lexing: comparison thys/Positions.thy

equal deleted inserted replaced

-:160d0b08471c
+:247fc5dd4943
 section {* Ordering of values according to Okui & Suzuki *}
-definition val_ord:: "val \<Rightarrow> nat list \<Rightarrow> val \<Rightarrow> bool" ("_ \<sqsubset>val _ _")
+definition PosOrd:: "val \<Rightarrow> nat list \<Rightarrow> val \<Rightarrow> bool" ("_ \<sqsubset>val _ _" [60, 60, 59] 60)
 where
-"v1 \<sqsubset>val p v2 \<equiv> (p \<in> Pos v1 \<and>
+"v1 \<sqsubset>val p v2 \<equiv> p \<in> Pos v1 \<and>
 pflat_len v1 p > pflat_len v2 p \<and>
-(\<forall>q \<in> Pos v1 \<union> Pos v2. q \<sqsubset>lex p \<longrightarrow> pflat_len v1 q = pflat_len v2 q))"
+(\<forall>q \<in> Pos v1 \<union> Pos v2. q \<sqsubset>lex p \<longrightarrow> pflat_len v1 q = pflat_len v2 q)"
+definition ValFlat_ord:: "val \<Rightarrow> nat list \<Rightarrow> val \<Rightarrow> bool" ("_ \<sqsubset>fval _ _")
-definition val_ord_ex:: "val \<Rightarrow> val \<Rightarrow> bool" ("_ :\<sqsubset>val _")
+where
+"v1 \<sqsubset>fval p v2 \<equiv> p \<in> Pos v1 \<and>
+(p \<notin> Pos v2 \<or> flat (at v2 p) \<sqsubset>spre flat (at v1 p)) \<and>
+(\<forall>q \<in> Pos v1 \<union> Pos v2. q \<sqsubset>lex p \<longrightarrow> (pflat_len v1 q = pflat_len v2 q))"
+lemma
+assumes "v1 \<sqsubset>fval p v2"
+shows "v1 \<sqsubset>val p v2"
+using assms
+unfolding ValFlat_ord_def PosOrd_def
+apply(clarify)
+apply(simp add: pflat_len_def)
+apply(auto)[1]
+apply(smt intlen_bigger)
+apply(simp add: sprefix_list_def prefix_list_def)
+apply(auto)[1]
+apply(drule sym)
+apply(simp add: intlen_append)
+apply (metis intlen.simps(1) intlen_length length_greater_0_conv list.size(3))
+apply(smt intlen_bigger)
+done
+lemma
+assumes "v1 \<sqsubset>val p v2" "flat (at v2 p) \<sqsubset>spre flat (at v1 p)"
+shows "v1 \<sqsubset>fval p v2"
+using assms
+unfolding ValFlat_ord_def PosOrd_def
+apply(clarify)
+done
+definition PosOrd_ex:: "val \<Rightarrow> val \<Rightarrow> bool" ("_ :\<sqsubset>val _" [60, 59] 60)
 where
 "v1 :\<sqsubset>val v2 \<equiv> (\<exists>p. v1 \<sqsubset>val p v2)"
-definition val_ord_ex1:: "val \<Rightarrow> val \<Rightarrow> bool" ("_ :\<sqsubseteq>val _")
+definition PosOrd_ex1:: "val \<Rightarrow> val \<Rightarrow> bool" ("_ :\<sqsubseteq>val _" [60, 59] 60)
 where
 "v1 :\<sqsubseteq>val v2 \<equiv> v1 :\<sqsubset>val v2 \<or> v1 = v2"
-lemma val_ord_shorterE:
+lemma PosOrd_shorterE:
 assumes "v1 :\<sqsubset>val v2"
 shows "length (flat v2) \<le> length (flat v1)"
 using assms
-apply(auto simp add: val_ord_ex_def val_ord_def)
+apply(auto simp add: PosOrd_ex_def PosOrd_def)
 apply(case_tac p)
 apply(simp add: pflat_len_simps)
 apply(simp add: intlen_length)
 apply(simp)
 apply(drule_tac x="[]" in bspec)
 apply(simp add: Pos_empty)
 apply(simp add: pflat_len_simps)
 by (metis intlen_length le_less less_irrefl linear)
-lemma val_ord_shorterI:
+lemma PosOrd_shorterI:
 assumes "length (flat v') < length (flat v)"
 shows "v :\<sqsubset>val v'"
 using assms
-unfolding val_ord_ex_def
+unfolding PosOrd_ex_def
-by (metis Pos_empty intlen_length lex_simps(2) pflat_len_simps(9) val_ord_def)
+by (metis Pos_empty intlen_length lex_simps(2) pflat_len_simps(9) PosOrd_def)
-lemma val_ord_spreI:
+lemma PosOrd_spreI:
 assumes "(flat v') \<sqsubset>spre (flat v)"
 shows "v :\<sqsubset>val v'"
 using assms
-apply(rule_tac val_ord_shorterI)
+apply(rule_tac PosOrd_shorterI)
 by (metis append_eq_conv_conj le_less_linear prefix_list_def sprefix_list_def take_all)
+lemma PosOrd_Left_Right:
+assumes "flat v1 = flat v2"
-lemma val_ord_LeftI:
+shows "Left v1 :\<sqsubset>val Right v2"
+unfolding PosOrd_ex_def
+apply(rule_tac x="[0]" in exI)
+using assms
+apply(auto simp add: PosOrd_def pflat_len_simps Pos_empty)
+apply(smt intlen_bigger)
+done
+lemma PosOrd_LeftI:
 assumes "v :\<sqsubset>val v'" "flat v = flat v'"
 shows "(Left v) :\<sqsubset>val (Left v')"
 using assms(1)
-unfolding val_ord_ex_def
+unfolding PosOrd_ex_def
 apply(auto)
 apply(rule_tac x="0#p" in exI)
 using assms(2)
-apply(auto simp add: val_ord_def pflat_len_simps)
+apply(auto simp add: PosOrd_def pflat_len_simps)
 done
-lemma val_ord_RightI:
+lemma PosOrd_RightI:
 assumes "v :\<sqsubset>val v'" "flat v = flat v'"
 shows "(Right v) :\<sqsubset>val (Right v')"
 using assms(1)
-unfolding val_ord_ex_def
+unfolding PosOrd_ex_def
 apply(auto)
 apply(rule_tac x="Suc 0#p" in exI)
 using assms(2)
-apply(auto simp add: val_ord_def pflat_len_simps)
+apply(auto simp add: PosOrd_def pflat_len_simps)
 done
-lemma val_ord_LeftE:
+lemma PosOrd_LeftE:
 assumes "(Left v1) :\<sqsubset>val (Left v2)"
 shows "v1 :\<sqsubset>val v2"
 using assms
-apply(simp add: val_ord_ex_def)
+apply(simp add: PosOrd_ex_def)
 apply(erule exE)
 apply(case_tac "p = []")
-apply(simp add: val_ord_def)
+apply(simp add: PosOrd_def)
 apply(auto simp add: pflat_len_simps)
 apply(rule_tac x="[]" in exI)
 apply(simp add: Pos_empty pflat_len_simps)
-apply(auto simp add: pflat_len_simps val_ord_def)
+apply(auto simp add: pflat_len_simps PosOrd_def)
 apply(rule_tac x="ps" in exI)
 apply(auto)
 apply(drule_tac x="0#q" in bspec)
 apply(simp)
 apply(simp add: pflat_len_simps)
 apply(drule_tac x="0#q" in bspec)
 apply(simp)
 apply(simp add: pflat_len_simps)
 done
-lemma val_ord_RightE:
+lemma PosOrd_RightE:
 assumes "(Right v1) :\<sqsubset>val (Right v2)"
 shows "v1 :\<sqsubset>val v2"
 using assms
-apply(simp add: val_ord_ex_def)
+apply(simp add: PosOrd_ex_def)
 apply(erule exE)
 apply(case_tac "p = []")
-apply(simp add: val_ord_def)
+apply(simp add: PosOrd_def)
 apply(auto simp add: pflat_len_simps)
 apply(rule_tac x="[]" in exI)
 apply(simp add: Pos_empty pflat_len_simps)
-apply(auto simp add: pflat_len_simps val_ord_def)
+apply(auto simp add: pflat_len_simps PosOrd_def)
 apply(rule_tac x="ps" in exI)
 apply(auto)
 apply(drule_tac x="Suc 0#q" in bspec)
 apply(simp)
 apply(simp add: pflat_len_simps)
 apply(simp)
 apply(simp add: pflat_len_simps)
 done
-lemma val_ord_SeqI1:
+lemma PosOrd_SeqI1:
 assumes "v1 :\<sqsubset>val v1'" "flat (Seq v1 v2) = flat (Seq v1' v2')"
 shows "(Seq v1 v2) :\<sqsubset>val (Seq v1' v2')"
 using assms(1)
-apply(subst (asm) val_ord_ex_def)
+apply(subst (asm) PosOrd_ex_def)
-apply(subst (asm) val_ord_def)
+apply(subst (asm) PosOrd_def)
 apply(clarify)
-apply(subst val_ord_ex_def)
+apply(subst PosOrd_ex_def)
 apply(rule_tac x="0#p" in exI)
-apply(subst val_ord_def)
+apply(subst PosOrd_def)
 apply(rule conjI)
 apply(simp)
 apply(rule conjI)
 apply(simp add: pflat_len_simps)
 apply(rule ballI)
 using assms(2)
 apply(simp)
 apply(auto simp add: pflat_len_simps)[2]
 done
-lemma val_ord_SeqI2:
+lemma PosOrd_SeqI2:
 assumes "v2 :\<sqsubset>val v2'" "flat v2 = flat v2'"
 shows "(Seq v v2) :\<sqsubset>val (Seq v v2')"
 using assms(1)
-apply(subst (asm) val_ord_ex_def)
+apply(subst (asm) PosOrd_ex_def)
-apply(subst (asm) val_ord_def)
+apply(subst (asm) PosOrd_def)
 apply(clarify)
-apply(subst val_ord_ex_def)
+apply(subst PosOrd_ex_def)
 apply(rule_tac x="Suc 0#p" in exI)
-apply(subst val_ord_def)
+apply(subst PosOrd_def)
 apply(rule conjI)
 apply(simp)
 apply(rule conjI)
 apply(simp add: pflat_len_simps)
 apply(rule ballI)
 using assms(2)
 apply(simp)
 apply(auto simp add: pflat_len_simps)
 done
-lemma val_ord_SeqE:
+lemma PosOrd_SeqE:
 assumes "(Seq v1 v2) :\<sqsubset>val (Seq v1' v2')"
 shows "v1 :\<sqsubset>val v1' \<or> v2 :\<sqsubset>val v2'"
 using assms
-apply(simp add: val_ord_ex_def)
+apply(simp add: PosOrd_ex_def)
 apply(erule exE)
 apply(case_tac p)
-apply(simp add: val_ord_def)
+apply(simp add: PosOrd_def)
 apply(auto simp add: pflat_len_simps intlen_append)[1]
 apply(rule_tac x="[]" in exI)
 apply(drule_tac x="[]" in spec)
 apply(simp add: Pos_empty pflat_len_simps)
 apply(case_tac a)
 apply(rule disjI1)
-apply(simp add: val_ord_def)
+apply(simp add: PosOrd_def)
 apply(auto simp add: pflat_len_simps intlen_append)[1]
 apply(rule_tac x="list" in exI)
 apply(simp)
 apply(rule ballI)
 apply(rule impI)
 apply(drule_tac x="0#q" in bspec)
 apply(simp)
 apply(simp add: pflat_len_simps)
 apply(case_tac nat)
 apply(rule disjI2)
-apply(simp add: val_ord_def)
+apply(simp add: PosOrd_def)
 apply(auto simp add: pflat_len_simps intlen_append)
 apply(rule_tac x="list" in exI)
 apply(simp add: Pos_empty)
 apply(rule ballI)
 apply(rule impI)
 apply(drule_tac x="Suc 0#q" in bspec)
 apply(simp)
 apply(simp add: pflat_len_simps)
-apply(simp add: val_ord_def)
+apply(simp add: PosOrd_def)
 done
-lemma val_ord_StarsI:
+lemma PosOrd_StarsI:
 assumes "v1 :\<sqsubset>val v2" "flat (Stars (v1#vs1)) = flat (Stars (v2#vs2))"
 shows "(Stars (v1#vs1)) :\<sqsubset>val (Stars (v2#vs2))"
 using assms(1)
-apply(subst (asm) val_ord_ex_def)
+apply(subst (asm) PosOrd_ex_def)
-apply(subst (asm) val_ord_def)
+apply(subst (asm) PosOrd_def)
 apply(clarify)
-apply(subst val_ord_ex_def)
+apply(subst PosOrd_ex_def)
-apply(subst val_ord_def)
+apply(subst PosOrd_def)
 apply(rule_tac x="0#p" in exI)
 apply(simp add: pflat_len_Stars_simps pflat_len_simps)
 using assms(2)
 apply(simp add: pflat_len_simps intlen_append)
 apply(auto simp add: pflat_len_Stars_simps pflat_len_simps)
 done
-lemma val_ord_StarsI2:
+lemma PosOrd_StarsI2:
 assumes "(Stars vs1) :\<sqsubset>val (Stars vs2)" "flat (Stars vs1) = flat (Stars vs2)"
 shows "(Stars (v#vs1)) :\<sqsubset>val (Stars (v#vs2))"
 using assms(1)
-apply(subst (asm) val_ord_ex_def)
+apply(subst (asm) PosOrd_ex_def)
-apply(subst (asm) val_ord_def)
+apply(subst (asm) PosOrd_def)
 apply(clarify)
-apply(subst val_ord_ex_def)
+apply(subst PosOrd_ex_def)
-apply(subst val_ord_def)
+apply(subst PosOrd_def)
 apply(case_tac p)
 apply(simp add: pflat_len_simps)
 apply(rule_tac x="[]" in exI)
 apply(simp add: pflat_len_Stars_simps pflat_len_simps intlen_append)
 apply(rule_tac x="Suc a#list" in exI)
 using assms(2)
 apply(simp add: pflat_len_simps intlen_append)
 apply(auto simp add: pflat_len_Stars_simps pflat_len_simps)
 done
-lemma val_ord_Stars_appendI:
+lemma PosOrd_Stars_appendI:
 assumes "Stars vs1 :\<sqsubset>val Stars vs2" "flat (Stars vs1) = flat (Stars vs2)"
 shows "Stars (vs @ vs1) :\<sqsubset>val Stars (vs @ vs2)"
 using assms
 apply(induct vs)
 apply(simp)
-apply(simp add: val_ord_StarsI2)
+apply(simp add: PosOrd_StarsI2)
 done
-lemma val_ord_StarsE2:
+lemma PosOrd_StarsE2:
 assumes "Stars (v # vs1) :\<sqsubset>val Stars (v # vs2)"
 shows "Stars vs1 :\<sqsubset>val Stars vs2"
 using assms
-apply(subst (asm) val_ord_ex_def)
+apply(subst (asm) PosOrd_ex_def)
 apply(erule exE)
 apply(case_tac p)
 apply(simp)
-apply(simp add: val_ord_def pflat_len_simps intlen_append)
+apply(simp add: PosOrd_def pflat_len_simps intlen_append)
-apply(subst val_ord_ex_def)
+apply(subst PosOrd_ex_def)
 apply(rule_tac x="[]" in exI)
-apply(simp add: val_ord_def pflat_len_simps Pos_empty)
+apply(simp add: PosOrd_def pflat_len_simps Pos_empty)
 apply(simp)
 apply(case_tac a)
 apply(clarify)
-apply(auto simp add: pflat_len_simps val_ord_def pflat_len_def)[1]
+apply(auto simp add: pflat_len_simps PosOrd_def pflat_len_def)[1]
 apply(clarify)
-apply(simp add: val_ord_ex_def)
+apply(simp add: PosOrd_ex_def)
 apply(rule_tac x="nat#list" in exI)
-apply(auto simp add: val_ord_def pflat_len_simps intlen_append)[1]
+apply(auto simp add: PosOrd_def pflat_len_simps intlen_append)[1]
 apply(case_tac q)
-apply(simp add: val_ord_def pflat_len_simps intlen_append)
+apply(simp add: PosOrd_def pflat_len_simps intlen_append)
 apply(clarify)
 apply(drule_tac x="Suc a # lista" in bspec)
 apply(simp)
-apply(auto simp add: val_ord_def pflat_len_simps intlen_append)[1]
+apply(auto simp add: PosOrd_def pflat_len_simps intlen_append)[1]
 apply(case_tac q)
-apply(simp add: val_ord_def pflat_len_simps intlen_append)
+apply(simp add: PosOrd_def pflat_len_simps intlen_append)
 apply(clarify)
 apply(drule_tac x="Suc a # lista" in bspec)
 apply(simp)
-apply(auto simp add: val_ord_def pflat_len_simps intlen_append)[1]
+apply(auto simp add: PosOrd_def pflat_len_simps intlen_append)[1]
 done
-lemma val_ord_Stars_appendE:
+lemma PosOrd_Stars_appendE:
 assumes "Stars (vs @ vs1) :\<sqsubset>val Stars (vs @ vs2)"
 shows "Stars vs1 :\<sqsubset>val Stars vs2"
 using assms
 apply(induct vs)
 apply(simp)
-apply(simp add: val_ord_StarsE2)
+apply(simp add: PosOrd_StarsE2)
 done
-lemma val_ord_Stars_append_eq:
+lemma PosOrd_Stars_append_eq:
 assumes "flat (Stars vs1) = flat (Stars vs2)"
 shows "Stars (vs @ vs1) :\<sqsubset>val Stars (vs @ vs2) \<longleftrightarrow> Stars vs1 :\<sqsubset>val Stars vs2"
 using assms
 apply(rule_tac iffI)
-apply(erule val_ord_Stars_appendE)
+apply(erule PosOrd_Stars_appendE)
-apply(rule val_ord_Stars_appendI)
+apply(rule PosOrd_Stars_appendI)
 apply(auto)
 done
-lemma val_ord_trans:
+lemma PosOrd_trans:
 assumes "v1 :\<sqsubset>val v2" "v2 :\<sqsubset>val v3"
 shows "v1 :\<sqsubset>val v3"
 using assms
-unfolding val_ord_ex_def
+unfolding PosOrd_ex_def
 apply(clarify)
 apply(subgoal_tac "p = pa \<or> p \<sqsubset>lex pa \<or> pa \<sqsubset>lex p")
 prefer 2
 apply(rule lex_trichotomous)
 apply(erule disjE)
 apply(simp)
 apply(rule_tac x="pa" in exI)
-apply(subst val_ord_def)
+apply(subst PosOrd_def)
 apply(rule conjI)
-apply(simp add: val_ord_def)
+apply(simp add: PosOrd_def)
 apply(auto)[1]
-apply(simp add: val_ord_def)
+apply(simp add: PosOrd_def)
-apply(simp add: val_ord_def)
+apply(simp add: PosOrd_def)
 apply(auto)[1]
 using outside_lemma apply blast
-apply(simp add: val_ord_def)
+apply(simp add: PosOrd_def)
 apply(auto)[1]
 using outside_lemma apply force
 apply auto[1]
-apply(simp add: val_ord_def)
+apply(simp add: PosOrd_def)
 apply(auto)[1]
 apply (metis (no_types, hide_lams) lex_trans outside_lemma)
-apply(simp add: val_ord_def)
+apply(simp add: PosOrd_def)
 apply(auto)[1]
 by (smt intlen_bigger lex_trans outside_lemma pflat_len_def)
-lemma val_ord_irrefl:
+lemma PosOrd_irrefl:
 assumes "v :\<sqsubset>val v"
 shows "False"
 using assms
-by(auto simp add: val_ord_ex_def val_ord_def)
+by(auto simp add: PosOrd_ex_def PosOrd_def)
-lemma val_ord_almost_trichotomous:
+lemma PosOrd_almost_trichotomous:
 shows "v1 :\<sqsubset>val v2 \<or> v2 :\<sqsubset>val v1 \<or> (intlen (flat v1) = intlen (flat v2))"
-apply(auto simp add: val_ord_ex_def)
+apply(auto simp add: PosOrd_ex_def)
-apply(auto simp add: val_ord_def)
+apply(auto simp add: PosOrd_def)
 apply(rule_tac x="[]" in exI)
 apply(auto simp add: Pos_empty pflat_len_simps)
 apply(drule_tac x="[]" in spec)
 apply(auto simp add: Pos_empty pflat_len_simps)
 done
 lemma WW1:
 assumes "v1 :\<sqsubset>val v2" "v2 :\<sqsubset>val v1"
 shows "False"
 using assms
-apply(auto simp add: val_ord_ex_def val_ord_def)
+apply(auto simp add: PosOrd_ex_def PosOrd_def)
-using assms(1) assms(2) val_ord_irrefl val_ord_trans by blast
+using assms(1) assms(2) PosOrd_irrefl PosOrd_trans by blast
 lemma WW2:
 assumes "\<not>(v1 :\<sqsubset>val v2)"
 shows "v1 = v2 \<or> v2 :\<sqsubset>val v1"
 using assms
 oops
-lemma val_ord_SeqE2:
+lemma PosOrd_SeqE2:
 assumes "(Seq v1 v2) :\<sqsubset>val (Seq v1' v2')"
 shows "v1 :\<sqsubset>val v1' \<or> (v1 = v1' \<and> v2 :\<sqsubset>val v2')"
 using assms
-apply(frule_tac val_ord_SeqE)
+apply(frule_tac PosOrd_SeqE)
 apply(erule disjE)
 apply(simp)
 apply(auto)
 apply(case_tac "v1 :\<sqsubset>val v1'")
 apply(simp)
-apply(auto simp add: val_ord_ex_def)
+apply(auto simp add: PosOrd_ex_def)
 apply(case_tac "v1 = v1'")
 apply(simp)
 oops
 section {* CPT and CPTpre *}
 apply(drule_tac x="Suc a#list" in spec)
 apply(simp add: pflat_len_simps intlen_append)
 apply(simp)
 done
-lemma val_ord_trichotomous_stronger:
+lemma PosOrd_trichotomous_stronger:
 assumes "\<Turnstile> v1 : r" "\<Turnstile> v2 : r"
 shows "v1 :\<sqsubset>val v2 \<or> v2 :\<sqsubset>val v1 \<or> (v1 = v2)"
 oops
 lemma CPrf_stars:
 apply(simp)
 apply(simp add: CPT_def)
 apply(rule CPrf.intros)
 done
-lemma Posix_val_ord:
+section {* The Posix Value is smaller than any other Value *}
+lemma Posix_PosOrd:
 assumes "s \<in> r \<rightarrow> v1" "v2 \<in> CPTpre r s"
 shows "v1 :\<sqsubseteq>val v2"
 using assms
-apply(induct arbitrary: v2 rule: Posix.induct)
+proof (induct arbitrary: v2 rule: Posix.induct)
-apply(simp add: CPTpre_def)
+case (Posix_ONE v)
-apply(clarify)
+have "v \<in> CPTpre ONE []" by fact
-apply(erule CPrf.cases)
+then show "Void :\<sqsubseteq>val v"
-apply(simp_all)
+by (auto simp add: CPTpre_def PosOrd_ex1_def elim: CPrf.cases)
-apply(simp add: val_ord_ex1_def)
+next
-apply(simp add: CPTpre_def)
+case (Posix_CHAR c v)
-apply(clarify)
+have "v \<in> CPTpre (CHAR c) [c]" by fact
-apply(erule CPrf.cases)
+then show "Char c :\<sqsubseteq>val v"
-apply(simp_all)
+by (auto simp add: CPTpre_def PosOrd_ex1_def elim: CPrf.cases)
-apply(simp add: val_ord_ex1_def)
+next
-(* ALT1 *)
+case (Posix_ALT1 s r1 v r2 v2)
-prefer 3
+have as1: "s \<in> r1 \<rightarrow> v" by fact
-(* SEQ case *)
+have IH: "\<And>v2. v2 \<in> CPTpre r1 s \<Longrightarrow> v :\<sqsubseteq>val v2" by fact
-apply(subst (asm) (3) CPTpre_def)
+have "v2 \<in> CPTpre (ALT r1 r2) s" by fact
-apply(clarify)
+then have "\<Turnstile> v2 : ALT r1 r2" "flat v2 \<sqsubseteq>pre s"
-apply(erule CPrf.cases)
+by(auto simp add: CPTpre_def prefix_list_def)
-apply(simp_all)
+then consider
-apply(case_tac "s' = []")
+(Left) v3 where "v2 = Left v3" "\<Turnstile> v3 : r1" "flat v3 \<sqsubseteq>pre s"
-apply(simp)
+| (Right) v3 where "v2 = Right v3" "\<Turnstile> v3 : r2" "flat v3 \<sqsubseteq>pre s"
-prefer 2
+by (auto elim: CPrf.cases)
-apply(simp add: val_ord_ex1_def)
+then show "Left v :\<sqsubseteq>val v2"
-apply(clarify)
+proof(cases)
-apply(simp)
+case (Left v3)
-apply(simp add: val_ord_ex_def)
+have "v3 \<in> CPTpre r1 s" using Left(2,3)
-apply(simp (no_asm) add: val_ord_def)
+by (auto simp add: CPTpre_def prefix_list_def)
-apply(rule_tac x="[]" in exI)
+with IH have "v :\<sqsubseteq>val v3" by simp
-apply(simp add: pflat_len_simps)
+moreover
-apply(simp only: intlen_length)
+have "flat v3 \<sqsubset>spre flat v \<or> flat v3 = flat v" using as1 Left(3)
-apply (metis Posix1(2) append_assoc append_eq_conv_conj drop_eq_Nil not_le)
+by (simp add: Posix1(2) sprefix_list_def)
-apply(subgoal_tac "length (flat v1a) \<le> length s1")
+ultimately have "Left v :\<sqsubseteq>val Left v3"
-prefer 2
+by (auto simp add: PosOrd_ex1_def PosOrd_LeftI PosOrd_spreI)
-apply (metis L_flat_Prf1 Prf_CPrf append_eq_append_conv_if append_take_drop_id drop_eq_Nil)
+then show "Left v :\<sqsubseteq>val v2" unfolding Left .
-apply(subst (asm) append_eq_append_conv_if)
+next
-apply(simp)
+case (Right v3)
-apply(clarify)
+have "flat v3 \<sqsubset>spre flat v \<or> flat v3 = flat v" using as1 Right(3)
-apply(drule_tac x="v1a" in meta_spec)
+by (simp add: Posix1(2) sprefix_list_def)
-apply(drule meta_mp)
+then have "Left v :\<sqsubseteq>val Right v3" using Right(3) as1
-apply(auto simp add: CPTpre_def)[1]
+by (auto simp add: PosOrd_ex1_def PosOrd_Left_Right PosOrd_spreI)
-using append_eq_conv_conj apply blast
+then show "Left v :\<sqsubseteq>val v2" unfolding Right .
-apply(subst (asm) (2)val_ord_ex1_def)
+qed
-apply(erule disjE)
+next
-apply(subst val_ord_ex1_def)
+case (Posix_ALT2 s r2 v r1 v2)
-apply(rule disjI1)
+have as1: "s \<in> r2 \<rightarrow> v" by fact
-apply(rule val_ord_SeqI1)
+have as2: "s \<notin> L r1" by fact
-apply(simp)
+have IH: "\<And>v2. v2 \<in> CPTpre r2 s \<Longrightarrow> v :\<sqsubseteq>val v2" by fact
-apply(simp)
+have "v2 \<in> CPTpre (ALT r1 r2) s" by fact
-apply (metis Posix1(2) append_assoc append_take_drop_id)
+then have "\<Turnstile> v2 : ALT r1 r2" "flat v2 \<sqsubseteq>pre s"
-apply(simp)
+by(auto simp add: CPTpre_def prefix_list_def)
-apply(drule_tac x="v2b" in meta_spec)
+then consider
-apply(drule meta_mp)
+(Left) v3 where "v2 = Left v3" "\<Turnstile> v3 : r1" "flat v3 \<sqsubseteq>pre s"
-apply(auto simp add: CPTpre_def)[1]
+| (Right) v3 where "v2 = Right v3" "\<Turnstile> v3 : r2" "flat v3 \<sqsubseteq>pre s"
-apply (simp add: Posix1(2))
+by (auto elim: CPrf.cases)
-apply(subst (asm) val_ord_ex1_def)
+then show "Right v :\<sqsubseteq>val v2"
-apply(erule disjE)
+proof (cases)
-apply(subst val_ord_ex1_def)
+case (Right v3)
-apply(rule disjI1)
+have "v3 \<in> CPTpre r2 s" using Right(2,3)
-apply(rule val_ord_SeqI2)
+by (auto simp add: CPTpre_def prefix_list_def)
-apply(simp)
+with IH have "v :\<sqsubseteq>val v3" by simp
-apply (simp add: Posix1(2))
+moreover
-apply(subst val_ord_ex1_def)
+have "flat v3 \<sqsubset>spre flat v \<or> flat v3 = flat v" using as1 Right(3)
-apply(simp)
+by (simp add: Posix1(2) sprefix_list_def)
-(* ALT *)
+ultimately have "Right v :\<sqsubseteq>val Right v3"
-apply(subst (asm) (2) CPTpre_def)
+by (auto simp add: PosOrd_ex1_def PosOrd_RightI PosOrd_spreI)
-apply(clarify)
+then show "Right v :\<sqsubseteq>val v2" unfolding Right .
-apply(erule CPrf.cases)
+next
-apply(simp_all)
+case (Left v3)
-apply(clarify)
+have w: "v3 \<in> CPTpre r1 s" using Left(2,3) as2
-apply(case_tac "s' = []")
+by (auto simp add: CPTpre_def prefix_list_def)
-apply(simp)
+have "flat v3 \<sqsubset>spre flat v \<or> flat v3 = flat v" using as1 Left(3)
-apply(drule_tac x="v1" in meta_spec)
+by (simp add: Posix1(2) sprefix_list_def)
-apply(drule meta_mp)
+then have "flat v3 \<sqsubset>spre flat v \<or> \<Turnstile> v3 : r1" using w
-apply(auto simp add: CPTpre_def)[1]
+by(auto simp add: CPTpre_def)
-apply(subst (asm) val_ord_ex1_def)
+then have "flat v3 \<sqsubset>spre flat v" using as1 as2 Left
-apply(erule disjE)
+by (auto simp add: prefix_list_def sprefix_list_def Posix1(2) L_flat_Prf1 Prf_CPrf)
-apply(subst (asm) val_ord_ex_def)
+then have "Right v :\<sqsubseteq>val Left v3"
-apply(erule exE)
+by (simp add: PosOrd_ex1_def PosOrd_spreI)
-apply(subst val_ord_ex1_def)
+then show "Right v :\<sqsubseteq>val v2" unfolding Left .
-apply(rule disjI1)
+qed
-apply(rule val_ord_LeftI)
+next
-apply(subst val_ord_ex_def)
+case (Posix_SEQ s1 r1 v1 s2 r2 v2 v3)
-apply(auto)[1]
+have as1: "s1 \<in> r1 \<rightarrow> v1" "s2 \<in> r2 \<rightarrow> v2" by fact+
-using Posix1(2) apply blast
+have IH1: "\<And>v3. v3 \<in> CPTpre r1 s1 \<Longrightarrow> v1 :\<sqsubseteq>val v3" by fact
-using val_ord_ex1_def apply blast
+have IH2: "\<And>v3. v3 \<in> CPTpre r2 s2 \<Longrightarrow> v2 :\<sqsubseteq>val v3" by fact
-apply(subst val_ord_ex1_def)
+have cond: "\<not> (\<exists>s\<^sub>3 s\<^sub>4. s\<^sub>3 \<noteq> [] \<and> s\<^sub>3 @ s\<^sub>4 = s2 \<and> s1 @ s\<^sub>3 \<in> L r1 \<and> s\<^sub>4 \<in> L r2)" by fact
-apply(rule disjI1)
+have "v3 \<in> CPTpre (SEQ r1 r2) (s1 @ s2)" by fact
-apply (simp add: Posix1(2) val_ord_shorterI)
+then obtain v3a v3b where eqs:
-apply(subst val_ord_ex1_def)
+"v3 = Seq v3a v3b" "\<Turnstile> v3a : r1" "\<Turnstile> v3b : r2"
-apply(rule disjI1)
+"flat v3a @ flat v3b \<sqsubseteq>pre s1 @ s2"
-apply(case_tac "s' = []")
+by (force simp add: prefix_list_def CPTpre_def elim: CPrf.cases)
-apply(simp)
+then have "flat v3a @ flat v3b \<sqsubset>spre s1 @ s2 \<or> flat v3a @ flat v3b = s1 @ s2"
-apply(subst val_ord_ex_def)
+by (simp add: sprefix_list_def)
-apply(rule_tac x="[0]" in exI)
+moreover
-apply(subst val_ord_def)
+{ assume "flat v3a @ flat v3b \<sqsubset>spre s1 @ s2"
-apply(rule conjI)
+then have "Seq v1 v2 :\<sqsubseteq>val Seq v3a v3b" using as1
-apply(simp add: Pos_empty)
+by (auto simp add: PosOrd_ex1_def PosOrd_spreI Posix1(2))
-apply(rule conjI)
+}
-apply(simp add: pflat_len_simps)
+moreover
-apply (smt intlen_bigger)
+{ assume q1: "flat v3a @ flat v3b = s1 @ s2"
-apply(simp)
+then have "flat v3a \<sqsubseteq>pre s1" using eqs(2,3) cond
-apply(rule conjI)
+unfolding prefix_list_def
-apply(simp add: pflat_len_simps)
+by (smt L_flat_Prf1 Prf_CPrf append_eq_append_conv2 append_self_conv)
-using Posix1(2) apply auto[1]
+then have "flat v3a \<sqsubset>spre s1 \<or> (flat v3a = s1 \<and> flat v3b = s2)" using q1
-apply(rule ballI)
+by (simp add: sprefix_list_def append_eq_conv_conj)
-apply(rule impI)
+then have q2: "v1 :\<sqsubset>val v3a \<or> (flat v3a = s1 \<and> flat v3b = s2)"
-apply(case_tac "q = []")
+using PosOrd_spreI Posix1(2) as1(1) q1 by blast
-using Posix1(2) apply auto[1]
+then have "v1 :\<sqsubset>val v3a \<or> (v3a \<in> CPTpre r1 s1 \<and> v3b \<in> CPTpre r2 s2)" using eqs(2,3)
-apply(auto)[1]
+by (auto simp add: CPTpre_def)
-apply(rule val_ord_shorterI)
+then have "v1 :\<sqsubset>val v3a \<or> (v1 :\<sqsubseteq>val v3a \<and> v2 :\<sqsubseteq>val v3b)" using IH1 IH2 by blast
-apply(simp)
+then have "Seq v1 v2 :\<sqsubseteq>val Seq v3a v3b" using q1 q2 as1
-apply (simp add: Posix1(2))
+unfolding  PosOrd_ex1_def
-(* ALT RIGHT *)
+by (metis PosOrd_SeqI1 PosOrd_SeqI2 Posix1(2) flat.simps(5))
-apply(subst (asm) (2) CPTpre_def)
+}
-apply(clarify)
+ultimately show "Seq v1 v2 :\<sqsubseteq>val v3" unfolding eqs by blast
-apply(erule CPrf.cases)
+next
-apply(simp_all)
+case (Posix_STAR1 s1 r v s2 vs v3)
-apply(clarify)
+have as1: "s1 \<in> r \<rightarrow> v" "s2 \<in> STAR r \<rightarrow> Stars vs" by fact+
-apply(case_tac "s' = []")
+have IH1: "\<And>v3. v3 \<in> CPTpre r s1 \<Longrightarrow> v :\<sqsubseteq>val v3" by fact
-apply(simp)
+have IH2: "\<And>v3. v3 \<in> CPTpre (STAR r) s2 \<Longrightarrow> Stars vs :\<sqsubseteq>val v3" by fact
-apply (simp add: L_flat_Prf1 Prf_CPrf)
+have cond: "\<not> (\<exists>s\<^sub>3 s\<^sub>4. s\<^sub>3 \<noteq> [] \<and> s\<^sub>3 @ s\<^sub>4 = s2 \<and> s1 @ s\<^sub>3 \<in> L r \<and> s\<^sub>4 \<in> L (STAR r))" by fact
-apply(subst val_ord_ex1_def)
+have cond2: "flat v \<noteq> []" by fact
-apply(rule disjI1)
+have "v3 \<in> CPTpre (STAR r) (s1 @ s2)" by fact
-apply(rule val_ord_shorterI)
+then consider
-apply(simp)
+(NonEmpty) v3a vs3 where
-apply (simp add: Posix1(2))
+"v3 = Stars (v3a # vs3)" "\<Turnstile> v3a : r" "\<Turnstile> Stars vs3 : STAR r"
-apply(case_tac "s' = []")
+"flat v3a @ flat (Stars vs3) \<sqsubseteq>pre s1 @ s2"
-apply(simp)
+| (Empty) "v3 = Stars []"
-apply(drule_tac x="v2a" in meta_spec)
+by (force simp add: CPTpre_def prefix_list_def elim: CPrf.cases)
-apply(drule meta_mp)
+then show "Stars (v # vs) :\<sqsubseteq>val v3"
-apply(auto simp add: CPTpre_def)[1]
+proof (cases)
-apply(subst (asm) val_ord_ex1_def)
+case (NonEmpty v3a vs3)
-apply(erule disjE)
+then have "flat (Stars (v3a # vs3)) \<sqsubset>spre s1 @ s2 \<or> flat (Stars (v3a # vs3)) = s1 @ s2"
-apply(subst val_ord_ex1_def)
+by (simp add: sprefix_list_def)
-apply(rule disjI1)
+moreover
-apply(rule val_ord_RightI)
+{ assume "flat (Stars (v3a # vs3)) \<sqsubset>spre s1 @ s2"
-apply(simp)
+then have "Stars (v # vs) :\<sqsubseteq>val Stars (v3a # vs3)" using as1
-using Posix1(2) apply blast
+by (metis PosOrd_ex1_def PosOrd_spreI Posix1(2) flat.simps(7))
-apply (simp add: val_ord_ex1_def)
+}
-apply(subst val_ord_ex1_def)
+moreover
-apply(rule disjI1)
+{ assume q1: "flat (Stars (v3a # vs3)) = s1 @ s2"
-apply(rule val_ord_shorterI)
+then have "flat v3a \<sqsubseteq>pre s1" using NonEmpty(2,3) cond
-apply(simp)
+unfolding prefix_list_def
-apply (simp add: Posix1(2))
+by (smt L_flat_Prf1 Prf_CPrf append_Nil2 append_eq_append_conv2 flat.simps(7))
-(* STAR empty case *)
+then have "flat v3a \<sqsubset>spre s1 \<or> (flat v3a = s1 \<and> flat (Stars vs3) = s2)" using q1
-prefer 2
+by (simp add: sprefix_list_def append_eq_conv_conj)
-apply(subst (asm) CPTpre_def)
+then have q2: "v :\<sqsubset>val v3a \<or> (flat v3a = s1 \<and> flat (Stars vs3) = s2)"
-apply(clarify)
+using PosOrd_spreI Posix1(2) as1(1) q1 by blast
-apply(erule CPrf.cases)
+then have "v :\<sqsubset>val v3a \<or> (v3a \<in> CPTpre r s1 \<and> Stars vs3 \<in> CPTpre (STAR r) s2)"
-apply(simp_all)
+using NonEmpty(2,3) by (auto simp add: CPTpre_def)
-apply(clarify)
+then have "v :\<sqsubset>val v3a \<or> (v :\<sqsubseteq>val v3a \<and> Stars vs :\<sqsubseteq>val Stars vs3)" using IH1 IH2 by blast
-apply (simp add: val_ord_ex1_def)
+then have "Stars (v # vs) :\<sqsubseteq>val Stars (v3a # vs3)" using q1 q2 as1
-(* STAR non-empty case *)
+unfolding  PosOrd_ex1_def
-apply(subst (asm) (3) CPTpre_def)
+by (metis PosOrd_StarsI PosOrd_StarsI2 Posix1(2) flat.simps(7) val.inject(5))
-apply(clarify)
+}
-apply(erule CPrf.cases)
+ultimately show "Stars (v # vs) :\<sqsubseteq>val v3" unfolding NonEmpty by blast
-apply(simp_all)
+next
-apply(clarify)
+case Empty
-apply (simp add: val_ord_ex1_def)
+have "v3 = Stars []" by fact
-apply(rule val_ord_shorterI)
+then show "Stars (v # vs) :\<sqsubseteq>val v3"
-apply(simp)
+unfolding PosOrd_ex1_def using cond2
-apply(case_tac "s' = []")
+by (simp add: PosOrd_shorterI)
-apply(simp)
+qed
-prefer 2
+next
-apply (simp add: val_ord_ex1_def)
+case (Posix_STAR2 r v2)
-apply(rule disjI1)
+have "v2 \<in> CPTpre (STAR r) []" by fact
-apply(rule val_ord_shorterI)
+then have "v2 = Stars []" using CPTpre_subsets by auto
-apply(simp)
+then show "Stars [] :\<sqsubseteq>val v2"
-apply (metis Posix1(2) append_assoc append_eq_conv_conj drop_all flat.simps(7) flat_Stars length_append not_less)
+by (simp add: PosOrd_ex1_def)
-apply(drule_tac x="va" in meta_spec)
+qed
-apply(drule meta_mp)
-apply(auto simp add: CPTpre_def)[1]
-apply (smt L.simps(6) L_flat_Prf1 Prf_CPrf append_eq_append_conv2 flat_Stars self_append_conv)
+lemma Posix_PosOrd_stronger:
-apply (subst (asm) (2) val_ord_ex1_def)
-apply(erule disjE)
-prefer 2
-apply(simp)
-apply(drule_tac x="Stars vsa" in meta_spec)
-apply(drule meta_mp)
-apply(auto simp add: CPTpre_def)[1]
-apply (simp add: Posix1(2))
-apply (subst (asm) val_ord_ex1_def)
-apply(erule disjE)
-apply (subst val_ord_ex1_def)
-apply(rule disjI1)
-apply(rule val_ord_StarsI2)
-apply(simp)
-using Posix1(2) apply force
-apply(simp add: val_ord_ex1_def)
-apply (subst val_ord_ex1_def)
-apply(rule disjI1)
-apply(rule val_ord_StarsI)
-apply(simp)
-apply(simp add: Posix1)
-using Posix1(2) by force
-lemma Posix_val_ord_stronger:
 assumes "s \<in> r \<rightarrow> v1" "v2 \<in> CPT r s"
 shows "v1 :\<sqsubseteq>val v2"
-using assms
+using assms Posix_PosOrd
-apply(rule_tac Posix_val_ord)
+using CPT_CPTpre_subset by blast
-apply(assumption)
-using CPT_CPTpre_subset by auto
+lemma Posix_PosOrd_reverse:
-lemma Posix_val_ord_reverse:
 assumes "s \<in> r \<rightarrow> v1"
 shows "\<not>(\<exists>v2 \<in> CPT r s. v2 :\<sqsubset>val v1)"
 using assms
-by (metis Posix_val_ord_stronger less_irrefl val_ord_def
+by (metis Posix_PosOrd_stronger less_irrefl PosOrd_def
-val_ord_ex1_def val_ord_ex_def val_ord_trans)
+PosOrd_ex1_def PosOrd_ex_def PosOrd_trans)
-lemma val_ord_Posix_Stars:
+lemma PosOrd_Posix_Stars:
 assumes "(Stars vs) \<in> CPT (STAR r) (flat (Stars vs))" "\<forall>v \<in> set vs. flat v \<in> r \<rightarrow> v"
 and "\<not>(\<exists>vs2 \<in> PT (STAR r) (flat (Stars vs)). vs2 :\<sqsubset>val (Stars vs))"
 shows "(flat (Stars vs)) \<in> (STAR r) \<rightarrow> Stars vs"
 using assms
 apply(induct vs)
 apply(simp_all)
 apply(drule meta_mp)
 apply(auto simp add: CPT_def PT_def)[1]
 apply(erule Prf.cases)
 apply(simp_all)
-apply (metis CPrf_stars Cons_eq_map_conv Posix_CPT Posix_STAR2 Posix_val_ord_reverse list.exhaust list.set_intros(2) map_idI val.distinct(25))
+apply (metis CPrf_stars Cons_eq_map_conv Posix_CPT Posix_STAR2 Posix_PosOrd_reverse list.exhaust list.set_intros(2) map_idI val.distinct(25))
 apply(clarify)
 apply(drule_tac x="Stars (a#v#vsa)" in spec)
 apply(simp)
 apply(drule mp)
 apply (meson CPrf_stars Prf.intros(7) Prf_CPrf list.set_intros(1))
-apply(subst (asm) (2) val_ord_ex_def)
+apply(subst (asm) (2) PosOrd_ex_def)
 apply(simp)
-apply (metis flat.simps(7) flat_Stars val_ord_StarsI2 val_ord_ex_def)
+apply (metis flat.simps(7) flat_Stars PosOrd_StarsI2 PosOrd_ex_def)
 apply(auto simp add: CPT_def PT_def)[1]
 using CPrf_stars apply auto[1]
 apply(auto)[1]
 apply(auto simp add: CPT_def PT_def)[1]
 apply(subgoal_tac "\<exists>vA. flat vA = flat a @ s\<^sub>3 \<and> \<turnstile> vA : r")
 apply(clarify)
 apply(drule_tac x="Stars (vA # vB)" in spec)
 apply(simp)
 apply(drule mp)
 using Prf.intros(7) apply blast
-apply(subst (asm) (2) val_ord_ex_def)
+apply(subst (asm) (2) PosOrd_ex_def)
 apply(simp)
 prefer 2
 apply(simp)
 using Star_values_exists apply blast
 prefer 2
 apply(simp_all)
 apply(clarify)
 apply(rotate_tac 3)
 apply(erule Prf.cases)
 apply(simp_all)
-apply (metis CPrf_stars intlen.cases less_irrefl list.set_intros(1) val_ord_def val_ord_ex_def)
+apply (metis CPrf_stars intlen.cases less_irrefl list.set_intros(1) PosOrd_def PosOrd_ex_def)
 apply(drule_tac x="Stars (v#va#vsb)" in spec)
 apply(drule mp)
 apply (simp add: Posix1a Prf.intros(7))
 apply(simp)
-apply(subst (asm) (2) val_ord_ex_def)
+apply(subst (asm) (2) PosOrd_ex_def)
 apply(simp)
-apply (metis flat.simps(7) flat_Stars val_ord_StarsI2 val_ord_ex_def)
+apply (metis flat.simps(7) flat_Stars PosOrd_StarsI2 PosOrd_ex_def)
 proof -
 fix a :: val and vsa :: "val list" and s\<^sub>3 :: "char list" and vA :: val and vB :: "val list"
 assume a1: "s\<^sub>3 \<noteq> []"
 assume a2: "s\<^sub>3 @ concat (map flat vB) = concat (map flat vsa)"
 assume a3: "flat vA = flat a @ s\<^sub>3"
-assume a4: "\<forall>p. \<not> Stars (vA # vB) \<sqsubset>val p Stars (a # vsa)"
+assume a4: "\<forall>p. \<not> (Stars (vA # vB) \<sqsubset>val p (Stars (a # vsa)))"
 have f5: "\<And>n cs. drop n (cs::char list) = [] \<or> n < length cs"
 by (meson drop_eq_Nil not_less)
 have f6: "\<not> length (flat vA) \<le> length (flat a)"
 using a3 a1 by simp
 have "flat (Stars (a # vsa)) = flat (Stars (vA # vB))"
 using a3 a2 by simp
 then show False
-using f6 f5 a4 by (metis (full_types) drop_eq_Nil val_ord_StarsI val_ord_ex_def val_ord_shorterI)
+using f6 f5 a4 by (metis (full_types) drop_eq_Nil PosOrd_StarsI PosOrd_ex_def PosOrd_shorterI)
 qed
+section {* The Smallest Value is indeed the Posix Value *}
-lemma val_ord_Posix:
-assumes "v1 \<in> CPT r s" "\<not>(\<exists>v2 \<in> PT r s. v2 :\<sqsubset>val v1)"
+lemma PosOrd_Posix:
+assumes "v1 \<in> CPT r s" "\<forall>v2 \<in> PT r s. \<not> v2 :\<sqsubset>val v1"
 shows "s \<in> r \<rightarrow> v1"
 using assms
-apply(induct r arbitrary: s v1)
+proof(induct r arbitrary: s v1)
-apply(auto simp add: CPT_def PT_def)[1]
+case (ZERO s v1)
-apply(erule CPrf.cases)
+have "v1 \<in> CPT ZERO s" by fact
-apply(simp_all)
+then show "s \<in> ZERO \<rightarrow> v1" unfolding CPT_def
-(* ONE *)
+by (auto elim: CPrf.cases)
-apply(auto simp add: CPT_def)[1]
+next
-apply(erule CPrf.cases)
+case (ONE s v1)
-apply(simp_all)
+have "v1 \<in> CPT ONE s" by fact
-apply(rule Posix.intros)
+then show "s \<in> ONE \<rightarrow> v1" unfolding CPT_def
-(* CHAR *)
+by(auto elim!: CPrf.cases intro: Posix.intros)
-apply(auto simp add: CPT_def)[1]
+next
-apply(erule CPrf.cases)
+case (CHAR c s v1)
-apply(simp_all)
+have "v1 \<in> CPT (CHAR c) s" by fact
-apply(rule Posix.intros)
+then show "s \<in> CHAR c \<rightarrow> v1" unfolding CPT_def
-prefer 2
+by (auto elim!: CPrf.cases intro: Posix.intros)
-(* ALT *)
+next
-apply(auto simp add: CPT_def PT_def)[1]
+case (ALT r1 r2 s v1)
-apply(erule CPrf.cases)
+have IH1: "\<And>s v1. \<lbrakk>v1 \<in> CPT r1 s; \<forall>v2 \<in> PT r1 s. \<not> v2 :\<sqsubset>val v1\<rbrakk> \<Longrightarrow> s \<in> r1 \<rightarrow> v1" by fact
-apply(simp_all)
+have IH2: "\<And>s v1. \<lbrakk>v1 \<in> CPT r2 s; \<forall>v2 \<in> PT r2 s. \<not> v2 :\<sqsubset>val v1\<rbrakk> \<Longrightarrow> s \<in> r2 \<rightarrow> v1" by fact
-apply(rule Posix.intros)
+have as1: "\<forall>v2\<in>PT (ALT r1 r2) s. \<not> v2 :\<sqsubset>val v1" by fact
-apply(drule_tac x="flat v1a" in meta_spec)
+have as2: "v1 \<in> CPT (ALT r1 r2) s" by fact
-apply(drule_tac x="v1a" in meta_spec)
+then consider
-apply(drule meta_mp)
+(Left) v1' where
-apply(simp)
+"v1 = Left v1'" "s = flat v1'"
-apply(drule meta_mp)
+"v1' \<in> CPT r1 s"
-apply(auto)[1]
+|  (Right) v1' where
-apply(drule_tac x="Left v2" in spec)
+"v1 = Right v1'" "s = flat v1'"
-apply(simp)
+"v1' \<in> CPT r2 s"
-apply(drule mp)
+unfolding CPT_def by (auto elim: CPrf.cases)
-apply(rule Prf.intros)
+then show "s \<in> ALT r1 r2 \<rightarrow> v1"
-apply(simp)
+proof (cases)
-apply (meson val_ord_LeftI)
+case (Left v1')
-apply(assumption)
+have "v1' \<in> CPT r1 s" using as2
-(* ALT Right *)
+unfolding CPT_def Left by (auto elim: CPrf.cases)
-apply(auto simp add: CPT_def)[1]
+moreover
-apply(rule Posix.intros)
+have "\<forall>v2 \<in> PT r1 s. \<not> v2 :\<sqsubset>val v1'" using as1
-apply(rotate_tac 1)
+unfolding PT_def Left using Prf.intros(2) PosOrd_LeftI by force
-apply(drule_tac x="flat v2" in meta_spec)
+ultimately have "s \<in> r1 \<rightarrow> v1'" using IH1 by simp
-apply(drule_tac x="v2" in meta_spec)
+then have "s \<in> ALT r1 r2 \<rightarrow> Left v1'" by (rule Posix.intros)
-apply(drule meta_mp)
+then show "s \<in> ALT r1 r2 \<rightarrow> v1" using Left by simp
-apply(simp)
+next
-apply(drule meta_mp)
+case (Right v1')
-apply(auto)[1]
+have "v1' \<in> CPT r2 s" using as2
-apply(drule_tac x="Right v2a" in spec)
+unfolding CPT_def Right by (auto elim: CPrf.cases)
-apply(simp)
+moreover
-apply(drule mp)
+have "\<forall>v2 \<in> PT r2 s. \<not> v2 :\<sqsubset>val v1'" using as1
-apply(rule Prf.intros)
+unfolding PT_def Right using Prf.intros(3) PosOrd_RightI by force
-apply(simp)
+ultimately have "s \<in> r2 \<rightarrow> v1'" using IH2 by simp
-apply(drule val_ord_RightI)
+moreover
-apply(assumption)
+{ assume "s \<in> L r1"
-apply(auto simp add: val_ord_ex_def)[1]
+then obtain v' where "v' \<in>  PT r1 s"
-apply(assumption)
+unfolding PT_def using L_flat_Prf2 by blast
-apply(auto)[1]
+then have "Left v' \<in>  PT (ALT r1 r2) s"
-apply(subgoal_tac "\<exists>v2'. flat v2' = flat v2 \<and> \<turnstile> v2' : r1a")
+unfolding PT_def by (auto intro: Prf.intros)
-apply(clarify)
+with as1 have "\<not> (Left v' :\<sqsubset>val Right v1') \<and> (flat v' = s)"
-apply(drule_tac x="Left v2'" in spec)
+unfolding PT_def Right by (auto)
-apply(simp)
+then have False using PosOrd_Left_Right Right by blast
-apply(drule mp)
+}
-apply(rule Prf.intros)
+then have "s \<notin> L r1" by rule
-apply(assumption)
+ultimately have "s \<in> ALT r1 r2 \<rightarrow> Right v1'" by (rule Posix.intros)
-apply(simp add: val_ord_ex_def)
+then show "s \<in> ALT r1 r2 \<rightarrow> v1" using Right by simp
-apply(subst (asm) (3) val_ord_def)
+qed
-apply(simp)
+next
-apply(simp add: pflat_len_simps)
+case (SEQ r1 r2 s v1)
-apply(drule_tac x="[0]" in spec)
+have IH1: "\<And>s v1. \<lbrakk>v1 \<in> CPT r1 s; \<forall>v2 \<in> PT r1 s. \<not> v2 :\<sqsubset>val v1\<rbrakk> \<Longrightarrow> s \<in> r1 \<rightarrow> v1" by fact
-apply(simp add: pflat_len_simps Pos_empty)
+have IH2: "\<And>s v1. \<lbrakk>v1 \<in> CPT r2 s; \<forall>v2 \<in> PT r2 s. \<not> v2 :\<sqsubset>val v1\<rbrakk> \<Longrightarrow> s \<in> r2 \<rightarrow> v1" by fact
-apply(drule mp)
+have as1: "\<forall>v2\<in>PT (SEQ r1 r2) s. \<not> v2 :\<sqsubset>val v1" by fact
-apply (smt intlen_bigger)
+have as2: "v1 \<in> CPT (SEQ r1 r2) s" by fact
-apply(erule disjE)
+then obtain
-apply blast
+v1a v1b where eqs:
-apply auto[1]
+"v1 = Seq v1a v1b" "s = flat v1a @ flat v1b"
-apply (meson L_flat_Prf2)
+"v1a \<in> CPT r1 (flat v1a)" "v1b \<in> CPT r2 (flat v1b)"
-(* SEQ *)
+unfolding CPT_def by(auto elim: CPrf.cases)
-apply(auto simp add: CPT_def)[1]
+have "\<forall>v2 \<in> PT r1 (flat v1a). \<not> v2 :\<sqsubset>val v1a"
-apply(erule CPrf.cases)
+proof
-apply(simp_all)
+fix v2
-apply(rule Posix.intros)
+assume "v2 \<in> PT r1 (flat v1a)"
-apply(drule_tac x="flat v1a" in meta_spec)
+with eqs(2,4) have "Seq v2 v1b \<in> PT (SEQ r1 r2) s"
-apply(drule_tac x="v1a" in meta_spec)
+by (simp add: CPT_def PT_def Prf.intros(1) Prf_CPrf)
-apply(drule meta_mp)
+with as1 have "\<not> Seq v2 v1b :\<sqsubset>val Seq v1a v1b \<and> flat (Seq v2 v1b) = flat (Seq v1a v1b)"
-apply(simp)
+using eqs by (simp add: PT_def)
-apply(drule meta_mp)
+then show "\<not> v2 :\<sqsubset>val v1a"
-apply(auto)[1]
+using PosOrd_SeqI1 by blast
-apply(auto simp add: PT_def)[1]
+qed
-apply(drule_tac x="Seq v2a v2" in spec)
+then have "flat v1a \<in> r1 \<rightarrow> v1a" using IH1 eqs by simp
-apply(simp)
+moreover
-apply(drule mp)
+have "\<forall>v2 \<in> PT r2 (flat v1b). \<not> v2 :\<sqsubset>val v1b"
-apply (simp add: Prf.intros(1) Prf_CPrf)
+proof
-using val_ord_SeqI1 apply fastforce
+fix v2
-apply(assumption)
+assume "v2 \<in> PT r2 (flat v1b)"
-apply(rotate_tac 1)
+with eqs(2,3,4) have "Seq v1a v2 \<in> PT (SEQ r1 r2) s"
-apply(drule_tac x="flat v2" in meta_spec)
+by (simp add: CPT_def PT_def Prf.intros Prf_CPrf)
-apply(drule_tac x="v2" in meta_spec)
+with as1 have "\<not> Seq v1a v2 :\<sqsubset>val Seq v1a v1b \<and> flat v2 = flat v1b"
-apply(simp)
+using eqs by (simp add: PT_def)
-apply(auto)[1]
+then show "\<not> v2 :\<sqsubset>val v1b"
-apply(drule meta_mp)
+using PosOrd_SeqI2 by auto
-apply(auto)[1]
+qed
-apply(auto simp add: PT_def)[1]
+then have "flat v1b \<in> r2 \<rightarrow> v1b" using IH2 eqs by simp
-apply(drule_tac x="Seq v1a v2a" in spec)
+moreover
-apply(simp)
+have "\<not> (\<exists>s\<^sub>3 s\<^sub>4. s\<^sub>3 \<noteq> [] \<and> s\<^sub>3 @ s\<^sub>4 = flat v1b \<and> flat v1a @ s\<^sub>3 \<in> L r1 \<and> s\<^sub>4 \<in> L r2)"
-apply(drule mp)
+proof
-apply (simp add: Prf.intros(1) Prf_CPrf)
+assume "\<exists>s3 s4. s3 \<noteq> [] \<and> s3 @ s4 = flat v1b \<and> flat v1a @ s3 \<in> L r1 \<and> s4 \<in> L r2"
-apply (meson val_ord_SeqI2)
+then obtain s3 s4 where q1: "s3 \<noteq> [] \<and> s3 @ s4 = flat v1b \<and> flat v1a @ s3 \<in> L r1 \<and> s4 \<in> L r2" by blast
-apply(assumption)
+then obtain vA vB where q2: "flat vA = flat v1a @ s3" "\<turnstile> vA : r1" "flat vB = s4" "\<turnstile> vB : r2"
-(* SEQ side condition *)
+using L_flat_Prf2 by blast
-apply(auto simp add: PT_def)
+then have "Seq vA vB \<in> PT (SEQ r1 r2) s" unfolding eqs using q1
-apply(subgoal_tac "\<exists>vA. flat vA = flat v1a @ s\<^sub>3 \<and> \<turnstile> vA : r1a")
+by (auto simp add: PT_def intro: Prf.intros)
-prefer 2
+with as1 have "\<not> Seq vA vB :\<sqsubset>val Seq v1a v1b" unfolding eqs by auto
-apply (meson L_flat_Prf2)
+then have "\<not> vA :\<sqsubset>val v1a \<and> length (flat vA) > length (flat v1a)" using q1 q2 PosOrd_SeqI1 by auto
-apply(subgoal_tac "\<exists>vB. flat vB = s\<^sub>4 \<and> \<turnstile> vB : r2a")
+then show "False"
-prefer 2
+using PosOrd_shorterI by blast
-apply (meson L_flat_Prf2)
+qed
-apply(clarify)
+ultimately
-apply(drule_tac x="Seq vA vB" in spec)
+show "s \<in> SEQ r1 r2 \<rightarrow> v1" unfolding eqs
-apply(simp)
+by (rule Posix.intros)
-apply(drule mp)
+next
-apply (simp add: Prf.intros(1))
+case (STAR r s v1)
-apply(subst (asm) (3) val_ord_ex_def)
+have IH: "\<And>s v1. \<lbrakk>v1 \<in> CPT r s; \<forall>v2\<in>PT r s. \<not> v2 :\<sqsubset>val v1\<rbrakk> \<Longrightarrow> s \<in> r \<rightarrow> v1" by fact
-apply (metis append_Nil2 append_assoc append_eq_conv_conj flat.simps(5) length_append not_add_less1 not_less_iff_gr_or_eq val_ord_SeqI1 val_ord_ex_def val_ord_shorterI)
+have as1: "\<forall>v2\<in>PT (STAR r) s. \<not> v2 :\<sqsubset>val v1" by fact
-(* STAR *)
+have as2: "v1 \<in> CPT (STAR r) s" by fact
-apply(auto simp add: CPT_def)[1]
+then obtain
-apply(erule CPrf.cases)
+vs where eqs:
-apply(simp_all)[6]
+"v1 = Stars vs" "s = flat (Stars vs)"
-using Posix_STAR2 apply blast
+"\<forall>v \<in> set vs. v \<in> CPT r (flat v)"
-apply(clarify)
+unfolding CPT_def by (auto elim: CPrf.cases dest!: CPrf_stars)
-apply(rule val_ord_Posix_Stars)
+have "Stars vs \<in> CPT (STAR r) (flat (Stars vs))"
-apply(auto simp add: CPT_def)[1]
+using as2 unfolding eqs .
-apply (simp add: CPrf.intros(7))
+moreover
-apply(auto)[1]
+have "\<forall>v\<in>set vs. flat v \<in> r \<rightarrow> v"
-apply(drule_tac x="flat v" in meta_spec)
+proof
-apply(drule_tac x="v" in meta_spec)
+fix v
-apply(simp)
+assume a: "v \<in> set vs"
-apply(drule meta_mp)
+then obtain pre post where e: "vs = pre @ [v] @ post"
-apply(auto)[1]
+by (metis append_Cons append_Nil in_set_conv_decomp_first)
-apply(drule_tac x="Stars (v2#vs)" in spec)
+then have q: "\<forall>v2\<in>PT (STAR r) s. \<not> v2 :\<sqsubset>val Stars (pre @ [v] @ post)"
-apply(simp)
+using as1 unfolding eqs by simp
-apply(drule mp)
+have "\<forall>v2\<in>PT r (flat v). \<not> v2 :\<sqsubset>val v" unfolding eqs
-using Prf.intros(7) Prf_CPrf apply blast
+proof (rule ballI, rule notI)
-apply(simp add: val_ord_StarsI)
+fix v2
-apply(assumption)
+assume w: "v2 :\<sqsubset>val v"
-apply(drule_tac x="flat va" in meta_spec)
+assume "v2 \<in> PT r (flat v)"
-apply(drule_tac x="va" in meta_spec)
+then have "Stars (pre @ [v2] @ post) \<in> PT (STAR r) s"
-apply(simp)
+using as2 unfolding e eqs
-apply(drule meta_mp)
+apply(auto simp add: CPT_def PT_def intro!: Prf_Stars)[1]
-using CPrf_stars apply blast
+using CPrf_Stars_appendE CPrf_stars Prf_CPrf apply blast
-apply(drule meta_mp)
+by (meson CPrf_Stars_appendE CPrf_stars Prf_CPrf list.set_intros(2))
-apply(auto)[1]
+then have  "\<not> Stars (pre @ [v2] @ post) :\<sqsubset>val Stars (pre @ [v] @ post)"
-apply(subgoal_tac "\<exists>pre post. vs = pre @ [va] @ post")
+using q by simp
-prefer 2
+with w show "False"
-apply (metis append_Cons append_Nil in_set_conv_decomp_first)
+using PT_def \<open>v2 \<in> PT r (flat v)\<close> append_Cons flat.simps(7) mem_Collect_eq
-apply(clarify)
+PosOrd_StarsI PosOrd_Stars_appendI by auto
-apply(drule_tac x="Stars (v#(pre @ [v2] @ post))" in spec)
+qed
-apply(simp)
+with IH
-apply(drule mp)
+show "flat v \<in> r \<rightarrow> v" using a as2 unfolding eqs
-apply(rule Prf.intros)
+using eqs(3) by blast
-apply (simp add: Prf_CPrf)
+qed
-apply(rule Prf_Stars_append)
+moreover
-apply(drule CPrf_Stars_appendE)
+have "\<not> (\<exists>vs2\<in>PT (STAR r) (flat (Stars vs)). vs2 :\<sqsubset>val Stars vs)"
-apply(auto simp add: Prf_CPrf)[1]
+proof
-apply (metis CPrf_Stars_appendE CPrf_stars Prf_CPrf Prf_Stars list.set_intros(2) set_ConsD)
+assume "\<exists>vs2 \<in> PT (STAR r) (flat (Stars vs)). vs2 :\<sqsubset>val Stars vs"
-apply(subgoal_tac "\<not> Stars ([v] @ pre @ v2 # post) :\<sqsubset>val Stars ([v] @ pre @ va # post)")
+then obtain vs2 where "\<turnstile> Stars vs2 : STAR r" "flat (Stars vs2) = flat (Stars vs)"
-apply(subst (asm) val_ord_Stars_append_eq)
+"Stars vs2 :\<sqsubset>val Stars vs"
-apply(simp)
+unfolding PT_def
-apply(subst (asm) val_ord_Stars_append_eq)
+apply(auto elim: Prf.cases)
-apply(simp)
+apply(erule Prf.cases)
-prefer 2
+apply(auto intro: Prf.intros)
-apply(simp)
+apply(drule_tac x="[]" in meta_spec)
-prefer 2
+apply(simp)
-apply(simp)
+apply(drule meta_mp)
-apply (simp add: val_ord_StarsI)
+apply(auto intro: Prf.intros)
-apply(auto simp add: PT_def)
+apply(drule_tac x="(v#vsa)" in meta_spec)
-done
+apply(auto intro: Prf.intros)
+done
+then show "False" using as1 unfolding eqs
+apply -
+apply(drule_tac x="Stars vs2" in bspec)
+apply(auto simp add: PT_def)
+done
+qed
+ultimately have "flat (Stars vs) \<in> STAR r \<rightarrow> Stars vs"
+by (rule PosOrd_Posix_Stars)
+then show "s \<in> STAR r \<rightarrow> v1" unfolding eqs .
+qed
 unused_thms
 end

changeset 261	247fc5dd4943
parent 257	9deaff82e0c5
child 262	45ad887fa6aa