From ca5874b8b0b60decd501bd05d0aa1913e5586d98 Mon Sep 17 00:00:00 2001 From: Josh Chen Date: Thu, 16 Aug 2018 16:11:42 +0200 Subject: Prod.thy now has the correct definitional equality structure rule. Definition of function composition and properties. --- ProdProps.thy | 100 ++++++++++++++++++++++++++++++++++++++++++++-------------- 1 file changed, 77 insertions(+), 23 deletions(-) (limited to 'ProdProps.thy') diff --git a/ProdProps.thy b/ProdProps.thy index 7c2c658..e48b3e6 100644 --- a/ProdProps.thy +++ b/ProdProps.thy @@ -15,40 +15,94 @@ begin section \Composition\ text " - The following rule is admissible, but we cannot derive it only using the rules for the \-type. + The proof of associativity is surprisingly intricate; it involves telling Isabelle to use the correct rule for \-type judgmental equality, and the correct substitutions in the subgoals thereafter, among other things. " -lemma compose_comp': "\ - A: U(i); - \x. x: A \ b(x): B; - \x. x: B \ c(x): C(x) - \ \ (\<^bold>\x. c(x)) \ (\<^bold>\x. b(x)) \ \<^bold>\x. c(b(x))" +lemma compose_assoc: + assumes + "A \ B: U(i)" "B \ C: U(i)" and + "\x:C. D(x): U(i)" and + "f: A \ B" "g: B \ C" "h: \x:C. D(x)" + shows "(h \ g) \ f \ h \ (g \ f)" + +proof (subst (0 1 2 3) compose_def) + text "Compute the different bracketings and show they are equivalent:" + + show "\<^bold>\x. (\<^bold>\y. h`(g`y))`(f`x) \ \<^bold>\x. h`((\<^bold>\y. g`(f`y))`x)" + proof (subst Prod_eq) + show "\<^bold>\x. h`((\<^bold>\y. g`(f`y))`x) \ \<^bold>\x. h`((\<^bold>\y. g`(f`y))`x)" by simp + show "\x. x: A \ (\<^bold>\y. h`(g`y))`(f`x) \ h`((\<^bold>\y. g`(f`y))`x)" + proof compute + show "\x. x: A \ h`(g`(f`x)) \ h`((\<^bold>\y. g`(f`y))`x)" + proof compute + show "\x. x: A \ g`(f`x): C" by (simple lems: assms) + qed + show "\x. x: B \ h`(g`x): D(g`x)" by (simple lems: assms) + qed (simple lems: assms) + qed (wellformed lems: assms) + + text " + Finish off any remaining subgoals that Isabelle can't prove automatically. + These typically require the application of specific substitutions or computation rules. + " + show "g \ f: A \ C" by (subst compose_def) (derive lems: assms) + + show "h \ g: \x:B. D(g`x)" + proof (subst compose_def) + show "\<^bold>\x. h`(g`x): \x:B. D(g`x)" + proof + show "\x. x: B \ h`(g`x): D(g`x)" + proof + show "\x. x: B \ g`x: C" by (simple lems: assms) + qed (simple lems: assms) + qed (wellformed lems: assms) + qed fact+ + + show "\x:B. D (g`x): U(i)" + proof + show "\x. x: B \ D(g`x): U(i)" + proof - + have *: "D: C \ U(i)" by (wellformed lems: assms) + + fix x assume asm: "x: B" + have "g`x: C" by (simple lems: assms asm) + then show "D(g`x): U(i)" by (rule *) + qed + qed (wellformed lems: assms) + + have "A: U(i)" by (wellformed lems: assms) + moreover have "C: U(i)" by (wellformed lems: assms) + ultimately show "A \ C: U(i)" .. +qed (simple lems: assms) + + +text "The following rule is correct, but we cannot prove it using just the rules of the theory." + +lemma compose_comp': + assumes "A: U(i)" and "\x. x: A \ b(x): B" and "\x. x: B \ c(x): C(x)" + shows "(\<^bold>\x. c(x)) \ (\<^bold>\x. b(x)) \ \<^bold>\x. c(b(x))" oops text "However we can derive a variant with more explicit premises:" -lemma compose_comp2: +lemma compose_comp: assumes - "A: U(i)" "B: U(i)" and - "C: B \ U(i)" and + "A: U(i)" "B: U(i)" "C: B \ U(i)" and "\x. x: A \ b(x): B" and "\x. x: B \ c(x): C(x)" shows "(\<^bold>\x. c(x)) \ (\<^bold>\x. b(x)) \ \<^bold>\x. c(b(x))" -proof (subst (0) comp) - show "\<^bold>\x. (\<^bold>\u. c(u))`((\<^bold>\v. b(v))`x) \ \<^bold>\x. c(b(x))" - proof (subst (0) comp) - show "\<^bold>\x. c((\<^bold>\v. b(v))`x) \ \<^bold>\x. c(b(x))" - proof - - have *: "\x. x: A \ (\<^bold>\v. b(v))`x \ b(x)" by simple (rule assms) - show "\<^bold>\x. c((\<^bold>\v. b(v))`x) \ \<^bold>\x. c(b(x))" - proof (subst *) - +proof (subst compose_def) + show "\<^bold>\x. (\<^bold>\x. c(x))`((\<^bold>\x. b(x))`x) \ \<^bold>\x. c(b(x))" + proof + show "\a. a: A \ (\<^bold>\x. c(x))`((\<^bold>\x. b(x))`a) \ c(b(a))" + proof compute + show "\a. a: A \ c((\<^bold>\x. b(x))`a) \ c(b(a))" by compute (simple lems: assms) + qed (simple lems: assms) + qed fact +qed (simple lems: assms) -text "We can show associativity of composition in general." -lemma compose_assoc: - "(f \ g) \ h \ f \ (g \ h)" -proof +lemmas compose_comps [comp] = compose_def compose_comp -end \ No newline at end of file +end -- cgit v1.2.3