tm: comparison thys/Turing

equal deleted inserted replaced

-:641512ab0f6c
+:d7570dbf9f06
+(* Title: thys/Turing_Hoare.thy
+Author: Jian Xu, Xingyuan Zhang, and Christian Urban
+*)
+header {* Hoare Rules for TMs *}
 theory Turing_Hoare
 imports Turing
 begin
 (* halting case *)
 definition
 Hoare_halt :: "assert \<Rightarrow> tprog0 \<Rightarrow> assert \<Rightarrow> bool" ("({(1_)}/ (_)/ {(1_)})" 50)
 where
 "{P} p {Q} \<equiv> \<forall>tp. P tp \<longrightarrow> (\<exists>n. is_final (steps0 (1, tp) p n) \<and> Q holds_for (steps0 (1, tp) p n))"
 (* not halting case *)
 definition
 Hoare_unhalt :: "assert \<Rightarrow> tprog0 \<Rightarrow> bool" ("({(1_)}/ (_)) \<up>" 50)
 where
 and a2: "steps0 (1, l, r) A n1 = (0, l', r')"
 using A_halt unfolding Hoare_halt_def
 by (metis is_final_eq surj_pair)
 then obtain n2
 where "steps0 (1, l, r) (A |+| B) n2 = (Suc (length A div 2), l', r')"
-using A_wf by (rule_tac tm_comp_pre_halt_same)
+using A_wf by (rule_tac tm_comp_next)
 moreover
 from a1 a2 have "Q (l', r')" by (simp)
 then obtain n3 l'' r''
 where "is_final (steps0 (1, l', r') B n3)"
 and b1: "S holds_for (steps0 (1, l', r') B n3)"
 and b2: "steps0 (1, l', r') B n3 = (0, l'', r'')"
 using B_halt unfolding Hoare_halt_def
 by (metis is_final_eq surj_pair)
 then have "steps0 (Suc (length A div 2), l', r')  (A |+| B) n3 = (0, l'', r'')"
-using A_wf by (rule_tac tm_comp_second_halt_same)
+using A_wf by (rule_tac tm_comp_final)
 ultimately show
 "\<exists>n. is_final (steps0 (1, l, r) (A |+| B) n) \<and> S holds_for (steps0 (1, l, r) (A |+| B) n)"
 using b1 b2 by (rule_tac x = "n2 + n3" in exI) (simp)
 qed
 and b: "Q holds_for (steps0 (1, l, r) A n1)"
 and c: "steps0 (1, l, r) A n1 = (0, l', r')"
 using A_halt unfolding Hoare_halt_def
 by (metis is_final_eq surj_pair)
 then obtain n2 where eq: "steps0 (1, l, r) (A |+| B) n2 = (Suc (length A div 2), l', r')"
-using A_wf by (rule_tac tm_comp_pre_halt_same)
+using A_wf by (rule_tac tm_comp_next)
 then show "\<not> is_final (steps0 (1, l, r) (A |+| B) n)"
 proof(cases "n2 \<le> n")
 case True
 from b c have "Q (l', r')" by simp
 then have "\<forall> n. \<not> is_final (steps0 (1, l', r') B n)  "
 then have "\<not> is_final (steps0 (1, l', r') B (n - n2))" by auto
 then obtain s'' l'' r''
 where "steps0 (1, l', r') B (n - n2) = (s'', l'', r'')"
 and "\<not> is_final (s'', l'', r'')" by (metis surj_pair)
 then have "steps0 (Suc (length A div 2), l', r') (A |+| B) (n - n2) = (s''+ length A div 2, l'', r'')"
-using A_wf by (auto dest: tm_comp_second_same simp del: tm_wf.simps)
+using A_wf by (auto dest: tm_comp_second simp del: tm_wf.simps)
 then have "\<not> is_final (steps0 (1, l, r) (A |+| B) (n2 + (n  - n2)))"
 using A_wf by (simp only: steps_add eq) (simp add: tm_wf.simps)
 then show "\<not> is_final (steps0 (1, l, r) (A |+| B) n)"
 using `n2 \<le> n` by simp
 next

changeset 168	d7570dbf9f06
parent 163	67063c5365e1
child 288	a9003e6d0463