abstract type defined using typedef. 

557 
 Always generate "case_transfer" theorem. 

61552  558 
 Allow discriminators and selectors with the same name as the type 
559 
being defined. 

560 
 Avoid various internal name clashes (e.g., 'datatype f = f'). 

60920  561 

61370  562 
* Transfer: 
61426
d53db136e8fd
new material on path_component_sets, inside, outside, etc. And more default simprules
paulson <lp15@cam.ac.uk>
parents:
61424
diff
changeset

563 
 new methods for interactive debugging of 'transfer' and 
61370  564 
'transfer_prover': 'transfer_start', 'transfer_step', 'transfer_end', 
565 
'transfer_prover_start' and 'transfer_prover_end'. 

566 

60868
567 
* Division on integers is bootstrapped directly from division on 
62017  568 
naturals and uses generic numeral algorithm for computations. Slight 
569 
INCOMPATIBILITY, simproc numeral_divmod replaces and generalizes former 

570 
simprocs binary_int_div and binary_int_mod 

571 

572 
* Tightened specification of class semiring_no_zero_divisors. Minor 

60516
0826b7025d07
generalized some theorems about integral domains and moved to HOL theories
haftmann
parents:
60515
diff
changeset

573 
INCOMPATIBILITY. 
0826b7025d07
generalized some theorems about integral domains and moved to HOL theories
haftmann
parents:
60515
diff
changeset

575 
* Class algebraic_semidom introduces common algebraic notions of 
62017  576 
integral (semi)domains, particularly units. Although logically subsumed 
577 
by fields, is is not a super class of these in order not to burden 

578 
fields with notions that are trivial there. 

579 

580 
* Class normalization_semidom specifies canonical representants for 

581 
equivalence classes of associated elements in an integral (semi)domain. 

582 
This formalizes associated elements as well. 

60688
583 

01488b559910
avoid explicit definition of the relation of associated elements in a ring  prefer explicit normalization instead
haftmann
and gcd_int.commute are subsumed by gcd.commute, as well as 

587 
gcd_nat.assoc and gcd_int.assoc by gcd.assoc. 

588 

589 
* Former constants Fields.divide (_ / _) and Divides.div (_ div _) are 

590 
logically unified to Rings.divide in syntactic type class Rings.divide, 

591 
with infix syntax (_ div _). Infix syntax (_ / _) for field division is 

592 
added later as abbreviation in class Fields.inverse. INCOMPATIBILITY, 

593 
instantiations must refer to Rings.divide rather than the former 

594 
separate constants, hence infix syntax (_ / _) is usually not available 

595 
during instantiation. 

596 

597 
* New cancellation simprocs for boolean algebras to cancel complementary 

598 
terms for sup and inf. For example, "sup x (sup y ( x))" simplifies to 

599 
"top". INCOMPATIBILITY. 

61628
90f54d9e63f2
cancel complementary terms as arguments to sup/inf in boolean algebras
Andreas Lochbihler
parents:
61623
diff
changeset

600 

60397
f8a513fedb31
Renaming multiset operators < ~> <#,...
Mathias Fleury <Mathias.Fleury@mpiinf.mpg.de>
615 
INCOMPATIBILITY. 
60497  616 
 Renamed conversions: 
60515  617 
multiset_of ~> mset 
618 
multiset_of_set ~> mset_set 

60497  619 
set_of ~> set_mset 
620 
INCOMPATIBILITY 

60398  621 
 Renamed lemmas: 
622 
mset_le_def ~> subseteq_mset_def 

623 
mset_less_def ~> subset_mset_def 

60400  624 
less_eq_multiset.rep_eq ~> subseteq_mset_def 
625 
INCOMPATIBILITY 

626 
 Removed lemmas generated by lift_definition: 

627 
less_eq_multiset.abs_eq, less_eq_multiset.rsp less_eq_multiset.transfer 

628 
less_eq_multiset_def 

629 
INCOMPATIBILITY 

60007  630 

62017  631 
* Library/Omega_Words_Fun: Infinite words modeled as functions nat \<Rightarrow> 'a. 
632 

633 
* Library/Bourbaki_Witt_Fixpoint: Added formalisation of the 

634 
BourbakiWitt fixpoint theorem for increasing functions in 

635 
chaincomplete partial orders. 

636 

637 
* Library/Old_Recdef: discontinued obsolete 'defer_recdef' command. 

638 
Minor INCOMPATIBILITY, use 'function' instead. 

639 

640 
* Multivariate_Analysis/Cauchy_Integral_Thm: Contour integrals (= 

641 
complex path integrals), Cauchy's integral theorem, winding numbers and 

642 
Cauchy's integral formula, Liouville theorem, Fundamental Theorem of 

643 
Algebra. Ported from HOL Light 

644 

645 
* Multivariate_Analysis: Added topological concepts such as connected 

646 
components, homotopic paths and the inside or outside of a set. 

647 

61685  648 
* Data_Structures: new and growing session of standard data structures. 
649 

61119  650 
* Imperative_HOL: obsolete theory Legacy_Mrec has been removed. 
651 

654 
remove '!' and add '?' as required. 
61178
655 

60479  656 

60793  657 
*** ML *** 
658 

62017  659 
* The following combinators for lowlevel profiling of the ML runtime 
660 
system are available: 

661 

662 
profile_time (*CPU time*) 

663 
profile_time_thread (*CPU time on this thread*) 

664 
profile_allocations (*overall heap allocations*) 

665 

666 
* Antiquotation @{undefined} or \<^undefined> inlines (raise Match). 

667 

61922  668 
* Pretty printing of Poly/ML compiler output in Isabelle has been 
669 
improved: proper treatment of break offsets and blocks with consistent 

670 
breaks. 

671 

61268  672 
* The auxiliary module Pure/display.ML has been eliminated. Its 
673 
elementary thm print operations are now in Pure/more_thm.ML and thus 

674 
called Thm.pretty_thm, Thm.string_of_thm etc. INCOMPATIBILITY. 

675 

61144  676 
* Simproc programming interfaces have been simplified: 
677 
Simplifier.make_simproc and Simplifier.define_simproc supersede various 

678 
forms of Simplifier.mk_simproc, Simplifier.simproc_global etc. Note that 

679 
term patterns for the lefthand sides are specified with implicitly 

680 
fixed variables, like toplevel theorem statements. INCOMPATIBILITY. 

681 

60802  682 
* Instantiation rules have been reorganized as follows: 
683 

684 
Thm.instantiate (*lowlevel instantiation with named arguments*) 

685 
Thm.instantiate' (*version with positional arguments*) 

686 

687 
Drule.infer_instantiate (*instantiation with type inference*) 

688 
Drule.infer_instantiate' (*version with positional arguments*) 

689 

690 
The LHS only requires variable specifications, instead of full terms. 

691 
Old cterm_instantiate is superseded by infer_instantiate. 

692 
INCOMPATIBILITY, need to readjust some ML names and types accordingly. 

693 

60793  694 
* Old tactic shorthands atac, rtac, etac, dtac, ftac have been 
695 
discontinued. INCOMPATIBILITY, use regular assume_tac, resolve_tac etc. 

696 
instead (with proper context). 

697 

698 
* Thm.instantiate (and derivatives) no longer require the LHS of the 
699 
instantiation to be certified: plain variables are given directly. 
700 

701 
* Subgoal.SUBPROOF and Subgoal.FOCUS combinators use anonymous 
702 
quasibound variables (like the Simplifier), instead of accidentally 
703 
named local fixes. This has the potential to improve stability of proof 
704 
tools, but can also cause INCOMPATIBILITY for tools that don't observe 
705 
the proof context discipline. 
706 

62017  707 
* Isar proof methods are based on a slightly more general type 
708 
context_tactic, which allows to change the proof context dynamically 

709 
(e.g. to update cases) and indicate explicit Seq.Error results. Former 

710 
METHOD_CASES is superseded by CONTEXT_METHOD; further combinators are 

711 
provided in src/Pure/Isar/method.ML for convenience. INCOMPATIBILITY. 

712 

713 

714 
*** System *** 
715 

61958  716 
* Commandline tool "isabelle console" enables print mode "ASCII". 
717 

62017  718 
* Commandline tool "isabelle update_then" expands old Isar command 
719 
conflations: 

720 

721 
hence ~> then have 

722 
thus ~> then show 

723 

724 
This syntax is more orthogonal and improves readability and 

725 
maintainability of proofs. 

726 

61602  727 
* Global session timeout is multiplied by timeout_scale factor. This 
728 
allows to adjust largescale tests (e.g. AFP) to overall hardware 

729 
performance. 

730 

61174  731 
* Property values in etc/symbols may contain spaces, if written with the 
732 
replacement character "␣" (Unicode point 0x2324). For example: 

733 

61602  734 
\<star> code: 0x0022c6 group: operator font: Deja␣Vu␣Sans␣Mono 
61174  735 

736 
* Java runtime environment for x86_64windows allows to use larger heap 
737 
space. 
738 

739 
* Java runtime options are determined separately for 32bit vs. 64bit 
740 
platforms as follows. 
741 

742 
 Isabelle desktop application: platformspecific files that are 
743 
associated with the main app bundle 
744 

8f7d802b7a71
745 
 isabelle jedit: settings 
746 
JEDIT_JAVA_SYSTEM_OPTIONS 
747 
JEDIT_JAVA_OPTIONS32 vs. JEDIT_JAVA_OPTIONS64 
748 

749 
 isabelle build: settings 
750 
ISABELLE_BUILD_JAVA_OPTIONS32 vs. ISABELLE_BUILD_JAVA_OPTIONS64 
751 

61294  752 
* Bash shell function "jvmpath" has been renamed to "platform_path": it 
753 
is relevant both for Poly/ML and JVM processes. 

754 

61567  755 
* Heap images are 1015% smaller due to less wasteful persistent theory 
756 
content (using ML type theory_id instead of theory); 

757 

62017  758 
* Poly/ML default platform architecture may be changed from 32bit to 
759 
64bit via system option ML_system_64. A system restart (and rebuild) 

760 
is required after change. 

761 

762 
* Poly/ML 5.6 runs natively on x86windows and x86_64windows, which 

763 
both allow larger heap space than former x86cygwin. 

764 

765 

60479  766 

60010  767 
New in Isabelle2015 (May 2015) 
768 
 

57695  769 

770 
*** General *** 
771 

772 
* Local theory specification commands may have a 'private' or 
773 
'qualified' modifier to restrict name space accesses to the local scope, 
774 
as provided by some "context begin ... end" block. For example: 
59926  775 

776 
context 

777 
begin 

778 

779 
private definition ... 

780 
private lemma ... 

781 

59990
782 
qualified definition ... 
783 
qualified lemma ... 
784 

59926  785 
lemma ... 
786 
theorem ... 

787 

788 
end 

789 

59901  790 
* Command 'experiment' opens an anonymous locale context with private 
791 
naming policy. 

792 

59951  793 
* Command 'notepad' requires proper nesting of begin/end and its proof 
794 
structure in the body: 'oops' is no longer supported here. Minor 

795 
INCOMPATIBILITY, use 'sorry' instead. 

796 

797 
* Command 'named_theorems' declares a dynamic fact within the context, 

798 
together with an attribute to maintain the content incrementally. This 

799 
supersedes functor Named_Thms in Isabelle/ML, but with a subtle change 

800 
of semantics due to external visual order vs. internal reverse order. 

801 

802 
* 'find_theorems': search patterns which are abstractions are 

803 
schematically expanded before search. Search results match the naive 

804 
expectation more closely, particularly wrt. abbreviations. 

805 
INCOMPATIBILITY. 

59648  806 

59569  807 
* Commands 'method_setup' and 'attribute_setup' now work within a local 
808 
theory context. 

809 

58928
810 
* Outer syntax commands are managed authentically within the theory 
59569  811 
context, without implicit global state. Potential for accidental 
58928
812 
INCOMPATIBILITY, make sure that required theories are really imported. 
813 

60116  814 
* Historical commandline terminator ";" is no longer accepted (and 
815 
already used differently in Isar). Minor INCOMPATIBILITY, use "isabelle 

816 
update_semicolons" to remove obsolete semicolons from old theory 

59105  821 

60119
822 
* The Eisbach proof method language allows to define new proof methods 
823 
by combining existing ones with their usual syntax. The "match" proof 
824 
method provides basic fact/term matching in addition to 
825 
premise/conclusion matching through Subgoal.focus, and binds fact names 
changeset

826 
changeset

827 
changeset

828 
changeset

829 

57941
830 

58524  831 
*** Prover IDE  Isabelle/Scala/jEdit *** 
832 

59569  833 
* Improved folding mode "isabelle" based on Isar syntax. Alternatively, 
834 
the "sidekick" mode may be used for document structure. 

835 

836 
* Extended bracket matching based on Isar language structure. System 

837 
option jedit_structure_limit determines maximum number of lines to scan 

838 
in the buffer. 

58758  839 

58540  840 
* Support for BibTeX files: context menu, contextsensitive token 
841 
marker, SideKick parser. 

58524  842 

58551  843 
* Document antiquotation @{cite} provides formal markup, which is 
60265  844 
interpreted semiformally based on .bib files that happen to be open in 
845 
the editor (hyperlinks, completion etc.). 

58551  846 

58785  847 
* Less waste of vertical space via negative line spacing (see Global 
848 
Options / Text Area). 

849 

60091
850 
* Improved graphview panel with optional output of PNG or PDF, for 
60273
851 
display of 'thy_deps', 'class_deps' etc. 
60010  852 

60116  853 
* The commands 'thy_deps' and 'class_deps' allow optional bounds to 
854 
restrict the visualized hierarchy. 

60095  855 

60072  856 
* Improved scheduling for asynchronous print commands (e.g. provers 
857 
managed by the Sledgehammer panel) wrt. ongoing document processing. 

858 

58524  859 

59951  860 
*** Document preparation *** 
861 

862 
* Document markup commands 'chapter', 'section', 'subsection', 

863 
'subsubsection', 'text', 'txt', 'text_raw' work uniformly in any 

864 
context, even before the initial 'theory' command. Obsolete proof 

865 
commands 'sect', 'subsect', 'subsubsect', 'txt_raw' have been 

866 
discontinued, use 'section', 'subsection', 'subsubsection', 'text_raw' 

867 
instead. The old 'header' command is still retained for some time, but 

868 
should be replaced by 'chapter', 'section' etc. (using "isabelle 

869 
update_header"). Minor INCOMPATIBILITY. 

870 

60010  871 
* Official support for "tt" style variants, via \isatt{...} or 
872 
\begin{isabellett}...\end{isabellett}. The somewhat fragile \verb or 

873 
verbatim environment of LaTeX is no longer used. This allows @{ML} etc. 

874 
as argument to other macros (such as footnotes). 

875 

876 
* Document antiquotation @{verbatim} prints ASCII text literally in "tt" 

877 
style. 

878 

879 
* Discontinued obsolete option "document_graph": session_graph.pdf is 

880 
produced unconditionally for HTML browser_info and PDFLaTeX document. 

881 

59951  882 
* Diagnostic commands and document markup commands within a proof do not 
883 
affect the command tag for output. Thus commands like 'thm' are subject 

884 
to proof document structure, and no longer "stick out" accidentally. 

885 
Commands 'text' and 'txt' merely differ in the LaTeX style, not their 

886 
tags. Potential INCOMPATIBILITY in exotic situations. 

887 

888 
* System option "pretty_margin" is superseded by "thy_output_margin", 

889 
which is also accessible via document antiquotation option "margin". 

890 
Only the margin for document output may be changed, but not the global 

891 
pretty printing: that is 76 for plain console output, and adapted 

892 
dynamically in GUI frontends. Implementations of document 

893 
antiquotations need to observe the margin explicitly according to 

894 
Thy_Output.string_of_margin. Minor INCOMPATIBILITY. 

895 

60299
896 
* Specification of 'document_files' in the session ROOT file is 
5ae2a2e74c93
897 
mandatory for document preparation. The legacy mode with implicit 
5ae2a2e74c93
898 
copying of the document/ directory is no longer supported. Minor 
5ae2a2e74c93
899 
INCOMPATIBILITY. 
5ae2a2e74c93
900 

59951  901 

58202  902 
*** Pure *** 
903 

59835
904 
* Proof methods with explicit instantiation ("rule_tac", "subgoal_tac" 
905 
etc.) allow an optional context of local variables ('for' declaration): 
906 
these variables become schematic in the instantiated theorem; this 
907 
behaviour is analogous to 'for' in attributes "where" and "of". 
908 
Configuration option rule_insts_schematic (default false) controls use 
909 
of schematic variables outside the context. Minor INCOMPATIBILITY, 
910 
declare rule_insts_schematic = true temporarily and update to use local 
911 
variable declarations or dummy patterns instead. 
912 

60010  913 
* Explicit instantiation via attributes "where", "of", and proof methods 
914 
"rule_tac" with derivatives like "subgoal_tac" etc. admit dummy patterns 

915 
("_") that stand for anonymous local variables. 

916 

59951  917 
* Generated schematic variables in standard format of exported facts are 
918 
incremented to avoid material in the proof context. Rare 

919 
INCOMPATIBILITY, explicit instantiation sometimes needs to refer to 

920 
different index. 

921 

60011  922 
* Lexical separation of signed and unsigned numerals: categories "num" 
923 
and "float" are unsigned. INCOMPATIBILITY: subtle change in precedence 

924 
of numeral signs, particularly in expressions involving infix syntax 

925 
like "( 1) ^ n". 

58410
926 

58421  927 
* Old inner token category "xnum" has been discontinued. Potential 
928 
INCOMPATIBILITY for exotic syntax: may use mixfix grammar with "num" 

929 
token category instead. 

930 

58202  931 

57737  932 
*** HOL *** 
933 

57983
934 
* New (co)datatype package: 
'isabelle doc datatypes' for information on porting. 

939 
INCOMPATIBILITY. 

57983
940 
 Renamed theorems: 
941 
disc_corec ~> corec_disc 
942 
disc_corec_iff ~> corec_disc_iff 
943 
disc_exclude ~> distinct_disc 
944 
disc_exhaust ~> exhaust_disc 
945 
disc_map_iff ~> map_disc_iff 
946 
sel_corec ~> corec_sel 
947 
sel_exhaust ~> exhaust_sel 
948 
sel_map ~> map_sel 
949 
sel_set ~> set_sel 
950 
sel_split ~> split_sel 
951 
sel_split_asm ~> split_sel_asm 
952 
strong_coinduct ~> coinduct_strong 
953 
weak_case_cong ~> case_cong_weak 
954 
INCOMPATIBILITY. 
58192  955 
 The "no_code" option to "free_constructors", "datatype_new", and 
956 
"codatatype" has been renamed "plugins del: code". 

957 
INCOMPATIBILITY. 

58044  958 
 The rules "set_empty" have been removed. They are easy 
959 
consequences of other set rules "by auto". 

960 
INCOMPATIBILITY. 

961 
 The rule "set_cases" is now registered with the "[cases set]" 

57990  962 
attribute. This can influence the behavior of the "cases" proof 
963 
method when more than one case rule is applicable (e.g., an 

964 
assumption is of the form "w : set ws" and the method "cases w" 

965 
is invoked). The solution is to specify the case rule explicitly 

966 
(e.g. "cases w rule: widget.exhaust"). 

967 
INCOMPATIBILITY. 

59675  968 
 Renamed theories: 
969 
BNF_Comp ~> BNF_Composition 

970 
BNF_FP_Base ~> BNF_Fixpoint_Base 

971 
BNF_GFP ~> BNF_Greatest_Fixpoint 

972 
BNF_LFP ~> BNF_Least_Fixpoint 

973 
BNF_Constructions_on_Wellorders ~> BNF_Wellorder_Constructions 

974 
Cardinals/Constructions_on_Wellorders ~> Cardinals/Wellorder_Constructions 

975 
INCOMPATIBILITY. 

60115  976 
 Lifting and Transfer setup for basic HOL types sum and prod (also 
977 
option) is now performed by the BNF package. Theories Lifting_Sum, 

978 
Lifting_Product and Lifting_Option from Main became obsolete and 

979 
were removed. Changed definitions of the relators rel_prod and 

980 
rel_sum (using inductive). 

60112  981 
INCOMPATIBILITY: use rel_prod.simps and rel_sum.simps instead 
60115  982 
of rel_prod_def and rel_sum_def. 
983 
Minor INCOMPATIBILITY: (rarely used by name) transfer theorem names 

984 
changed (e.g. map_prod_transfer ~> prod.map_transfer). 

60261  985 
 Parametricity theorems for map functions, relators, set functions, 
986 
constructors, case combinators, discriminators, selectors and 

987 
(co)recursors are automatically proved and registered as transfer 

988 
rules. 

57983
989 

6edc3529bb4e
990 
* Old datatype package: 
58310  991 
 The old 'datatype' command has been renamed 'old_datatype', and 
58374  992 
'rep_datatype' has been renamed 'old_rep_datatype'. They are 
993 
provided by "~~/src/HOL/Library/Old_Datatype.thy". See 

58310  994 
'isabelle doc datatypes' for information on porting. 
58374  995 
INCOMPATIBILITY. 
57983
996 
 Renamed theorems: 
997 
weak_case_cong ~> case_cong_weak 
998 
INCOMPATIBILITY. 
6edc3529bb4e
reordered some (co)datatype property names for more consistency
1002 

59039  1003 
* Nitpick: 
60011  1004 
 Fixed soundness bug related to the strict and nonstrict subset 
59039  1005 
operations. 
1006 

57737  1007 
* Sledgehammer: 
59511  1008 
 CVC4 is now included with Isabelle instead of CVC3 and run by 
1009 
default. 

59965  1010 
 Z3 is now always enabled by default, now that it is fully open 
1011 
source. The "z3_non_commercial" option is discontinued. 

57737  1012 
 Minimization is now always enabled by default. 
60011  1013 
Removed subcommand: 
57737  1014 
min 
59967  1015 
 Proof reconstruction, both oneliners and Isar, has been 
59039  1016 
dramatically improved. 
1017 
 Improved support for CVC4 and veriT. 

57737  1018 

58062  1019 
* Old and new SMT modules: 
58067  1020 
 The old 'smt' method has been renamed 'old_smt' and moved to 
59569  1021 
'src/HOL/Library/Old_SMT.thy'. It is provided for compatibility, 
1022 
until applications have been ported to use the new 'smt' method. For 

1023 
the method to work, an older version of Z3 (e.g. Z3 3.2 or 4.0) must 

1024 
be installed, and the environment variable "OLD_Z3_SOLVER" must 

1025 
point to it. 

58062  1026 
INCOMPATIBILITY. 
58067  1027 
 The 'smt2' method has been renamed 'smt'. 
58060  1028 
INCOMPATIBILITY. 
59569  1029 
 New option 'smt_reconstruction_step_timeout' to limit the 
1030 
reconstruction time of Z3 proof steps in the new 'smt' method. 

59216  1031 
 New option 'smt_statistics' to display statistics of the new 'smt' 
1032 
method, especially runtime statistics of Z3 proof reconstruction. 

58060  1033 

60261  1034 
* Lifting: command 'lift_definition' allows to execute lifted constants 
1035 
that have as a return type a datatype containing a subtype. This 

1036 
overcomes longtime limitations in the area of code generation and 

1037 
lifting, and avoids tedious workarounds. 

60258  1038 

60010  1039 
* Command and antiquotation "value" provide different evaluation slots 
1040 
(again), where the previous strategy (NBE after ML) serves as default. 

1041 
Minor INCOMPATIBILITY. 

1042 

1043 
* Add NO_MATCHsimproc, allows to check for syntactic nonequality. 

1044 

1045 
* field_simps: Use NO_MATCHsimproc for distribution rules, to avoid 

1046 
nontermination in case of distributing a division. With this change 

1047 
field_simps is in some cases slightly less powerful, if it fails try to 

1048 
add algebra_simps, or use divide_simps. Minor INCOMPATIBILITY. 

1049 

1050 
* Separate class no_zero_divisors has been given up in favour of fully 

1051 
algebraic semiring_no_zero_divisors. INCOMPATIBILITY. 

1052 

1053 
* Class linordered_semidom really requires no zero divisors. 

1054 
INCOMPATIBILITY. 

1055 

1056 
* Classes division_ring, field and linordered_field always demand 

1057 
"inverse 0 = 0". Given up separate classes division_ring_inverse_zero, 

1058 
field_inverse_zero and linordered_field_inverse_zero. INCOMPATIBILITY. 

1059 

1060 
* Classes cancel_ab_semigroup_add / cancel_monoid_add specify explicit 

1061 
additive inverse operation. INCOMPATIBILITY. 

1062 

60020
065ecea354d0
Complex roots of unity. Better definition of ln for complex numbers. Used [code del] to stop code generation for powr.
1063 
* Complex powers and square roots. The functions "ln" and "powr" are now 
60025  1064 
overloaded for types real and complex, and 0 powr y = 0 by definition. 
1065 
INCOMPATIBILITY: type constraints may be necessary. 

60020
065ecea354d0
1066 

60010  1067 
* The functions "sin" and "cos" are now defined for any type of sort 
1068 
"{real_normed_algebra_1,banach}" type, so in particular on "real" and 

1069 
"complex" uniformly. Minor INCOMPATIBILITY: type constraints may be 

1070 
needed. 

1071 

1072 
* New library of properties of the complex transcendental functions sin, 

1073 
cos, tan, exp, Ln, Arctan, Arcsin, Arccos. Ported from HOL Light. 

1074 

1075 
* The factorial function, "fact", now has type "nat => 'a" (of a sort 

1076 
that admits numeric types including nat, int, real and complex. 

1077 
INCOMPATIBILITY: an expression such as "fact 3 = 6" may require a type 

1078 
constraint, and the combination "real (fact k)" is likely to be 

1079 
unsatisfactory. If a type conversion is still necessary, then use 

1080 
"of_nat (fact k)" or "real_of_nat (fact k)". 

1081 

1082 
* Removed functions "natfloor" and "natceiling", use "nat o floor" and 

1083 
"nat o ceiling" instead. A few of the lemmas have been retained and 

1084 
adapted: in their names "natfloor"/"natceiling" has been replaced by 

1085 
"nat_floor"/"nat_ceiling". 

1086 

1087 
* Qualified some duplicated fact names required for boostrapping the 

1088 
type class hierarchy: 

1089 
ab_add_uminus_conv_diff ~> diff_conv_add_uminus 

1090 
field_inverse_zero ~> inverse_zero 

1091 
field_divide_inverse ~> divide_inverse 

1092 
field_inverse ~> left_inverse 

1093 
Minor INCOMPATIBILITY. 

1094 

1095 
* Eliminated fact duplicates: 

1096 
mult_less_imp_less_right ~> mult_right_less_imp_less 

1097 
mult_less_imp_less_left ~> mult_left_less_imp_less 

1098 
Minor INCOMPATIBILITY. 

1099 

1100 
* Fact consolidation: even_less_0_iff is subsumed by 

1101 
double_add_less_zero_iff_single_add_less_zero (simp by default anyway). 

1102 

1103 
* Generalized and consolidated some theorems concerning divsibility: 

1104 
dvd_reduce ~> dvd_add_triv_right_iff 

1105 
dvd_plus_eq_right ~> dvd_add_right_iff 

1106 
dvd_plus_eq_left ~> dvd_add_left_iff 

1107 
Minor INCOMPATIBILITY. 

1108 

1109 
* "even" and "odd" are mere abbreviations for "2 dvd _" and "~ 2 dvd _" 

1110 
and part of theory Main. 

1111 
even_def ~> even_iff_mod_2_eq_zero 

1112 
INCOMPATIBILITY. 

1113 

1114 
* Lemma name consolidation: divide_Numeral1 ~> divide_numeral_1. Minor 

1115 
INCOMPATIBILITY. 

1116 

1117 
* Bootstrap of listsum as special case of abstract product over lists. 

1118 
Fact rename: 

1119 
listsum_def ~> listsum.eq_foldr 

1120 
INCOMPATIBILITY. 

1121 

1122 
* Product over lists via constant "listprod". 

1123 

1124 
* Theory List: renamed drop_Suc_conv_tl and nth_drop' to 

1125 
Cons_nth_drop_Suc. 

58247
1126 

58626  1127 
* New infrastructure for compiling, running, evaluating and testing 
59569  1128 
generated code in target languages in HOL/Library/Code_Test. See 
1129 
HOL/Codegenerator_Test/Code_Test* for examples. 

58008  1130 

60010  1131 
* Library/Multiset: 
59813  1132 
 Introduced "replicate_mset" operation. 
1133 
 Introduced alternative characterizations of the multiset ordering in 

1134 
"Library/Multiset_Order". 

59958
1135 
 Renamed multiset ordering: 
1136 
<# ~> #<# 
1137 
<=# ~> #<=# 
1138 
\<subset># ~> #\<subset># 
1139 
\<subseteq># ~> #\<subseteq># 
1140 
INCOMPATIBILITY. 
59986
1141 
 Introduced abbreviations for illnamed multiset operations: 
1142 
<#, \<subset># abbreviate < (strict subset) 
1143 
<=#, \<le>#, \<subseteq># abbreviate <= (subset or equal) 
1144 
INCOMPATIBILITY. 
59813  1145 
 Renamed 
1146 
in_multiset_of ~> in_multiset_in_set 

59998
c54d36be22ef
renamed Multiset.fold > fold_mset, Multiset.filter > filter_mset
Multiset.fold ~> fold_mset 
c54d36be22ef
1148 
Multiset.filter ~> filter_mset 
59813  1149 
INCOMPATIBILITY. 
59949  1150 
 Removed mcard, is equal to size. 
59813  1151 
 Added attributes: 
1152 
image_mset.id [simp] 

1153 
image_mset_id [simp] 

1154 
elem_multiset_of_set [simp, intro] 

1155 
comp_fun_commute_plus_mset [simp] 

1156 
comp_fun_commute.fold_mset_insert [OF comp_fun_commute_plus_mset, simp] 

1157 
in_mset_fold_plus_iff [iff] 

1158 
set_of_Union_mset [simp] 

1159 
in_Union_mset_iff [iff] 

1160 
INCOMPATIBILITY. 

1161 

60010  1162 
* Library/Sum_of_Squares: simplified and improved "sos" method. Always 
1163 
use local CSDP executable, which is much faster than the NEOS server. 

1164 
The "sos_cert" functionality is invoked as "sos" with additional 

1165 
argument. Minor INCOMPATIBILITY. 

1166 

1167 
* HOLDecision_Procs: New counterexample generator quickcheck 

1168 
[approximation] for inequalities of transcendental functions. Uses 

1169 
hardware floating point arithmetic to randomly discover potential 

60011  1170 
counterexamples. Counterexamples are certified with the "approximation" 
60010  1171 
method. See HOL/Decision_Procs/ex/Approximation_Quickcheck_Ex.thy for 
1172 
examples. 

58990  1173 

59354  1174 
* HOLProbability: Reworked measurability prover 
60011  1175 
 applies destructor rules repeatedly 
59354  1176 
 removed application splitting (replaced by destructor rule) 
59569  1177 
 added congruence rules to rewrite measure spaces under the sets 
1178 
projection 

1179 

60010  1180 
* New proof method "rewrite" (in theory ~~/src/HOL/Library/Rewrite) for 
1181 
singlestep rewriting with subterm selection based on patterns. 

1182 

58630  1183 

58066  1184 
*** ML *** 
1185 

60010  1186 
* Subtle change of name space policy: undeclared entries are now 
1187 
considered inaccessible, instead of accessible via the fullyqualified 

1188 
internal name. This mainly affects Name_Space.intern (and derivatives), 

1189 
which may produce an unexpected Long_Name.hidden prefix. Note that 

60011  1190 
contemporary applications use the strict Name_Space.check (and 
60010  1191 
derivatives) instead, which is not affected by the change. Potential 
1192 
INCOMPATIBILITY in rare applications of Name_Space.intern. 

59951  1193 

60096  1194 
* Subtle change of error semantics of Toplevel.proof_of: regular user 
1195 
ERROR instead of internal Toplevel.UNDEF. 

1196 

59951  1197 
* Basic combinators map, fold, fold_map, split_list, apply are available 
1198 
as parameterized antiquotations, e.g. @{map 4} for lists of quadruples. 

1199 

1200 
* Renamed "pairself" to "apply2", in accordance to @{apply 2}. 

1201 
INCOMPATIBILITY. 

1202 

1203 
* Former combinators NAMED_CRITICAL and CRITICAL for central critical 

1204 
sections have been discontinued, in favour of the more elementary 

1205 
Multithreading.synchronized and its highlevel derivative 

1206 
Synchronized.var (which is usually sufficient in applications). Subtle 

1207 
INCOMPATIBILITY: synchronized access needs to be atomic and cannot be 

1208 
nested. 

1209 

60010  1210 
* Synchronized.value (ML) is actually synchronized (as in Scala): subtle 
1211 
change of semantics with minimal potential for INCOMPATIBILITY. 

59899  1212 

59621
1213 
* The main operations to certify logical entities are Thm.ctyp_of and 
1214 
Thm.cterm_of with a local context; oldstyle global theory variants are 
1215 
available as Thm.global_ctyp_of and Thm.global_cterm_of. 
1216 
INCOMPATIBILITY. 
291934bac95e
Thm.cterm_of and Thm.ctyp_of operate on local context;
wenzelm
parents:
59588
diff
changeset

1217 

59582  1218 
* Elementary operations in module Thm are no longer pervasive. 
1219 
INCOMPATIBILITY, need to use qualified Thm.prop_of, Thm.cterm_of, 

1220 
Thm.term_of etc. 

1221 

58963
26bf09b95dda
proper context for assume_tac (atac remains as fallback without context);
wenzelm
50b60f501b05
proper context for resolve_tac, eresolve_tac, dresolve_tac, forward_tac etc.;
50b60f501b05
proper context for resolve_tac, eresolve_tac, dresolve_tac, forward_tac etc.;
58956
a816aa3ff391
proper context for compose_tac, Splitter.split_tac (relevant for unify trace options);
58066  1226 
* Tactical PARALLEL_ALLGOALS is the most common way to refer to 
1227 
PARALLEL_GOALS. 

1228 

59564
fdc03c8daacc
Goal.prove_multi is superseded by the fully general Goal.prove_common;
wenzelm
parents:
59557
diff
changeset

1229 
* Goal.prove_multi is superseded by the fully general Goal.prove_common, 
fdc03c8daacc
Goal.prove_multi is superseded by the fully general Goal.prove_common;
wenzelm
parents:
59557
diff
changeset

1230 
which also allows to specify a fork priority. 
fdc03c8daacc
Goal.prove_multi is superseded by the fully general Goal.prove_common;
wenzelm
parents:
59557
diff
changeset

1231 

59936
b8ffc3dc9e24
@{command_spec} is superseded by @{command_keyword};
wenzelm
parents:
59926
diff
changeset

1232 
* Antiquotation @{command_spec "COMMAND"} is superseded by 
b8ffc3dc9e24
@{command_spec} is superseded by @{command_keyword};
wenzelm
parents:
59926
diff
changeset

1233 
@{command_keyword COMMAND} (usually without quotes and with PIDE 
b8ffc3dc9e24
@{command_spec} is superseded by @{command_keyword};
wenzelm
parents:
59926
diff
changeset

1234 
markup). Minor INCOMPATIBILITY. 
b8ffc3dc9e24
@{command_spec} is superseded by @{command_keyword};
wenzelm
parents:
59926
diff
changeset

1235 

60010  1236 
* Cartouches within ML sources are turned into values of type 
1237 
Input.source (with formal position information). 

1238 

58066  1239 

58610  1240 
*** System *** 
1241 

59951  1242 
* The Isabelle tool "update_cartouches" changes theory files to use 
1243 
cartouches instead of oldstyle {* verbatim *} or `alt_string` tokens. 

1244 

60108  1245 
* The Isabelle tool "build" provides new options X, k, x. 
59951  1246 

1247 
* Discontinued oldfashioned "codegen" tool. Code generation can always 

1248 
be externally triggered using an appropriate ROOT file plus a 

1249 
corresponding theory. Parametrization is possible using environment 

1250 
variables, or ML snippets in the most extreme cases. Minor 

1251 
INCOMPATIBILITY. 

58842  1252 

59200  1253 
* JVM system property "isabelle.threads" determines size of Scala thread 
1254 
pool, like Isabelle system option "threads" for ML. 

1255 

59201
702e0971d617
added system property isabelle.laf, notably for initial system dialog;
wenzelm
parents:
59200
diff
changeset

1256 
* JVM system property "isabelle.laf" determines the default Swing 
702e0971d617
added system property isabelle.laf, notably for initial system dialog;
wenzelm
parents:
59200
diff
changeset

1257 
lookandfeel, via internal class name or symbolic name as in the jEdit 
702e0971d617
added system property isabelle.laf, notably for initial system dialog;
wenzelm
parents:
59200
diff
changeset

1258 
menu Global Options / Appearance. 
702e0971d617
added system property isabelle.laf, notably for initial system dialog;
wenzelm
parents:
59200
diff
changeset

1259 

59951  1260 
* Support for Proof General and Isar TTY loop has been discontinued. 
60010  1261 
Minor INCOMPATIBILITY, use standard PIDE infrastructure instead. 
59891
9ce697050455
added isabelle build option k, for fast offline checking of theory sources;
wenzelm
parents:
59849
diff
changeset

1262 

58610  1263 

57695  1264 

57452  1265 
New in Isabelle2014 (August 2014) 
1266 
 

54055  1267 

54702
1268 
*** General *** 
1269 

57452  1270 
* Support for official Standard ML within the Isabelle context. 
1271 
Command 'SML_file' reads and evaluates the given Standard ML file. 

1272 
Toplevel bindings are stored within the theory context; the initial 

1273 
environment is restricted to the Standard ML implementation of 

1274 
Poly/ML, without the addons of Isabelle/ML. Commands 'SML_import' 

1275 
and 'SML_export' allow to exchange toplevel bindings between the two 

1276 
separate environments. See also ~~/src/Tools/SML/Examples.thy for 

1277 
some examples. 

56499
1278 

57504  1279 
* Standard tactics and proof methods such as "clarsimp", "auto" and 
1280 
"safe" now preserve equality hypotheses "x = expr" where x is a free 

1281 
variable. Locale assumptions and chained facts containing "x" 

1282 
continue to be useful. The new method "hypsubst_thin" and the 

1283 
configuration option "hypsubst_thin" (within the attribute name space) 

1284 
restore the previous behavior. INCOMPATIBILITY, especially where 

1285 
induction is done after these methods or when the names of free and 

1286 
bound variables clash. As first approximation, old proofs may be 

1287 
repaired by "using [[hypsubst_thin = true]]" in the critical spot. 

1288 

56232  1289 
* More static checking of proof methods, which allows the system to 
1290 
form a closure over the concrete syntax. Method arguments should be 

1291 
processed in the original proof context as far as possible, before 

1292 
operating on the goal state. In any case, the standard discipline for 

1293 
subgoaladdressing needs to be observed: no subgoals or a subgoal 

1294 
number that is out of range produces an empty result sequence, not an 

1295 
exception. Potential INCOMPATIBILITY for nonconformant tactical 

1296 
proof tools. 

1297 

57452  1298 
* Lexical syntax (inner and outer) supports text cartouches with 
1299 
arbitrary nesting, and without escapes of quotes etc. The Prover IDE 

1300 
supports input via ` (backquote). 

1301 

1302 
* The outer syntax categories "text" (for formal comments and document 

1303 
markup commands) and "altstring" (for literal fact references) allow 

1304 
cartouches as well, in addition to the traditional mix of quotations. 

1305 

1306 
* Syntax of document antiquotation @{rail} now uses \<newline> instead 

1307 
of "\\", to avoid the optical illusion of escaped backslash within 

57491  1308 
string token. General renovation of its syntax using text cartouches. 
57452  1309 
Minor INCOMPATIBILITY. 
1310 

1311 
* Discontinued legacy_isub_isup, which was a temporary workaround for 

1312 
Isabelle/ML in Isabelle20131. The prover process no longer accepts 

1313 
old identifier syntax with \<^isub> or \<^isup>. Potential 

1314 
INCOMPATIBILITY. 

1315 

1316 
* Document antiquotation @{url} produces markup for the given URL, 

1317 
which results in an active hyperlink within the text. 

1318 

1319 
* Document antiquotation @{file_unchecked} is like @{file}, but does 

1320 
not check existence within the filesystem. 

1321 

1322 
* Updated and extended manuals: codegen, datatypes, implementation, 

1323 
isarref, jedit, system. 

57423
96f970d1522b
updated NEWS  removed material that is already in the manual;
wenzelm
parents:
57418
diff
changeset

1324 

54702
1325 

54533  1326 
*** Prover IDE  Isabelle/Scala/jEdit *** 
1327 

57650  1328 
* Improved Document panel: simplified interaction where every single 
57452  1329 
mouse click (re)opens document via desktop environment or as jEdit 
1330 
buffer. 

1331 

1332 
* Support for Navigator plugin (with toolbar buttons), with connection 

1333 
to PIDE hyperlinks. 

1334 

1335 
* Auxiliary files ('ML_file' etc.) are managed by the Prover IDE. 

1336 
Open text buffers take precedence over copies within the filesystem. 

1337 

1338 
* Improved support for Isabelle/ML, with jEdit mode "isabelleml" for 

1339 
auxiliary ML files. 

57423
1340 

96f970d1522b
1341 
* Improved syntactic and semantic completion mechanism, with simple 
1342 
templates, completion language context, namespace completion, 
1343 
filename completion, spellchecker completion. 
1344 

96f970d1522b
1345 
* Refined GUI popup for completion: more robust key/mouse event 
1346 
handling and propagation to enclosing text area  avoid loosing 
1347 
keystrokes with slow / remote graphics displays. 
1348 

57833
1349 
* Completion popup supports both ENTER and TAB (default) to select an 
1350 
item, depending on Isabelle options. 
1351 

57423
1352 
* Refined insertion of completion items wrt. jEdit text: multiple 
1353 
selections, rectangular selections, rectangular selection as "tall 
1354 
caret". 
wenzelm
parents:
1357 
completion popup and contextmenu. 
56554  1358 

56879
1359 
* More general "Query" panel supersedes "Find" panel, with GUI access 
1360 
to commands 'find_theorems' and 'find_consts', as well as print 
1361 
operations for the context. Minor incompatibility in keyboard 
1362 
shortcuts etc.: replace action isabellefind by isabellequery. 
54881  1367 
* Option "jedit_print_mode" (see also "Plugin Options / Isabelle / 
1368 
General") allows to specify additional print modes for the prover 

1369 
process, without requiring oldfashioned commandline invocation of 

1370 
"isabelle jedit m MODE". 

1371 

56505  1372 
* More support for remote files (e.g. http) using standard Java 
1373 
networking operations instead of jEdit virtual filesystems. 

1374 

57822  1375 
* Empty editors buffers that are no longer required (e.g.\ via theory 
1376 
imports) are automatically removed from the document model. 

1377 

57869  1378 
* Improved monitor panel. 
1379 

56838  1380 
* Improved Console/Scala plugin: more uniform scala.Console output, 
1381 
more robust treatment of threads and interrupts. 

1382 

56939  1383 
* Improved management of dockable windows: clarified keyboard focus 
1384 
and window placement wrt. main editor view; optional menu item to 

1385 
"Detach" a copy where this makes sense. 

1386 

57452  1387 
* New Simplifier Trace panel provides an interactive view of the 
57594
1388 
simplification process, enabled by the "simp_trace_new" attribute 
57452  1389 
within the context. 
1390 

1391 

55001  1392 
*** Pure *** 
1393 

57504  1394 
* Lowlevel typeclass commands 'classes', 'classrel', 'arities' have 
1395 
been discontinued to avoid the danger of nontrivial axiomatization 

1396 
that is not immediately visible. INCOMPATIBILITY, use regular 

1397 
'instance' command with proof. The required OFCLASS(...) theorem 

1398 
might be postulated via 'axiomatization' beforehand, or the proof 

