tm: comparison thys/uncomputable.thy

equal deleted inserted replaced

-:2e9881578cb2
+:c470f1705baa
 (* tcopy_loop *)
 fun
-inv_loop0 :: "nat \<Rightarrow> tape \<Rightarrow> bool" and
 inv_loop1_loop :: "nat \<Rightarrow> tape \<Rightarrow> bool" and
 inv_loop1_exit :: "nat \<Rightarrow> tape \<Rightarrow> bool" and
+inv_loop5_loop :: "nat \<Rightarrow> tape \<Rightarrow> bool" and
+inv_loop5_exit :: "nat \<Rightarrow> tape \<Rightarrow> bool" and
+inv_loop6_loop :: "nat \<Rightarrow> tape \<Rightarrow> bool" and
+inv_loop6_exit :: "nat \<Rightarrow> tape \<Rightarrow> bool"
+where
+"inv_loop1_loop x (l, r) = (\<exists> i j. i + j + 1 = x \<and> l = Oc\<up>i \<and> r = Oc # Oc # Bk\<up>j @ Oc\<up>j \<and> j > 0)"
+| "inv_loop1_exit x (l, r) = (l = [] \<and> r = Bk # Oc # Bk\<up>x @ Oc\<up>x \<and> x > 0)"
+| "inv_loop5_loop x (l, r) =
+(\<exists> i j k t. i + j = Suc x \<and> i > 0 \<and> j > 0 \<and> k + t = j \<and> t > 0 \<and> l = Oc\<up>k@Bk\<up>j@Oc\<up>i \<and> r = Oc\<up>t)"
+| "inv_loop5_exit x (l, r) =
+(\<exists> i j. i + j = Suc x \<and> i > 0 \<and> j > 0 \<and>  l = Bk\<up>(j - 1)@Oc\<up>i \<and> r = Bk # Oc\<up>j)"
+| "inv_loop6_loop x (l, r) =
+(\<exists> i j k t. i + j = Suc x \<and> i > 0 \<and> k + t + 1 = j \<and> l = Bk\<up>k @ Oc\<up>i \<and> r = Bk\<up>(Suc t) @ Oc\<up>j)"
+| "inv_loop6_exit x (l, r) =
+(\<exists> i j. i + j = x \<and> j > 0 \<and> l = Oc\<up>i \<and> r = Oc # Bk\<up>j @ Oc\<up>j)"
+fun
+inv_loop0 :: "nat \<Rightarrow> tape \<Rightarrow> bool" and
 inv_loop1 :: "nat \<Rightarrow> tape \<Rightarrow> bool" and
 inv_loop2 :: "nat \<Rightarrow> tape \<Rightarrow> bool" and
 inv_loop3 :: "nat \<Rightarrow> tape \<Rightarrow> bool" and
 inv_loop4 :: "nat \<Rightarrow> tape \<Rightarrow> bool" and
-inv_loop5_loop :: "nat \<Rightarrow> tape \<Rightarrow> bool" and
+inv_loop5 :: "nat \<Rightarrow> tape \<Rightarrow> bool" and
-inv_loop5_exit :: "nat \<Rightarrow> tape \<Rightarrow> bool" and
+inv_loop6 :: "nat \<Rightarrow> tape \<Rightarrow> bool"
-inv_loop5 :: "nat \<Rightarrow> tape \<Rightarrow> bool"
 where
 "inv_loop0 x (l, r) =  (l = [Bk] \<and> r = Oc # Bk\<up>x @ Oc\<up>x \<and> x > 0 )"
-| "inv_loop1_loop x (l, r) = (\<exists> i j. i + j + 1 = x \<and> l = Oc\<up>i \<and> r = Oc # Oc # Bk\<up>j @ Oc\<up>j \<and> j > 0)"
-| "inv_loop1_exit x (l, r) = (l = [] \<and> r = Bk # Oc # Bk\<up>x @ Oc\<up>x \<and> x > 0)"
 | "inv_loop1 x (l, r) = (inv_loop1_loop x (l, r) \<or> inv_loop1_exit x (l, r))"
 | "inv_loop2 x (l, r) = (\<exists> i j any. i + j = x \<and> x > 0 \<and> i > 0 \<and> j > 0 \<and> l = Oc\<up>i \<and> r = any#Bk\<up>j@Oc\<up>j)"
 | "inv_loop3 x (l, r) =
 (\<exists> i j k t. i + j = x \<and> i > 0 \<and> j > 0 \<and>  k + t = Suc j \<and> l = Bk\<up>k@Oc\<up>i \<and> r = Bk\<up>t@Oc\<up>j)"
 | "inv_loop4 x (l, r) =
 (\<exists> i j k t. i + j = x \<and> i > 0 \<and> j > 0 \<and>  k + t = j \<and> l = Oc\<up>k @ Bk\<up>(Suc j)@Oc\<up>i \<and> r = Oc\<up>t)"
-| "inv_loop5_loop x (l, r) =
-(\<exists> i j k t. i + j = Suc x \<and> i > 0 \<and> j > 0 \<and> k + t = j \<and> t > 0 \<and> l = Oc\<up>k@Bk\<up>j@Oc\<up>i \<and> r = Oc\<up>t)"
-| "inv_loop5_exit x (l, r) = (\<exists> i j. i + j = Suc x \<and> i > 0 \<and> j > 0 \<and>  l = Bk\<up>(j - 1)@Oc\<up>i \<and> r = Bk # Oc\<up>j)"
 | "inv_loop5 x (l, r) = (inv_loop5_loop x (l, r) \<or> inv_loop5_exit x (l, r))"
+| "inv_loop6 x (l, r) = (inv_loop6_loop x (l, r) \<or> inv_loop6_exit x (l, r))"
-fun inv_loop6_loop :: "nat \<Rightarrow> tape \<Rightarrow> bool"
-where
-"inv_loop6_loop x (l, r) =
-(\<exists> i j k t. i + j = Suc x \<and> i > 0 \<and> k + t + 1 = j \<and> l = Bk\<up>k @ Oc\<up>i \<and> r = Bk\<up>(Suc t) @ Oc\<up>j)"
-fun inv_loop6_exit :: "nat \<Rightarrow> tape \<Rightarrow> bool"
-where
-"inv_loop6_exit x (l, r) =
-(\<exists> i j. i + j = x \<and> j > 0 \<and> l = Oc\<up>i \<and> r = Oc # Bk\<up>j @ Oc\<up>j)"
-fun inv_loop6 :: "nat \<Rightarrow> tape \<Rightarrow> bool"
-where
-"inv_loop6 x (l, r) = (inv_loop6_loop x (l, r) \<or> inv_loop6_exit x (l, r))"
 fun inv_loop :: "nat \<Rightarrow> config \<Rightarrow> bool"
 where
 "inv_loop x (s, l, r) =
 (if s = 0 then inv_loop0 x (l, r)
 lemma [elim]: "Bk # list = Oc \<up> t \<Longrightarrow> RR"
 by (case_tac t, auto)
 lemma [simp]: "inv_loop1 x (b, []) = False"
-by(simp add: inv_loop1.simps)
+by (simp add: inv_loop1.simps)
 lemma [elim]: "\<lbrakk>0 < x; inv_loop2 x (b, [])\<rbrakk> \<Longrightarrow> inv_loop3 x (Bk # b, [])"
 by (auto simp: inv_loop2.simps inv_loop3.simps)
 apply(rule_tac [!] x = i in exI,
 rule_tac [!] x  = "Suc j" in exI, simp_all)
 done
 lemma [elim]: "\<lbrakk>0 < x; inv_loop5 x ([], [])\<rbrakk> \<Longrightarrow> RR"
-apply(auto simp: inv_loop4.simps inv_loop5.simps)
+by (auto simp: inv_loop4.simps inv_loop5.simps)
-done
 lemma [elim]: "\<lbrakk>0 < x; inv_loop5 x (b, []); b \<noteq> []\<rbrakk> \<Longrightarrow> RR"
-apply(auto simp: inv_loop4.simps inv_loop5.simps)
+by (auto simp: inv_loop4.simps inv_loop5.simps)
-done
 lemma [elim]: "inv_loop6 x ([], []) \<Longrightarrow> RR"
-apply(auto simp: inv_loop6.simps)
+by (auto simp: inv_loop6.simps)
-done
-thm inv_loop6_exit.simps
 lemma [elim]: "inv_loop6 x (b, []) \<Longrightarrow> RR"
-apply(auto simp: inv_loop6.simps)
+by (auto simp: inv_loop6.simps)
-done
 lemma [elim]: "\<lbrakk>0 < x; inv_loop1 x (b, Bk # list)\<rbrakk> \<Longrightarrow> b = []"
-apply(auto simp: inv_loop1.simps)
+by (auto simp: inv_loop1.simps)
-done
 lemma [elim]: "\<lbrakk>0 < x; inv_loop1 x (b, Bk # list)\<rbrakk> \<Longrightarrow> list = Oc # Bk \<up> x @ Oc \<up> x"
-apply(auto simp: inv_loop1.simps)
+by (auto simp: inv_loop1.simps)
-done
 lemma [elim]: "\<lbrakk>0 < x; inv_loop2 x (b, Bk # list)\<rbrakk> \<Longrightarrow> inv_loop3 x (Bk # b, list)"
 apply(auto simp: inv_loop2.simps inv_loop3.simps)
 apply(rule_tac [!] x = i  in exI, rule_tac [!] x = j in exI, simp_all)
 done
 lemma [elim]: "Bk # list = Oc \<up> j \<Longrightarrow> RR"
-apply(case_tac j, simp_all)
+by (case_tac j, simp_all)
-done
 lemma [elim]: "\<lbrakk>0 < x; inv_loop3 x (b, Bk # list)\<rbrakk> \<Longrightarrow> inv_loop3 x (Bk # b, list)"
 apply(auto simp: inv_loop3.simps)
 apply(rule_tac [!] x = i in exI,
 rule_tac [!] x = j in exI, simp_all)
 apply(case_tac [!] t, auto)
 done
 lemma [elim]: "\<lbrakk>0 < x; inv_loop4 x (b, Bk # list)\<rbrakk> \<Longrightarrow> inv_loop5 x (b, Oc # list)"
-apply(auto simp: inv_loop4.simps inv_loop5.simps)
+by (auto simp: inv_loop4.simps inv_loop5.simps)
-done
 lemma [elim]: "\<lbrakk>0 < x; inv_loop5 x ([], Bk # list)\<rbrakk> \<Longrightarrow> inv_loop6 x ([], Bk # Bk # list)"
-apply(auto simp: inv_loop6.simps inv_loop5.simps)
+by (auto simp: inv_loop6.simps inv_loop5.simps)
-done
 lemma [simp]: "inv_loop5_loop x (b, Bk # list) = False"
-apply(auto simp: inv_loop5_loop.simps)
+by (auto simp: inv_loop5.simps)
-done
 lemma [simp]: "inv_loop6_exit x (b, Bk # list) = False"
-apply(auto simp: inv_loop6.simps)
+by (auto simp: inv_loop6.simps)
-done
 declare inv_loop5_loop.simps[simp del]  inv_loop5_exit.simps[simp del]
 inv_loop6_loop.simps[simp del]  inv_loop6_exit.simps[simp del]
 lemma [elim]:"\<lbrakk>0 < x; inv_loop5_exit x (b, Bk # list); b \<noteq> []; hd b = Bk\<rbrakk>
 apply(case_tac [!] j, simp_all)
 apply(case_tac [!] nat, simp_all)
 done
 lemma [simp]: "inv_loop6_loop x (b, Oc # Bk # list) = False"
-apply(auto simp: inv_loop6_loop.simps)
+by (auto simp: inv_loop6_loop.simps)
-done
 lemma [elim]: "\<lbrakk>x > 0; inv_loop5_exit x (b, Bk # list); b \<noteq> []; hd b = Oc\<rbrakk> \<Longrightarrow>
 inv_loop6_exit x (tl b, Oc # Bk # list)"
 apply(simp only: inv_loop5_exit.simps inv_loop6_exit.simps)
 apply(erule_tac exE)+
 inv_loop6_exit.simps)
 apply(auto)
 done
 lemma [elim]: "\<lbrakk>0 < x; inv_loop6 x ([], Bk # list)\<rbrakk> \<Longrightarrow> inv_loop6 x ([], Bk # Bk # list)"
-apply(simp)
+by (simp)
-done
 lemma [simp]: "inv_loop6_exit x (b, Bk # list) = False"
-apply(simp add: inv_loop6_exit.simps)
+by (simp add: inv_loop6_exit.simps)
-done
 lemma [elim]: "\<lbrakk>0 < x; inv_loop6_loop x (b, Bk # list); b \<noteq> []; hd b = Bk\<rbrakk>
 \<Longrightarrow> inv_loop6_loop x (tl b, Bk # Bk # list)"
 apply(simp only: inv_loop6_loop.simps)
 apply(erule_tac exE)+
 apply(auto simp: inv_loop1.simps inv_loop2.simps)
 apply(rule_tac x = "Suc i" in exI, auto)
 done
 lemma [elim]: "\<lbrakk>0 < x; inv_loop2 x (b, Oc # list)\<rbrakk> \<Longrightarrow> inv_loop2 x (b, Bk # list)"
-apply(auto simp: inv_loop2.simps)
+by (auto simp: inv_loop2.simps)
-done
 lemma [elim]: "\<lbrakk>0 < x; inv_loop3 x (b, Oc # list)\<rbrakk> \<Longrightarrow> inv_loop4 x (Oc # b, list)"
 apply(auto simp: inv_loop3.simps inv_loop4.simps)
 apply(rule_tac [!] x = i in exI, auto)
 apply(rule_tac [!] x = "Suc 0" in exI, rule_tac [!] x = "j - 1" in exI, auto)
 apply(rule_tac [!] x = "Suc k" in exI, rule_tac [!] x = "t - 1" in exI, auto)
 apply(case_tac [!] t, simp_all)
 done
 lemma [simp]: "inv_loop5 x ([], list) = False"
-apply(auto simp: inv_loop5.simps inv_loop5_exit.simps inv_loop5_loop.simps)
+by (auto simp: inv_loop5.simps inv_loop5_exit.simps inv_loop5_loop.simps)
-done
 lemma [simp]: "inv_loop5_exit x (b, Oc # list) = False"
-apply(auto simp: inv_loop5_exit.simps)
+by (auto simp: inv_loop5_exit.simps)
-done
 lemma [elim]: " \<lbrakk>inv_loop5_loop x (b, Oc # list); b \<noteq> []; hd b = Bk\<rbrakk>
 \<Longrightarrow> inv_loop5_exit x (tl b, Bk # Oc # list)"
 apply(simp only: inv_loop5_loop.simps inv_loop5_exit.simps)
 apply(erule_tac exE)+
 apply(rule_tac x = i in exI, rule_tac x = j in exI)
 apply(rule_tac x = "k - 1" in exI, rule_tac x = "Suc t" in exI, auto)
 apply(case_tac [!] k, auto)
 done
-lemma [elim]: "\<lbrakk>inv_loop5 x (b, Oc # list); b \<noteq> []\<rbrakk> \<Longrightarrow>
+lemma [elim]: "\<lbrakk>inv_loop5 x (b, Oc # list); b \<noteq> []\<rbrakk> \<Longrightarrow> inv_loop5 x (tl b, hd b # Oc # list)"
-inv_loop5 x (tl b, hd b # Oc # list)"
 apply(simp add: inv_loop5.simps)
 apply(case_tac "hd b", simp_all, auto)
 done
-lemma [elim]: "\<lbrakk>0 < x; inv_loop6 x ([], Oc # list)\<rbrakk> \<Longrightarrow>
+lemma [elim]: "\<lbrakk>0 < x; inv_loop6 x ([], Oc # list)\<rbrakk> \<Longrightarrow> inv_loop1 x ([], Bk # Oc # list)"
-inv_loop1 x ([], Bk # Oc # list)"
 apply(auto simp: inv_loop6.simps inv_loop1.simps
 inv_loop6_loop.simps inv_loop6_exit.simps)
 done
 lemma [elim]: "\<lbrakk>0 < x; inv_loop6 x (b, Oc # list); b \<noteq> []\<rbrakk>
 apply(auto simp: inv_loop6.simps inv_loop1.simps
 inv_loop6_loop.simps inv_loop6_exit.simps)
 done
 lemma inv_loop_step:
-"\<lbrakk>inv_loop x cf; x > 0\<rbrakk>
+"\<lbrakk>inv_loop x cf; x > 0\<rbrakk> \<Longrightarrow> inv_loop x (step cf (tcopy_loop, 0))"
-\<Longrightarrow> inv_loop x (step cf (tcopy_loop, 0))"
 apply(case_tac cf, case_tac c, case_tac [2] aa)
 apply(auto simp: inv_loop.simps step.simps tcopy_loop_def numeral split: if_splits)
 done
 lemma inv_loop_steps:
 definition loop_LE :: "(config \<times> config) set"
 where
 "loop_LE \<equiv> (inv_image lex_triple loop_measure)"
 lemma wf_loop_le: "wf loop_LE"
-by(auto intro:wf_inv_image simp: loop_LE_def wf_lex_triple)
+by (auto intro:wf_inv_image simp: loop_LE_def wf_lex_triple)
 lemma [simp]: "inv_loop2 x ([], b) = False"
-apply(auto simp: inv_loop2.simps)
+by (auto simp: inv_loop2.simps)
-done
 lemma  [simp]: "inv_loop2 x (l', []) = False"
-apply(auto simp: inv_loop2.simps)
+by (auto simp: inv_loop2.simps)
-done
 lemma [simp]: "inv_loop3 x (b, []) = False"
-apply(auto simp: inv_loop3.simps)
+by (auto simp: inv_loop3.simps)
-done
 lemma [simp]: "inv_loop4 x ([], b) = False"
-apply(auto simp: inv_loop4.simps)
+by (auto simp: inv_loop4.simps)
-done
 lemma [elim]:
 "\<lbrakk>inv_loop4 x (l', []); l' \<noteq> []; x > 0;
 length (takeWhile (\<lambda>a. a = Oc) (rev l' @ [Oc])) \<noteq>
 length (takeWhile (\<lambda>a. a = Oc) (rev l'))\<rbrakk>
 "\<lbrakk>inv_loop4 x (l', Bk # list); l' \<noteq> []; 0 < x;
 length (takeWhile (\<lambda>a. a = Oc) (rev l' @ Oc # list)) \<noteq>
 length (takeWhile (\<lambda>a. a = Oc) (rev l' @ Bk # list))\<rbrakk>
 \<Longrightarrow> length (takeWhile (\<lambda>a. a = Oc) (rev l' @ Oc # list)) <
 length (takeWhile (\<lambda>a. a = Oc) (rev l' @ Bk # list))"
-apply(auto simp: inv_loop4.simps)
+by (auto simp: inv_loop4.simps)
-done
 lemma takeWhile_replicate_append:
 "P a \<Longrightarrow> takeWhile P (a\<up>x @ ys) = a\<up>x @ takeWhile P ys"
-apply(induct x, auto)
+by (induct x, auto)
-done
 lemma takeWhile_replicate:
 "P a \<Longrightarrow> takeWhile P (a\<up>x) = a\<up>x"
-by(induct x, auto)
+by (induct x, auto)
 lemma [elim]:
 "\<lbrakk>inv_loop5 x (l', Bk # list); l' \<noteq> []; 0 < x;
 length (takeWhile (\<lambda>a. a = Oc) (rev (tl l') @ hd l' # Bk # list)) \<noteq>
 length (takeWhile (\<lambda>a. a = Oc) (rev l' @ Bk # list))\<rbrakk>
 apply(simp add: takeWhile_replicate_append takeWhile_replicate)
 apply(case_tac  nata, simp_all add: List.takeWhile_tail)
 done
 lemma [elim]: "\<lbrakk>inv_loop1 x (l', Oc # list)\<rbrakk> \<Longrightarrow> hd list = Oc"
-apply(auto simp: inv_loop1.simps)
+by (auto simp: inv_loop1.simps)
-done
 lemma [elim]:
 "\<lbrakk>inv_loop6 x (l', Bk # list); l' \<noteq> []; 0 < x;
 length (takeWhile (\<lambda>a. a = Oc) (rev (tl l') @ hd l' # Bk # list)) \<noteq>
 length (takeWhile (\<lambda>a. a = Oc) (rev l' @ Bk # list))\<rbrakk>
 done
 qed
 (* tcopy_end *)
-fun inv_end1 :: "nat \<Rightarrow> tape \<Rightarrow> bool"
+fun
-where
+inv_end5_loop :: "nat \<Rightarrow> tape \<Rightarrow> bool" and
-"inv_end1 x (l, r) = (x > 0 \<and> l = [Bk] \<and> r = Oc # Bk\<up>x @ Oc\<up>x)"
+inv_end5_exit :: "nat \<Rightarrow> tape \<Rightarrow> bool"
+where
-fun inv_end2 :: "nat \<Rightarrow> tape \<Rightarrow> bool"
-where
-"inv_end2 x (l, r) = (\<exists> i j. i + j = Suc x \<and> x > 0 \<and> l = Oc\<up>i @ [Bk] \<and> r = Bk\<up>j @ Oc\<up>x)"
-fun inv_end3 :: "nat \<Rightarrow> tape \<Rightarrow> bool"
-where
-"inv_end3 x (l, r) =
-(\<exists> i j. x > 0 \<and> i + j = x \<and> l = Oc\<up>i @ [Bk] \<and> r = Oc # Bk\<up>j@ Oc\<up>x )"
-fun inv_end4 :: "nat \<Rightarrow> tape \<Rightarrow> bool"
-where
-"inv_end4 x (l, r) = (\<exists> any. x > 0 \<and> l = Oc\<up>x @ [Bk] \<and> r = any#Oc\<up>x)"
-fun inv_end5_loop :: "nat \<Rightarrow> tape \<Rightarrow> bool"
-where
 "inv_end5_loop x (l, r) =
 (\<exists> i j. i + j = x \<and> x > 0 \<and> j > 0 \<and> l = Oc\<up>i @ [Bk] \<and> r = Oc\<up>j @ Bk # Oc\<up>x)"
+| "inv_end5_exit x (l, r) = (x > 0 \<and> l = [] \<and> r = Bk # Oc\<up>x @ Bk # Oc\<up>x)"
-fun inv_end5_exit :: "nat \<Rightarrow> tape \<Rightarrow> bool"
-where
+fun
-"inv_end5_exit x (l, r) = (x > 0 \<and> l = [] \<and> r = Bk # Oc\<up>x @ Bk # Oc\<up>x)"
+inv_end0 :: "nat \<Rightarrow> tape \<Rightarrow>  bool" and
+inv_end1 :: "nat \<Rightarrow> tape \<Rightarrow> bool" and
-fun inv_end5 :: "nat \<Rightarrow> tape \<Rightarrow> bool"
+inv_end2 :: "nat \<Rightarrow> tape \<Rightarrow> bool" and
-where
+inv_end3 :: "nat \<Rightarrow> tape \<Rightarrow> bool" and
-"inv_end5 x (l, r) = (inv_end5_loop x (l, r) \<or> inv_end5_exit x (l, r))"
+inv_end4 :: "nat \<Rightarrow> tape \<Rightarrow> bool" and
-fun inv_end0 :: "nat \<Rightarrow> tape \<Rightarrow>  bool"
+inv_end5 :: "nat \<Rightarrow> tape \<Rightarrow> bool"
 where
 "inv_end0 x (l, r) = (x > 0 \<and> l = [Bk] \<and> r = Oc\<up>x @ Bk # Oc\<up>x)"
+| "inv_end1 x (l, r) = (x > 0 \<and> l = [Bk] \<and> r = Oc # Bk\<up>x @ Oc\<up>x)"
-fun inv_end :: "nat \<Rightarrow> config \<Rightarrow> bool"
+| "inv_end2 x (l, r) = (\<exists> i j. i + j = Suc x \<and> x > 0 \<and> l = Oc\<up>i @ [Bk] \<and> r = Bk\<up>j @ Oc\<up>x)"
-where
+| "inv_end3 x (l, r) =
+(\<exists> i j. x > 0 \<and> i + j = x \<and> l = Oc\<up>i @ [Bk] \<and> r = Oc # Bk\<up>j@ Oc\<up>x)"
+| "inv_end4 x (l, r) = (\<exists> any. x > 0 \<and> l = Oc\<up>x @ [Bk] \<and> r = any#Oc\<up>x)"
+| "inv_end5 x (l, r) = (inv_end5_loop x (l, r) \<or> inv_end5_exit x (l, r))"
+fun
+inv_end :: "nat \<Rightarrow> config \<Rightarrow> bool"
+where
 "inv_end x (s, l, r) = (if s = 0 then inv_end0 x (l, r)
 else if s = 1 then inv_end1 x (l, r)
 else if s = 2 then inv_end2 x (l, r)
 else if s = 3 then inv_end3 x (l, r)
 else if s = 4 then inv_end4 x (l, r)
 inv_end0.simps[simp del] inv_end2.simps[simp del]
 inv_end3.simps[simp del] inv_end4.simps[simp del]
 inv_end5.simps[simp del]
 lemma [simp]:  "inv_end1 x (b, []) = False"
-apply(auto simp: inv_end1.simps)
+by (auto simp: inv_end1.simps)
-done
 lemma [simp]: "inv_end2 x (b, []) = False"
-apply(auto simp: inv_end2.simps)
+by (auto simp: inv_end2.simps)
-done
 lemma [simp]: "inv_end3 x (b, []) = False"
-apply(auto simp: inv_end3.simps)
+by (auto simp: inv_end3.simps)
-done
-thm inv_end4.simps
 lemma [simp]: "inv_end4 x (b, []) = False"
-apply(auto simp: inv_end4.simps)
+by (auto simp: inv_end4.simps)
-done
 lemma [simp]: "inv_end5 x (b, []) = False"
-apply(auto simp: inv_end5.simps)
+by (auto simp: inv_end5.simps)
-done
 lemma [simp]: "inv_end1 x ([], list) = False"
-apply(auto simp: inv_end1.simps)
+by (auto simp: inv_end1.simps)
-done
 lemma [elim]: "\<lbrakk>0 < x; inv_end1 x (b, Bk # list); b \<noteq> []\<rbrakk>
 \<Longrightarrow> inv_end0 x (tl b, hd b # Bk # list)"
-apply(auto simp: inv_end1.simps inv_end0.simps)
+by (auto simp: inv_end1.simps inv_end0.simps)
-done
 lemma [elim]: "\<lbrakk>0 < x; inv_end2 x (b, Bk # list)\<rbrakk>
 \<Longrightarrow> inv_end3 x (b, Oc # list)"
 apply(auto simp: inv_end2.simps inv_end3.simps)
 apply(rule_tac x = "j - 1" in exI)
 apply(case_tac j, simp_all)
 apply(case_tac x, simp_all)
 done
 lemma [elim]: "\<lbrakk>0 < x; inv_end3 x (b, Bk # list)\<rbrakk> \<Longrightarrow> inv_end2 x (Bk # b, list)"
-apply(auto simp: inv_end2.simps inv_end3.simps)
+by (auto simp: inv_end2.simps inv_end3.simps)
-done
 lemma [elim]: "\<lbrakk>0 < x; inv_end4 x ([], Bk # list)\<rbrakk> \<Longrightarrow>
 inv_end5 x ([], Bk # Bk # list)"
-apply(auto simp: inv_end4.simps inv_end5.simps)
+by (auto simp: inv_end4.simps inv_end5.simps)
-done
 lemma [elim]: "\<lbrakk>0 < x; inv_end4 x (b, Bk # list); b \<noteq> []\<rbrakk> \<Longrightarrow>
 inv_end5 x (tl b, hd b # Bk # list)"
 apply(auto simp: inv_end4.simps inv_end5.simps)
 apply(rule_tac x = 1 in exI, simp)
 apply(auto simp: inv_end5.simps inv_end0.simps)
 apply(case_tac [!] j, simp_all)
 done
 lemma [elim]: "\<lbrakk>0 < x; inv_end1 x (b, Oc # list)\<rbrakk> \<Longrightarrow> inv_end2 x (Oc # b, list)"
-apply(auto simp: inv_end1.simps inv_end2.simps)
+by (auto simp: inv_end1.simps inv_end2.simps)
-done
 lemma [elim]: "\<lbrakk>0 < x; inv_end2 x ([], Oc # list)\<rbrakk> \<Longrightarrow>
 inv_end4 x ([], Bk # Oc # list)"
-apply(auto simp: inv_end2.simps inv_end4.simps)
+by (auto simp: inv_end2.simps inv_end4.simps)
-done
 lemma [elim]:  "\<lbrakk>0 < x; inv_end2 x (b, Oc # list); b \<noteq> []\<rbrakk> \<Longrightarrow>
 inv_end4 x (tl b, hd b # Oc # list)"
 apply(auto simp: inv_end2.simps inv_end4.simps)
 apply(case_tac [!] j, simp_all)
 done
 lemma [elim]: "\<lbrakk>0 < x; inv_end3 x (b, Oc # list)\<rbrakk> \<Longrightarrow> inv_end2 x (Oc # b, list)"
-apply(auto simp: inv_end2.simps inv_end3.simps)
+by (auto simp: inv_end2.simps inv_end3.simps)
-done
 lemma [elim]: "\<lbrakk>0 < x; inv_end4 x (b, Oc # list)\<rbrakk> \<Longrightarrow> inv_end4 x (b, Bk # list)"
-apply(auto simp: inv_end2.simps inv_end4.simps)
+by (auto simp: inv_end2.simps inv_end4.simps)
-done
 lemma [elim]: "\<lbrakk>0 < x; inv_end5 x ([], Oc # list)\<rbrakk> \<Longrightarrow> inv_end5 x ([], Bk # Oc # list)"
-apply(auto simp: inv_end2.simps inv_end5.simps)
+by (auto simp: inv_end2.simps inv_end5.simps)
-done
 declare inv_end5_loop.simps[simp del]
 inv_end5_exit.simps[simp del]
 lemma [simp]: "inv_end5_exit x (b, Oc # list) = False"
-apply(auto simp: inv_end5_exit.simps)
+by (auto simp: inv_end5_exit.simps)
-done
 lemma [simp]: "inv_end5_loop x (tl b, Bk # Oc # list) = False"
 apply(auto simp: inv_end5_loop.simps)
 apply(case_tac [!] j, simp_all)
 done
 apply(simp add: inv_end2.simps inv_end5.simps)
 apply(case_tac "hd b", simp_all, auto)
 done
 lemma inv_end_step:
-"\<lbrakk>x > 0;
+"\<lbrakk>x > 0; inv_end x cf\<rbrakk> \<Longrightarrow> inv_end x (step cf (tcopy_end, 0))"
-inv_end x cf\<rbrakk>
-\<Longrightarrow> inv_end x (step cf (tcopy_end, 0))"
 apply(case_tac cf, case_tac c, case_tac [2] aa)
 apply(auto simp: inv_end.simps step.simps tcopy_end_def numeral split: if_splits)
 done
 lemma inv_end_steps:
-"\<lbrakk>x > 0; inv_end x cf\<rbrakk>
+"\<lbrakk>x > 0; inv_end x cf\<rbrakk> \<Longrightarrow> inv_end x (steps cf (tcopy_end, 0) stp)"
-\<Longrightarrow> inv_end x (steps cf (tcopy_end, 0) stp)"
 apply(induct stp, simp add:steps.simps, simp)
 apply(erule_tac inv_end_step, simp)
 done
 fun end_state :: "config \<Rightarrow> nat"
 else 0)"
 fun end_stage :: "config \<Rightarrow> nat"
 where
 "end_stage (s, l, r) =
-(if s = 2 \<or> s = 3 then (length r)
+(if s = 2 \<or> s = 3 then (length r) else 0)"
-else 0)"
 fun end_step :: "config \<Rightarrow> nat"
 where
 "end_step (s, l, r) =
 (if s = 4 then (if hd r = Oc then 1 else 0)
 definition end_LE :: "(config \<times> config) set"
 where
 "end_LE \<equiv> (inv_image lex_triple end_measure)"
 lemma wf_end_le: "wf end_LE"
-by(auto intro:wf_inv_image simp: end_LE_def wf_lex_triple)
+by (auto intro: wf_inv_image simp: end_LE_def wf_lex_triple)
 lemma [simp]: "inv_end5 x ([], Oc # list) = False"
-apply(auto simp: inv_end5.simps inv_end5_loop.simps)
+by (auto simp: inv_end5.simps inv_end5_loop.simps)
-done
 lemma end_halt:
 "\<lbrakk>x > 0; inv_end x (Suc 0, l, r)\<rbrakk> \<Longrightarrow>
 \<exists> stp. is_final (steps (Suc 0, l, r) (tcopy_end, 0) stp)"
 proof(rule_tac LE = end_LE in halt_lemma)
 qed
 (* tcopy *)
 lemma [intro]: "tm_wf (tcopy_init, 0)"
-by(auto simp: tm_wf.simps tcopy_init_def)
+by (auto simp: tm_wf.simps tcopy_init_def)
 lemma [intro]: "tm_wf (tcopy_loop, 0)"
-by(auto simp: tm_wf.simps tcopy_loop_def)
+by (auto simp: tm_wf.simps tcopy_loop_def)
 lemma [intro]: "tm_wf (tcopy_end, 0)"
-by(auto simp: tm_wf.simps tcopy_end_def)
+by (auto simp: tm_wf.simps tcopy_end_def)
 lemma [intro]: "\<lbrakk>tm_wf (A, 0); tm_wf (B, 0)\<rbrakk> \<Longrightarrow> tm_wf (A |+| B, 0)"
-apply(auto simp: tm_wf.simps shift.simps adjust.simps tm_comp_length
+by (auto simp: tm_wf.simps shift.simps adjust.simps tm_comp_length tm_comp.simps)
-tm_comp.simps)
-done
 lemma tcopy_correct1:
 "\<lbrakk>x > 0\<rbrakk> \<Longrightarrow> {inv_init1 x} tcopy {inv_end0 x}"
 proof(simp add: tcopy_def, rule_tac Hoare_plus_halt)
 show "inv_loop0 x \<mapsto> inv_end1 x"
 thus "{inv_end1 x} tcopy_end {inv_end0 x}"
 by(erule_tac end_correct)
 qed
 abbreviation
-"pre_tcopy n \<equiv> \<lambda>(l::cell list, r::cell list). (l = [] \<and> r = <[n::nat]>)"
+"pre_tcopy n \<equiv> \<lambda>(l::cell list, r::cell list). ((l, r) = ([], <[n::nat]>))"
 abbreviation
-"post_tcopy n \<equiv> \<lambda>(l::cell list, r::cell list). (l = [Bk] \<and> r = <[n, n::nat]>)"
+"post_tcopy n \<equiv> \<lambda>(l::cell list, r::cell list). ((l, r) = ([Bk], <[n, n::nat]>))"
 lemma tcopy_correct2:
 shows "{pre_tcopy n} tcopy {post_tcopy n}"
 proof -
 have "{inv_init1 (Suc n)} tcopy {inv_end0 (Suc n)}"
 and the final configuration is standard.
 *}
 definition haltP :: "tprog \<Rightarrow> nat list \<Rightarrow> bool"
 where
-"haltP p lm \<equiv> \<exists>n a b c. steps (Suc 0, [], <lm>) p n = (0, Bk \<up> a,  Oc \<up> b @ Bk \<up> c)"
+"haltP p lm \<equiv> \<exists>n a b c. steps (1, [], <lm>) p n = (0, Bk \<up> a,  Oc \<up> b @ Bk \<up> c)"
 abbreviation
 "haltP0 p lm \<equiv> haltP (p, 0) lm"
 lemma [intro, simp]: "tm_wf0 tcopy"
-by(auto simp: tcopy_def)
+by (auto simp: tcopy_def)
 lemma [intro, simp]: "tm_wf0 dither"
 by (auto simp: tm_wf.simps dither_def)
 assumes h_wf[intro]: "tm_wf0 H"
 -- {*
 The following two assumptions specifies that @{text "H"} does solve the Halting problem.
 *}
 and h_case:
-"\<And> M lm. (haltP0 M lm) \<Longrightarrow> \<exists> na nb. (steps0 (1, [], <code M # lm>) H na = (0, Bk \<up> nb, [Oc]))"
+"\<And> M lm. (haltP0 M lm) \<Longrightarrow> \<exists> na nb. (steps0 (1, [Bk], <code M # lm>) H na = (0, Bk \<up> nb, [Oc]))"
 and nh_case:
-"\<And> M lm. (\<not> haltP0 M lm) \<Longrightarrow>
+"\<And> M lm. (\<not> haltP0 M lm) \<Longrightarrow> \<exists> na nb. (steps0 (1, [Bk], <code M # lm>) H na = (0, Bk \<up> nb, [Oc, Oc]))"
-\<exists> na nb. (steps0 (1, [],  <code M # lm>) H na = (0, Bk \<up> nb, [Oc, Oc]))"
 begin
-lemma h_newcase:
-"\<And> M lm. haltP0 M lm \<Longrightarrow> \<exists> na nb. (steps0 (1, Bk \<up> x , <code M # lm>) H na = (0, Bk \<up> nb, [Oc]))"
-proof -
-fix M lm
-assume "haltP (M, 0) lm"
-hence "\<exists> na nb. (steps (1, [], <code M # lm>) (H, 0) na
-= (0, Bk\<up>nb, [Oc]))"
-by (rule h_case)
-from this obtain na nb where
-cond1:"(steps (1, [], <code M # lm>) (H, 0) na = (0, Bk\<up>nb, [Oc]))" by blast
-thus "\<exists> na nb. (steps (1, Bk\<up>x, <code M # lm>) (H, 0) na = (0, Bk\<up>nb, [Oc]))"
-proof(rule_tac x = na in exI, case_tac "steps (1, Bk\<up>x, <code M # lm>) (H, 0) na", simp)
-fix a b c
-assume cond2: "steps (Suc 0, Bk\<up>x, <code M # lm>) (H, 0) na = (a, b, c)"
-have "tinres (Bk\<up>nb) b \<and> [Oc] = c \<and> 0 = a"
-proof(rule_tac tinres_steps)
-show "tinres [] (Bk\<up>x)"
-apply(simp add: tinres_def)
-apply(auto)
-done
-next
-show "(steps (1, [], <code M # lm>) (H, 0) na
-= (0, Bk\<up>nb, [Oc]))"
-by(simp add: cond1[simplified])
-next
-show "steps (1, Bk\<up>x, <code M # lm>) (H, 0) na = (a, b, c)"
-by(simp add: cond2[simplified])
-qed
-thus "a = 0 \<and> (\<exists>nb. b = (Bk\<up>nb)) \<and> c = [Oc]"
-by(auto elim: tinres_ex1)
-qed
-qed
-lemma nh_newcase:
-"\<And> M lm. \<not> (haltP (M, 0) lm) \<Longrightarrow> \<exists> na nb. (steps0 (1, Bk\<up>x, <code M # lm>) H na = (0, Bk\<up>nb, [Oc, Oc]))"
-proof -
-fix M lm
-assume "\<not> haltP (M, 0) lm"
-hence "\<exists> na nb. (steps (1, [], <code M # lm>) (H, 0) na = (0, Bk\<up>nb, [Oc, Oc]))"
-by (rule nh_case)
-from this obtain na nb where
-cond1: "(steps (1, [], <code M # lm>) (H, 0) na = (0, Bk\<up>nb, [Oc, Oc]))" by blast
-thus "\<exists> na nb. (steps (1, Bk\<up>x, <code M # lm>) (H, 0) na = (0, Bk\<up>nb, [Oc, Oc]))"
-proof(rule_tac x = na in exI, case_tac "steps (1, Bk\<up>x, <code M # lm>) (H, 0) na", simp)
-fix a b c
-assume cond2: "steps (Suc 0, Bk\<up>x, <code M # lm>) (H, 0) na = (a, b, c)"
-have "tinres (Bk\<up>nb) b \<and> [Oc, Oc] = c \<and> 0 = a"
-proof(rule_tac tinres_steps)
-show "tinres [] (Bk\<up>x)"
-apply(auto simp: tinres_def)
-done
-next
-show "(steps (Suc 0, [], <code M # lm>) (H, 0) na = (0, Bk\<up>nb, [Oc, Oc]))"
-by(simp add: cond1[simplified])
-next
-show "steps (Suc 0, Bk\<up>x, <code M # lm>) (H, 0) na = (a, b, c)"
-by(simp add: cond2[simplified])
-qed
-thus "a = 0 \<and> (\<exists>nb. b =  Bk\<up>nb) \<and> c = [Oc, Oc]"
-by(auto elim: tinres_ex1)
-qed
-qed
 (* invariants for H *)
 abbreviation
-"pre_H_inv M n \<equiv> \<lambda>(l::cell list, r::cell list). (l = [Bk] \<and> r = <[code M, n]>)"
+"pre_H_inv M n \<equiv> \<lambda>(l::cell list, r::cell list). ((l, r) = ([Bk], <[code M, n]>))"
 abbreviation
-"post_H_halt_inv \<equiv> \<lambda>(l, r). (\<exists>nd. l = Bk \<up> nd) \<and> r = [Oc, Oc]"
+"post_H_halt_inv \<equiv> \<lambda>(l, r). (\<exists>n. (l, r) = (Bk \<up> n, [Oc, Oc]))"
 abbreviation
-"post_H_unhalt_inv \<equiv> \<lambda>(l, r). (\<exists>nd. l = Bk \<up> nd) \<and> r = [Oc]"
+"post_H_unhalt_inv \<equiv> \<lambda>(l, r). (\<exists>n. (l, r) = (Bk \<up> n, [Oc]))"
 lemma H_halt_inv:
 assumes "\<not> haltP0 M [n]"
 shows "{pre_H_inv M n} H {post_H_halt_inv}"
 proof -
 obtain stp i
-where "steps0 (1, Bk \<up> 1, <[code M, n]>) H stp = (0, Bk \<up> i, [Oc, Oc])"
+where "steps0 (1, [Bk], <[code M, n]>) H stp = (0, Bk \<up> i, [Oc, Oc])"
-using nh_newcase[of "M" "[n]" "1", OF assms] by auto
+using nh_case[of "M" "[n]", OF assms] by auto
 then show "{pre_H_inv M n} H {post_H_halt_inv}"
 unfolding Hoare_halt_def
 apply(auto)
 apply(rule_tac x = stp in exI)
 apply(auto)
 lemma H_unhalt_inv:
 assumes "haltP0 M [n]"
 shows "{pre_H_inv M n} H {post_H_unhalt_inv}"
 proof -
 obtain stp i
-where "steps0 (1, Bk \<up> 1, <[code M, n]>) H stp = (0, Bk \<up> i, [Oc])"
+where "steps0 (1, [Bk], <[code M, n]>) H stp = (0, Bk \<up> i, [Oc])"
-using h_newcase[of "M" "[n]" "1", OF assms] by auto
+using h_case[of "M" "[n]", OF assms] by auto
 then show "{pre_H_inv M n} H {post_H_unhalt_inv}"
 unfolding Hoare_halt_def
 apply(auto)
 apply(rule_tac x = stp in exI)
 apply(auto)
 (* {P1} (tcopy |+| H) {P3} *)
 have first: "{P1} (tcopy |+| H) {P3}"
 proof (cases rule: Hoare_plus_halt_simple)
 case A_halt (* of tcopy *)
 show "{P1} tcopy {P2}" unfolding P1_def P2_def
-by (simp) (rule tcopy_correct2)
+by (rule tcopy_correct2)
 next
 case B_halt (* of H *)
 show "{P2} H {P3}"
 unfolding P2_def P3_def
-using assms by (simp) (rule H_halt_inv)
+using assms by (rule H_halt_inv)
 qed (simp)
 (* {P3} dither {P3} *)
 have second: "{P3} dither {P3}" unfolding P3_def
 by (rule dither_halts)
 (* {P1} (tcopy |+| H) {P3} *)
 have first: "{P1} (tcopy |+| H) {P3}"
 proof (cases rule: Hoare_plus_halt_simple)
 case A_halt (* of tcopy *)
 show "{P1} tcopy {P2}" unfolding P1_def P2_def
-by (simp) (rule tcopy_correct2)
+by (rule tcopy_correct2)
 next
 case B_halt (* of H *)
 then show "{P2} H {P3}"
 unfolding P2_def P3_def
-using assms by (simp) (rule H_unhalt_inv)
+using assms by (rule H_unhalt_inv)
 qed (simp)
 (* {P3} dither loops *)
 have second: "{P3} dither \<up>" unfolding P3_def
 by (rule dither_loops)

changeset 82	c470f1705baa
parent 81	2e9881578cb2
child 83	8dc659af1bd2