tm: Attic/turing_basic.thy@3fee65a40838 (annotated)

50 816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	1	(* Title: Turing machines
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	2	Author: Xu Jian <xujian817@hotmail.com>
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	3	Maintainer: Xu Jian
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	4	*)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	5
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	6	theory turing_basic
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	7	imports Main
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	8	begin
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	9
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	10	section {* Basic definitions of Turing machine *}
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	11
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	12	datatype action = W0 \| W1 \| L \| R \| Nop
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	13
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	14	datatype cell = Bk \| Oc
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	15
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	16	type_synonym tape = "cell list \<times> cell list"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	17
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	18	type_synonym state = nat
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	19
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	20	type_synonym instr = "action \<times> state"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	21
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	22	type_synonym tprog = "instr list \<times> nat"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	23
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	24	type_synonym config = "state \<times> tape"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	25
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	26	fun nth_of where
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	27	"nth_of xs i = (if i \<ge> length xs then None
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	28	else Some (xs ! i))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	29
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	30	lemma nth_of_map [simp]:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	31	shows "nth_of (map f p) n = (case (nth_of p n) of None \<Rightarrow> None \| Some x \<Rightarrow> Some (f x))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	32	apply(induct p arbitrary: n)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	33	apply(auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	34	apply(case_tac n)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	35	apply(auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	36	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	37
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	38	fun
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	39	fetch :: "instr list \<Rightarrow> state \<Rightarrow> cell \<Rightarrow> instr"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	40	where
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	41	"fetch p 0 b = (Nop, 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	42	\| "fetch p (Suc s) Bk =
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	43	(case nth_of p (2 * s) of
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	44	Some i \<Rightarrow> i
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	45	\| None \<Rightarrow> (Nop, 0))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	46	\|"fetch p (Suc s) Oc =
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	47	(case nth_of p ((2 * s) + 1) of
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	48	Some i \<Rightarrow> i
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	49	\| None \<Rightarrow> (Nop, 0))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	50
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	51	lemma fetch_Nil [simp]:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	52	shows "fetch [] s b = (Nop, 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	53	apply(case_tac s)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	54	apply(auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	55	apply(case_tac b)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	56	apply(auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	57	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	58
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	59	fun
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	60	update :: "action \<Rightarrow> tape \<Rightarrow> tape"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	61	where
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	62	"update W0 (l, r) = (l, Bk # (tl r))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	63	\| "update W1 (l, r) = (l, Oc # (tl r))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	64	\| "update L (l, r) = (if l = [] then ([], Bk # r) else (tl l, (hd l) # r))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	65	\| "update R (l, r) = (if r = [] then (Bk # l, []) else ((hd r) # l, tl r))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	66	\| "update Nop (l, r) = (l, r)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	67
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	68	abbreviation
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	69	"read r == if (r = []) then Bk else hd r"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	70
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	71	fun step :: "config \<Rightarrow> tprog \<Rightarrow> config"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	72	where
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	73	"step (s, l, r) (p, off) =
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	74	(let (a, s') = fetch p (s - off) (read r) in (s', update a (l, r)))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	75
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	76	fun steps :: "config \<Rightarrow> tprog \<Rightarrow> nat \<Rightarrow> config"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	77	where
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	78	"steps c p 0 = c" \|
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	79	"steps c p (Suc n) = steps (step c p) p n"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	80
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	81	lemma step_red [simp]:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	82	shows "steps c p (Suc n) = step (steps c p n) p"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	83	by (induct n arbitrary: c) (auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	84
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	85	lemma steps_add [simp]:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	86	shows "steps c p (m + n) = steps (steps c p m) p n"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	87	by (induct m arbitrary: c) (auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	88
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	89	fun
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	90	tm_wf :: "tprog \<Rightarrow> bool"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	91	where
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	92	"tm_wf (p, off) = (length p \<ge> 2 \<and> length p mod 2 = 0 \<and>
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	93	(\<forall>(a, s) \<in> set p. s \<le> length p div 2
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	94	+ off \<and> s \<ge> off))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	95
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	96	(* FIXME: needed? *)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	97	lemma halt_lemma:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	98	"\<lbrakk>wf LE; \<forall>n. (\<not> P (f n) \<longrightarrow> (f (Suc n), (f n)) \<in> LE)\<rbrakk> \<Longrightarrow> \<exists>n. P (f n)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	99	by (metis wf_iff_no_infinite_down_chain)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	100
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	101	abbreviation exponent :: "'a \<Rightarrow> nat \<Rightarrow> 'a list" ("_ \<up> _" [100, 99] 100)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	102	where "x \<up> n == replicate n x"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	103
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	104	consts tape_of :: "'a \<Rightarrow> cell list" ("<_>" 100)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	105
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	106	fun tape_of_nat_list :: "nat list \<Rightarrow> cell list"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	107	where
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	108	"tape_of_nat_list [] = []" \|
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	109	"tape_of_nat_list [n] = Oc\<up>(Suc n)" \|
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	110	"tape_of_nat_list (n#ns) = Oc\<up>(Suc n) @ Bk # (tape_of_nat_list ns)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	111
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	112	defs (overloaded)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	113	tape_of_nl_abv: "<am> \<equiv> tape_of_nat_list am"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	114	tape_of_nat_abv : "<(n::nat)> \<equiv> Oc\<up>(Suc n)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	115
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	116	definition tinres :: "cell list \<Rightarrow> cell list \<Rightarrow> bool"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	117	where
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	118	"tinres xs ys = (\<exists>n. xs = ys @ Bk \<up> n \<or> ys = xs @ Bk \<up> n)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	119
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	120	fun
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	121	shift :: "instr list \<Rightarrow> nat \<Rightarrow> instr list"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	122	where
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	123	"shift p n = (map (\<lambda> (a, s). (a, (if s = 0 then 0 else s + n))) p)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	124
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	125
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	126	lemma length_shift [simp]:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	127	"length (shift p n) = length p"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	128	by (simp)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	129
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	130	fun
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	131	adjust :: "instr list \<Rightarrow> instr list"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	132	where
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	133	"adjust p = map (\<lambda> (a, s). (a, if s = 0 then (Suc (length p div 2)) else s)) p"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	134
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	135	lemma length_adjust[simp]:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	136	shows "length (adjust p) = length p"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	137	by (induct p) (auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	138
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	139	fun
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	140	tm_comp :: "instr list \<Rightarrow> instr list \<Rightarrow> instr list" ("_ \|+\| _" [0, 0] 100)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	141	where
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	142	"tm_comp p1 p2 = ((adjust p1) @ (shift p2 ((length p1) div 2)))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	143
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	144	fun
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	145	is_final :: "config \<Rightarrow> bool"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	146	where
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	147	"is_final (s, l, r) = (s = 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	148
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	149	lemma is_final_steps:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	150	assumes "is_final (s, l, r)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	151	shows "is_final (steps (s, l, r) (p, off) n)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	152	using assms by (induct n) (auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	153
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	154	fun
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	155	holds_for :: "(tape \<Rightarrow> bool) \<Rightarrow> config \<Rightarrow> bool" ("_ holds'_for _" [100, 99] 100)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	156	where
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	157	"P holds_for (s, l, r) = P (l, r)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	158
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	159	(*
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	160	lemma step_0 [simp]:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	161	shows "step (0, (l, r)) p = (0, (l, r))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	162	by simp
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	163
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	164	lemma steps_0 [simp]:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	165	shows "steps (0, (l, r)) p n = (0, (l, r))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	166	by (induct n) (simp_all)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	167	*)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	168
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	169	lemma is_final_holds[simp]:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	170	assumes "is_final c"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	171	shows "Q holds_for (steps c (p, off) n) = Q holds_for c"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	172	using assms
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	173	apply(induct n)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	174	apply(case_tac [!] c)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	175	apply(auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	176	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	177
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	178	type_synonym assert = "tape \<Rightarrow> bool"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	179
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	180	definition assert_imp :: "assert \<Rightarrow> assert \<Rightarrow> bool" ("_ \<mapsto> _" [0, 0] 100)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	181	where
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	182	"assert_imp P Q = (\<forall>l r. P (l, r) \<longrightarrow> Q (l, r))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	183
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	184	lemma holds_for_imp:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	185	assumes "P holds_for c"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	186	and "P \<mapsto> Q"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	187	shows "Q holds_for c"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	188	using assms unfolding assert_imp_def by (case_tac c, auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	189
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	190	lemma test:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	191	assumes "is_final (steps (1, (l, r)) p n1)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	192	and "is_final (steps (1, (l, r)) p n2)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	193	shows "Q holds_for (steps (1, (l, r)) p n1) \<longleftrightarrow> Q holds_for (steps (1, (l, r)) p n2)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	194	proof -
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	195	obtain n3 where "n1 = n2 + n3 \<or> n2 = n1 + n3"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	196	by (metis le_iff_add nat_le_linear)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	197	with assms show "Q holds_for (steps (1, (l, r)) p n1) \<longleftrightarrow> Q holds_for (steps (1, (l, r)) p n2)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	198	by(case_tac p) (auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	199	qed
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	200
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	201	definition
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	202	Hoare :: "assert \<Rightarrow> tprog \<Rightarrow> assert \<Rightarrow> bool" ("({(1_)}/ (_)/ {(1_)})" 50)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	203	where
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	204	"{P} p {Q} \<equiv>
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	205	(\<forall>l r. P (l, r) \<longrightarrow> (\<exists>n. is_final (steps (1, (l, r)) p n) \<and> Q holds_for (steps (1, (l, r)) p n)))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	206
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	207	lemma HoareI:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	208	assumes "\<And>l r. P (l, r) \<Longrightarrow> \<exists>n. is_final (steps (1, (l, r)) p n) \<and> Q holds_for (steps (1, (l, r)) p n)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	209	shows "{P} p {Q}"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	210	unfolding Hoare_def using assms by auto
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	211
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	212	text {*
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	213	{P1} A {Q1} {P2} B {Q2} Q1 \<mapsto> P2
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	214	-----------------------------------
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	215	{P1} A \|+\| B {Q2}
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	216	*}
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	217
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	218	lemma step_0 [simp]:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	219	shows "step (0, (l, r)) p = (0, (l, r))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	220	by (case_tac p, simp)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	221
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	222	lemma steps_0 [simp]:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	223	shows "steps (0, (l, r)) p n = (0, (l, r))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	224	by (induct n) (simp_all)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	225
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	226	declare steps.simps[simp del]
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	227
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	228	lemma before_final:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	229	assumes "steps (1, tp) A n = (0, tp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	230	obtains n' where "\<not> is_final (steps (1, tp) A n')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	231	and "steps (1, tp) A (Suc n') = (0, tp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	232	proof -
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	233	from assms have "\<exists> n'. \<not> is_final (steps (1, tp) A n') \<and>
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	234	steps (1, tp) A (Suc n') = (0, tp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	235	proof(induct n arbitrary: tp', simp add: steps.simps)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	236	fix n tp'
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	237	assume ind:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	238	"\<And>tp'. steps (1, tp) A n = (0, tp') \<Longrightarrow>
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	239	\<exists>n'. \<not> is_final (steps (1, tp) A n') \<and> steps (1, tp) A (Suc n') = (0, tp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	240	and h: " steps (1, tp) A (Suc n) = (0, tp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	241	from h show "\<exists>n'. \<not> is_final (steps (1, tp) A n') \<and> steps (1, tp) A (Suc n') = (0, tp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	242	proof(simp add: step_red del: steps.simps,
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	243	case_tac "(steps (Suc 0, tp) A n)", case_tac "a = 0", simp)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	244	fix a b c
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	245	assume " steps (Suc 0, tp) A n = (0, tp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	246	hence "\<exists>n'. \<not> is_final (steps (1, tp) A n') \<and> steps (1, tp) A (Suc n') = (0, tp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	247	apply(rule_tac ind, simp)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	248	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	249	thus "\<exists>n'. \<not> is_final (steps (Suc 0, tp) A n') \<and> step (steps (Suc 0, tp) A n') A = (0, tp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	250	apply(simp)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	251	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	252	next
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	253	fix a b c
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	254	assume "steps (Suc 0, tp) A n = (a, b, c)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	255	"step (steps (Suc 0, tp) A n) A = (0, tp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	256	"a \<noteq> 0"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	257	thus "\<exists>n'. \<not> is_final (steps (Suc 0, tp) A n') \<and>
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	258	step (steps (Suc 0, tp) A n') A = (0, tp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	259	apply(rule_tac x = n in exI, simp)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	260	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	261	qed
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	262	qed
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	263	thus "(\<And>n'. \<lbrakk>\<not> is_final (steps (1, tp) A n');
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	264	steps (1, tp) A (Suc n') = (0, tp')\<rbrakk> \<Longrightarrow> thesis) \<Longrightarrow> thesis"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	265	by auto
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	266	qed
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	267
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	268	declare tm_comp.simps [simp del] adjust.simps[simp del] shift.simps[simp del]
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	269
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	270	lemma length_comp:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	271	"length (A \|+\| B) = length A + length B"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	272	apply(auto simp: tm_comp.simps)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	273	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	274
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	275	lemma tmcomp_fetch_in_first:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	276	assumes "case (fetch A a x) of (ac, ns) \<Rightarrow> ns \<noteq> 0"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	277	shows "fetch (A \|+\| B) a x = fetch A a x"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	278	using assms
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	279	apply(case_tac a, case_tac [!] x,
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	280	auto simp: length_comp tm_comp.simps length_adjust nth_append)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	281	apply(simp_all add: adjust.simps)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	282	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	283
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	284
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	285	lemma is_final_eq: "is_final (ba, tp) = (ba = 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	286	apply(case_tac tp, simp add: is_final.simps)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	287	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	288
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	289	lemma t_merge_pre_eq_step:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	290	assumes step: "step (a, b, c) (A, 0) = cf"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	291	and tm_wf: "tm_wf (A, 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	292	and unfinal: "\<not> is_final cf"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	293	shows "step (a, b, c) (A \|+\| B, 0) = cf"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	294	proof -
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	295	have "fetch (A \|+\| B) a (read c) = fetch A a (read c)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	296	proof(rule_tac tmcomp_fetch_in_first)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	297	from step and unfinal show "case fetch A a (read c) of (ac, ns) \<Rightarrow> ns \<noteq> 0"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	298	apply(auto simp: is_final.simps)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	299	apply(case_tac "fetch A a (read c)", simp_all add: is_final_eq)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	300	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	301	qed
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	302	thus "?thesis"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	303	using step
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	304	apply(auto simp: step.simps is_final.simps)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	305	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	306	qed
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	307
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	308	declare tm_wf.simps[simp del] step.simps[simp del]
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	309
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	310	lemma t_merge_pre_eq:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	311	"\<lbrakk>steps (Suc 0, tp) (A, 0) stp = cf; \<not> is_final cf; tm_wf (A, 0)\<rbrakk>
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	312	\<Longrightarrow> steps (Suc 0, tp) (A \|+\| B, 0) stp = cf"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	313	proof(induct stp arbitrary: cf, simp add: steps.simps)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	314	fix stp cf
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	315	assume ind: "\<And>cf. \<lbrakk>steps (Suc 0, tp) (A, 0) stp = cf; \<not> is_final cf; tm_wf (A, 0)\<rbrakk>
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	316	\<Longrightarrow> steps (Suc 0, tp) (A \|+\| B, 0) stp = cf"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	317	and h: "steps (Suc 0, tp) (A, 0) (Suc stp) = cf"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	318	"\<not> is_final cf" "tm_wf (A, 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	319	from h show "steps (Suc 0, tp) (A \|+\| B, 0) (Suc stp) = cf"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	320	proof(simp add: step_red, case_tac "(steps (Suc 0, tp) (A, 0) stp)", simp)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	321	fix a b c
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	322	assume g: "steps (Suc 0, tp) (A, 0) stp = (a, b, c)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	323	"step (a, b, c) (A, 0) = cf"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	324	have "(steps (Suc 0, tp) (A \|+\| B, 0) stp) = (a, b, c)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	325	proof(rule ind, simp_all add: h g)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	326	show "0 < a"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	327	using g h
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	328	apply(simp add: step_red)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	329	apply(case_tac a, auto simp: step_0)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	330	apply(case_tac "steps (Suc 0, tp) (A, 0) stp", simp)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	331	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	332	qed
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	333	thus "step (steps (Suc 0, tp) (A \|+\| B, 0) stp) (A \|+\| B, 0) = cf"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	334	apply(simp)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	335	apply(rule_tac t_merge_pre_eq_step, simp_all add: g h)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	336	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	337	qed
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	338	qed
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	339
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	340	lemma tmcomp_fetch_in_first2:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	341	assumes "fetch A a x = (ac, 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	342	"tm_wf (A, 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	343	"a \<le> length A div 2" "a > 0"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	344	shows "fetch (A \|+\| B) a x = (ac, Suc (length A div 2))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	345	using assms
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	346	apply(case_tac a, case_tac [!] x,
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	347	auto simp: length_comp tm_comp.simps length_adjust nth_append)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	348	apply(simp_all add: adjust.simps)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	349	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	350
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	351	lemma tmcomp_exec_after_first:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	352	"\<lbrakk>0 < a; step (a, b, c) (A, 0) = (0, tp'); tm_wf (A, 0);
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	353	a \<le> length A div 2\<rbrakk>
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	354	\<Longrightarrow> step (a, b, c) (A \|+\| B, 0) = (Suc (length A div 2), tp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	355	apply(simp add: step.simps, auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	356	apply(case_tac "fetch A a Bk", simp add: tmcomp_fetch_in_first2)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	357	apply(case_tac "fetch A a (hd c)", simp add: tmcomp_fetch_in_first2)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	358	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	359
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	360	lemma step_nothalt_pre: "\<lbrakk>step (aa, ba, ca) (A, 0) = (a, b, c); 0 < a\<rbrakk> \<Longrightarrow> 0 < aa"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	361	apply(case_tac "aa = 0", simp add: step_0, simp)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	362	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	363
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	364	lemma nth_in_set:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	365	"\<lbrakk> A ! i = x; i < length A\<rbrakk> \<Longrightarrow> x \<in> set A"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	366	by auto
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	367
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	368	lemma step_nothalt:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	369	"\<lbrakk>step (aa, ba, ca) (A, 0) = (a, b, c); 0 < a; tm_wf (A, 0)\<rbrakk> \<Longrightarrow>
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	370	a \<le> length A div 2"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	371	apply(simp add: step.simps)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	372	apply(case_tac aa, case_tac [!] aa, auto split: if_splits simp: tm_wf.simps)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	373	apply(case_tac "A ! (2 * nat)", simp)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	374	apply(erule_tac x = "(aa, a)" in ballE, simp_all add: nth_in_set)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	375	apply(case_tac "hd ca", auto split: if_splits simp: tm_wf.simps)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	376	apply(case_tac "A ! (2 * nat)", simp)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	377	apply(erule_tac x = "(aa, a)" in ballE, simp_all add: nth_in_set)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	378	apply(case_tac "A ! (Suc (2 * nat))")
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	379	apply(erule_tac x = "(aa,bb)" in ballE, simp_all add: nth_in_set)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	380	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	381
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	382	lemma steps_in_range:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	383	" \<lbrakk>0 < a; steps (Suc 0, tp) (A, 0) stp = (a, b, c); tm_wf (A, 0)\<rbrakk>
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	384	\<Longrightarrow> a \<le> length A div 2"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	385	proof(induct stp arbitrary: a b c)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	386	fix a b c
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	387	assume h: "0 < a" "steps (Suc 0, tp) (A, 0) 0 = (a, b, c)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	388	"tm_wf (A, 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	389	thus "a \<le> length A div 2"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	390	apply(simp add: steps.simps tm_wf.simps, auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	391	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	392	next
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	393	fix stp a b c
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	394	assume ind: "\<And>a b c. \<lbrakk>0 < a; steps (Suc 0, tp) (A, 0) stp = (a, b, c);
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	395	tm_wf (A, 0)\<rbrakk> \<Longrightarrow> a \<le> length A div 2"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	396	and h: "0 < a" "steps (Suc 0, tp) (A, 0) (Suc stp) = (a, b, c)" "tm_wf (A, 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	397	from h show "a \<le> length A div 2"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	398	proof(simp add: step_red, case_tac "(steps (Suc 0, tp) (A, 0) stp)", simp)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	399	fix aa ba ca
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	400	assume g: "step (aa, ba, ca) (A, 0) = (a, b, c)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	401	"steps (Suc 0, tp) (A, 0) stp = (aa, ba, ca)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	402	hence "aa \<le> length A div 2"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	403	apply(rule_tac ind, auto simp: h step_nothalt_pre)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	404	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	405	thus "?thesis"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	406	using g h
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	407	apply(rule_tac step_nothalt, auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	408	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	409	qed
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	410	qed
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	411
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	412	lemma t_merge_pre_halt_same:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	413	assumes a_ht: "steps (1, tp) (A, 0) n = (0, tp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	414	and a_wf: "tm_wf (A, 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	415	obtains n' where "steps (1, tp) (A \|+\| B, 0) n' = (Suc (length A div 2), tp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	416	proof -
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	417	assume a: "\<And>n. steps (1, tp) (A \|+\| B, 0) n = (Suc (length A div 2), tp') \<Longrightarrow> thesis"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	418	obtain stp' where "\<not> is_final (steps (1, tp) (A, 0) stp')" and
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	419	"steps (1, tp) (A, 0) (Suc stp') = (0, tp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	420	using a_ht before_final by blast
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	421	then have "steps (1, tp) (A \|+\| B, 0) (Suc stp') = (Suc (length A div 2), tp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	422	proof(simp add: step_red)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	423	assume "\<not> is_final (steps (Suc 0, tp) (A, 0) stp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	424	" step (steps (Suc 0, tp) (A, 0) stp') (A, 0) = (0, tp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	425	moreover hence "(steps (Suc 0, tp) (A \|+\| B, 0) stp') = (steps (Suc 0, tp) (A, 0) stp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	426	apply(rule_tac t_merge_pre_eq)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	427	apply(simp_all add: a_wf a_ht)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	428	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	429	ultimately show "step (steps (Suc 0, tp) (A \|+\| B, 0) stp') (A \|+\| B, 0) = (Suc (length A div 2), tp')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	430	apply(case_tac " steps (Suc 0, tp) (A, 0) stp'", simp)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	431	apply(rule tmcomp_exec_after_first, simp_all add: a_wf)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	432	apply(erule_tac steps_in_range, auto simp: a_wf)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	433	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	434	qed
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	435	with a show thesis by blast
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	436	qed
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	437
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	438	lemma tm_comp_fetch_second_zero:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	439	"\<lbrakk>fetch B sa' x = (a, 0); tm_wf (A, 0); tm_wf (B, 0); sa' > 0\<rbrakk>
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	440	\<Longrightarrow> fetch (A \|+\| B) (sa' + (length A div 2)) x = (a, 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	441	apply(case_tac x)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	442	apply(case_tac [!] sa',
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	443	auto simp: fetch.simps length_comp length_adjust nth_append tm_comp.simps
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	444	tm_wf.simps shift.simps split: if_splits)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	445	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	446
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	447	lemma tm_comp_fetch_second_inst:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	448	"\<lbrakk>sa > 0; s > 0; tm_wf (A, 0); tm_wf (B, 0); fetch B sa x = (a, s)\<rbrakk>
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	449	\<Longrightarrow> fetch (A \|+\| B) (sa + length A div 2) x = (a, s + length A div 2)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	450	apply(case_tac x)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	451	apply(case_tac [!] sa,
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	452	auto simp: fetch.simps length_comp length_adjust nth_append tm_comp.simps
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	453	tm_wf.simps shift.simps split: if_splits)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	454	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	455
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	456	lemma t_merge_second_same:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	457	assumes a_wf: "tm_wf (A, 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	458	and b_wf: "tm_wf (B, 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	459	and steps: "steps (Suc 0, l, r) (B, 0) stp = (s, l', r')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	460	shows "steps (Suc (length A div 2), l, r) (A \|+\| B, 0) stp
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	461	= (if s = 0 then 0
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	462	else s + length A div 2, l', r')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	463	using a_wf b_wf steps
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	464	proof(induct stp arbitrary: s l' r', simp add: steps.simps, simp)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	465	fix stpa sa l'a r'a
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	466	assume ind: "\<And>s l' r'. steps (Suc 0, l, r) (B, 0) stpa = (s, l', r') \<Longrightarrow>
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	467	steps (Suc (length A div 2), l, r) (A \|+\| B, 0) stpa =
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	468	(if s = 0 then 0 else s + length A div 2, l', r')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	469	and h: "step (steps (Suc 0, l, r) (B, 0) stpa) (B, 0) = (sa, l'a, r'a)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	470	obtain sa' l'' r'' where a: "(steps (Suc 0, l, r) (B, 0) stpa) = (sa', l'', r'')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	471	apply(case_tac "steps (Suc 0, l, r) (B, 0) stpa", auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	472	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	473	from this have b: "steps (Suc (length A div 2), l, r) (A \|+\| B, 0) stpa =
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	474	(if sa' = 0 then 0 else sa' + length A div 2, l'', r'')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	475	apply(erule_tac ind)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	476	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	477	from a b h show
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	478	"(sa = 0 \<longrightarrow> step (steps (Suc (length A div 2), l, r) (A \|+\| B, 0) stpa) (A \|+\| B, 0) = (0, l'a, r'a)) \<and>
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	479	(0 < sa \<longrightarrow> step (steps (Suc (length A div 2), l, r) (A \|+\| B, 0) stpa) (A \|+\| B, 0) = (sa + length A div 2, l'a, r'a))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	480	proof(case_tac "sa' = 0", auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	481	assume "step (sa', l'', r'') (B, 0) = (0, l'a, r'a)" "0 < sa'"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	482	thus "step (sa' + length A div 2, l'', r'') (A \|+\| B, 0) = (0, l'a, r'a)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	483	using a_wf b_wf
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	484	apply(simp add: step.simps)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	485	apply(case_tac "fetch B sa' (read r'')", auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	486	apply(simp_all add: step.simps tm_comp_fetch_second_zero)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	487	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	488	next
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	489	assume "step (sa', l'', r'') (B, 0) = (sa, l'a, r'a)" "0 < sa'" "0 < sa"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	490	thus "step (sa' + length A div 2, l'', r'') (A \|+\| B, 0) = (sa + length A div 2, l'a, r'a)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	491	using a_wf b_wf
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	492	apply(simp add: step.simps)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	493	apply(case_tac "fetch B sa' (read r'')", auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	494	apply(simp_all add: step.simps tm_comp_fetch_second_inst)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	495	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	496	qed
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	497	qed
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	498
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	499	lemma t_merge_second_halt_same:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	500	"\<lbrakk>tm_wf (A, 0); tm_wf (B, 0);
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	501	steps (1, l, r) (B, 0) stp = (0, l', r')\<rbrakk>
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	502	\<Longrightarrow> steps (Suc (length A div 2), l, r) (A \|+\| B, 0) stp
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	503	= (0, l', r')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	504	using t_merge_second_same[where s = "0"]
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	505	apply(auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	506	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	507
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	508	lemma Hoare_plus_halt:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	509	assumes aimpb: "Q1 \<mapsto> P2"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	510	and A_wf : "tm_wf (A, 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	511	and B_wf : "tm_wf (B, 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	512	and A_halt : "{P1} (A, 0) {Q1}"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	513	and B_halt : "{P2} (B, 0) {Q2}"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	514	shows "{P1} (A \|+\| B, 0) {Q2}"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	515	proof(rule HoareI)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	516	fix l r
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	517	assume h: "P1 (l, r)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	518	then obtain n1 where a: "is_final (steps (1, l, r) (A, 0) n1)" and b: "Q1 holds_for (steps (1, l, r) (A, 0) n1)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	519	using A_halt unfolding Hoare_def by auto
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	520	then obtain l' r' where "steps (1, l, r) (A, 0) n1 = (0, l', r')" and c: "Q1 holds_for (0, l', r')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	521	by(case_tac "steps (1, l, r) (A, 0) n1", auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	522	then obtain stpa where d: "steps (1, l, r) (A \|+\| B, 0) stpa = (Suc (length A div 2), l', r')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	523	using A_wf
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	524	by(rule_tac t_merge_pre_halt_same, auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	525	from c aimpb have "P2 holds_for (0, l', r')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	526	by(rule holds_for_imp)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	527	from this have "P2 (l', r')" by auto
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	528	from this obtain n2 where e: "is_final (steps (1, l', r') (B, 0) n2)" and f: "Q2 holds_for (steps (1, l', r') (B, 0) n2)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	529	using B_halt unfolding Hoare_def
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	530	by auto
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	531	then obtain l'' r'' where "steps (1, l', r') (B, 0) n2 = (0, l'', r'')" and g: "Q2 holds_for (0, l'', r'')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	532	by(case_tac "steps (1, l', r') (B, 0) n2", auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	533	from this have "steps (Suc (length A div 2), l', r') (A \|+\| B, 0) n2
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	534	= (0, l'', r'')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	535	apply(rule_tac t_merge_second_halt_same, auto simp: A_wf B_wf)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	536	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	537	thus "\<exists>n. is_final (steps (1, l, r) (A \|+\| B, 0) n) \<and> Q2 holds_for (steps (1, l, r) (A \|+\| B, 0) n)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	538	using d g
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	539	apply(rule_tac x = "stpa + n2" in exI)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	540	apply(simp add: steps_add)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	541	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	542	qed
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	543
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	544	definition
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	545	Hoare_unhalt :: "assert \<Rightarrow> tprog \<Rightarrow> bool" ("({(1_)}/ (_))" 50)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	546	where
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	547	"{P} p \<equiv>
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	548	(\<forall>l r. P (l, r) \<longrightarrow> (\<forall> n . \<not> (is_final (steps (1, (l, r)) p n))))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	549
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	550	lemma Hoare_unhalt_I:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	551	assumes "\<And>l r. P (l, r) \<Longrightarrow> \<forall> n. \<not> is_final (steps (1, (l, r)) p n)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	552	shows "{P} p"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	553	unfolding Hoare_unhalt_def using assms by auto
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	554
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	555	lemma Hoare_plus_unhalt:
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	556	assumes aimpb: "Q1 \<mapsto> P2"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	557	and A_wf : "tm_wf (A, 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	558	and B_wf : "tm_wf (B, 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	559	and A_halt : "{P1} (A, 0) {Q1}"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	560	and B_uhalt : "{P2} (B, 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	561	shows "{P1} (A \|+\| B, 0)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	562	proof(rule_tac Hoare_unhalt_I)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	563	fix l r
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	564	assume h: "P1 (l, r)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	565	then obtain n1 where a: "is_final (steps (1, l, r) (A, 0) n1)" and b: "Q1 holds_for (steps (1, l, r) (A, 0) n1)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	566	using A_halt unfolding Hoare_def by auto
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	567	then obtain l' r' where "steps (1, l, r) (A, 0) n1 = (0, l', r')" and c: "Q1 holds_for (0, l', r')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	568	by(case_tac "steps (1, l, r) (A, 0) n1", auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	569	then obtain stpa where d: "steps (1, l, r) (A \|+\| B, 0) stpa = (Suc (length A div 2), l', r')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	570	using A_wf
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	571	by(rule_tac t_merge_pre_halt_same, auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	572	from c aimpb have "P2 holds_for (0, l', r')"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	573	by(rule holds_for_imp)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	574	from this have "P2 (l', r')" by auto
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	575	from this have e: "\<forall> n. \<not> is_final (steps (Suc 0, l', r') (B, 0) n) "
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	576	using B_uhalt unfolding Hoare_unhalt_def
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	577	by auto
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	578	from e show "\<forall>n. \<not> is_final (steps (1, l, r) (A \|+\| B, 0) n)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	579	proof(rule_tac allI, case_tac "n > stpa")
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	580	fix n
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	581	assume h2: "stpa < n"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	582	hence "\<not> is_final (steps (Suc 0, l', r') (B, 0) (n - stpa))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	583	using e
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	584	apply(erule_tac x = "n - stpa" in allE) by simp
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	585	then obtain s'' l'' r'' where f: "steps (Suc 0, l', r') (B, 0) (n - stpa) = (s'', l'', r'')" and g: "s'' \<noteq> 0"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	586	apply(case_tac "steps (Suc 0, l', r') (B, 0) (n - stpa)", auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	587	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	588	have k: "steps (Suc (length A div 2), l', r') (A \|+\| B, 0) (n - stpa) = (s''+ length A div 2, l'', r'') "
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	589	using A_wf B_wf f g
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	590	apply(drule_tac t_merge_second_same, auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	591	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	592	show "\<not> is_final (steps (1, l, r) (A \|+\| B, 0) n)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	593	proof -
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	594	have "\<not> is_final (steps (1, l, r) (A \|+\| B, 0) (stpa + (n - stpa)))"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	595	using d k A_wf
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	596	apply(simp only: steps_add d, simp add: tm_wf.simps)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	597	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	598	thus "\<not> is_final (steps (1, l, r) (A \|+\| B, 0) n)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	599	using h2 by simp
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	600	qed
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	601	next
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	602	fix n
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	603	assume h2: "\<not> stpa < n"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	604	with d show "\<not> is_final (steps (1, l, r) (A \|+\| B, 0) n)"
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	605	apply(auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	606	apply(subgoal_tac "\<exists> d. stpa = n + d", auto)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	607	apply(case_tac "(steps (Suc 0, l, r) (A \|+\| B, 0) n)", simp)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	608	apply(rule_tac x = "stpa - n" in exI, simp)
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	609	done
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	610	qed
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	611	qed
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	612
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	613	end
816e84ca16d6 updated turing_basic by Jian Christian Urban <christian dot urban at kcl dot ac dot uk> parents: 41 diff changeset	614

author	Christian Urban <urbanc@in.tum.de>
	Thu, 10 Jan 2019 13:18:07 +0000
changeset 296	3fee65a40838
parent 127	469c26d19f8e
permissions	-rw-r--r--