pip: comparison Correctness.thy

equal deleted inserted replaced

-:029e1506477a
+:2bb3b65fc99f
 1 + (length (actions_of blockers t) + length (filter (isCreate) t))"
 (is "?L \<le> ?R")
 proof -
 let ?Q = "(\<lambda> t'. th \<in> running (t'@s))"
 from occs_le[of ?Q t]
+thm occs_le
 have "?L \<le> (1 + length t) - occs ?Q t" by simp
 also have "... \<le> ?R"
 proof -
+thm actions_th_occs actions_split
 have "length t - (length (actions_of blockers t) + length (filter (isCreate) t))
 \<le> occs (\<lambda> t'. th \<in> running (t'@s)) t" (is "?L1 \<le> ?R1")
 proof -
-have "?L1 = length (actions_of {th} t)" using actions_split by arith
+from actions_split have "?L1 = length (actions_of {th} t)" using actions_split by arith
 also have "... \<le> ?R1" using actions_th_occs by simp
 finally show ?thesis .
 qed
 thus ?thesis by simp
 qed
 the total number of operations take by any standalone thread (or process)
 is only determined by its own input, and should not be affected by
 the particular environment in which it operates. In this particular case,
 we regard the @{term t} as the environment of thread @{term th}.
 *}
 assumes finite_span:
 "th' \<in> blockers \<Longrightarrow>
 (\<exists> span. \<forall> t'. extend_highest_gen s th prio tm t' \<longrightarrow>
 \<not> detached (t'@s) th' \<longrightarrow> length (actions_of {th'} t') < span)"
 -- {*
 *}
 theorem enough_actions_for_the_highest:
 "length t - ((\<Sum> th' \<in> blockers . span th') + BC) \<le> length (actions_of {th} t)"
 using actions_split create_bc len_action_blockers by linarith
+thm actions_split
 end

changeset 158	2bb3b65fc99f
parent 157	029e1506477a
child 159	023bdcc221ea